1 to 25 of 432 Information Security Jobs in the UK

embark on an exciting new career adventure? If you've a strong Cyber background and are looking for a new challenge we're on the hunt for a Technical Information Security Manager who'll work as part of our Information Security governance and oversight team. This technically focused role includes delivering our Information Security services (such as consultancy, assurance reviews and risk management) and providing governance and oversight across the business to effectively manage Information Security and Cyber risk. We're big on working flexibly - you'll spend most of your time working from home, with the occasional visit to the office, but of course, it's your choice - if you … A strong understanding and background in cyber and IT technologies and controls, as well as how they are designed and operate to manage and reduce risk. Experience in Microsoft security technologies, including endpoint and Azure. Risk and Governance : Ability to take high-level frameworks and security standards and translate them into more detailed control requirements. Act as a More ❯

Job Description Purpose of the role To support the Chief Information Security Officer in managing and reporting the Information Security Risks faced by Technology Services (TS) in delivering AJ Bell's systems and services. This role is responsible for playing a lead role in designing and implementing improvement to the Cybersecurity risk management tools, systems, and … processes. Key to this is assisting and supporting the Information Security team to drive continual improvement through innovation, automation and integration of its tools and processes. The key responsibilities of the role are: Lead the delivery and maintenance of technical enterprise security solutions for (but not limited to) the following areas: End Point Protection, Cloud Security, Network Security, DevOps, Security Monitoring & Remediation. Design and implementation of enterprise security technology controls and platforms, following secure infrastructure engineering best practices. Lead the Identification, evaluation, and requirements collection for new enterprise security tools Driving the adoption of new tools and techniques, ensuring adequate operational handover is in place and able to articulate inherent value More ❯

Overview Join Chambers and Partners as our next Cyber Security Analyst/Lead, a pivotal role at the heart of our commitment to safeguarding information and maintaining trust. You’ll lead the development and delivery of our information security programme, protecting our systems, data, and digital assets from evolving threats. This is an exciting opportunity to … drive key security initiatives, oversee cutting-edge technologies, and ensure compliance with leading industry frameworks within a globally respected organisation. Main Duties and Responsibilities 1. Security Strategy & Governance: Develop, implement, and maintain the organization's information security strategy, policies, standards, and procedures in alignment with business objectives and regulatory requirements. Lead the development and implementation of … an Information Security Management System (ISMS), based on ISO 27001 Conduct regular security risk assessments, identify vulnerabilities, and recommend appropriate mitigation strategies. Stay up-to-date with the latest cybersecurity threats, trends, technologies, and best practices. Provide expert advice and guidance on information security matters to various stakeholders across the organization. 2. Security Operations More ❯

Your new role - Permanent - ON SITE 5 Days per week. You will be required to obtain security clearance and undergo vigorous onboarding checks - UK Only. Sponsorship NOT available.The main purpose of this job mainly focusses on information security, cybersecurity, and data security, including a wide scope, such as physical security of computer rooms, operating system … level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrases, terminal security, backup security, third party and supply chain security of IT service provider.Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies, projects and … security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations.The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits.You will be part More ❯

Your new role - Permanent - ON SITE 5 Days per week. You will be required to obtain security clearance and undergo vigorous onboarding checks - UK Only. Sponsorship NOT available. The main purpose of this job mainly focusses on information security, cybersecurity, and data security, including a wide scope, such as physical security of computer rooms, operating … system level security of Windows and Linux, network security of firewall and other security devices, application security both development and testing phrases, terminal security, backup security, third party and supply chain security of IT service provider. Liaison with the Head Office, Security Operation Centre or Data Centre for implementing security policies … projects and security controls. Work with Internal Audit and other departments to execute penetration tests, cybersecurity risk self-assessment, ensure best practice and international baseline standards are in place and in line with local regulations. The ideal candidate will be responsible for managing information security systems, ensuring compliance with regulatory requirements, and conducting thorough security audits. More ❯

Information Security Engineer – Nationwide Software Company – Worthing, West Sussex (Office based) – 50K to 55K plus excellent benefits Stratospherec is recruiting for an Information Security Engineer to be based in the West Sussex office of our client who is a leading software company. In this role you will use your Information Security Engineer/Analyst … expertise both supporting and enhancing this nationwide company’s cybersecurity posture through the securing of enterprise applications, data and infrastructure and by identifying, assessing, and mitigating security risks. This is a hands-on, predominantly office-based role requiring experience in application and data security, vulnerability assessments, security administration, threat monitoring and response. You will work alongside a … multidisciplinary team of infrastructure, support staff and developers, cross-functionally supporting colleagues from across the business and the wider IT team to ensure security requirements are met and outstanding service delivered. KEY ACTIVITIES • Key activities in relation to application security will include performing security reviews of application architecture, source code, and third-party integrations. • Collaborating with development More ❯

Head of Information Security Department: Operations Employment Type: Permanent - Full Time Location: Head Office, Chelsea House Reporting To: Simon Pakenham-Walsh Description As River Island's Head of Information Security, you'll play a strategic and hands on leadership role in shaping and strengthening our security posture across the business. Reporting to the CIO and … working as part of the Technology Leadership Team, you'll define, embed, and continuously improve River Island's information security framework - ensuring we remain compliant, resilient, and trusted by our customers, partners, and people. This is a highly visible role, blending strategy and delivery. You'll oversee security operations, vulnerability management, compliance, and risk governance, while partnering … with Technology, Data, Legal, and wider business teams to ensure security is embedded into everything we do - from store systems to eCommerce and cloud platforms. Define, implement, and evolve River Island's information security strategy in line with business objectives, regulatory obligations, and risk appetite. Lead the development and maintenance of Information Security policies, standards More ❯

CISM - Certified Information Security Manager Around the world, demand for skilled information security management professionals is on the rise, and the CISM certification is the globally accepted standard of achievement in this area. The uniquely management-focused CISM certification ensures holders understand business, and know how to manage and adapt technology to their enterprise and industry. … Roadmap with strong Governance and Charter is perhaps more important. Learn how to use COBIT methodology and security architectures like TOGAF and SABSA to build a value focused InfoSec programme with RiskIT and ValIT. Uniquely focused on the management and implementation of successful information security programmes, this event is more like an MBA than MSCE or CCNA … Objective: This workshop fully covers the current ISACA CISM exam syllabus by explaining how to use COBIT, ValIT and RiskIT to implement an InfoSec Risk Management programme while supporting the core business strategy. Exam question techniques and study plans are also covered. Outline: Domain 1-Information Security Governance (17%) Domain 3-Information Security Program Development and More ❯

Remote (working on UK time) Join Tempo Audits to shape the future of information security and AI auditing Got a passion for IT/information security and AI? Develop your skills and be trained up to become an information security and AI auditor at a fast-growing startup audit-body that is challenging the … or understand their tech stacks. Tempo was created to change that. Since starting in 2024, Tempo has grown quickly - and is looking for our first full-time in-house information security auditor to join our CEO and COO and team of freelance information security auditors. Tempo is 100% remote and has a relaxed but fast-moving … work with the right candidate in any location that can reasonably work on UK/EU timezone. You should apply if: You have a passion for technology, and specifically information security and AI (Nb you do not need to be a qualified information security auditor already, provided you have IT and/or AI experience as More ❯

Why join Marshall Land Systems in this role? The Head of Business Security & Compliance is responsible for leading the global security and compliance strategy across all UK, European and Canadian sites, programmes, and projects. The role provides senior expertise across information security, cyber security, data governance, and defence security requirements, ensuring the organisation meets … regulatory, and contractual standards. This position acts as the principal link between technical teams, business leadership, government partners, clients, and external authorities to maintain a robust, compliant, and resilient security environment. Responsibilities in this role include: Strategic Security, Data Governance & Compliance Leadership Provide senior leadership on IT and data compliance, including global expertise in data management, information security, and GDPR requirements. Establish, maintain, and continuously improve the organisation's security frameworks, procedures, policies, and standards, ensuring alignment with legislation, MoD requirements, Government guidelines, contract requirements and corporate expectations. Lead initiatives to embed and sustain a robust security culture across all business areas. Cyber Security Oversight & IT Assurance Oversee cyber security governance More ❯

Role: IT Information Security Manager Salary: £65,000 - £75,000 Per Annum, Plus Benefits Package Location: Hereford with a hybrid working arrangement Must have: The right to work in the UK Full UK driving licence Be able to gain BPSS (Baseline Personnel Security Standard) clearance Be able to gain SC (Security Check) clearance as standard along … with any specific security clearances that may be required Our leading services client requires an accomplished Information Security Manager to be responsible for protecting the Group's data and information systems from cyber threats and unauthorised access. This includes developing and implementing security policies, assessing risks, providing reports and managing security incidents. You will … also oversee security awareness training, security compliance, security accreditation and collaborate with various stakeholders to foster a security-conscious culture. Key Deliverables: Align the business' security stance to comply with ISO 27001and Cyber Essentials Plus, or in accordance with the Cyber Assessment Framework Improve the Cyber Awareness within the company via communications, Cyber Awareness training More ❯

Information Security Officer 12 Month Fixed Term Contract Salary: £48,500 Location: Hybrid/Gloucesterhire (2-3 days per week on site in Gloucestershire) A leading Public Sector organisation is seeking an experienced Information Security Officer to help strengthen its information security posture and support the protection of its information assets. You will … work closely with senior leaders, operational teams and partners to embed a robust security culture and ensure compliance with national standards. The Role: As the organisation's focal point for information security, you will: Provide expert advice on information security and ensure compliance with national frameworks and ISO/BSI standards. Develop and maintain policies … procedures and controls to protect the organisation's information assets. Conduct risk assessments, security reviews and vulnerability testing. Carry out physical security assessments and produce clear, evidence-based reports. Lead security awareness training. Identify, evaluate and communicate information risks. Oversee information security incidents and maintain the incident register. Lead audit activity relating to More ❯

our tomorrow. So, ready to dive in? Your journey begins with that application - and who knows where it could take you in our vibrant team! Position The Role The Information Security Manager will be responsible for developing, implementing, and managing best practices in information security across M247. This role requires a deep understanding of data management … information security frameworks, and regulatory compliance. The ideal candidate will have a proven track record in creating efficient security processes and play a key role in fostering a culture of security awareness throughout the organisation. Security Strategy Development: Design and implement a comprehensive information security strategy that aligns with business objectives and complies … with ISO 27001 standards. Microsoft 365 Expertise: Leverage Microsoft 365 tools to enhance security measures, ensuring optimal configuration and deployment to protect data and information assets. Data and Information Management: Oversee data governance policies and practices to ensure the integrity, confidentiality, and availability of sensitive information. Operational Efficiency: Identify opportunities to consolidate security processes and improve More ❯

Information Security Compliance & Risk Specialist Maritime and Coastguard Agency Apply before 11:55pm on Friday 30th November 2025 Reference number (phone number removed) Salary £44,241 This role is part of the Government Digital and Data Profession, and the role attracts a Digital and Data allowance of up to £14,756, subject to an assessment of your skills … and experience during the interview process A Civil Service Pension with an employer contribution of 28.97% Job grade Senior Executive Officer Contract type Permanent Business area MCA - Information Technology Type of role Information Technology Knowledge and Information Management Risk Management Security Working pattern Flexible working, Full-time, Job share, Part-time Number of jobs available … Contents Location About the job Benefits Things you need to know Apply and further information Location Southampton About the job Job description The Information Security Compliance and Risk Specialist will: Develop & maintain the MCA's Information Security Management System (ISMS) and all underpinning documentation, including stakeholder engagement & compliance checks. Be responsible for the delivery of More ❯

InfoSec Manager - Edinburgh Hybrid - 80K plus 30% Bonus Lorien's longstanding client, an organisation with a great reputation in their domain with a healthy appreciation for how technology enables their staff and operations, is looking to hire a security-savvy professional with a passion for protecting sensitive data. Right now they're seeking an exceptional InfoSec/Information Security Manager to take the reins and lead their information security programme; safeguarding their clients, organisation data, and core systems. They're a great firm we've seen treat those we have already introduced into their teams very well, and offer a range of incentives (including a 30% bonus, flexible hybrid working arrangements, and a comprehensive … to ISO standards and other key regulations Oversee the firm's ISO 27001 accreditation and oversee regular risk assessments; taking ownership of the register and plans Draft and implement InfoSec metrics/key performance indicators/reporting (up to board level) to demonstrate security/control/initiative effectiveness Audit and improve the firm's security operations across More ❯

InfoSec Manager - Edinburgh Hybrid - 80K plus 30% Bonus Lorien's longstanding client, an organisation with a great reputation in their domain with a healthy appreciation for how technology enables their staff and operations, is looking to hire a security-savvy professional with a passion for protecting sensitive data. Right now they're seeking an exceptional InfoSec/Information Security Manager to take the reins and lead their information security programme; safeguarding their clients, organisation data, and core systems. They're a great firm we've seen treat those we have already introduced into their teams very well, and offer a range of incentives (including a 30% bonus, flexible hybrid working arrangements, and a comprehensive … to ISO standards and other key regulations Oversee the firm's ISO 27001 accreditation and oversee regular risk assessments; taking ownership of the register and plans Draft and implement InfoSec metrics/key performance indicators/reporting (up to board level) to demonstrate security/control/initiative effectiveness Audit and improve the firm's security operations across More ❯

Information Security Manager Up to £65,000 Glasgow/Hybrid 3 days in office I'm looking for an Information Security Manager to work for a Glasgow-based client who are looking to harden their GRC policies and controls focusing heavily on PCI-DSS and ISO27001. This is a GRC-led leadership position and is integral … to this organisation's ongoing information security journey. The ideal candidate will have worked autonomously in this capacity previously. This role does not provide sponsorship. What You'll Be Doing: Assisting the Head of IT with developing the scope for ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain … compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement perspective. Developing, enhancing and creating security policies and controls. Overseeing the benchmarking of security controls against IT projects. Promoting cyber risk awareness across the wider business. Continuously improving cyber security More ❯

Senior Information Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require an Senior Information Security Analyst to join the firm in London. Key Responsibilities: * Develop and deliver the firm's information security strategy and roadmap. * Provide subject matter expertise and guidance on information security to partners and staff. * Lead and mentor a small team, fostering professional growth and development. * Lead the implementation and ongoing management of ISO 27001, including policy and control implementation and stakeholder engagement. * Lead the development, implementation, and review of security policies, standards, and procedures. * Own and manage the relationship with the firm's Managed Security Operations Centre (SOC), acting as the primary point of contact, ensuring service levels are met, and coordinating incident response. * Oversee operational security including server and endpoint protection, M365 security, identity and access management, vulnerability assessments, patching, and system hardening. Required Experience: * Extensive experience in information security management, ideally within professional services environments. * Proven management capabilities More ❯

Information Security and Governance Officer Location: Bexleyheath Job Type: Temporary (6 months) with potential for permanent Salary: £127 per day We are seeking an Information Security and Governance Officer to join a local authority based in Bexleyheath. This role offers an immediate start and is an excellent opportunity for individuals with strong administrative backgrounds and relevant … governance experience looking to advance their careers. Day-to-day of the role: Policy Support: Assist with the maintenance and implementation of the Council’s Information Governance Framework, policies, and procedures. Security Standards: Monitor compliance with information security and data handling policies, identifying and reporting potential risks or non-compliance. Information Risk: Contribute to the … management of information risks, ensuring these are logged and escalated in accordance with agreed processes. Data Sharing: Review and record data sharing arrangements and support the completion of data sharing agreements and contracts under supervision. Statutory Requests: Manage or assist with the processing of requests made under FOIA, EIR, and Subject Access Requests (SARs), ensuring statutory deadlines are met More ❯

considered market leaders in providing customer and client-centric services, operating across multiple locations. Due to continued growth and acquisitions, they are keen to appoint an experienced Head of Information Security, based out of the central Birmingham offices - one day in … the office and 4 days remote. Paying a salary range up to £85,000 plus bonus. As an experienced Information Security Manager, you will define and drive InfoSec strategy across group. Leading a security team ensuring safeguarding data, compliance with regulatory frameworks. In addition, you will lead a strategic vision with hands-on expertise across critical systems. … Information Security Manager: Duties Experience of business acquisitions - Highly desirable Develop/Maintain enterprise InfoSec strategy aligned business goals Oversee security architecture, vulnerability management, incident response and threat intelligence Lead security risk assessments and manage remediation plans for gaps Financial regulation compliance - GDRP, PCI DSS, SOX, FCA Establish security policies, standards & procedures Repost security More ❯

Information Security Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming … years. The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors … and internal teams, drive ISO-related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving More ❯

Information Security Manager £70,000- £75,000 PA Central London Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming … years. The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors … and internal teams, drive ISO-related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements. Responsibilities: Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving More ❯

Role: Information Security Officer Location: Milton Keynes Salary: £50k - £60k Work Pattern: Hybrid Summary: A new position has opened at an exciting software company for an Information Security Officer to lead the organisation's security strategy, operations, and compliance efforts. This hands-on role blends strategic security architecture with day-to-day operational management … and regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a … experience and a broad global client base, they develop solutions that simplify complexity and drive smarter, more efficient ways of working. Core Responsibilities: Strategic (30%) Define and maintain robust security architecture and standards across multi-cloud SaaS platforms. Integrate security best practices into product design, development, and roadmap planning. Conduct threat modelling and risk assessments for new features More ❯

Information Security Manager Up to £75,000 plus great benefits Glasgow/Hybrid 3 days in office I'm working with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their … scope for ISO27001 certificationAchieving ISO27001 certification further down the lineCoordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement and managed detection and response perspective. Developing, enhancing and creating security policies and … controls. Overseeing the benchmarking of security controls against IT projects. Promoting cyber risk awareness across the wider business. Continuously improving cyber security processes to address both known and emerging threats. Contributing to the improvement of the current information security strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What More ❯

Information Security Manager Up to £75,000 plus great benefits Glasgow/Hybrid 3 days in office I'm working with a Glasgow-based client who are looking for an Information Security Manager to harden their security posture, manage risk appetite, strengthen their GRC policies & controls focusing heavily on PCI-DSS & ISO27001, and manage their … ISO27001 certification Achieving ISO27001 certification further down the line Coordinating the client's efforts to achieve/maintain compliance with PCI-DSS and NIS. Leading a small but growing information security function. Liaising with the managed service security provider from a policy improvement and managed detection and response perspective. Developing, enhancing and creating security policies and … controls. Overseeing the benchmarking of security controls against IT projects. Promoting cyber risk awareness across the wider business. Continuously improving cyber security processes to address both known and emerging threats. Contributing to the improvement of the current information security strategy, making suggestions aligned with industry best-practice drawn from practical experience and security frameworks What More ❯