1 to 25 of 1,072 Information Security Jobs in the UK

Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture, technical standards, technical … controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating the execution of security measures to protect our computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior … Information Security Analyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves as an expert on cybersecurity protection, detection, response, and recovery. This individual is responsible for coordinating penetration testing and managing internal and external cybersecurity analysts More ❯

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years of expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining information security policies, architecture … technical standards, controls, solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of vulnerabilities and risks across the organization. Accountable for coordinating security measures to protect our computer infrastructure and information systems, ensuring an acceptable risk posture. The Senior Information Security Analyst is highly … cybersecurity analysts to detect, mitigate, and analyze threats. Works closely with other teams to develop controls such as firewalls, data leakage prevention, patching, encryption, vulnerability scanning, and configuration of security tools. Prior experience in an international enterprise environment is essential. Responsibilities Collaborate with IT teams to design and implement the company's cybersecurity strategy. Identify and address security More ❯

members. We've grown significantly in the last 18 months and are evolving our Marketing structure to reflect that. About the role We are seeking a hands-on IT & InfoSec Manager to own and scale our IT and security functions in a growing FinTech company. As our first in-house IT hire, you will work closely with the CTO … IT strategies aligned with business needs. Plan and budget for IT and security investments, including hardware, software, and services. Work closely with other departments to align IT and InfoSec initiatives with business objectives. Regularly assess the performance of the MSP, identify gaps, and refine the division of responsibilities between in-house and outsourced IT functions. Information Security … Lead employee training and awareness programs on cybersecurity practices. What you'll need to succeed 5+ years of experience in IT management or system administration 2+ years in an InfoSec-related role Technical Skills: Proficiency in managing SaaS platforms like Microsoft 365, and endpoint management tools (e.g., Jumpcloud). Strong understanding of network infrastructure, including firewalls, VPNs, and cloud-based More ❯

Information Security Compliance Officer Required Qualifications & Certifications: Education Bachelor's degree in Cybersecurity, Information Technology, Computer Science , or a related field. A master's degree in information security , Risk Management, or Compliance is a plus. Certifications (Highly Valued) CISSP (Certified Information Systems Security Professional) CISM (Certified Information Security Manager) CISA (Certified … Information Systems Auditor) ISO 27001 Lead Auditor/Implementer CRISC (Certified in Risk and Information Systems Control) GDPR Certification (e.g., IAPP CIPP/E, CIPM for data protection compliance) Experience Requirements: 3-5+ years of experience in Information Security, Compliance, or IT Risk Management. Experience with regulatory frameworks in UK & EU : GDPR (General Data Protection … Regulation) ISO 27001 (Information Security Management Systems) Cyber Essentials Plus (UK government-backed security framework) DORA (Digital Operational Resilience Act) - EU financial sector PCI-DSS (if handling payment data) Experience in: Managing vendor risk assessments for third-party compliance. Handling incident response & reporting (e.g., Data Breach Notifications under GDPR). Key Skills & Technical Knowledge: Deep understanding of More ❯

Here at Action For Humanity (AFH), we are looking for Senior Architect/Architect - Information Security to join us at our International Office in Manchester. You will join us on a full-time basis and in return you will receive a competitive annual salary. AFH is an INGO that provides aid and assistance to people affected by natural … and respond to emergencies and critical needs through humanitarian, development and peace-building action, helping affected communities survive, recover and build a better future. The Senior Architect/Architect - Information Security will lead the design and implementation of security frameworks within a Microsoft-centric environment. The ideal candidate will have extensive hands-on experience in Microsoft … Entra ID (Azure AD), Microsoft Intune, Defender Suite, and Zero Trust Security Architecture. This role will focus on identity security, endpoint management, compliance, and cloud security, ensuring a secure and scalable IT infrastructure aligned with industry best practices. Experience with Layer 7 firewalls, VPNs, SD-WAN, and Virtual Desktop Infrastructure (VDI) is a plus. Your key responsibilities More ❯

the way we think and work, by connecting systems and people, while committing to our vision and each other. We are now looking to recruit an experienced Head of Security to join our global team. Position Overview: We are seeking a highly skilled Head of Security to lead and enhance the security posture of Sonata One. This … role is critical in protecting the confidentiality, integrity, and availability of our information systems and data. The ideal candidate will have a deep understanding of cybersecurity threats, risk management frameworks, regulatory compliance, and modern security technologies. This role also includes responsibilities typical of a Data Protection Officer, ensuring that data privacy and governance meet the high regulatory standards … of the financial sector. Responsibilities: Strategic Management and Security Operations Develop, implement, and maintain information security policies, standards, and procedures. Lead the organization's cybersecurity strategy, risk assessments, and security roadmap. Manage information security projects and initiatives across IT and business units. Collaborate with senior leadership to align security goals with business objectives. More ❯

The team you'll be working with: The Security Architect will be responsible for the design, implementation and ongoing development of the security architecture of the client's IT systems. The Security Architect will draw upon Enterprise Security Architecture or Security Solutions Architecture to: - Identify business objectives, user needs, risk appetite and cyber security obligations - Identify vulnerabilities, perform threat modelling, undertake risk assessment, evaluate the effectiveness of security controls - Verify and evidence alignment to 'Secure by Design' principles, corporate security policy/standards as well as industry recognised frameworks and best practice What you'll be doing: Develop, deliver and continually enhance a coherent approach to the design of secure client … end-to-end solutions Develop secure conceptual, logical and high level designs by identifying appropriate security controls to be embedded in solutions that meet business requirements whilst evidencing alignment to the target risk appetite. Own the design and be able to articulate and justify design recommendations at security architecture assurance gates Draft design documentation, options papers, risk assessments More ❯

The team you'll be working with: NTT DATA is one of the world's largest global security service providers, partnering with some of the most recognized security technology brands. We're looking for passionate, curious, and motivated individuals to join our team. What you'll be doing: Using your background in Security Architecture, you will help … our clients: Security Architecture: Translate business, data protection and security requirements into practical and well-structured architectural designs, utilizing industry best practices and security frameworks (e.g., NIST, ISO 27001, CIS). Develop and maintain secure architectural patterns and standards, with a solid working knowledge of cloud security (AWS, Azure, GCP). Apply risk-based and threat … based approaches to evaluate and recommend appropriate and proportionate security technologies and solutions (e.g., SIEM, IAM, CASB, container security). Outline key security components, interfaces, and dependencies. Develop architectural diagrams and overviews. Document security design principles and provide rationale. Ensure designs align with business objectives, security policies, and industry best practices, with a focus on More ❯

Senior Cyber Risk Analyst We are seeking a Senior Analyst with a robust background in cybersecurity risk assessment and internal security audits, complemented by broad technical expertise across modern IT environments. This role requires a deep understanding of desktops, mobile devices, networks, operating systems, and cloud services, as well as the ability to effectively communicate complex technical concepts to … will possess advanced analytical skills, relevant certifications, and experience working cross-functionally-including direct client engagement-to support regulatory and business objectives. Primary Responsibilities Conduct comprehensive risk assessments of information systems, applications, business processes, and underlying technical infrastructure-including desktops, phones, network devices, operating systems (Windows, macOS, Linux), and cloud platforms (AWS, Azure, GCP). Collaborate closely with compliance … business stakeholders, and external clients to understand operational requirements, regulatory obligations, and risk tolerance. Serve as a technical point of contact for clients, addressing and managing their technical requirements, security concerns, and risk management needs. Clearly document identified risks and work with stakeholders to propose, evaluate, and track compensating controls that address security gaps when standard controls are More ❯

Senior Cybersecurity Officer - Assurance - Information Security - Banking Excellent opportunity opens for an Cybersecurity Officer/Information Security Officer/Information Security Assurance Officer with Financial Services experience to join a London based bank's team, helping to ensure all information and cyber risks are identified, analysed, mitigated, and monitored, ensuring the smooth operation … of the Bank. Key Responsibilities: Collaborate with Information Security Engineering and Operations Teams to integrate security measures into business processes. Advise business units on security-related issues and initiatives. Oversee Second Line project activities to evaluate information security risks for new projects, products, systems, and other significant changes within the bank. Supervise the resolution … problem-solving skills. Proficiency in Microsoft Office. Interested? Please Apply! SOC ISO ISAO CISSP NIST CSF ISO27000 ISO27001 PCI DSS GDPR Cybersecurity Cyber Security Information Security Infosec Cybersec Risk Infrastructure ISMS 2LOD 2 LOD Second Line of Defence More ❯

Senior Cybersecurity Officer - Assurance - Information Security - Banking Excellent opportunity opens for an Cybersecurity Officer/Information Security Officer/Information Security Assurance Officer with Financial Services experience to join a London based bank's team, helping to ensure all information and cyber risks are identified, analysed, mitigated, and monitored, ensuring the smooth operation … of the Bank. Key Responsibilities: Collaborate with Information Security Engineering and Operations Teams to integrate security measures into business processes. Advise business units on security-related issues and initiatives. Oversee Second Line project activities to evaluate information security risks for new projects, products, systems, and other significant changes within the bank. Supervise the resolution … problem-solving skills. Proficiency in Microsoft Office. Interested? Please Apply! SOC ISO ISAO CISSP NIST CSF ISO27000 ISO27001 PCI DSS GDPR Cybersecurity Cyber Security Information Security Infosec Cybersec Risk Infrastructure ISMS 2LOD 2 LOD Second Line of Defence More ❯

Senior Cybersecurity Officer - Assurance - Information Security - Banking Excellent opportunity opens for an Cybersecurity Officer/Information Security Officer/Information Security Assurance Officer with Financial Services experience to join a London based bank's team, helping to ensure all information and cyber risks are identified, analysed, mitigated, and monitored, ensuring the smooth operation … of the Bank. Key Responsibilities: Collaborate with Information Security Engineering and Operations Teams to integrate security measures into business processes. Advise business units on security-related issues and initiatives. Oversee Second Line project activities to evaluate information security risks for new projects, products, systems, and other significant changes within the bank. Supervise the resolution … problem-solving skills. Proficiency in Microsoft Office. Interested? Please Apply! SOC ISO ISAO CISSP NIST CSF ISO27000 ISO27001 PCI DSS GDPR Cybersecurity Cyber Security Information Security Infosec Cybersec Risk Infrastructure ISMS 2LOD 2 LOD Second Line of Defence More ❯

that celebrates new ideas and diverse perspectives. You can experience a world of opportunity and the chance to shape a career as unique as you. Position Summary WSP's Information Security Office (ISO) is responsible for the deployment and maintenance of the information security framework for both the IT organization and wider business community. This includes … the Governance mechanisms, policies and processes, tools and technologies, and employee training required to protect WSP information and that of our clients. The role of Regional Information Security Officer reports directly to the Business Information Security Officer and is responsible for delivering the Information Security Framework into the applicable region of WSP. This … role, although some interaction with clients and third parties may be required. This position requires a senior management professional with relevant experience and a strong working knowledge of IT security, risk management, regulatory compliance, information and public cloud service technology, IT operations management principles, and third-party security management. A little more about your role Specific areas More ❯

of the brightest and nicest people around - check out our Glassdoor reviews. If this sounds like your cup of tea, we would love to hear from you! For more information check out our blog to see if you would like to help us prevent crime and protect the world's biggest online businesses. The Role Our data is a … to our success and of great importance to our clients, our partners and to our team. This is why we are currently looking for someone to help evolve the security function. As the Information Security Manager in the team, you will be working with our Security engineers as well as other teams and stakeholders to drive … improvements to our security program and ensure a pragmatic approach to security and risk. Responsibilities Develop, implement, and maintain the organization's information security policies, standards, and procedures in alignment with business objectives, while considering operational needs. Direct the management and continuous improvement of the Information Security Management System (ISMS). Oversee and manage More ❯

Senior Information Security GRC Analyst Senior Information Security GRC Analyst Locations: London, United Kingdom; Manassas, United States Posted on: 4 Days Ago ABOUT US We're the world's leading provider of secure financial messaging services, headquartered in Belgium. We are the way the world moves value - across borders, through cities and overseas. No other organisation … relevant. Swift now has a presence in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions. Are you passionate about security Governance, Risk and Compliance (GRC)? Do you thrive in a dynamic environment where your experience and your security expertise can shape the future of our organization? We are … looking for a GRC Specialist like you to join our growing Information Security Governance team. In this role, you will: Develop and implement robust GRC frameworks to ensure compliance with increasingly stringent industry regulations and standards. Lead the reporting and presentation of our GRC activities to internal and external stakeholders, ensuring transparency and accountability. Collaborate with cross-functional More ❯

Information Security Analyst - Audit, Compliance & Cybersecurity United Kingdom - Southampton At NICE, we don't limit our challenges. We challenge our limits. Always. We're ambitious. We're game changers. And we play to win. We set the highest standards and execute beyond them. And if you're like us, we can offer you the ultimate career opportunity that … And if you're like us, we can offer you the ultimate career opportunity that will light a fire within you. So, what's the role all about? The Information Security Analyst is primarily responsible for ensuring compliance with information security frameworks such as Cyber Essentials, Cyber Essentials Plus, ISO 27001, ISO 27701, ISO 42001, GDPR … reports and present findings to management during status updates and closing meetings. External Audit Coordination: Collaborate with external audit teams to streamline processes and provide requested documentation and evidence. Security Monitoring: Use tools such as Rapid7 InsightIDR or other SIEM solutions to assist with security monitoring and incident detection. Incident Response Support: Participate in incident response efforts, documenting More ❯

The Information Security Director develops, shapes, and maintains Sycurio's information security capability, driving the attainment and maintenance of the ISO27001, PCI-DSS, and SOC2 compliance. They are the subject matter expert on all things regarding security and compliance, owning the information risk management processes. They are the thought leader on all matters within … the security and compliance domain such that the company remains secure against the ever-changing security threat and compliance landscape. Information Security Strategy Create and maintain the Company's strategy, ensuring alignment to the Company's strategy and business goals. Work across internal and external stakeholders, communicating the information security strategy to relevant parties … and providing assurance of policies, procedures, and systems. Develop, maintain, and expand the information security management system ('ISMS') to optimise compliance for ISO27001, PCI-DSS, and SOC2. Identify gaps in the information security capability, both technical and operational, and propose remediation and mitigation plans and solutions. Responsible for the Company's information security capability More ❯

Job Title: Cyber Security Engineer Location: Liverpool (hybrid- 2 days onsite) Industry: Financial Services Salary: £40,000-50,000 per annum Overview: We are seeking a skilled and proactive Cyber Security Engineer to join our growing Information Security team at a leading finance company based in Liverpool. In this role, you will be responsible for designing … implementing, and maintaining robust cyber security measures to protect our systems, data, and infrastructure against emerging threats. Key Responsibilities: Monitor, detect, and respond to security incidents and threats in real-time. Design and implement security solutions and controls, including firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection. Perform regular vulnerability assessments, penetration testing … risk analysis. Collaborate with IT and development teams to ensure secure system architecture and application development. Maintain and enhance incident response procedures and disaster recovery plans. Investigate and document security breaches, providing root cause analysis and remediation plans. Conduct security awareness training for staff and ensure compliance with internal policies and regulatory requirements (e.g., FCA, GDPR, ISO More ❯

Job Title: Cyber Security Engineer Location: Milton Keynes (hybrid- 2 days onsite) Industry: Financial Services Salary: (phone number removed) per annum Overview: We are seeking a skilled and proactive Cyber Security Engineer to join our growing Information Security team at a leading finance company based in Milton Keynes. In this role, you will be responsible for … designing, implementing, and maintaining robust cyber security measures to protect our systems, data, and infrastructure against emerging threats. Key Responsibilities: Monitor, detect, and respond to security incidents and threats in real-time. Design and implement security solutions and controls, including firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection. Perform regular vulnerability assessments, penetration … risk analysis. Collaborate with IT and development teams to ensure secure system architecture and application development. Maintain and enhance incident response procedures and disaster recovery plans. Investigate and document security breaches, providing root cause analysis and remediation plans. Conduct security awareness training for staff and ensure compliance with internal policies and regulatory requirements (e.g., FCA, GDPR, ISO More ❯

Job Title: Cyber Security Engineer Location: Milton Keynes (hybrid- 2 days onsite) Industry: Financial Services Salary: £40,000-50,000 per annum Overview: We are seeking a skilled and proactive Cyber Security Engineer to join our growing Information Security team at a leading finance company based in Milton Keynes. In this role, you will be responsible … for designing, implementing, and maintaining robust cyber security measures to protect our systems, data, and infrastructure against emerging threats. Key Responsibilities: Monitor, detect, and respond to security incidents and threats in real-time. Design and implement security solutions and controls, including firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection. Perform regular vulnerability assessments … risk analysis. Collaborate with IT and development teams to ensure secure system architecture and application development. Maintain and enhance incident response procedures and disaster recovery plans. Investigate and document security breaches, providing root cause analysis and remediation plans. Conduct security awareness training for staff and ensure compliance with internal policies and regulatory requirements (e.g., FCA, GDPR, ISO More ❯

Senior Cyber Security (GRC) Analyst This Senior Cyber Security (GRC) Analyst will report to the Cyber Security Governance, Risk & Compliance Manager and will work within the Information Systems directorate based in either our London or Crawley office. You will be a permanent employee. You will attract a salary of up to £75,000.00 and a bonus … On - scheme providing discount on hundreds of retailers' products. Discounted gym membership. Employee Assistance Programme. Job Purpose The Senior Governance Risk and Compliance (GRC) Analyst will support the Cyber Security GRC Manager in developing IT governance, risk management, and compliance strategies across UK Power Networks information applications and users to safeguard essential business services and operations from cyber … Industry and Regulatory: Deputise for the GRC manager to represent UKPN in energy sector industry forums and regulatory working groups, working collaboratively with Ofgem and the Department for Energy Security and Net Zero. Communication: Communicate and work with all teams and partners in UK Power Networks. Good verbal, written, and presentational skills to express risks and the potential possible More ❯

Manager. Position purpose The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT … ISO standards, risk management expertise, and effective communication skills. This is a full-time role based in Dudley, UK, with travel up to 30% of the time. Responsibilities Implement security protocols and manage information security programs Report performance, exceptions, and outages to all audiences transparently. Align disaster recovery with business continuity plans. Ensure compliance with ISO27001, NIST … CFS 2.0, and maintain ISMS. Identify risks, develop a comprehensive security plan. Test cyber-attacks regularly to address vulnerabilities. Monitor security trends, adapt strategies. Oversee incident monitoring, detection, response via SOC and MSSPs. Manage security tools like SIEM and endpoint protection. Lead incident response and post-incident analysis. Enforce policies for data privacy (GDPR & NIST). Conduct More ❯

a culture of mutual trust, support and passion - while providing individuals with opportunities to grow professionally and make a difference in the world. Your Mission: As the Head of Information Security, you will be responsible for building and leading Hawk's information security program. You will develop and execute a comprehensive security strategy, manage a … team of security professionals, and ensure the protection of Hawk's information assets across all systems that we operate for our clients from the financial sector as well as in general our parent company in Germany and our affiliates and subsidiaries in USA, UK and Singapore. This leadership role requires a … strong technical background, strategic thinking, and the ability to effectively communicate security concepts to both technical and non-technical audiences. Your Responsibilities: Provide leadership and direction to the InfoSec team, fostering a culture of collaboration, innovation, and continuous improvement. Develop, implement, and maintain the organization's information security strategy, policies, and procedures, aligning them with business objectives More ❯

a hybrid-friendly work environment, with physical hubs in New York, London, Singapore, Sweden and Cyprus. About the Role We are seeking a strategic and hands-on Head of InfoSec to lead our cybersecurity initiatives with a strong emphasis on governance, risk management, and compliance (GRC) . This role is critical in shaping and enforcing security policies, driving enterprise … such as SOC 2, ISO 27001, and other regulatory requirements . The ideal candidate is not only a technical expert but also a business-savvy leader who can align security strategy with organizational goals. Key Responsibilities & Duties Governance, Risk & Compliance: Develop, implement, and maintain the company's information security governance framework. Lead the strategy and execution for … security compliance initiatives including SOC 2 , ISO 27001 , NIST , and other relevant standards. Oversee and manage the enterprise risk management program , including identification, assessment, and mitigation of information security risks. Regularly report to executive leadership and the board on security risks, compliance status, and incident responses. External Engagement: Confidently represent Talos in security conversations with More ❯

Chief Information Security Officer (CISO) 📍 Location: London (Hybrid Working Model) 💼 Salary: Competitive + Bonus + Equity Options 🕒 Type: Full-time, Permanent About the Role Chief Information Security Officer (CISO) to join a fast-scaling, high-impact organisation in the heart of London. This is a strategic, foundational hire —you will be responsible for designing and building … GRC) function from the ground up. As the company continues to grow, the need for a comprehensive and mature cybersecurity posture has never been greater. You will own the security vision and strategy while rolling up your sleeves to implement, scale, and continually improve our approach to GRC, risk management, threat mitigation, and compliance frameworks. Key Responsibilities GRC Leadership … Design and implement a scalable GRC framework tailored to the business, addressing risk management, compliance standards (ISO 27001, NIST, SOC 2, etc.), and internal governance controls. Security Strategy: Develop and execute a long-term cybersecurity strategy aligned with business goals, balancing innovation and risk. Security Operations: Oversee day-to-day cybersecurity operations, including threat detection, incident response, vulnerability More ❯