101 to 125 of 512 Information Security Jobs in the UK

Security Engineer (Salesforce) Permanent Hybrid - 3 days p/w on-site Leeds area (Hands on recent career experience of Salesforce/Salesforce Industries/Vlocity is essential) FPSG have a fantastic opportunity to join a large-scale digital transformation programme aimed at uniting multiple internal business units under a new, secure, cloud-native digital platform. Ideal for a … hands-on Security Engineer who enjoys embedding security into the development lifecycle and working with modern tooling and cloud environments. .Net Azure exposure desired, Salesforce Industries/Vlocity experience is essential. The successful Security Engineer's responsibilities will include: Analysing new feature code to identify and mitigate security risks Collaborating with development teams to implement secure … coding practices and remediation strategies Driving improvements in security maturity frameworks such as DSOMM, including hands-on delivery (code, configuration, documentation, tooling) Designing, building, operate, monitoring secure solutions across complex platforms Ensuring internal and industry security standards (e.g. OWASP CI/CD, SAMM) are adhered to across systems Managing and improving cloud security posture (Azure Defender, Prisma More ❯

Cyber Security Programme Manager - Contract Location: London (Hybrid - 3 days onsite at Bishopsgate HQ) Contract Length: 6 months (with potential extension up to 36 months) IR35 Status: Outside IR35 Start Date: ASAP Day Rate: Competitive We are seeking an experienced and strategic Cyber Security Programme Manager to lead a major enterprise-wide cyber security uplift programme for … a leading organisation in the construction industry. This transformation initiative spans 24-36 months and aims to significantly enhance the organisation's security posture across both cloud (Microsoft Azure) and on-premise environments , aligned to the NIST Cybersecurity Framework (CSF) and CIS Controls . Key Responsibilities Lead the end-to-end delivery of a multi-stream cyber security … third-party vendors and consultancies Oversee the external delivery partner, ensuring accountability for risks, issues, and deadlines Deliver initiatives across people, process, technology, and governance Manage smaller internal cyber security projects outside the partner's scope Maintain programme governance, risk management, and resource planning Collaborate with senior stakeholders, IT teams, and external suppliers Drive change management and embed new More ❯

audit readiness, collaborate with governance and risk teams, and integrate compliance findings into policy documentation. This is a hybrid, Nottingham-based role reporting to the Regional Head of Client Security Assurance Summary of Primary Responsibilities Manage ISO27001, Cyber Essentials/Plus, SOC2 accreditations Lead contract negotiations, re-wording, and redlining, with a preference for UK&I and EU regulatory … remediation activities Collaborate with governance, compliance, and risk management teams Partner with policy and standards teams to integrate compliance findings into documentation Qualifications Experience with compliance, audit coordination, or information security Familiarity with ISO 27001/2, SOC, ISAE, PCI, NIST, CIS or similar benchmarks Experience with cloud platforms such as AWS, Azure, or GCP Experience with IT … and security operations, including Windows/Linux/Unix systems, authentication, firewalls, and cloud security Project management skills using PMP, Agile, Scrum, or Lean Six Sigma methodologies Bachelor's degree in computer science, Information Security, or a related field, or equivalent experience Additional Information Benefits package includes: Great compensation package and discretionary bonus plan Core More ❯

The Chief Information Security Office (CISO) is a global team supporting the confidentiality, integrity, and availability of the firm's information assets across Europe, Asia, and the Americas. It implements security solutions to meet business needs and ensures trustworthiness of customer data and infrastructure. The Principal Security Architect is a cybersecurity expert collaborating with the … CTO and CIOs to design and govern security patterns for application development, ensuring security is integrated into technology infrastructure and business applications. This role requires cross-departmental collaboration within the organization to embed security as an emergent property of design decisions made across technology teams. The Principal Security Architect will lead a team of architects to … review solutions, ensuring security controls are incorporated and best practices are followed, particularly in infrastructure projects like cloud environments. The role involves overseeing efforts to identify requirements, evaluate technologies, and support product development to address security challenges globally. Purpose of the role Develop, implement, and manage the bank's cloud and security infrastructure, including security administration More ❯

Manager will be responsible for: Creation, development and management of a Common Data Environment (CDE). Enforcing compliance with the main contractors Integrated Management System and the end clients Information Management Requirements. Overseeing data security protocols, including corrective and preventive actions. Ensuring compliance with data protection and legislative requirements outlined in contract documents. Coordinating the management and transfer … of data between contractors and the wider supply chain Key Responsibilities Information Systems: Maintain compliance with the data management criteria defined in Schedule 6 of the MSA. Data Protection and Security: Safeguard all confidential information under the guidelines of Clause 62 and Schedule 32 of the Project Agreement. Develop and maintain an information security programme … to ensure data confidentiality, integrity, and availability. Respond promptly to data breaches or unauthorised access incidents and maintain a detailed log of actions taken. Records and Information Management: Maintain up-to-date, accessible, and secure electronic records for the project. Manage and support the population of the Common Data Environment (CDE) for all stakeholders. Fulfil compliance requirements set forth More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier security More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier security More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier security More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier security More ❯

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company £70–80k base + 10% bonus Hybrid in London Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable … steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations. What you’ll bring: 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment Certifications: CISSP or SSCP (or equivalent) required Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not … just theory Experience mentoring staff or junior analysts (no direct line management required) Adaptability to a medium-sized, SME environment What you’ll be doing: Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview Third-party risk: Support supplier security More ❯

Overview Incident Response Engineer, Security Operations - London, UK The UK Security Operations (SecOps) team in Google Public Sector delivers, operates and secures private cloud services. We aim to provide the flexibility, reliability, and scalability of public cloud for customers with security requirements that can only be met in a private cloud environment. We deliver and operate these … private cloud deployments for the customers, helping them secure and maintain the deployment while working with Google product teams to improve the technology. Responsibilities Respond to security incidents escalated from the front line team. Build and develop security efficiencies on the platform to improve the overall security operations center (SOC). Conduct threat hunting activities on the … platform and participate in purple team events. Review and develop security operations center dashboards for anomalous activity. Be a subject matter expert (SME) across typical security disciplines, vulnerability, Endpoint Detection and Response (EDR), Security Information and Event Management (SIEM), etc. Qualifications Bachelor's degree or equivalent practical experience. Certifications in Security+, or a related Cyber Security More ❯

What You'll Be Working On: ️ Leading and developing the organization's information security strategy, policies, and programs ️ Overseeing the implementation of risk management practices and ensuring compliance with industry regulations (e.g., GDPR, ISO 27001) ️ Managing and mentoring the cybersecurity team to strengthen the organization's security posture ️ Collaborating with cross-functional teams to align security … leadership on the state of cybersecurity and potential risks What We're Looking For: ️ Proven experience as a CISO or in a senior cybersecurity leadership role ️ Extensive knowledge of information security frameworks, governance, and compliance standards ️ Strong experience in risk management, incident response, and disaster recovery planning ️ Ability to communicate complex security concepts to non-technical stakeholders More ❯

Head of Information Security vacancy at the University of Birmingham £75,000 - £87,500 with potential for market rate supplement Hays Technology and The University of Birmingham are working in partnership to recruit a Head of Information Security on a permanent basis. About the University of Birmingham The University of Birmingham has been part of the More ❯

SC Cleared Information Security Officer - Permanent Role - Remote/Corsham iO Associates are currently looking for an SC Cleared Information Security Officer to join a Defence consultancy on a permanent basis offering £40K - £50K base salary plus benefits. Our client predominantly works with the MOD so there may be some occasional travel to Corsham as and More ❯

This position will be in London/Hybrid. Job Summary: Individual will possess a strong blend of analytical skills, project management expertise, and a deep understanding of cyber and information security policies. We require risk and policy management experience and ideally, Cyber security and previous HMG experience. Responsibilities: Analyse existing cyber and information security policies … delivery decision-making. Collaborate with stakeholders to ensure policies align with organisational and regulatory requirements and industry best practices. Develop and propose new policies to enhance the organisation's security posture. Lead the planning, execution, and delivery of cyber and information security policy projects. Policy Roadmap Development - Initial policy identification (Discovery). List the policies that sit More ❯

Company description: Water Utility Company based in Yorkshire region of England. Job description: Security Governance Risk & Compliance Analyst Hello! Thanks for stopping by. Let us tell you about all the great reasons to join us here at Yorkshire Water: We offer a competitive salary, depending on experience (£36,538 45,673) Annual incentive related bonus (£1000 maximum bonus opportunity … for the performance year) Attractive pension scheme (up to 12% company contribution) Development opportunities in line with the Security Governance Risk & Compliance Analyst progression plan 25 days annual leave plus bank holidays plus an extra wellness day Life assurance cover of 4 times pensionable salary A great benefits package choose from health cash plan scheme, critical illness insurance, dental … days in the office a week Bradford) Work type: 12-month fixed term contract. 37 hours per week, Monday Friday. We have an exciting opportunity for a Security Governance Risk &Compliance Analyst to join the IT team at Yorkshire Water and be a part of helping Yorkshire Water to provide the best service to our customers. Could this be More ❯

Training Specialist - Government - DV Clearance - London - Hybrid I have an immediate opportunity for a skilled Training Specialist to support a high-priority government programme focused on Information Security. This is part of a major Information Security Transformation programme and we are looking for someone with a strong background in government or secure environments to make an immediate … and digital media. The role requires creativity, technical understanding, and the ability to communicate complex concepts clearly to diverse audiences. Key Responsibilities: Develop and deliver tailored training programmes on Information Security for government personnel. Create content for live workshops, virtual sessions, and multimedia formats (e.g. video, interactive modules). Work closely with subject matter experts to ensure training … aligns with current security policies and best practices. Coordinate training logistics and schedules across departments. Evaluate training effectiveness and adapt materials based on feedback and evolving needs. Skills & Experience required: Background designing and delivering training in a government or secure environment. Ability to create engaging content using a variety of media and delivery methods. Excellent communication and facilitation skills. More ❯

Job Title : IT Security Specialist Contract Type: Permanent, Part Time, Full Time, Job Share option available Salary Range: £37,600 - £56,400 Location: Eastleigh - hybrid Closing Date for applications: Thursday 16th October IT Security Specialist: We have an exciting opportunity for an IT Security Specialist to join our Information Security team at Ageas, reporting directly … to the Counter Threat Unit Manager. As an IT Security Specialist, you will support the day-to-day operations of the Counter Threat Unit, applying your strong background in infrastructure engineering, cloud-based architectures, and solution delivery. You will contribute to maintaining our secure systems across hybrid environments, leveraging your expertise in both on-premises and cloud platforms such … as Azure, AWS, and GCP. Main Responsibilities as IT Security Specialist: Assist in gathering and analysing threat intelligence; monitor systems and networks to identify anomalies and support situational awareness. Follow established processes to help ensure compliance with legal, regulatory, and internal security requirements. Contribute to the investigation and resolution of security incidents, working in line with organisational More ❯

We're looking for a proactive and detail-oriented Cyber Security Officer to join our IT team. You'll support the Head of IT Governance in developing and delivering a Cyber Security Strategy and Information Security Management Plan , ensuring robust systems and processes are in place to protect the organisation. Key Responsibilities Support implementation of the … cyber security strategy and management plan. Monitor global threats and assess potential organisational impact. Coordinate penetration testing and manage remediation actions. Assist with maintaining Cyber Essentials certification and internal audits. Work with IT colleagues to plan and implement security improvements. About You Strong skills in communication, report writing, planning, and problem solving. Genuine interest in cyber security and willingness to continue learning. Studying toward or interested in a Cyber Security qualification. Collaborative, detail-oriented, and proactive in a fast-paced environment. Benefits Supportive team with training and development opportunities. Benefits may include a pension scheme, staff discounts, cycle-to-work scheme, free parking, and early Friday finishes. Main Purpose Support the delivery of IT cyber More ❯

Make The Connection. Vix Technology, a global leader in automatic fare collection, transit information, and transit analytics solutions, is seeking a highly skilled and experienced Field Engineer. With a presence in over 200 city and regional transport authorities worldwide, Vix has been at the forefront of transforming fare collection for more than 35 years. At Vix, we are committed … individual diversity brings to the collective. Bring your individual orientation, cultural heritage and distinctive thinking and experience - we want to hear from you! We are looking for an experienced Security Engineer to join the Vix team. This role is on-site in Manchester, working within the greater Vix Security team. The role will see you ensuring Vix technical … with data privacy regulations (e.g., GDPR, CCPA). Produce security reports for internal and external stakeholders. Recommend and implement new security tools and technologies. Stay current with infosec trends and tailor recommendations for business needs. What You'll Bring To The Role: Essential: 3-5 years of experience in Information Security. Strong understanding of security principles More ❯

a private equity owned legal firm who are growing exponentially. Due to this rapid expansion, they are scaling their technology function and are recruiting for a Head of Cyber Security to join their team and lead their security posture. The Role Define and execute the overall Cyber Security strategy, ensuring it aligns with business objectives, manages risk … and supports the firm's rapid growth. Oversee the Cyber Security function, including Security Operations, Incident Response, and Governance, Risk, and Compliance (GRC) specialists, providing leadership, mentorship, and effective resource allocation. Establish and enforce a robust security governance framework, including policies and procedures for information security, risk management, and compliance with legal and regulatory requirements … e.g., GDPR, ISO 27001, PCI DSS if applicable). Manage and continuously improve the firm's security architecture and controls across all domains: network, cloud (SaaS/IaaS), endpoints, and applications. Lead the Incident Response and Disaster Recovery programs, ensuring capabilities are tested, effective, and ready to mitigate the impact of security breaches. Drive security awareness and More ❯

play a pivotal role in designing and delivering UKAEA's greenfield Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions, while contributing to the development of the Security Information and Event Management (SIEM) and Security Operations Centre (SOC) capabilities. You will lead the IAM/PAM workstreams and provide specialist input into SIEM/SOC … implementation, ensuring all solutions align with secure-by-design principles, NIST and ISO 27001 frameworks, and UKAEA's cyber security objectives. This is a hands-on and leadership-focused role that combines technical delivery, strategic oversight, and mentoring of junior members of the cyber team. You will also provide technical oversight where Managed Service Providers (MSPs) are engaged, ensuring … solution quality, integration, and compliance with UKAEA standards. Accountabilities: Lead the end-to-end design and delivery of IAM and PAM services as part of a greenfield cyber security programme. Collaborate with architects and SOC leads to integrate IAM/PAM telemetry into SIEM tooling for enhanced visibility and detection. Provide technical oversight and assurance when engaging Managed Service More ❯

play a pivotal role in designing and delivering UKAEA's greenfield Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions, while contributing to the development of the Security Information and Event Management (SIEM) and Security Operations Centre (SOC) capabilities. You will lead the IAM/PAM workstreams and provide specialist input into SIEM/SOC … implementation, ensuring all solutions align with secure-by-design principles, NIST and ISO 27001 frameworks, and UKAEA's cyber security objectives. This is a hands-on and leadership-focused role that combines technical delivery, strategic oversight, and mentoring of junior members of the cyber team. You will also provide technical oversight where Managed Service Providers (MSPs) are engaged, ensuring … solution quality, integration, and compliance with UKAEA standards. Accountabilities: Lead the end-to-end design and delivery of IAM and PAM services as part of a greenfield cyber security programme. Collaborate with architects and SOC leads to integrate IAM/PAM telemetry into SIEM tooling for enhanced visibility and detection. Provide technical oversight and assurance when engaging Managed Service More ❯

A well-established business is looking for an accomplished Information Security Manager to join its team based in Uxbridge, west London. Please note this is an office-based role, so you will work from the office 5 days per week. In this role of significant responsibility, you will design and lead the information security strategy for More ❯

Overview Job Description - Principal Engineer - Cyber Security () Principal Engineer - Cyber Security - Job Title: Principal Engineer - Cyber Security Location: Frimley, Bristol, Weymouth, Portsmouth. We offer a range of hybrid and flexible working arrangements - please speak to your recruiter about the options for this particular role. Salary: Up to £61,500 depending on skills and experience Responsibilities Define and … implement risk-based cybersecurity requirements for systems and subsystems, providing technical expertise and guidance across all aspects of cyber security and resilience Conduct in-depth cybersecurity analysis, including development of threat taxonomies, security architectures, security baselines, and risk mitigation strategies Develop and execute cybersecurity test plans and schedules, carrying out both informal and formal security testing … activities Support engineering lifecycle reviews and design assurance processes to ensure security is embedded throughout system development Produce and maintain key security artefacts, including risk registers, security assurance cases, plans, and schedules, while contributing security input to broader engineering documentation Qualifications Degree in a relevant STEM subject or maintaining recognised Industry Security Qualifications e.g., CCP More ❯