1 to 25 of 69 Security Posture Jobs in London

type: Contract (6 months) Responsibilities: Conduct a comprehensive review of the existing Active Directory deployment, including forests, domains, trusts, and group policies. Assess the security posture of the Active Directory environment, with a focus on securing Tier 0 infrastructure and implementing best practices for privileged access management. Review … all Group Policy Objects (GPOs) to ensure they are aligned with security policies, compliance requirements, and business needs. Identify opportunities for consolidation and optimisation. Evaluate the organisational unit (OU) structure and provide recommendations for streamlining and standardising OU design to improve manageability and scalability. Review the security baseline … improvements. Experience: 7 years of experience designing, implementing, and managing Active Directory environments in enterprise-scale environments. In-depth knowledge of Active Directory architecture, security best practices, and cloud integration strategies. Strong expertise in reviewing and optimising Group Policy Objects (GPOs) and organisational unit (OU) structures. Experience with privileged more »

Senior Cloud Security Engineer What you’ll be working on: Configuring cloud security applications and security policies. Tuning alerts with the L3 Ops teams to ensure the right alerts are being alerted. Roll out a security solution across cloud accounts within all regions including Kubernetes & containers. … Objectives: To work closely with the Cloud Engineering teams to ensure the cloud platforms are complying to security standards and there is a remediation process. To work with the SOC team & automation team to ensure alerting is correct for any detections or incidents that Op's will need to … investigate. To improve the security posture of cloud devices in AWS, GCP & Azure. What you’ll bring: Sound knowledge from a Cloud security perspective & how to create, update and improve polices for prevention, compliance, and sensor standpoint. Experience engineering and securing AWS, GCP and Azure Cloud platforms more »

Information Security Risk Analyst Location: Hybrid - London Package: Negotiable + Benefits The Information Security Risk Analyst III at Brown & Brown is responsible for analysing information security controls both within our organisation and with third-party entities. This analysis aims to identify and assess associated information security risks, and effectively communicate these findings to the business stakeholders. This role requires a thorough understanding of information security principles and practices, as well as the ability to evaluate complex systems and processes. The Information Security Risk Analyst III plays a crucial role in safeguarding our organisation … s information assets and maintaining a strong security posture. The day to day: research and analysis to handle inbound cybersecurity inquiries from company’s third parties. research and analysis related to vetting new or potentially new third parties. recommendations for communicating identified security risks of new or potentially more »

Senior AWS Platform Engineer - Appvia - Security Clearance eligibility required. Location: London, UK About Us At Appvia, we're committed to helping our customers navigate their journey to Cloud and DevOps maturity. As a leading provider in the industry, we offer cutting-edge technologies and services to support our clients … to architect their applications to be cloud native, or helping them transform existing applications to cloud native where possible. Implementing monitoring and alerting Improving security posture of applications being migrated Creating secure deployment patterns and templates/modules for application development teams to reuse. Gathering requirements for building … desirable, e.g.: AWS Certified: Solutions Architect Associate AWS Certified: Solutions Architect Professional Certification in Kubernetes administration is desirable: Certified Kubernetes Administrator (CKA) Certified Kubernetes Security Specialist (CKSS) Benefits Why join Appvia? We are a self-funded, London based startup; providing businesses with a fast and secure way to deploy more »

Job Title: Security Engineer Salary: £80,000 to £100,000 We are seeking a Security Engineer, for a fast-growing FinTech firm, specialising in Wealth Management and Financial Advisory. As the first dedicated cybersecurity professional you'll play a pivotal role in establishing and fortifying the firm's … and collaborating closely with key stakeholders, including Engineering, Head of Platforms, and Head of Compliance, you'll be the go-to expert for all security matters. Responsibilities: Lead the implementation of cybersecurity measures, serving as the primary point of contact for all security-related matters. Collaborate closely with … engineering teams to embed security-by-design principles into development processes. Conduct thorough reviews of existing tools and processes, identifying gaps and implementing enhancements to strengthen our security posture. Perform security scanning and vulnerability management, taking proactive measures to reduce operational risks. Monitor security alerts and more »

assets. As the Head of IAM, the individual will lead a team of IAM professionals, collaborate with key stakeholders, and drive initiatives to enhance security posture and streamline access management processes. Key Responsibilities: Develops and executes IAM strategies aligned with business objectives and regulatory requirements. Leads the design … access controls. Oversees the operation of IAM technologies, ensuring system reliability, scalability, and performance. Establishes and enforces IAM policies, standards, and procedures to mitigate security risks and ensure compliance with industry regulations. Leads the evaluation and selection of IAM solutions, vendors, and technologies. Collaborates with internal teams and external … team members, fostering a culture of continuous learning and professional development. Monitors emerging trends and best practices in IAM, recommending innovative solutions to enhance security posture and operational efficiency. Serves as a subject matter expert on IAM matters, providing guidance and support to clients and internal stakeholders. Qualifications more »

Senior IT Security Engineer Remote with 1-2 days in London per quarter as needed. 6-12 months, £500 per day Outside IR35 Experienced IT Security Engineer required to bolster the Info Sec team, specifically to translate risks and threats into clear guidance of what that means to … required action, with a practical and hands on approach to the delivery of the same. This role will make a big impact on improved security posture and maturing the security skills of the team and technical environment. Must be a willing coach, able to share knowledge and … expertise and influence and guide teams, with a desire to get hands dirty to deliver and drive security initiatives. Key responsibility areas: Network Security: Network Access Control (NAC) Implementation: Design, implement, and maintain a NAC solution to prevent unauthorized devices from accessing the corporate network. Firewall Rule Review more »

Network Security Analyst Up to £70,000 As the Network Security Analyst, you'll be at the forefront of resolving technical issues with telecom suppliers, placing a strong emphasis on security and compliance. Your expertise will be pivotal in providing recommendations on security, risk, and compliance … matters, collaborating seamlessly with cross-functional teams to confirm audit results and propose crucial security improvements. You'll serve as a translator of complex technical issues, ensuring clear communication with non-technical staff. Working closely with security teams, you'll contextualise supplier security within the overarching framework. … Constantly on the lookout for opportunities to enhance processes and technology, you'll contribute to the continuous improvement of our security posture. Requirements for this confidential position include a recognised security qualification (e.g., CISSP), lead auditor/assessor qualification (e.g., ISO27001), and a relevant degree or equivalent. Bring more »

Job Description: Cloud Security Engineer £450 - £500 Per Day Inside IR35 1 day per week on site in Central London Candidate MUST BE UK BASED & HAVE FULL UK RIGHT TO WORK SPONSORSHIP IS NOT PROVIDED FOR THIS ROLE Purpose of the Job As a Cloud Security Engineer, your … mission is to enhance and maintain the security posture of our Cloud environments, ensuring they are secure and compliant with industry best practices. In this key role, you will: Drive Strategic Projects: Collaborate on essential initiatives that shape the Cloud security landscape of our organization. Architect Security Solutions: Design and implement robust security measures to protect our Cloud infrastructure. Manage Risks: Identify, assess, and effectively manage Cloud security risks. Collaborate on Application Security: Partner with our Software Engineering teams to explore opportunities for enhanced security. Cross-Functional Cooperation: Work closely with other teams more »

Information Security Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and … industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of information security experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g., GDPR more »

relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements Establish more »

relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements Establish more »

I am currently working with an exciting Software business looking for an Application Security Engineer in the UK to support a wider global security team. Working closely with the Application Security Manager and Engineering teams, we are looking for someone to provide expertise on a range of … services including secure coding techniques & reviews, Application Security awareness, integration of security into development lifecycles and more. Other responsibilities include: Provide guidance on Application Security & DevSecOps best practices Develop security testing plans and integrate security into the software development lifecycle Help to deliver overall Application … Security strategy Work closely with the develop team to identify, communicate and remediate vulnerabilities in code Perform and oversee security testing and manage remediation of identified vulnerabilities. Collaborate with the architecture and development teams to review the design and code for security vulnerabilities. Manage aspects of an more »

I am currently working with an exciting Software business looking for an Application Security Engineer in the UK to support a wider global security team. Working closely with the Application Security Manager and Engineering teams, we are looking for someone to provide expertise on a range of … services including secure coding techniques & reviews, Application Security awareness, integration of security into development lifecycles and more. Other responsibilities include: Provide guidance on Application Security & DevSecOps best practices Develop security testing plans and integrate security into the software development lifecycle Help to deliver overall Application … Security strategy Work closely with the develop team to identify, communicate and remediate vulnerabilities in code Perform and oversee security testing and manage remediation of identified vulnerabilities. Collaborate with the architecture and development teams to review the design and code for security vulnerabilities. Manage aspects of an more »

operations 3+ years of experience working with threat intelligence feeds and IOCs Education High School Diploma w/10 years of experience in information security or college diploma with 6 years of information security experience Additional 10 years of IT experience 7+ years in an information security … threat and vulnerability management program and operations 3+ years of experience working with threat intelligence feeds and IOCs 3+ years of experience in a security engineer role 3+ experience with cloud vulnerabilities 2+ years of experience with endpoint protection tools 2+ years of experience with security information and … event management (SIEM) tools 1+ years of experience with perimeter security Primary Functions Operate within the global Cybersecurity Team within the Information Technology department Ensure global alignment with Company’s best practices for patch, posture, and vulnerability management Maintain and improve the TVM program’s operational performance, processes more »

operations 3+ years of experience working with threat intelligence feeds and IOCs Education High School Diploma w/10 years of experience in information security or college diploma with 6 years of information security experience Additional 10 years of IT experience 7+ years in an information security … threat and vulnerability management program and operations 3+ years of experience working with threat intelligence feeds and IOCs 3+ years of experience in a security engineer role 3+ experience with cloud vulnerabilities 2+ years of experience with endpoint protection tools 2+ years of experience with security information and … event management (SIEM) tools 1+ years of experience with perimeter security Primary Functions Operate within the global Cybersecurity Team within the Information Technology department Ensure global alignment with Company’s best practices for patch, posture, and vulnerability management Maintain and improve the TVM program’s operational performance, processes more »

Senior Cyber Security Engineer – London hybrid - £80,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Cyber Security Engineer to join our clients growing Cyber Security Engineering function. You will be responsible for designing, implementing, and maintaining security solutions across our … clients infrastructure, in addition to being a huge contributor to the growth and strategy of the Security Engineering function. Our client is looking for people with extensive experience in DevSecOps practices, a deep understanding of security architecture principles, and technical proficiency with cloud platforms such as AWS or … Azure. Main Responsibilities: Collaborate with cross-functional teams to implement security practices throughout the SDLC, emphasising DevSecOps principles. Design, implement, and manage security controls and automation tools to enhance the security posture of cloud-based applications and infrastructure. Conduct thorough security assessments and risk analyses more »

We are looking for a Security Consultant with extensive experience in providing end-to-end security assurance for business projects. The ideal candidate will have a strong background in threat assessments, architectural design reviews, third-party risk assessments, RFP security requirements, network security, IDAM projects, ransomware … remediation, pen test scoping, and HLD/LLD reviews. Responsibilities: Perform threat modelling to identify potential security vulnerabilities and risks. Assess high and low-level architectural designs to identify security risks and provide recommendations for mitigation. Provide security requirements for RFPs and score RFPs based on security criteria. Conduct assessments of third-party security posture to ensure compliance with security standards. Create scopes for penetration testing, organize pen tests, review results, and oversee remediation efforts. Collaborate with project teams to agree on specific security controls and gather evidence of implementation. Identify and more »

Job Post: Principal Security Platform Engineer - Infrastructure Location: London, Hybrid (1 day per week) Type: Full-Time Salary: Up to £90,000 Our client, a highly respected and well-established household name, is seeking a talented Principal Security Platform Engineer - Infrastructure to join their dynamic team. This is … an excellent opportunity to make a significant impact on the security posture of a leading organization. Key Responsibilities: Manage and improve the security posture of our client's on-premise estate, including endpoints and mobile devices Ensure compliance with security standards and drive remediation processes … Optimize security controls and configurations within infrastructure technologies Contribute to the development and implementation of security policies and procedures Define security standards and guardrails, supporting their implementation and ongoing support Essential Qualifications: Minimum 5 years of relevant experience in infrastructure security related to endpoints and mobile more »

Lead Security Engineer - Azure, Zscaler - £80,000 - £95,000 + bonus - FinTech A groundbreaking FinTech startup, backed by industry titans who are revolutionizing digital asset security for institutional investors, are looking for a Lead Security Engineer to look after their Azure infrastructure from a security perspective. … As the Lead Security Engineer, you will be have a substantial effect on the organization as they are building the future of secure crypto trading, so as you can imagine, security is at the heart of everything they do! This is a new role within the company as … they are currently going through a large digital transformation and are rapidly growing, so you will be building the security engineering function from the ground up and potentially building a team around you in the future. What will the Lead Security Engineer be doing? You will be the more »

Job Post: Principal Security Platform Engineer - Cloud Location: London, Hybrid (1 day per week) Type: Full-Time Salary: Up to £90,000 Our client, a highly respected and well-established household name, is seeking a talented Principal Security Platform Engineer - Cloud to join their dynamic team. This is … an excellent opportunity to make a significant impact on the security posture of a leading organization. Key Responsibilities: Manage and improve the security posture of our client's cloud environments hosted by strategic providers Ensure compliance with security standards and drive remediation processes Optimize security controls and configurations within cloud technologies Contribute to the development and implementation of security policies and procedures Define security standards and guardrails, supporting their implementation and ongoing support Essential Qualifications: Minimum 5 years of relevant experience in security engineering Extensive hands-on experience implementing and configuring more »

We present an exciting opportunity to join a prominent organization in the financial services sector. They actively seek an experienced Cyber Security Engineer to ensure the company's adherence to security standards. Responsibilities: Collaborate with technology and business teams to implement security processes, technologies, and controls, serving … as the authority for security-related inquiries. Define, design, implement, and maintain security solutions tailored to the business's requirements. Support the definition, execution, and continuous improvement of key cybersecurity processes, including vulnerability and patch management, security incident response, monitoring, endpoint security, identity and access management … network security, and cryptography. Assist in developing and maintaining security policies, processes, incident response management plans, and playbooks. Create and document standard operating procedures and protocols. Provide expertise on security requirements for core technology processes, such as asset management, change management, third-party management, technology development and more »

Senior IT Security Engineer Remote with 1-2 days in London per quarter as needed. 6-12 months, to £75,000 per annum Experienced IT Security Engineer required to bolster the Info Sec team, specifically to translate risks and threats into clear guidance of what that means to … required action, with a practical and hands on approach to the delivery of the same. This role will make a big impact on improved security posture and maturing the security skills of the team and technical environment. Must be a willing coach, able to share knowledge and … expertise and influence and guide teams, with a desire to get hands dirty to deliver and drive security initiatives. Key responsibility areas: Network Security: Network Access Control (NAC) Implementation: Design, implement, and maintain a NAC solution to prevent unauthorized devices from accessing the corporate network. Firewall Rule Review more »

responsible for the continued development of Uptime Institute’s s cybersecurity-focused services portfolio. Position Description: Developing short and long-term strategy for cyber security services including, driving requirements and improvement initiatives, developing roadmaps with actionable plans, leading cross-functional teams both internally and externally, and championing the execution … MSP, Cloud Services, SaaS and Colocation suppliers. Continuously evolving Uptime Institute cybersecurity services roadmap & scope parameters, to improve services offering against the expanding cyber security norms and standards relevant to data centres. Identifying and managing cybersecurity program development partners and advisory board in line with the company’s objective … programs in partnership with relevant functional areas. EXPERIENCE This is a Senior role (hands-on) aimed at improving our clients’ IT Estate's cyber security posture across. An understanding of infrastructure engineering/application engineering expertise is essential. The candidate should also have a working knowledge of cyber more »

global provider of information-based analytics and decision tools for professional and business customers About the Role We are looking for an experienced Application Security Leader to lead the Application Security discipline across RX Global. The Security Application Leader will play a critical role in ensuring that … all applications are developed, deployed, and maintained with security as a top priority, helping to protect sensitive data, mitigate risks, and maintain the trust of customers and stakeholders Responsibilities Conducting assessments of applications (web, cloud, mobile, API) using range of manual and automated source code review techniques (PASTA and … STRIDE) Working with development teams to analyse,evaluate and enhance the effectiveness of their application/product security posture at all levels. Owning and administration of security tooling such as Sonarcube, Acunetix, Dtrack, and others Collaborating with respective peer groups to safeguard company information assets against current more »