26 to 50 of 113 Security Posture Jobs in London

and Lessons Learned - collaborating with a global team of incident responders. You will apply your comprehensive skills in cyber defense, digital forensics, log analysis, and intrusion analysis to address security incidents across our endpoints, network, and cloud infrastructure. In this role, you will be responsible for prevention, detection, response, and remediation activities, ensuring that information assets and technologies are … relevant stakeholders in multicultural and global environments. Responsibilities - Report to Director to facilitate all phases in the incident response lifecycle - Be involved in various incident prevention projects to improve Security posture Preparation: - Understand different regulatory and compliance requirements like critical time to report, escalation flows, etc. - Take part in self-assessment exercises like Tabletop Exercises, Attack Simulations, Red … incident response runbooks, playbooks and SOPs with reference to different regulatory requirements - Evaluate the incident response readiness of different layers - people, process, technology Detection & Analysis: - Respond to the cyber security incidents escalated from various channels including the 24/7 SOC team. - Respond to cyber security incidents in compliance with the local authority/regulatory requirements. - Assess the More ❯

and Compliance Lead (GRC) - Cyber We're partnering with a leading global financial services firm to appoint a Governance, Risk, and Compliance (GRC) Lead into their high-performing Information Security function. GRC Lead - Cybersecurity (Financial Services) London Competitive Package This is an exciting opportunity to join a fast-paced, globally recognised institution with a mature cyber programme and significant … investment in its security posture. As a trusted search partner, we're looking for an experienced and strategic GRC professional who can bring deep subject matter expertise across third-party risk, regulatory compliance, audit readiness, and awareness training. You'll play a pivotal role in helping the firm navigate the evolving threat landscape while maintaining compliance with complex global … Third-party risk platforms (e.g., Venminder, CyberGRX, Upguard) Microsoft O365 suite Why Apply? This is a high-impact role offering direct visibility with senior stakeholders, the chance to shape security posture across a global organisation, and real opportunities for career progression. You'll be supported by a collaborative team culture, continuous learning, and the ability to influence how More ❯

The team you'll be working with: Consultant - Offensive Security Testing Role Overview: We are seeking a highly skilled and experienced Offensive Security Consultant with a strong focus on threat intelligence and attack methods. The ideal candidate will manage and conduct advanced penetration testing engagements, leveraging threat intelligence to simulate real-world attacks across various environments, including OT … applications, cloud infrastructure, and APIs. This role requires a deep understanding of adversarial tactics, excellent communication skills, and the ability to provide strategic, actionable recommendations to enhance our clients' security posture. What you'll be doing: Responsibilities: Lead and manage the full lifecycle of complex penetration testing engagements, applying a threat intelligence-led approach. Execute advanced penetration tests across … and schedule testing engagements based on threat assessments and client needs. Produce clear, detailed reports with technical findings, business impact, and strategic remediation recommendations for diverse audiences. Communicate complex security concepts and threat insights effectively to technical and non-technical stakeholders. Collaborate with client IT and cybersecurity teams to improve security protocols and address vulnerabilities. Monitor remediation efforts More ❯

Security Compliance Auditor, SCIPS Prototype Security Job ID: Beijing Century Joyo Information Technology Co., Ltd. Shenzhen Branch The Supply Chain and Intellectual Property Security (SCIPS) team is searching for a Security Compliance Specialist for both Cyber and Physical Security auditing for its Prototype Security team. We believe passionately that employing a diverse workforce is … simplify and build. The key responsibilities of the role include conducting comprehensive audits and inspections at third-party supplier locations where Amazon product is stored, tested, serviced and disposed. Security management system audits are carried out according to Amazon's internal standards, encompassing cybersecurity protocols, data protection measures, and physical security controls. This position will monitor compliance with … contractual requirements, assess the effectiveness of implementation, and provide general support to the site security personnel at vendor service providers. The role involves auditing digital security measures, including network security, access controls, and data encryption practices. Additionally, the auditor will evaluate physical security measures such as perimeter security, access control systems, surveillance equipment, and emergency More ❯

Technical Head of Information Security required for financial services firm. The role will be both strategic and technically hands on as it's a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership updated on security posture and key metrics. Build relationships with security leaders in similar firms to stay ahead of threats and trends. Ensure compliance through audits and incident response exercises. Collaborate with … tech teams to ensure secure software and infrastructure. Manage third-party security vendors and track their performance. Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security teams. Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA). Background in network, cloud (Azure), endpoint More ❯

Technical Head of Information Security required for financial services firm. The role will be both strategic and technically hands on as it's a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership updated on security posture and key metrics. Build relationships with security leaders in similar firms to stay ahead of threats and trends. Ensure compliance through audits and incident response exercises. Collaborate with … tech teams to ensure secure software and infrastructure. Manage third-party security vendors and track their performance. Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security teams. Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA). Background in network, cloud (Azure), endpoint More ❯

Join Us in BCG Worldwide IT! We are seeking an exceptional data protection expert to play key role in our growing Information Protection team, as an IT Data Protection Security Engineer. You will be part of a growing team, providing world class Security Engineering, Architecture and Operations, driving and supporting improvements globally to our Information Protection Portfolio. You … will be: Engaging collaboratively with application development, data protection, information security, and risk management teams to understand and implement data security solutions. Supporting vendor assessments, including proof of concepts & security technologies research Continuously improving data protection services based on input from a diverse network of internal and external stakeholders, technology teams and security industry at large … difficult and stressful situations with poise, tact and patience, while demonstrating a sense of urgency. What You'll Bring Minimum 8+ years of data loss solutions and/or security engineering experience with large scale globally distributed implementations Extensive experience in data-at-rest and data-in-transit, data security techniques and methodologies Experience of using relevant DLP More ❯

Job Title: Information Security Manager Basis: Full-time, permanent Location: Canary Wharf, London - WeWork Reporting to: Co-founder About Onetrace Great products start with great people. Our relentless focus on user experience has been the cornerstone of our growth, helping us become the market leading software for fire protection subcontractors across the UK. We've grown by staying obsessed … matter, and your work shapes what comes next. Want to learn more about our journey? Check out our LinkedIn page. About the Role We're looking for an Information Security Manager to lead the systems, practices, and frameworks that protect Onetrace's data, people and infrastructure as we grow. This is a cross-functional, hands-on role with a … strong strategic lens -you'll own our information security posture end-to-end, ensuring we maintain our ISO 27001 accreditation, while preparing for other relevant accreditations (such as SOC2 and Cyber Essentials). You'll proactively manage risks and help create a secure environment where teams can move fast without compromising on trust or safety. You'll also More ❯

Information Security/Information Privacy SME (Contract) Location: Central London (Hybrid - 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6-12 months (with potential extension) Industry: Private Banking/Wealth Management Role Overview: We are seeking a highly experienced Information Security/Information Privacy Subject Matter Expert (SME) to support a leading private bank … and customer data remain secure and compliant with applicable standards (e.g., ISO 27001, GDPR, FCA requirements). Key Responsibilities: Serve as the SME for all matters related to information security and privacy. Advise on the development and maintenance of security policies, procedures, and frameworks. Review and strengthen current information security architecture and controls. Conduct risk assessments, gap … . Provide expert input on GDPR, UK Data Protection Act, and other relevant regulations. Partner with internal stakeholders across legal, compliance, IT, and operations to improve the organisation's security posture. Assist with incident response planning and investigations as needed. Provide training and awareness support to staff and leadership. Support internal and external audits, including FCA and ISO More ❯

Regional Sales Engineer- Cloud (French Speaking) The Company: Varonis (Nasdaq: VRNS) is a leader in data security, fighting a different battle than conventional cybersecurity companies. Our cloud-native Data Security Platform continuously discovers and classifies critical data, removes exposures, and detects advanced threats with AI-powered automation. Thousands of organizations worldwide trust Varonis to defend their data wherever … it lives - across SaaS, IaaS, and hybrid cloud environments. Customers use Varonis to automate a wide range of security outcomes, including data security posture management (DSPM), data classification, data access governance (DAG), data detection and response (DDR), data loss prevention (DLP), and insider risk management. The Role: The Cloud Regional Sales Engineer will provide integration solutions for … customers and prospects seeking visibility into their cloud environment's security posture . They will develop expertise in onboarding Varonis to make it a key component of every client's cloud security program.Theideal candidate will build an intimate knowledge of cloud architecture and management (IaaS, SaaS, DSPM, CSPM, etc.) and enable the field on integration standards and More ❯

and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do This role focuses on designing, implementing, and tracking cloud security enhancements with a specialization in managing non-human identities across multi-cloud and SaaS environments. You will influence engineering decisions to drive secure and successful business outcomes while collaborating … with internal teams to protect enterprise information. Key responsibilities include defining and implementing access and security requirements; planning, testing, and supporting secure systems; and serving as a Subject Matter Expert on IT projects. Additionally, you will develop and maintain security standards, policies, and procedures, while mentoring team members to foster a strong security culture. This position requires … a strategic and hands-on approach to strengthen BCG’s cloud security posture. You're Good At Interacting with stakeholders and possessing the ability to influence direction, articulate risks, and advocate for solutions and roadmaps. Managing backlog and roadmap of secrets management items to be completed. Managing end-to-end delivery of projects with hands-on involvement in the More ❯

Cyber Security Analyst Eden Brown Synergy are working with a leading local authority based in London who are seeking an experienced Cyber Security Analyst to play a key role in strengthening their cyber security capabilities and ensuring the effective use of Microsoft's Sentinel security information and event management system. This opportunity offers a chance to … contribute to a progressive, security-focused team committed to protecting critical infrastructure and information assets. The role is offered on a hybrid working basis, with a requirement to attend the London office 2 days per week. Key Responsibilities: * Monitor and analyse various security systems to identify, mitigate, and respond to risks and potential threats. * Utilise Microsoft Sentinel and … related tools to analyse security data, detect anomalies, and respond effectively to incidents. * Oversee vulnerability assessments and penetration testing to ensure robust security measures are maintained. * Contribute to the development and execution of incident response plans, ensuring prompt action to contain and remediate security incidents. * Maintain accurate incident logs and reports to support post-incident analysis and More ❯

distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises to large government customers, run their operations and applications on AWS' highly secure infrastructure. AWS Security is looking for a GRC Specialist to contribute to the certification, accreditation, assurance, and authorisation activities across the security program. The successful candidate is a problem-solver, quick … study, with a broad understanding of the regulatory landscape, cloud technologies, experience in security and compliance. Key job responsibilities - Serve as the GRC Specialist for designated (physical and/or logical) components within the cloud capability, to perform assurance and authorization activities to ensure adherence to standards and protocols. - Collaborate with internal teams and customers to establish baselines and … level-set the security requirements, security controls, and security objectives. - Implement ISM, PSPF, DSPF, ASIO T4, NIST and/or other security compliance frameworks into design and build baselines to achieve the agreed security posture. - Create, optimise, and support cross-functional working groups and projects aimed at enhancing security efficiency and effectiveness across the More ❯

great opportunity to join our team - Employer of the Year Housing Heroes awards 2025 and one of LinkedIn's Top Companies 2024 Do you have proven experience in cyber security, information assurance or resilience management? If you have a strong working knowledge of the NIST Cyber Security Framework then this could be your chance to join us! We … with excellent communication skills to work across the business to provide assurance on Clarion's cybersecurity strategy, ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how this relates to the function's strategy and action plan and to Clarion's mission and vision and motivate people to achieve local business goals. Experienced with incident response, SIEM systems and threat detection tools, and with certification such More ❯

great opportunity to join our team - Employer of the Year Housing Heroes awards 2025 and one of LinkedIn's Top Companies 2024 Do you have proven experience in cyber security, information assurance or resilience management? If you have a strong working knowledge of the NIST Cyber Security Framework then this could be your chance to join us! We … with excellent communication skills to work across the business to provide assurance on Clarion's cybersecurity strategy, ensuring alignment with the National Institute of Standards and Technology (NIST) Cyber Security Framework. Familiar with UK housing sector regulation, applicable standards and data protection requirements (e.g. GDPR, ISO27001, ISO27002, ISO27701) you'll be responsible cyber assurance to support the security posture across systems and services that support tenants and operations. You'll communicate the local action plan, explain how this relates to the function's strategy and action plan and to Clarion's mission and vision and motivate people to achieve local business goals. Experienced with incident response, SIEM systems and threat detection tools, and with certification such More ❯

and design principles Technical Skills Significant enterprise systems development hands-on experience (C#, Java, C++ or similar OO stack) and web app technologies Cloud technologies: IaaS, PaaS, containerisation, cloud security, public cloud platforms such as AWS (preferred), Azure, GCP SOA (Service Orientated Architecture) expertise Understanding of software testing frameworks/strategies API and system integration: REST, GraphQL, message middleware … data integration Full stack security posture: IDS, code vulnerability detection, code security, authentication and authorisation DevOps: Continuous Integration and/or Continuous Delivery, tooling such as Git repos, code pipelines, IaC (Infrastructure as Code) Understanding of software code management (code coverage security hotspots, maintainability of code), application and automated testing, Git repo branching strategies Band & level More ❯

work. Whether you're building on our platform, supporting our customers, or shaping our story: You can just ship things. About the Role: We are looking for a Staff Security Operations Engineer to join our Security team. In this role, you will be responsible for managing Vercel's internal Corporate Security (CorpSec) posture, monitoring for security anomalies, building additional detections and visibility mechanisms, and ensuring the overall security of our internal systems. You will work closely with various teams to support audits, optimize visibil i ty, and handle security incidents as they arise. If you're based within a pre-determined commuting distance of one of our offices (SF, NY, London, or Berlin … you're located beyond that distance, the role is fully remote. For location-specific details, please connect with our recruiting team. What You Will Do: Monitor and respond to security alerts across multiple channels, including managed SOC escalations. Maintain visibility and logging infrastructure, ensuring effective SIEM (Security Information and Event Management) operations. Support security audits for PCI More ❯

Join to apply for the Director of Cyber Security role at Jobs via eFinancialCareers 22 hours ago Be among the first 25 applicants Join to apply for the Director of Cyber Security role at Jobs via eFinancialCareers Director of Cyber Security - £1000/day - Outside IR35 Location: Liverpool Street, London (3 days on-site) Duration: 12 Months … Rate: £1000 per day (Outside IR35) Start: ASAP We're seeking a UK-based Director of Cyber Security to lead and elevate cyber security strategy and operations within a leading insurance organisation. You will drive risk reduction, ensure regulatory compliance, and strengthen the security posture across cloud and on-prem environments. Key Requirements: Proven leadership in … Cyber Security at Director level. Extensive experience in the insurance sector - essential. Strong grasp of regulatory and compliance frameworks (e.g. FCA, GDPR). Deep knowledge of enterprise security architecture, incident response, cloud security (Azure/AWS), and threat intelligence. Hands-on approach with the ability to operate at both strategic and tactical levels. Must be UK-based More ❯

Job Description We’re seeking an Azure Security Architect who will join a well known Insurance Company and be part of the global security architecture and engineering function with twin teams in the US and APAC regions. The successful candidate will be a key technical resource in the Global Cyber and Information Security (GCIS) side of the … business. You’ll be responsible for creating security architecture frameworks, design patterns, standards, reference architectures, best practices and technical specifications. The new Azure Security Architect will work closely with other Information Security colleagues, IT & Infrastructure organisations and Business teams globally to provide security architecture guidance and recommendations. This Azure Security Architect position will pay up … to £100,000 per annum, it comes with a substantial bonus scheme, Company pension, private medical package and much much more! We’re looking for Azure Security Architects that have the following attributes/experience; Extensive commercial experience working with Azure Extensive commercial experience working with networking, firewalls, end point protection, and Access Management and data protection. Strong knowledge More ❯

Head of Information Security Department: IT Operations Employment Type: Permanent - Full Time Location: London Reporting To: Kirsty Kelly Description As Head of Information Security, you will report directly into the Group CISO, and be responsible for leading and managing key pillars of our security programme, with a primary focus on Third-Party Security Risk Management, Data … Loss Prevention (DLP), Policy Governance, Security Training & Awareness, and Identity & Access Management (IAM). You will work closely with the Group CISO to ensure consistent high standards in your areas of responsibility and ensure global adherence to security practices. The ideal candidate will have deep knowledge of regulatory frameworks such as NYDFS Cybersecurity Regulation, GDPR, and other European … and Australian data protection laws, and will bring a proactive, risk-based approach to the governance and operationalisation of security controls. About the role Within this role, you will act as a member of the CISO’s leadership team, contributing to security strategy, budgeting, and cross-functional planning. This involves supporting the CISO to build and manage a More ❯

Lead Security Architect The Opportunity Albany Beck is partnering with a global Investment Bank to deliver a critical Protocol Analysis & Remediation programme. We’re looking for a Lead Security Architect with deep technical expertise and a strategic mindset to drive the design and implementation of security controls focused on reducing the risk of attackers moving undetected between … you'll lead discovery, design, and implementation efforts, playing a vital role in reducing risk and progressing toward a Zero Trust framework. Key Responsibilities Lead the development of robust security architectures to detect, prevent and contain lateral movement between endpoints and workloads. Drive the discovery phase by analysing logs (via Azure Log Analytics) and auditing configurations to identify vulnerabilities … and insecure protocols. Define and present security architecture designs and risk reduction recommendations to Cyber Security Architecture and Engineering teams for sign-off. Collaborate with Linux and Windows SMEs to implement secure configurations and protocol controls. Architect and enforce network segmentation and access control models. Conduct security assessments, provide remediation strategies, and guide stakeholders in secure design More ❯

Lead Security Architect The Opportunity Albany Beck is partnering with a global Investment Bank to deliver a critical Protocol Analysis & Remediation programme. We’re looking for a Lead Security Architect with deep technical expertise and a strategic mindset to drive the design and implementation of security controls focused on reducing the risk of attackers moving undetected between … you'll lead discovery, design, and implementation efforts, playing a vital role in reducing risk and progressing toward a Zero Trust framework. Key Responsibilities Lead the development of robust security architectures to detect, prevent and contain lateral movement between endpoints and workloads. Drive the discovery phase by analysing logs (via Azure Log Analytics) and auditing configurations to identify vulnerabilities … and insecure protocols. Define and present security architecture designs and risk reduction recommendations to Cyber Security Architecture and Engineering teams for sign-off. Collaborate with Linux and Windows SMEs to implement secure configurations and protocol controls. Architect and enforce network segmentation and access control models. Conduct security assessments, provide remediation strategies, and guide stakeholders in secure design More ❯

As part of a large Cloud Migration programme my client is looking to hire and experienced Google Cloud Security Architect on a 1 year rolling remote working contract Role: Design and implement secure cloud architectures and strategies on GCP. Evaluate and recommend security tools, services and configurations to strengthen cloud security posture. Ensure compliance with security standards and frameworks such as ISO 27001, NIST, CIS, GDPR and others. Lead threat modelling, risk assessments, and security reviews for GCP infrastructure and applications. Define and enforce Identity and Access Management (IAM) policies, including roles, permissions and service accounts. Implement and maintain security monitoring, logging, and alerting tools (e.g., Cloud Logging, Cloud Monitoring, SCC). Skills … Extensive experience in cloud security architecture, with at least 3 years on Google Cloud Platform. Deep understanding of GCP services such as VPC, IAM, Cloud Armor, KMS, SCC, GKE and others. Strong knowledge of security protocols, authentication, authorisation, encryption and network security. Experience implementing Infrastructure as Code (IaC) with tools like Terraform or Deployment Manager. Familiarity with DevSecOps More ❯

Town Hall 160 Whitechapel Road LONDON E1 1BJ We are seeking a skilled and analytical Cyber Security Analyst to join our growing security team. In this role, you will be responsible for monitoring, analysing, and responding to security threats, supporting incident response efforts, and helping to strengthen the council's overall security posture. Key Responsibilities: •Monitor … and analyse security alerts and logs from various sources (e.g., SIEM and Defender). •Investigate and respond to security incidents, including malware infections, phishing attempts, and unauthorized access. •Conduct vulnerability assessments and assist in patch management and remediation efforts. •Support the implementation and enforcement of security policies, standards, and procedures. •Collaborate with wider IT colleagues and business More ❯

Security Engineer, AWS SOC Incident Response Job ID: Amazon Data Services UK Limited The Amazon Web Services Security Operations Center AWS-SOC Team manages security issues across the globe. The team is looking for a highly motivated, technically inclined individual to work as a Security Engineer. A successful candidate will need to embody our 16 leadership … will work from the LHR14, London SOC location. You need to be comfortable working in a dynamic technical, and at times, ambiguous environment. Key job responsibilities - Monitor and analyze security alerts from various sources to detect and respond to potential threats in real-time. - Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. … Conduct in-depth investigations of security incidents, perform forensic analysis, and coordinate incident response activities. - Maintain and optimize security information and event management systems and other security tools used in the SOC. - Collaborate with other teams to enhance threat intelligence, improve incident response procedures, and provide regular reports on security posture. A day in the life More ❯