City of London, London, United Kingdom Hybrid/Remote Options
ECR Global
vendor management, offshore 3rd party experience IT governance and controls Technical Expertise includes: Azure, Reporting Data lakes and data analytics tooling (Power BI or similar), SQL databases, GDPR, and bridging the technical-actuarial gap. Delivery Expertise includes: ability to execute end-to-end projects, either in-house or from consultancy engagement, with strong stakeholder collaboration. Requirements: Strong technical More ❯
enhance broker efficiency, customer experience, and operational effectiveness. Conduct workshops, backlog grooming, sprint planning, and sprint reviews with Agile teams. Perform impact analysis of regulatory changes (e.g., FCA requirements, GDPR, data security) on insurance brokerage processes and systems. Analyze data and customer feedback to identify trends, pain points, and opportunities for product improvements. Partner with UX / UI More ❯
and resilience. Embed policy-as-code, AI fairness, and safety frameworks into CI / CD pipelines and ML workflows. Ensure compliance with emerging regulations (EU AI Act, DORA, GDPR, NIST AI Framework). Act as a subject-matter expert on AI vendor risk, ethical use of generative AI, and open-source contribution management. Required Skills & Experience: 10+ years’ experience More ❯
Chiswick, England, United Kingdom Hybrid/Remote Options
4GLOBAL Limited
data-driven decision making transforms how communities engage with sport and activity, guiding more targeted investment and driving improved population health. To support this, we’ve built a GDPR-compliant, AI-powered data intelligence platform that hosts one of the world’s largest curated activity datasets, driving many of our insights and recommendations. Our work includes: Advising on More ❯
Farnborough, Hampshire, South East, United Kingdom
Sanderson Government and Defence
Assurance Coordinator or Delivery Team Security Lead roles JSP440, JSP604 / 453 & JSP490 MOD / GDS Secure by Design Principles Supplier Chain Assurance and Risks. Security related legislation (e.g. GDPR, PCI DSS, ICO requirements). Security Control Frameworks such as ISO 27001, NIST CSF and CIS Controls v8. HMG, NPSA and NCSC security policies, standards and guidance. Have experience building More ❯
website and follow Gain Theory on our social channels via LinkedIn and Twitter. Note: We rely on legitimate interest as a legal basis for processing personal information under the GDPR for purposes of recruitment and applications for employment. When you click "Submit Application", this will send any information you add to Gain Theory. Before you do this, we think it More ❯
website and follow Gain Theory on our social channels via LinkedIn and Twitter. Note: We rely on legitimate interest as a legal basis for processing personal information under the GDPR for purposes of recruitment and applications for employment. When you click "Submit Application", this will send any information you add to Gain Theory. Before you do this, we think it More ❯
Bristol, Avon, South West, United Kingdom Hybrid/Remote Options
ITS Recruitment
/ Defender, IT monitoring systems, and 3rd-party SOC, helping to ensure critical assets remain secure Manage supplier relationships, report on control effectiveness, and support compliance with ISO 27001, GDPR, and Cyber Essentials Plus Technology NIST, CIS, NCSC, Mitre Att&ck, Security Scorecard, M365 / Azure Security Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and More ❯
Aberdeen, Aberdeenshire, United Kingdom Hybrid/Remote Options
Orion Group
in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy / oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the UK CAF is desirable. Proven experience running compliance and assurance functions, Secure-by-Design reviews, and control testing (for design & operating effectiveness). More ❯
Aberdeen, City of Aberdeen, United Kingdom Hybrid/Remote Options
Orion Group
in information risk, security assurance or IT audit within regulated, safety-critical or industrial environments (energy / oil & gas preferred). Strong knowledge of NIST CSF, ISO 27001, UK GDPR and supplier assurance practices; familiarity with the UK CAF is desirable. Proven experience running compliance and assurance functions, Secure-by-Design reviews, and control testing (for design & operating effectiveness). More ❯
healthcare, life sciences, or telecom. · Strong understanding of Mobile Device Management platforms and eSIM technologies including global roaming solutions. · Familiarity with GxP compliance, and data privacy regulations (e.g., GDPR, HIPAA). · Excellent communication and stakeholder management skills. · Experience working in Agile environments and using tools like Jira, Confluence, or Azure DevOps. · Experience managing a team of Product Managers Bonus More ❯
healthcare, life sciences, or telecom. · Strong understanding of Mobile Device Management platforms and eSIM technologies including global roaming solutions. · Familiarity with GxP compliance, and data privacy regulations (e.g., GDPR, HIPAA). · Excellent communication and stakeholder management skills. · Experience working in Agile environments and using tools like Jira, Confluence, or Azure DevOps. · Experience managing a team of Product Managers Bonus More ❯
the Head of Information and Cyber Security will: Own and evolve the organisation's security strategy and roadmap, aligned to NIST. Oversee a small internal team (2 privacy /GDPR specialists). Manage all external 3rd party security contracts / relationships -SOC, vulnerability management, patching, and firewall operations. Oversee incident response, risk mitigation, and disaster recovery planning. Support delivery of More ❯
City of London, London, United Kingdom Hybrid/Remote Options
Sadler Recruitment
the Head of Information and Cyber Security will: Own and evolve the organisation's security strategy and roadmap, aligned to NIST. Oversee a small internal team (2 privacy /GDPR specialists). Manage all external 3rd party security contracts / relationships -SOC, vulnerability management, patching, and firewall operations. Oversee incident response, risk mitigation, and disaster recovery planning. Support delivery of More ❯
areas: security architecture, risk management, SOC operations, OT security, or identity & access management . Familiarity with industry frameworks and regulations (e.g., ISO 27001, NIST CSF, CIS Controls, NIS2, DORA, GDPR). Knowledge or experience in Gen AI security and its implications for businesses. Relevant certifications such as CISSP, CISM, or CompTIA Security+ (preferred). Experience delivering in a matrixed consulting More ❯
management efforts, ensuring stakeholders are kept informed about portfolio progress and key decisions. 5. Regulatory Compliance: Ensure that all projects within the portfolio adhere to relevant regulatory requirements (e.g., GDPR, Basel III, SOX, AML). Coordinate audits and provide evidence of portfolio compliance when required. Mandatory Skills Description: MUST HAVE: Project Management Office (PMO) experience in Banking at Portfolio level More ❯
management efforts, ensuring stakeholders are kept informed about portfolio progress and key decisions. 5. Regulatory Compliance: Ensure that all projects within the portfolio adhere to relevant regulatory requirements (e.g., GDPR, Basel III, SOX, AML). Coordinate audits and provide evidence of portfolio compliance when required. Mandatory Skills Description: MUST HAVE: Project Management Office (PMO) experience in Banking at Portfolio level More ❯
vulnerability management and patch management (Qualys or similar platforms). Understanding of Email Security platforms (e.g., Darktrace) and Security Awareness & Training platforms. Knowledge of security frameworks (ISO 27001, NIST, GDPR, etc.). Familiarity with SIEM, security system administration, and incident response. Understanding of SOC operations and monitoring. No formal qualifications required, although a security or IT-related certification (e.g., CompTIA More ❯
Sentinel for endpoint visibility and security. Leverage Azure AD Conditional Access and Identity Protection for secure access. Collaborate with InfoSec to enforce endpoint security policies. Ensure compliance with GDPR, ISO 27001, and internal governance. Lead initiatives to improve employee digital experience. Manage service desk operations and ITIL-based support models. Monitor and optimise Digital Experience Monitoring (DEM) tools. Administer More ❯
analytics (e.g., TensorFlow, PyTorch, Scikit-learn). Exceptional stakeholder management skills, comfortable engaging with C-suite executives and senior investors. Strong knowledge of data governance and compliance frameworks (GDPR, CCPA). Thrive in fast-paced, dynamic environments, managing multiple projects simultaneously. Please note: This role is unable to offer VISA sponsorship. More ❯
analytics (e.g., TensorFlow, PyTorch, Scikit-learn). Exceptional stakeholder management skills, comfortable engaging with C-suite executives and senior investors. Strong knowledge of data governance and compliance frameworks (GDPR, CCPA). Thrive in fast-paced, dynamic environments, managing multiple projects simultaneously. Please note: This role is unable to offer VISA sponsorship. More ❯
Shefford, Bedfordshire, South East, United Kingdom
Stackstudio Digital Ltd
with designers and back-end developers to ensure seamless integration of front-end and back-end functionalities. Optimize mobile applications for performance and responsiveness . Ensure security by design , GDPR compliance, and accessibility standards in front-end code delivery. Deploy apps to iOS and Google Playstore . Apply DevOps concepts and use Azure ADB2C and cloud services (API management, App More ❯
in transit (mTLS) and at rest (AES-256). Compliance-as-Code & Observability Collaborate with legal and product teams to translate complex global privacy laws (eg, Germany's GDPR, South Korea's PIPA, United Arab Emirates's PDPL) into concrete engineering logic. Build and maintain the Policy Engine that enables our platform to be jurisdiction-aware, dynamically managing dataMore ❯
