26 to 45 of 45 Information Security Jobs in the North West

support transparency and accountability. Mentor and develop junior compliance colleagues, fostering a culture of continuous improvement. Contribute to maintaining ISO 27001 certification and other relevant standards (e.g. PCI DSS, Information Security). Lead business continuity planning and ensure ongoing operational resilience. Manage corporate insurance coverage and relationships with insurers. All team members are required to complete mandatory e … Confident communicator, able to simplify complex issues and influence at senior levels. Experience leading compliance monitoring, audits, investigations, and remediation initiatives. Familiarity with ISO 27001 , PCI DSS , and other information security frameworks. Experience managing business continuity and insurance programmes. Leadership capability with a track record of mentoring others and representing compliance at Board or senior management forums. Resilient More ❯

Contribute to the Internal Capital Adequacy and Risk Assessment process, including scenario workshops. What we’re looking for: Strong understanding of IT and technology risk areas such as cyber security, information security, IT resilience, disaster recovery, business continuity, data governance, privacy, change, and third party risk. At least five years’ experience in a risk focused role. Knowledge More ❯

GRC Specialist - PCI-DSS - Manchester We're seeking an experienced GRC Specialist with excellent cyber security, GRC & PCI-DSS payments experience to join our client's growing Cyber Security team. They need somebody who has excellent knowledge in PCI-DSS along with good governance, risk and compliance experience and familiarity with other standards. Experience Required: At least … years in a Cyber security & GRC role Be a PCI-DSS expert around payments ISO 27001and GDPR Knowledge of Risk Management, including risk identification, assessment, and mitigation techniques Good experience around Audits and compliance Any penetration testing experience would be a bonus You'll work closely with both internal and external stakeholders across Legal, Risk & Audit, Procurement, and IT … standards such as ISO 27001, NIST CSF, and GDPR. The position combines both strategic oversight and hands-on delivery, providing clear visibility of risks and driving measurable improvements in security maturity. This role is majority onsite in Central Manchester but there is flex on start and finish times. They have just opened their brand-new UK based headquarters in More ❯

As a Cyber Security Apprentice, you’ll play a vital role in protecting our organisation’s digital assets while developing your skills in one of the most in-demand areas of technology. Under the guidance of experienced professionals, you’ll learn how to detect, prevent, and respond to cyber threats while supporting the wider IT and security teams. … Role Assist in monitoring and maintaining the organisation’s information security systems and networks. Help identify, investigate, and respond to potential security incidents. Support vulnerability assessments, penetration testing, and system audits. Learn to implement and maintain firewalls, antivirus software, and other security tools. Assist in maintaining and updating security policies, procedures, and documentation. Help with … user access control, password management, and account provisioning. Participate in security awareness training initiatives and promote best practices across the business. Support compliance efforts related to frameworks such as ISO 27001, GDPR, or NIST. Collaborate with IT and other departments to ensure secure configuration and patch management. Training Training will take place online via weekly lessons through Velocity Academy. More ❯

Cyber Security Analyst (Junior/Intermediate) Greater Manchester - fully on-site Permanent £30,000 - £40,000 plus benefits Please note: This is an office-based role, 5 days per week and the company is moving from Blackburn to Bolton early next year. This role does not provide sponsorship. About the Role We are working with a leading global organisation … seeking a Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about cyber, incident response and proactive threat management within a dynamic, fast-paced environment. This is a junior/intermediate security analyst position, and could be ideal for someone with some practical experience of … SOC tools to break further into the industry, or to shape their existing skillset using the Microsoft Defender stack. Key Responsibilities Daily monitoring and analysis of security incidents, ensuring accurate logging and escalation. Lead remediation efforts for identified vulnerabilities in collaboration with technology teams. Respond to incidents alongside the Head of Information Security Work with the MSSP More ❯

Cyber Security Analyst (Junior/Intermediate) Greater Manchester - fully on-site Permanent £30,000 - £40,000 plus benefits Please note: This is an office-based role, 5 days per week and the company is moving from Blackburn to Bolton early next year. This role does not provide sponsorship. About the Role We are working with a leading global organisation … seeking a Cyber Security Analyst to help strengthen its security posture and safeguard critical systems. This is an excellent opportunity for someone passionate about cyber, incident response and proactive threat management within a dynamic, fast-paced environment. This is a junior/intermediate security analyst position, and could be ideal for someone with some practical experience of … SOC tools to break further into the industry, or to shape their existing skillset using the Microsoft Defender stack. Key Responsibilities Daily monitoring and analysis of security incidents, ensuring accurate logging and escalation. Lead remediation efforts for identified vulnerabilities in collaboration with technology teams. Respond to incidents alongside the Head of Information Security Work with the MSSP More ❯

receives developmental guidance in consulting skills, emotional intelligence, resilience, and self-awareness to allow everyone to grow and develop personally, at their own pace. The need for world-class security and privacy has never been greater.We work with our clients to better understand and manage their security risks, architect and build secure infrastructure and solutions, and protect live … services. In a rapidly changing world where information has a significant value, supply chains are increasingly interconnected. In a world of uncertainty when doing business on a global basis, the resilience of operations has become a board level issue. You will provide our clients with a full spectrum of services, covering proactive and reactive Cyber Incident Response (CIR) Services. … network, preventing business-disrupting damage from occurring. With a unique collection of skills, methodologies, and strategic award-winning vendor relationships, we can do whatever it takes - from improving the security of a single component to delivering a holistic security and privacy program. As a Cyber Incident Response Advisory and Incident Management Senior Manager or Associate Director, you will More ❯

confidence. Your impact is visible: safeguarding revenue, supporting market expansion, and enhancing company reputation for digital trust. My client is a leading Telecoms provider, looking for an experienced Lead Security Compliance Manager - responsible for leading the ongoing management, improvement, and compliance of the Information Security Management System (ISMS) across a complex technology environment. Acting as the go … to person for security certifications (ISO27001, PCI, Cyber Essentials, Telecoms Security Act (TSA), you'll provide assurance to customers, regulatory bodies, and internal teams that robust standards and controls are met every day. Key Responsibilities Manage and maintain compliance with all required security certifications (ISO27001, PCI, TSA, Cyber Essentials). Oversee responses to incoming customer security questionnaires and RFPs, supporting audits and regulatory engagements. Drive security awareness and training activities across the business. Foster strong relationships with Technology, IT, Security, and Internal Audit teams. Continually improve the ISMS and compliance regime, including mergers/acquisitions. Analyse and interpret emerging compliance standards; bridge any gaps to maintain alignment. Lead preparation and coordination of external More ❯

Work with top professionals, tackle dynamic risks, and deliver clear guidance that makes a real difference. If you're experienced in security frameworks like ISO27001 or NIST and want to shape security strategies in a fast-paced environment, we'd love to hear from you. My client is a leading Telecommunication Business, looking for a skilled Security Risk Manager to help strengthen their organisation's approach to information security, risk mitigation, and compliance. In this role, you'll work alongside talented teams, evaluating 3rd party supplier security, identifying threats, and implementing effective controls to keep data and assets protected. Your responsibilities will include: Conducting risk assessments and supplier due diligence across a range … of projects. Communicating security risks clearly to business stakeholders so they can take informed action. Ensuring compliance with industry regulations and security standards (ISO27001, NIST, GDPR). Developing and maintaining policies, procedures, and audit practices that improve overall security posture. Responding proactively to emerging risks in a fast-changing landscape. If you have a solid background in More ❯

Play a key role in managing supplier security risks with national regulations. Hybrid role (1 - 3 days onsite) with competitive salary and benefits About Our Client A major UK-based technology and infrastructure provider offering connectivity, cloud, and security services. The organisation operates across several UK and international sites. Job Description Conduct and maintain supplier security risk … assessments and due diligence activities. Review and report on supplier security declarations in line with national telecom regulations. Provide strategic advice on managing supplier related risks and compliance gaps. Govern relationships with critical suppliers to ensure alignment with security expectations. Support internal and external audits (e.g. ISO27001, TSA, financial audits). Communicate risks clearly to non-technical stakeholders … to support informed decision-making. Monitor and interpret emerging compliance standards and apply them to supplier oversight. The Successful Applicant Extensive experience in security risk management, particularly in third party and supplier contexts. Strong understanding of frameworks such as ISO27001, ISO27005, SOC2, and NIST. Holds certifications such as CISSP, CISM, or CRISC. Telecoms sector experience is a plus. Skilled More ❯

This is a position within a security risk team, focused on assessing and managing third-party risks. The role involves conducting supplier due diligence, reviewing compliance declarations, and supporting audit readiness across multiple frameworks. Reporting to Head of GRC, this is a FTC role with hybrid working in Manchester Client Details A major UK-based technology and infrastructure provider … offering connectivity, cloud, and security services. The organisation operates across several UK and international sites. Description Conduct and maintain supplier security risk assessments and due diligence activities. Review and report on supplier security declarations in line with national telecom regulations. Provide strategic advice on managing supplier-related risks and compliance gaps. Govern relationships with critical suppliers to … ensure alignment with security expectations. Support internal and external audits (e.g. ISO27001, TSA, financial audits). Communicate risks clearly to non-technical stakeholders to support informed decision-making. Monitor and interpret emerging compliance standards and apply them to supplier oversight. Profile Extensive experience in security risk management, particularly in third-party and supplier contexts. Strong understanding of frameworks More ❯

IAM Engineer plays a key role in developing, implementing, and maintaining advanced solutions that protect an organisation’s systems and sensitive information. This position is central to strengthening digital security, enabling innovation, and ensuring compliance across all business operations. Key Responsibilities Provide expert knowledge and guidance on security systems, cryptographic engineering, and identity management best practices. Design, develop … Manage and protect secrets by ensuring secure generation, storage, and usage across all digital platforms. Conduct regular audits to identify vulnerabilities, assess risks, and support swift response to potential security threats. Drive innovation by identifying and implementing advancements in cryptographic technologies and techniques. Collaborate closely with developers, architects, and security teams to align cryptographic and IAM solutions with … business goals, regulatory standards, and internal security policies. Build, deploy, and maintain robust Identity and Access Management (IAM) systems and frameworks that support organisational security objectives. Leadership and Collaboration Expectations Provide expert consultation, shaping policies and operational decisions while ensuring effectiveness across teams and business divisions. Lead a high-performing team, setting clear objectives, coaching for excellence, and More ❯

professional training and development for our employees and we have some very experienced Data Engineers here that you can learn from Qualifications and skills Required Ideally a degree in Information Systems, Computer Science, Information Technology, Software Engineering or similarly related and quantitative discipline. AWS .. has used AWS commercially Circa 3 years of commercial experience working primarily in … an AWS Cloud environment using approaches/tooling like ours (see technical skills), delivering scalable, performant, reliable solutions. Strong data reliability/observability, data governance and information security credentials. What technical skills are required? ETL/ELT & Data Transformation: Amazon Redshift (query tuning, distribution/sort keys, workload management) Data modelling (normalisation, dimensional) dbt (modeling, testing, documentation, deployment … Airflow (DAG design, scheduling, monitoring, scaling) Best practices for dependency management, retries, and alerting Cloud & Serverless: AWS Lambda (Python-based serverless pipelines, event-driven processing) IAM roles, policies, and security best practices Programming & Scripting: Python (data processing, automation, testing) SQL (advanced query writing and optimization) Data Engineering Best Practices: CI/CD for data pipelines (Git, GitHub Actions, etc. More ❯

them have proven experience ofmodern software development approaches such as automated testing, test driven development, continuous integration, pair programming, code review and version control have understanding of common web security risks such as OWASP Top 10, and the corresponding mitigations enjoy researching and learning new programming tools and techniques and sharing their skills with others have experience working in … others, or generated by artificial intelligence, as your own) applications may be withdrawn and internal candidates may be subject to disciplinary action. Please see our candidate guidance for more information on appropriate and inappropriate use. In the event we receive a high volume of applications, we will conduct the initial sift against the lead criteria which is: have experience … experience and specialist technical skills against the following skills defined in the Government Digital and Data Capability Framework for theSenior Developer role: Availability and capacity management Development process optimisation Information security Modern standards approach Programming and build (software engineering) Prototyping Service support Systems integration Recruitment Timeline Sift completion: 21st November 2025 Phone and technical tests: starting from 1st More ❯

advice to our consultants and actively enable the development of the BA community at Opencast. Ensure that work is carried out in accordance with Opencast's quality, environmental, and information security policies and procedures, as well as applicable customer policies, standards, and procedures while working on client. Applicants must be based within a 40-mile radius of Newcastle … Manchester or Leeds, as the role requires close collaboration with our teams and regular travel. Applicants must either currently hold active Security Clearance (SC) or meet the eligibility criteria to obtain it. Eligibility requires UK citizenship, continuous residence in the UK for the past five years, and no single absence from the UK exceeding 28 consecutive days. Essential experience More ❯

As aHead of Delivery Management you'll: manage a complex roadmap and backlog for nation scale products manage dependencies across a range of areas including Legal, Data Protection and Information Security, as well as across GDS, and with other government departments, including feeding into other programmes and portfolios confidently build strong relationships with key stakeholders across GDS and More ❯

teams deliver with autonomy in often complex client stakeholder groups and governance structures. You'll ensure that work is carried out in accordance with Opencast's quality, environmental, and information security policies and procedures, as well as applicable customer policies, standards, and procedures while working on client. Essential experience You're comfortable working on complex or multiple projects. More ❯

a global technology leader as a Lead GRC Specialist, driving governance, risk, and compliance strategy across the business. You’ll lead audits, influence policy, and strengthen the organisation’s security and compliance posture. Key Responsibilities Lead and enhance governance, risk, and compliance frameworks. Manage internal/external audits and risk assessments. Ensure compliance with PCI DSS, ISO 27001, GDPR … and NIST. Develop and improve policies, procedures, and vendor risk management. Support incident response and promote a culture of security awareness. Experience & Skills Proven leadership in GRC or Information Security. Strong knowledge of ISO 27001, PCI DSS, GDPR, NIST. Experience managing audits and compliance programmes. Excellent communication and stakeholder management. Hands-on technical understanding of security controls. … Desirable: Certifications: CISM, CRISC, ISO 27001 Lead Auditor (or equivalent). Experience with cloud security (AWS/Azure) and enterprise-scale environments. Benefits Salary up to £75,000+ (DOE) Private healthcare, pension & income protection Life assurance & wellbeing support Cycle-to-work & EV schemes Career growth in a global, people-focused company More ❯

Incident Management : Implement comprehensive monitoring solutions and lead incident response efforts to maintain Platform product reliability and performance. Cross-Team Collaboration : Work closely with Product Engineering, Digital Workspace and InfoSec teams to ensure seamless integration and operation of Platform products and services, promoting best practices and knowledge sharing. Mentorship and Development : Mentor more junior engineers, providing guidance, knowledge transfer, and … as Terraform, OpenTofu, Terragrunt, CloudFormation, or similar. Deep understanding of CI/CD tools and pipelines, such as GitLab CI, Github Actions, Jenkins or similar. Solid understanding of networking, security, and identity management within AWS and Kubernetes environments. Current or previous experience with a modern programming/scripting languages such as C#, Go, Python, TypeScript, or Java. Advanced scripting More ❯

role, your leadership will impact every part of the engineering lifecycle, from team structure and Agile maturity to DevSecOps and emerging technology adoption. You will work closely with Product, InfoSec, Operations, and Delivery teams, playing a key role in driving innovation, improving delivery predictability, and scaling high-quality solutions aligned with business needs. Key Responsibilities Partner with the CTO to … of working to improve quality, consistency, and delivery confidence. Define team structures, roles, and skill sets using clear job specifications and skills matrices. Champion a DevSecOps culture and embed security, compliance, and scalability in all delivery processes. Set standards for technical excellence, including architecture, testing, and release governance. Lead major strategic initiatives including platform re-architecture and tooling modernisation. More ❯