676 to 700 of 2,412 Information Security Jobs in the UK

high scale services and working with some of Oracle's most critical customers? We are seeking a highly skilled technical writer to develop, draft, and refine a variety of security and technical reports that communicate complex technical findings to a range of audiences. In this role, you will work closely with security engineers, researchers, and compliance professionals to … produce high-quality documentation that is clear, accurate, and defensible. Reporting deliverables will include: Security assessment reports that communicate technical findings and vulnerabilities identified through activities such as penetration tests, vulnerability assessments, and risk analyses. System architecture and design documentation that describes the architecture, components, data flows, and security assurance properties of systems under evaluation, with emphasis on … security compliance, risk posture, and system security functionality. Compliance and attestation reports that document how systems meet or fail to meet applicable security standards and frameworks, including detailed mappings of control implementations. You will also contribute to improving internal documentation processes, templates, standards, and tooling in collaboration with our broader team. Who We Are: We are a More ❯

million passengers this year, we employ over 10,000 people. Its big-scale stuff and we're still growing. Team The role situated in a team of cyber security professionals and working closely with the wider business to ensure that the principles of Digital Safety are as engrained as Aircraft Safety. This means close alignment to Operational, Commercial along … with Regulatory and Audit functions. The role requires working closely with the Senior Digital Safety Risk Manager, the Head of Digital Safety Assurance and the Technical Security and Business Partner functions to support the Digital Safety vision . The Cyber Risk Assurance Analyst role involves using data and analytical skills to identify, measure, and track cyber security risks … within easyJet. This role requires collaboration with various business areas to gather the necessary information that enables the creation of informative risk reports, aiding decision making in the relevant forums supporting the Digital Safety Assurance team's objectives and assists in shedding light on key areas pertaining to our regulatory compliance and control maturity. Job Accountabilities Effectively leverage the More ❯

are currently seeking an experienced individual to join this team in the role of Cybersecurity Risk Analyst . This role will be a member of the Global Third Party Security Review (TPSR) Service team within Cyber Security and forms part of the 1LOD (1st line of defence). TPSR is a regulated activity. The team is tasked with … point-in-time third-party information security assessments to enable business departments to manage their relationships/services within their risk appetite and minimize operational risk impacts to shareholders, customers, employees, reputation, and brand. Your responsibilities will include: Managing Engagements, Business Impact Assessments, Guidance requests, Quality Assurance Conducting TPSRs (reviews, reports, identify deficiencies, quality assurance) Articulating and explaining … information security assessment results to the business Closure of identified deficiencies (verifying evidence to confirm closure or clarifying what is needed to close them) Ensuring adherence to global standard methodology, SLAs, quality, templates, and tools Ensuring good stakeholder engagement Supporting overall activities of Global TPS, including admin and any special initiatives/projects Management Information (MI)/ More ❯

experience) + car allowance Overview An exciting opportunity has arisen for an experienced Cyber Governance Analyst to join a forward-thinking and collaborative business. Reporting directly to the Group Information Security Officer (GISO), the successful candidate will act as a first line of defence-ensuring that robust security controls are maintained in line with company policies and … practices, and overseeing audit readiness. Key Responsibilities Collaborate with IT, legal, and policy teams to develop, manage, and ensure compliance with industry regulations and internal policies Implement and support information security and privacy standards/frameworks (e.g. ISO 27001, NIST, CIS) Work directly with engineering teams and architects to review system and data architectures in line with best … practices Analyse and communicate the impact of vulnerabilities, controls, and mitigations on existing and future systems Conduct thorough risk assessments and effectively translate security and risk implications for technical and non-technical audiences Manage stakeholder expectations across projects with a pragmatic, agile, and solution-oriented approach Key Skills & Experience In-depth knowledge of cybersecurity frameworks such as NIST, ISO More ❯

combines advanced design, planning, implementation, and troubleshooting of network systems with leadership responsibilities. The role aligns technical capabilities with business goals, facilitating cross-functional collaboration and ensuring compliance with security and performance standards. Baker McKenzie is the world’s leading law firm with offices all over the world. Our Belfast Centre is home to over 400 colleagues in both … ensuring compliance with service-level agreements (SLAs). Monitor network performance, perform periodic assessments, and implement enhancements to meet or exceed operational targets. Collaborate with internal stakeholders to enforce information security policies and remediate non-compliance. Define and participate in disaster recovery (DR) and business continuity planning (BCP) practices. Monitor internal and external compliance with the Firm’s … information security policies and procedures. Identify non-compliant practices and assist with remediation. Establish and maintain relationships with network-related vendors, ensuring timely support and cost-effective solutions. Manage network-related projects, including planning, implementation, and documentation. Provide status updates and detailed reports to the IT leadership. Documentation & Training: Maintain and enhance the Firm’s network information More ❯

development, training, internal projects, and the continual improvement of the Risk Advisory team. Ideal candidates will possess the following: -Certified ACA, ACCA, CISA, CISM or other standard auditing or information security certifications combined with solid IT audit experience. An undergraduate degree in Computer Science, Information Systems Audit, Management Information Systems, or similar relevant degree will be … ACCA, or CIMA combined with solid accounting experience are preferred but not required -Five + years of experience in audit and advisory roles performing IT audit, systems implementations, or Information Security -Excellent interpersonal, written and oral communication skills, and ability to assimilate easily into teams -Strong technical skills and a working knowledge of SOX IT General Controls, COSO More ❯

scale, fast-paced retail environment. You will be joining the Identity & Access Management (IAM) team reporting to the Head of IAM, all of which is part of our growing Information Security function. This role will focus heavily on the integration and optimisation of SailPoint, CyberArk and enterprise directory services to support both workforce and third-party needs across … a dynamic business landscape. You’ll work with business, security and infrastructure teams to ensure that IAM architecture (including standards and patterns) is secure, scalable and enables agility across all platforms. Key Responsibilities: Own the IAM architecture roadmap with a strong focus on SailPoint Identity Security Cloud, CyberArk Privileged Cloud, authoritative data sources, and core directory services (Active … within SailPoint Design and support the deployment of CyberArk to secure privileged accounts across critical infrastructure and cloud environments Provide guidance and architectural support for directory service modernisation ensuring security and role modelling across hybrid IT estates Lead the secure integration of Authentication & Authorisation mechanisms (e.g. SAML, OIDC, OAuth2) for internal and customer facing applications Work closely with IAM More ❯

The Policy Support Analyst will be responsible for developing, implementing, and maintaining security policies, standards, and procedures to ensure the protection of our information assets. This role requires a good understanding of security frameworks and regulatory requirements. In addition, this role requires you to have experience of Information Security. The role will be based in Reading … will report directly to the Head of Governance, Risk and Compliance, with whom you will work to deliver the goals of the company to have a fit for purpose security standards framework. This is a role that requires the individual to be able to work independently, finds fulfilment in a challenging and fast paced environment and takes accountability to … meet and drive the needs of the programme. What you'll do as a Policy Support Analyst Security Standards Management: Develop and maintain comprehensive security policies, standards and procedures across the organisation. Align all standards with applicable regulatory requirements and frameworks (e.g., ISO 27001, GDPR, NIS-R). Review and update standards regularly in response to emerging threats More ❯

a culture of learning within the team, enhancing the professional capabilities of team members. Who We Look For - Bachelor’s degree or higher, with 5+ years of experience in security assessment, IT audit, or consulting at a leading professional consulting firm or legal firm, in-house experience working in multinational company is a bonus - Strong understanding of global compliance … marketing) and experience in compliance/product workflow design; experience in the internet/gaming industry is a plus. - Expertise in global privacy regulations, including privacy principles, operational legal security frameworks, and compliance solutions. - Proficient in IT audit, information security management, and IT/technology risk management, with the ability to resolve compliance risks effectively. - Knowledge of … security control frameworks (, ISO27001, ISO20000, ITIL, COBIT) and experience collaborating with information security teams to implement compliance requirements. - Strong problem-solving skills, proactive work ethic, flexible thinking, and the ability to thrive under pressure. - Able to use English and Chinese as working language to interact with stakeholders across the global Equal Employment Opportunity at Tencent As an More ❯

Our Client is seeking an experienced Head of Information Security to lead the InfoSec function across their UK and European operations. This is a leadership role that combines deep cybersecurity expertise, regulatory awareness, and business acumen to drive the security agenda in a fast-paced, regulated financial services environment. As the Head of Information Security, you'll be the primary InfoSec business partner across the region, responsible for the integrity and performance of security and cyber risk controls. You'll shape and implement enterprise-wide strategies aligned with global objectives while ensuring regulatory compliance and operational excellence. Reporting directly to the Group CISO, you'll work closely with executive leaders, regulatory stakeholders, and … the global InfoSec team. The role will oversee the delivery and quality of security services from internal, shared, and external resources and you would act as a trusted advisor to executives across the region. You will drive compliance across standards including ISO 27001, SOC2, PCI, SOX, GDPR, and others while managing a high-performing InfoSec team (both direct and More ❯

the Application Development & Release team reporting into the Testing Manager. The main purpose of the role is to be responsible for test planning, execution, coordination, and reporting of FSCS information systems and software applications to ensure the delivery of high-quality business applications following industry best practices. The Test Lead will work closely with our suppliers and partners delivering … based on industry standards, process and product KPIs, QA reports, and frameworks, embracing agile ways of working. Identify and document Risks, Issues, Assumptions, and Dependencies during the test phase. Information Security and Data Protection Responsibilities Pass the FSCS information security induction training annually. Adhere to FSCS policies including Information Security, Data Protection, and acceptable More ❯

services, and operational resilience services. The ICT team is responsible for the management of the ICT Managed Service contract including user support, system development and delivery, corporate ICT infrastructure, information management, ICT training, and information security. The procurement and contract management team provides oversight of the procurement lifecycle by supporting contract managers to procure, manage, and oversee contracted … third-party services. Operational resilience ensures the business has effective and robust controls and provisions in place to manage its business resilience including disaster recovery, business continuity, cyber security, information security, and the management of ICT material outsourcing. Data Management ensures the effective oversight and optimisation of data across the business. Skills and Knowledge: Essential: Ability to … solver Knowledge of Project Management methodologies Effective IT skills required for the job role High levels of integrity and trustworthiness Desirable: Other corporate knowledge – health and safety, ICT systems, information management, and data protection Experience: Essential: Previous experience of ICT system project implementations, preferably within an outsourced environment Technical experience of working within the ICT sector Project experience within More ❯

to the role by diligently observing internal policies and procedures. Key Interfaces: Technical Lead for Data Engineering Business System Owner Head of Data Engineering Application Specialists and Application Support Information Security Manager Data Privacy Manager Person Specification Knowledge/Experience/Skills: Strong communicator with both technical and non-technical communities Experience of mentoring less-experienced developers Significant … Pipeline testing, including automated testing, data validation and code assurance Demonstrable experience of working within Agile Delivery projects An understanding of data formats for ingest, transformation and analytics, data security, access control and authorisation, GDPR, data privacy, and information security Awareness of data models in a Medalion Architecture Experience building Semantic, Metric or Analytic models Experience of … pension & holiday allowance BUPA Health cover 4x Life Assurance Discretionary bonus Market leading maternity/paternity and menopause policies Data Privacy and Reasonable adjustments We take keeping your data security seriously. For more detail on how we may keep your data please refer to our Privacy Notice Reasonable adjustments : Please let us know of any adjustments or arrangements that More ❯

tasks are the following: Providing counsel on all aspects of cybersecurity incident prevention and response, including customer and regulatory notifications, contractual obligations, and legal risk mitigation, to cyber and information security stakeholders. Advising business stakeholders on regulatory inquiries regarding cyber and information security issues and/or events. Instructing Citi's Cybersecurity Fusion Center and Citi … s business lines on legal risks associated with various components of Citi's cyber and information security program, including matters involving incident response strategies, incident investigations, and regulatory compliance. Tracking existing and proposed cybersecurity rules and regulations (such as DORA and the EU Cyber Resilience Act) and advising on legal interpretations in order to inform a compliance strategy. … and initiatives to provide legal risk mitigation advice. Drafting cybersecurity presentations, exercises, and trainings, as well as presenting and participating as needed. Counseling on the development and implementation of information security governance. Updating cybersecurity policies, playbooks, and procedures. What we'll need from you We are looking for an attorney who has experience advising clients on cybersecurity issues More ❯

primary purpose of this role is to support Grant Thornton International Ltd.’s internal cybersecurity assessment programme, which monitors our global network of Member Firms for compliance against our information security framework. The ideal candidate will have experience evaluating IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom/Europe Main responsibilities The Senior Associate will support with the implementation of the cybersecurity compliance programme, including: Collaboration with IT assurance engagement teams across the GT network Review of data and evidence obtained in the field, including reviews for completeness, consistency and clarity. Evaluate cybersecurity … assessment cycles. This role will also include broader support to the team such as: Respond to firm enquiries and mailbox management. Provide advice and guidance on a variety of security topics. Develop guides, templates and other material to support the implementation of security standards. Research security best practices and provide appropriate reporting. Person specification Education/qualifications More ❯

primary purpose of this role is to support Grant Thornton International Ltd.’s internal cybersecurity assessment programme, which monitors our global network of Member Firms for compliance against our information security framework. The ideal candidate will have experience evaluating IT Infrastructure Security technologies, IT general computer controls, industry frameworks (e.g. NIST) and will bring strong information technology audit or security consulting experience to the programme. Location United Kingdom/Europe Main responsibilities The Senior Associate will support with the implementation of the cybersecurity compliance programme, including: Collaboration with IT assurance engagement teams across the GT network Review of data and evidence obtained in the field, including reviews for completeness, consistency and clarity. Evaluate cybersecurity … assessment cycles. This role will also include broader support to the team such as: Respond to firm enquiries and mailbox management. Provide advice and guidance on a variety of security topics. Develop guides, templates and other material to support the implementation of security standards. Research security best practices and provide appropriate reporting. Person specification Education/qualifications More ❯

Team Lead) is responsible for the administration and operation of the firm’s Infrastructure. This role requires an in-depth knowledge of Active Directory, Azure, MFA, VMware ESX, Windows security, and related technologies. The candidate will be part of the Cloud & Compute Engineering group. Candidate must be a self-starter, and demonstrate experience managing projects to completion. Candidate must …/Exchange Online experience. Install and maintain hardware and software on a virtualized Windows network. Develop processes and procedures to ensure managed environments maintain the highest levels of availability, security, and quality. Lead the security work stream of Active Directory consolidation program; Identify risks and provide guidance regarding remediation of gaps, to facilitate delivery of a hardened and … sustainable AD environment. Deliver scripted solutions to assist with discovery and remediation of ad-hoc security gaps. Follow all set procedures and policies pertaining to the Change Management system. Develop capacity forecasts for managed environments that are proactive and prevent problems prior to outages. Manage "crisis situations" to a satisfactory conclusion (even under stress). Provide guidance on topics More ❯

delivery pilot, launch and operations, are reviewed with Product teams and reflected in future delivery process enhancements. Develops quantitative & qualitative reports. All about you Education: Bachelor's degree in Information Technology, Computer Science, Exact Sciences or Business. Experience: o 5-7 years of experience in the Payments industry or in another IT or FinTech ecosystem, with a focus in … and deliver independently your own projects and initiatives. • Work for a leading company in its sector, cultivating a people-focused culture with decency and inclusion at its core. Corporate Security Responsibility All activities involving access to Mastercard assets, information, and networks comes with an inherent risk to the organization and, therefore, it is expected that every person working … for, or on behalf of, Mastercard is responsible for information security and must: Abide by Mastercard's security policies and practices; Ensure the confidentiality and integrity of the information being accessed; Report any suspected information security violation or breach, and Complete all periodic mandatory security trainings in accordance with Mastercard's guidelines. More ❯

Responsibilities TikTok is seeking a Compliance Analyst to be part of the USDS Security Risk and Compliance team. The role will have a significant impact on mitigating security and compliance risk, and maturing USDS operations to meet its compliance objectives. Responsibilities include but are not limited to: - Compliance - Understand USDS compliance requirements including data security, data governance … compliance operations - Drive compliance assessments and identify compliance risks and mitigations for new product and feature launches - Act as a compliance advisor and partner to enable business operations and Security and Privacy groups by assisting them in the implementation of data security, compliance requirements, and information security technologies - Identify security and compliance risks to the … business units and ensure appropriate data security procedures are implemented in projects and technology - Program Management: - Deliver strong customer service to your global business stakeholders including responsiveness, follow through and clear communication - Develop and measure KPIs derived from business driven oncalls to help manage team performance and key compliance risks that can impact organizational compliance and regulatory requirements - Use More ❯

scale, fast-paced retail environment. You will be joining the Identity & Access Management (IAM) team reporting to the Head of IAM, all of which is part of our growing Information Security function. This role will focus heavily on the integration and optimisation of SailPoint, CyberArk and enterprise directory services to support both workforce and third-party needs across … a dynamic business landscape. You'll work with business, security and infrastructure teams to ensure that IAM architecture (including standards and patterns) is secure, scalable and enables agility across all platforms. Key Responsibilities: Own the IAM architecture roadmap with a strong focus on SailPoint Identity Security Cloud, CyberArk Privileged Cloud, authoritative data sources, and core directory services (Active … within SailPoint Design and support the deployment of CyberArk to secure privileged accounts across critical infrastructure and cloud environments Provide guidance and architectural support for directory service modernisation ensuring security and role modelling across hybrid IT estates Lead the secure integration of Authentication & Authorisation mechanisms (e.g. SAML, OIDC, OAuth2) for internal and customer facing applications Work closely with IAM More ❯

NY and Asia and provides IT Risk and Control Governance, Identity and Access Management Governance and Cybersecurity support across the Firm. What you'll be doing This London-based Information Technology Risk role is within the IT department of a Global Investment Bank. The Head of IT Risk and Control Governance role is to provide IT risk and control … a team of IT risk and control governance professionals in conducting risk assessments, tracking control gaps, managing technology end-of-life and vulnerabilities, handling IT risk incidents, ensuring supplier security assurance, overseeing release management, and managing IT audits. Collaborate with other IT functions to integrate IT risk and control governance into all technology initiatives. Ensure effective communication with key … stakeholders to maintain relationships between Application, Infrastructure, Architecture, and Technology Risk teams. Interact with compliance, operational risk, audit, and legal teams to understand and map corporate security and regulatory requirements to current capabilities. Implement measures, systems, and processes to protect the bank's intellectual property. Maintain and report relevant metrics to facilitate decision-making and inform stakeholders about key More ❯

take a role in driving the design, implementation, and governance of robust identity and access management (IAM) solutions across our global technology landscape. You will be embedded in the Information Security team and report directly to the Head of Security Advisory. The Identity Management function will contain two Senior Experts in total. Your mission is to ensure … identity lifecycle policies, your technical expertise and strategic thinking will help us maintain a secure and user-friendly access environment. You will work closely with engineering teams, infrastructure leads, security architects, and external vendors to ensure IAM capabilities are aligned with business needs and industry standards. THE CHALLENGE: As a Senior Identity Management Expert , your responsibilities will include (but … IAM governance policies covering identity lifecycle management, access reviews, segregation of duties (SoD), and recertification processes. Contribute to the definition and execution of IAM roadmap, aligning it with internal security policies and external regulatory frameworks (e.g., ISO 27001, GDPR). Build and maintain documentation, architecture diagrams, and operational playbooks for identity services. Partner with Security Operations and GRC More ❯

Technology Business Analyst (Hybrid) (FTC 10 months) Company Description Fastmarkets is an industry-leading price-reporting agency (PRA) and information provider for global commodities, offering price data, news, analytics, and events across agriculture, forest products, metals, mining, and new-generation energy markets. Our data helps customers understand and predict dynamic, sometimes opaque markets, supporting trading and risk management. With … of Analytics Head of Content and Pricing Operations Pricing and Content Operations Specialists and Production Specialists Editors, Reporters, Analysts, and Economists Product Directors Product Managers Engineering Managers IT Operations Information Security Officers Site Reliability Engineering Programme Managers Project Managers Software Engineers QAs Scrum Masters Qualifications We seek talented, diverse individuals committed to our mission of providing trusted price … and partners Strong collaboration and communication skills Attention to detail in problem analysis and validation Technology Understanding of the software development lifecycle, SaaS, and Azure cloud infrastructure Knowledge of information security and compliance Experience with Agile and Waterfall methodologies, including Scrum facilitation Experience with APIs, JSON, HTML, and Microsoft Azure technologies Proficiency with tools like Jira, Confluence, Miro More ❯

Team Lead) is responsible for the administration and operation of the firm’s Infrastructure. This role requires an in-depth knowledge of Active Directory, Azure, MFA, VMware ESX, Windows security, and related technologies. The candidate will be part of the Cloud & Compute Engineering group. Candidate must be a self-starter, and demonstrate experience managing projects to completion. Candidate must …/Exchange Online experience. Install and maintain hardware and software on a virtualized Windows network. Develop processes and procedures to ensure managed environments maintain the highest levels of availability, security, and quality. Lead the security work stream of Active Directory consolidation program; Identify risks and provide guidance regarding remediation of gaps, to facilitate delivery of a hardened and … sustainable AD environment. Deliver scripted solutions to assist with discovery and remediation of ad-hoc security gaps. Follow all set procedures and policies pertaining to the Change Management system. Develop capacity forecasts for managed environments that are proactive and prevent problems prior to outages. Manage "crisis situations" to a satisfactory conclusion (even under stress). Provide guidance on topics More ❯

legal team based in London is looking to recruit a lawyer. The primary focus of the role is to support Technology, Infrastructure and Sourcing (TIS) matters, such as global information security, intellectual property software and general technology law related matters. The TIS lawyer provides advisory and transactional support, including drafting and negotiating agreements, related to technology, software (such … Understanding the existing and emerging regulatory requirements affecting DWS with respect to TIS and working to address these requirements. Providing TIS legal support including: Advise on issues related to information security and cybersecurity, data privacy, intellectual property, digital interface (website) and other IP/IT related issues and incidents and stay abreast of all relevant regulations in this … and commercial issues. Advising the business in relation to regulatory change which may impact the business and assisting in the implementation of the same; and Supporting initiatives related to information security and cybersecurity, data privacy, intellectual property, digital interface (website) and other IP/IT related issues. We are looking for: Experience of working in a dynamic international More ❯