20 of 20 Security Posture Jobs in Scotland

We are currently looking for a WAF & Application Security SME to join an existing team at one of our retail banking clients. The role will be working on the enhancement of a Web Application Firewall across multiple solutions and applications and will be pivotal in crafting, testing, and implementing advanced WAF uplifts. This role involves a strong focus on … WAF Efficacy and security posture uplift by crafting efficacy testing custom rules and configurations; additionally, the role will cover WAF tuning via detailed log analysis, false positive detection and mitigation, and making tuning and configuration recommendations. The ideal candidate will have experience in SOC or CSIRT and AppSec or Ethical Hacking for in-depth log analysis and have … with at least three major WAF vendors such as Akamai, F5, AWS, GCP, etc. Key Responsibilities Identification and crafting of complex custom WAF rules & features to mitigate MVP and security posture gaps Crafting efficacy testing for baseline & custom rules and features and integrating testing in the automation pipelines Providing SME support for other security testing such as More ❯

The team you'll be working with: Senior SOC Analyst We are currently recruiting for a Senior SOC Anslyst to join our growing Security Operations Centre business. This role will be based in Glasgow, and requires a willingness to work in a job that involves 24/7 operations or on call, this will probably be 4 days on … days off in shift patterns. About Us NTT DATA is one of the world's largest Global Security services providers with over 7500 Security SMEs and Integration partner to many of the worlds most recognised Security Technology providers. We strive to hire exceptional, innovative, and passionate individuals who want to grow with us. In a constantly changing … be doing; The primary function of the Senior SOC Analyst is to manage any incidents escalated by the SOC Analyst (L1 & L2) and undertake the detailed investigation of the Security Event. The Senior SOC Analyst shall be able to look at all the evidence available and support the client on the appropriate action to contain and remediate any security More ❯

alert: Location: UK - Manchester, UK - Cardiff, UK - Edinburgh, UK - London, UK - Milton Keynes, UK - Mobile England, UK - Nottingham, UK - Reading Job-ID: 214652 Contract type: Standard Business Unit: Cyber Security Life on the team Computacenter is growing our penetration testing capability and we are looking for an experienced penetration tester to support the delivery of vulnerability assessment and penetration … you will be responsible for identifying vulnerabilities in systems, applications, and networks through a variety of penetration testing methodologies. Your expertise will play a critical role in strengthening our security posture and safeguarding our valuable assets from cyber threats. We are keen to develop our own people and will look at individuals, you will be involved in so … many business projects whilst working with passionate Cyber Security Professionals. If you are looking for a team that offers development and flexibility look no further and apply today What you'll do A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications More ❯

Service Automation Platform and has a proven track record of helping MSPs standardize and automate the setup and delivery of IT services to achieve true scalability. The Senior Application Security Engineer plays a critical role in enhancing our application security posture by conducting advanced security assessments, leading security initiatives, and collaborating with development teams to … integrate security into the software development lifecycle. The position plays a key role in identifying and mitigating security vulnerabilities to protect our applications and data. This role is based in our Edinburgh hub. What You'll Do Assist in maturing organizational processes that drive complex security efforts for internal teams and external partners. Develop and implement workflows … to automate security testing/vulnerability detection within the software development lifecycle. Advocate for security as a subject matter expert across multiple organizations, holding discussions on security topics and enhancing awareness of application security objectives across the organization. Collaborate with engineering teams by providing well-researched security advice to demonstrate vulnerabilities and provide secure development More ❯

Senior Manager, AI Security page is loaded Senior Manager, AI Security Apply locations Edinburgh Manchester Bristol Harbourside Leeds Wellington Place time type Full time posted on Posted Yesterday time left to apply End Date: August 21, 2025 (13 days left to apply) job requisition id 139867 End Date Wednesday 20 August 2025 Salary Range … flexible working - click here for more information on flexible working options Flexible Working Options Hybrid Working, Job Share Job Description Summary . Job Description JOB TITLE: Senior Manager, AI Security SALARY: £90,440 - £106,400 LOCATION: Edinburgh, Manchester, Leeds or Bristol HOURS: Full time WORKING PATTERN: Hybrid, 40% (or two days) in an office site About this opportunity At … Lloyds Banking Group, we're moving to the next stages of our digital transformation, and it's our job within the Chief Security Office (CSO) to ensure that we keep our customers, colleagues and assets safe from threat. The CSO's Security Data Services lab have a fantastic opportunity for an experienced and dynamic Senior Manager for AI More ❯

The Chief Information Security Office (CISO) is a global team supporting the confidentiality, integrity, and availability of the firm's information assets across Europe, Asia, and the Americas. It implements security solutions to meet business needs and ensures trustworthiness of customer data and infrastructure. The Principal Security Architect is a cybersecurity expert collaborating with the CTO and … CIOs to design and govern security patterns for application development, ensuring security is integrated into technology infrastructure and business applications. This role requires cross-departmental collaboration within the organization to embed security as an emergent property of design decisions made across technology teams. The Principal Security Architect will lead a team of architects to review solutions … ensuring security controls are incorporated and best practices are followed, particularly in infrastructure projects like cloud environments. The role involves overseeing efforts to identify requirements, evaluate technologies, and support product development to address security challenges globally. Purpose of the role Develop, implement, and manage the bank's cloud and security infrastructure, including security administration processes across More ❯

JOB TITLE: Senior Manager, AI Security LOCATION: Edinburgh, Manchester, Leeds or Bristol HOURS: Full time WORKING PATTERN: Hybrid, 40% (or two days) in an office site About this opportunity At Lloyds Banking Group, we're moving to the next stages of our digital transformation, and it's our job within the Chief Security Office (CSO) to ensure that … we keep our customers, colleagues and assets safe from threat. The CSO's Security Data Services lab have a fantastic opportunity for an experienced and dynamic Senior Manager for AI Security to lead our efforts in securing AI systems and applications. This role will build and define strategy focusing in 3 areas: safe adoption, understanding attacker use, and … using to tackle security challenges. The ideal candidate will have a deep understanding of AI technologies and cybersecurity, with a consistent track record in leading teams and projects in this domain. What You'll Do Lead and shape AI security team, providing direction, mentorship, and support. Develop and implement comprehensive security strategies for AI systems, including risk More ❯

Principle Network & Cyber Security Engineer - 12 Months Contract Hybrid 2 days Tuesday & Wednesday other 3 remote OUTSIDE OF IR35 In order of preference for Location - Aberdeen, Staines, Glasgow or Reading Applicants must be able to pass HMG Baseline Personnel Security Standard (BPSS) check. Principal Network & Cyber Security Engineer with experience in Automation & Control Network design & implementation to … join my client's Systems Integration team. As a Principal Network & Cyber Security Engineer, you will assist in providing cyber security, networking, secure architectures, solutions, vulnerability & risk assessments, technologies & procedures to support projects & clients. Your role involves discovering vulnerabilities & risks in networks, software systems & data centers through ongoing vulnerability scans, monitoring network data, & ensuring hardware & software applications are … across IT & Operational Technology (OT) environments, securely pushing OT data into IT systems for transformation. They design & integrate operational technology to meet business, production, & operational goals. Principal Network & Cyber Security Engineer responsibilities Provide expertise in Network Design, implementation, & testing for networks supporting Automation & Control Systems Solutions Identify/define the network requirements for Automation & Controls solutions Develop Detailed Network More ❯

Senior Cyber Security Engineer - 12 months Contract Hybrid 2 days Tuesday & Wednesday, other 3 remote OUTSIDE OF IR35 Preferred Locations: Aberdeen, Staines, Glasgow, or Reading Applicants must be able to pass the HMG Baseline Personnel Security Standard (BPSS) check. The Senior Cyber Engineer will support project implementation aligned with company objectives, including continuous improvement of margin, customer satisfaction … environments to support business, production, and operational goals. Key Objectives: Assess the cybersecurity robustness of architectures, technologies, & procedures in client facilities. Design solutions that meet client requirements and implement security measures (e.g., antivirus, patch management, insider threat protection, incident response, compliance). Conduct vulnerability assessments & audits on client systems & network devices, considering OT sensitivities. Provide expertise in network design … data communication, servers, VMs, switches, firewalls) and testing procedures (FAT). Prepare material requisitions & contribute to technical bid evaluations. Review vendor drawings & consolidate feedback from other disciplines. Undertake Cyber Security Risk Assessments and advise on mitigation actions. Support evaluation of clients' security posture, identifying vulnerabilities & areas for improvement. Stay updated on security trends, threats, & best practices. More ❯

business applications. We have a passion for using technology to solve business problems, working in partnership with our clients to help in achieving their goals. The Sword IACS Consulting Security team provide consultancy services to help our customers understand the existing security posture of their Operational Technology (OT) environment, identifying where potential gaps or vulnerabilities exist while … introducing appropriate security improvements and ways of working. Description of Duties: The candidate should have excellent communication skills, both written and oral, and the ability to interact effectively with fellow team members and our customers Customer interaction can be from executive level down to highly technical analysts working in structured and unstructured situations Participation in control system cyber security … audits and risk assessments Inventory gathering on offshore and onshore industrial locations Creation and interpretation of OT network topology diagrams and data flows Creation and installation of baseline cyber security controls Creation of relevant customer focused processes and procedures based on industry standards (e.g., IEC62443, OG86 etc.) Implementation of defined cyber security controls on customer systems Deployment of More ❯

Harvey Nash's Client is recruiting for a SIEM/SOAR Content Developer on a 12 month contract. Main Responsibilities You will join a team of technologists and cyber-security professionals that are dedicated to improving the coverage, quality and automation of cyber-security detection and response Develop playbooks and automation in SOAR with analysts to improve efficiency … of the SOC. Develop analytics in Splunk (SPL) or Elastic Search (EQL) to detect actionable security alerts. Design and develop integrations to connect to internal and external services. Work alongside incident response analysts to automate the response to security incidents and improve security response coverage. Perform analysis of security posture including recommending improvements to controls … and processes. Automate auxiliary team processes with SOAR playbooks. Monitor and support SIEM and SOAR platforms to ensure security and stability of SOC infrastructure. Key Skills Cyber Response Platforms is looking for an experienced (5+ years) cyber-security professional to join their team as a SIEM/SOAR content developer. Our ideal candidate has hands-on experience in More ❯

an office site About this opportunity At Lloyds Banking Group, we're moving to the next stages of our digital transformation, and it's our job within the Chief Security Office (CSO) to ensure that we keep our customers, colleagues and assets safe from threat! The Lead Infrastructure Engineer will lead a team of Engineers within the Security Operations Lab, being responsible for one or more technical products. This role is accountable for infrastructure and security strategy, as well as the technical product roadmaps across the Data Loss Management (DLM) feature team. A key focus will be on improving Data Loss Prevention (DLP) and Data Security Posture Management (DSPM) capabilities, ensuring alignment with business … collaboration is crucial for building a resilient, scalable, and proactive data loss prevention strategy! What We're Looking For Strategic Leadership and Technical Direction Define and implement infrastructure and security strategies aligned with business and compliance objectives. Develop and maintain technical roadmaps for DLM, with a focus on DLP and DSPM capabilities. Collaborate closely with the DLM Product Owner More ❯

an office site About this opportunity At Lloyds Banking Group, we're moving to the next stages of our digital transformation, and it's our job within the Chief Security Office (CSO) to ensure that we keep our customers, colleagues and assets safe from threat! The Lead Infrastructure Engineer will lead a team of Engineers within the Security Operations Lab, being responsible for one or more technical products. This role is accountable for infrastructure and security strategy, as well as the technical product roadmaps across the Data Loss Management (DLM) feature team. A key focus will be on improving Data Loss Prevention (DLP) and Data Security Posture Management (DSPM) capabilities, ensuring alignment with business … collaboration is crucial for building a resilient, scalable, and proactive data loss prevention strategy! What We're Looking For Strategic Leadership and Technical Direction Define and implement infrastructure and security strategies aligned with business and compliance objectives. Develop and maintain technical roadmaps for DLM, with a focus on DLP and DSPM capabilities. Collaborate closely with the DLM Product Owner More ❯

Senior Network & Cyber Security Engineer - 12 Months Contract Hybrid: 2 days in the office (Tuesday & Wednesday), other 3 days remote Outside IR35 Preferred locations: Aberdeen, Staines, Glasgow, or Reading Applicants must be able to pass the HMG Baseline Personnel Security Standard (BPSS) check. The Senior Network & Cyber Security Engineer will support project implementation aligned with company objectives … secure, integrating IT and Operational Technology (OT) systems to support business and operational goals. Key Objectives: Assess cybersecurity architecture robustness within customer facilities. Design and implement solutions to mitigate security risks, including antivirus, patch management, insider threat protection, incident response, and compliance. Conduct vulnerability assessments and audits on client systems and network devices, considering OT sensitivities. Provide expertise in … by applying standards and principles. Develop detailed network architecture and data flow diagrams. Create network schedules, testing procedures, and material requisitions. Review vendor drawings and consolidate feedback. Conduct Cyber Security Risk Assessments and advise on mitigation actions. Evaluate client security posture, identify vulnerabilities, and suggest improvements. Stay updated on security trends, threats, and best practices. Skills More ❯

ITC Infotech is looking for a Cyber Security Analyst to join our team in Edinburgh, UK. Your X-Factor Work ethic - You are a consummate professional. Aptitude - You have an innate capacity to transition from project to project without skipping a beat. Communication - You have excellent written and verbal communication skills for coordination across projects and teams. Impact - You … have the drive to succeed paired with a continuous hunger to learn. Leadership - You are trusted, empathetic, accountable, and empower others around you. Working as a member of Information Security team, the Cyber Cloud Monitoring Analyst is part of the global team that is responsible for providing 24/7 real-time monitoring of the firm's cloud security posture within Azure, AWS, and CGP. This team is also responsible for incident identification, documentation, remediation and tracking for all cloud services. More specifically, the Supplier Personnel will support the global Cyber Cloud Monitoring function and have following key responsibilities: Perform investigation and escalation for complex or high severity security threats or incidents and handles and analyse More ❯

capabilities, and ensure services are robust, maintainable, and future-ready. Oversee the administration of our platforms, implementing governance and risk controls such as data loss prevention, environment strategy, and security policies. Proactively assess our security posture, ensuring alignment to key industry benchmarks such as CIS. Lead the technical approvals board for the Digital Workplace service function. Interpret …/DSC via Terraform to manage M365 & EntraID. Azure Virtual Desktop (inc Networking) Defender for Endpoint experience with vulnerability management, EDR, ASR, Exposure Management & creating action plans to improve security posture. We are proud to be a Disability Confident Committed employer. If you have a disability and would like to apply to one of our UK roles under the More ❯

capabilities, and ensure services are robust, maintainable, and future-ready. Oversee the administration of our platforms, implementing governance and risk controls such as data loss prevention, environment strategy, and security policies. Proactively assess our security posture, ensuring alignment to key industry benchmarks such as CIS. Lead the technical approvals board for the Digital Workplace service function. Interpret …/DSC via Terraform to manage M365 & EntraID. Azure Virtual Desktop (inc Networking) Defender for Endpoint experience with vulnerability management, EDR, ASR, Exposure Management & creating action plans to improve security posture. We are proud to be a Disability Confident Committed employer. If you have a disability and would like to apply to one of our UK roles under the More ❯

in design and administration of Intune, Entra, Windows Desktop and core infrastructure services. Key Responsibilities Implement and administer changes across Aberdeen's EUC/Desktop estate. Ensure stability and security of the EUC Global Desktop environment through effective assurance and assessment of our Windows desktop, Microsoft M365 tenant and other 3rd party software Collaborate with operational teams to proactively … initiatives. Implementing and maturing core controls/activities that enable Windows OS & M365 evergreen changes, aligning to Aberdeen's EUS risk control framework and regulatory requirements. Focus on desktop security measures, reducing the attack surface, improving security posture and implementing desktop hardening techniques (ie CIS). About the Candidate The ideal candidate will possess the following: The … are required. Intune, SCCM, Entra ID, Active Directory, Group Policy for endpoint management. Experience deploying evergreen change for OS and M365. Experience deploying Autopilot at scale. Endpoint management and Security tooling with a focus on Microsoft Defender (including AV, EDR, ASR). Application provisioning/management via Intune, SCCM & Azure - experience with App Attach also preferable. Experience implementing and More ❯

and integrate Aruba ClearPass for network access control, policy enforcement, and guest access management. Documentation and Reporting: Maintain comprehensive network documentation and prepare regular reports on network performance and security posture. Collaboration and Leadership: Collaborate with cross-functional teams and provide technical leadership and mentorship to junior engineers. Required Skills and Qualifications: Certifications: Aruba Certified Mobility Professional (ACMP) or … Aruba wireless networks, with specific expertise in ClearPass. Technical Skills: In-depth knowledge of Aruba wireless controllers, access points, and ClearPass policy manager. Strong understanding of network protocols and security standards (e.g., TCP/IP, VLANs, 802.1X, RADIUS). Experience with Visual RF Ekahau survey and post-deployment surveys. Experience with network monitoring tools and troubleshooting methodologies. LAN/ More ❯

a copy of your CV by email to . The role: Are you a proactive and solution-focused IT professional with a passion for improving internal operations and bolstering security? We're looking for an enthusiastic IT Administrator to join our team and help us grow! In this role, you'll be instrumental in enhancing our IT infrastructure and … overall security posture. We're seeking someone with a growth mindset who is eager to tackle challenges and implement effective solutions. You'll be the first point of contact for staff needing help with day-to-day technical issues. From troubleshooting hardware and software problems to managing user accounts and access requests, you'll play a key role in … role, the responsibilities may evolve. Therefore, it is crucial that you are adaptable and proactive in identifying necessary changes. Your key responsibilities will include: Proactive analysis of IT and security logs to identify potential issues and vulnerabilities. Hardware setup and configuration for new and existing employees. Software installation and troubleshooting across our systems. Maintaining accurate and up-to-date More ❯