76 to 100 of 156 Security Management Jobs in the UK

Head of Information Security Location: London Rate: Up to £1,000/day outside IR35 Hybrid: 50% of time onsite Sector: Strong regulated industries Contract Type: 6-9 months contract Job Summary: Our client, a leading legal firm, is seeking an experienced Head of Information Security to lead their security function and drive enterprise-wide strategy. This … senior leadership role requires someone with a strong legal sector background who can quickly assess their current security posture, identify improvement opportunities, and establish strategic roadmaps. The ideal candidate will bring substantial exposure to data processing, enterprise applications, and outsourced systems, with proven experience in systems design, project management, and crisis management. You will be a highly technical … oversight roles. The ideal candidate will demonstrate collaborative skills, cultural fit, and flexibility to integrate quickly into their established team environment. Key responsibilities: Develop, implement, and manage enterprise-wide security strategy in partnership with senior stakeholders Assess current information security maturity and develop a strategic roadmap to achieve the target state Take ownership of ongoing audit projects and More ❯

Security & IT Training Analyst Flexible location – Peterborough, Milton Keynes, Birmingham, Preston Competitive salary , negotiable depending on your experience and expertise + benefits What Sets Us Apart At MHA, we’re about people first – our people, our clients, and the communities we serve. As one of the UK’s top 15 accountancy firms and a proud member of Baker Tilly … awarded gold for Investors in People. This recognition reflects our deep commitment to nurturing talent and ensuring every individual feels valued and supported. Purpose of the Role As the Security & IT Training Analyst, you will be responsible for designing, delivering, and evaluating engaging technical and security training programmes that empower our employees to thrive in a secure, technology … support the successful adoption of new technologies and systems. In addition, you’ll lead the development and upkeep of high-quality training materials spanning both general IT and IT security content and be accountable for reporting on key awareness metrics and training KPIs. Your efforts will ensure that every employee is not only a confident user of our systems More ❯

Job Title: Information Security Compliance Analyst Location: Hertfordshire, UK (Hybrid) Contract: 12-Month Fixed Term (Salaried) Are you passionate about cybersecurity, compliance, and driving risk management strategies? We’re seeking an experienced Information Security Compliance Analyst to join a dynamic team supporting the development and maintenance of an EMEA-wide Information Security Management System. This … role plays a critical part in maintaining ISO 27001:2022 certification, ensuring compliance with legislation including NIS 2, GDPR, and the AI Act, and promoting a strong security culture across the business. Requirements: ISO 27001 Lead Implementer or Auditor certification (essential). Demonstrated experience in an Information Security or IT Governance role. Strong knowledge of frameworks like ISO …/27002, NIST, GDPR, and related standards. Proven ability to manage audits, compliance reporting, and security training programs. Excellent stakeholder management, communication, and analytical skills. This is an exciting opportunity for someone who thrives in a fast-paced, regulated environment and wants to make a real impact in protecting systems, data, and operations across multiple regions. If you More ❯

Are you looking for an exciting new opportunity? Join a London based, product-agnostic consultancy specialising in information security governance, risk, and compliance management for clients across Europe. With a deep-rooted passion for cyber risk, the team excels at developing measurable controls that align with an organisation's risk appetite, capacity, and tolerance for breaches. Known for … crafting innovative and cost-effective Information Security Management Systems (ISMS), the consultancy enables quantifiable compliance with key information security legislation, regulations, and industry standards, including PCI DSS, the UK Data Protection Act 2018 (DPA 2018), GDPR, and ISO/IEC 27001. If you would like to learn more about this opportunity, feel free to reach out and … of OWASP methodologies and offensive testing across black/grey/white-box approaches. Proficiency in tools like Burp Suite, Kali, Nmap, Nessus, Qualys, Metasploit. Familiarity with cloud platform security testing (AWS, Azure, GCP). Understanding of mobile security (Android & iOS), networking protocols, and the OSI model. Excellent verbal and written communication skills, especially for client-facing engagements. More ❯

wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available The role The role holder is responsible for leading the development and implementation of a standardised cyber security management system, and a governance and reporting mechanism to identify, measure, and monitor cyber risks consistently across the whole of SSE. This includes leading the Group's Principal … Risk on cyber security and resilience, strategic sub risks and driving through to the tactical risks and supporting the risk management requirements of the NIS regulations. You will Drive and lead the development and management of the Cyber Security & Resilience Principal Risk, risk appetite and controls framework working in conjunction with Group Risk and the IT …/OT Governance, Risk & Compliance team and all Business Units. Lead the preparations for cyber security governance meetings across SSE and support the creation of content for cyber security papers to Board, Audit Committee and other Executive committees including development of metrics to tell the cyber security story. Work with GRC Risk Analyst and the reporting team More ❯

wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available The role The role holder is responsible for leading the development and implementation of a standardised cyber security management system, and a governance and reporting mechanism to identify, measure, and monitor cyber risks consistently across the whole of SSE. This includes leading the Group's Principal … Risk on cyber security and resilience, strategic sub risks and driving through to the tactical risks and supporting the risk management requirements of the NIS regulations. You will Drive and lead the development and management of the Cyber Security & Resilience Principal Risk, risk appetite and controls framework working in conjunction with Group Risk and the IT …/OT Governance, Risk & Compliance team and all Business Units. Lead the preparations for cyber security governance meetings across SSE and support the creation of content for cyber security papers to Board, Audit Committee and other Executive committees including development of metrics to tell the cyber security story. Work with GRC Risk Analyst and the reporting team More ❯

wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available The role The role holder is responsible for leading the development and implementation of a standardised cyber security management system, and a governance and reporting mechanism to identify, measure, and monitor cyber risks consistently across the whole of SSE. This includes leading the Group's Principal … Risk on cyber security and resilience, strategic sub risks and driving through to the tactical risks and supporting the risk management requirements of the NIS regulations. You will Drive and lead the development and management of the Cyber Security & Resilience Principal Risk, risk appetite and controls framework working in conjunction with Group Risk and the IT …/OT Governance, Risk & Compliance team and all Business Units. Lead the preparations for cyber security governance meetings across SSE and support the creation of content for cyber security papers to Board, Audit Committee and other Executive committees including development of metrics to tell the cyber security story. Work with GRC Risk Analyst and the reporting team More ❯

wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available The role The role holder is responsible for leading the development and implementation of a standardised cyber security management system, and a governance and reporting mechanism to identify, measure, and monitor cyber risks consistently across the whole of SSE. This includes leading the Group's Principal … Risk on cyber security and resilience, strategic sub risks and driving through to the tactical risks and supporting the risk management requirements of the NIS regulations. You will Drive and lead the development and management of the Cyber Security & Resilience Principal Risk, risk appetite and controls framework working in conjunction with Group Risk and the IT …/OT Governance, Risk & Compliance team and all Business Units. Lead the preparations for cyber security governance meetings across SSE and support the creation of content for cyber security papers to Board, Audit Committee and other Executive committees including development of metrics to tell the cyber security story. Work with GRC Risk Analyst and the reporting team More ❯

Our defence sector client is currently recruiting for a Senior Security Specialist to provide Secure by Design (SbD) subject matter expertise on a range of military air defence capabilities. This role is offered as an initial 3 month contract with scope to be extended. The day rate is negotiable dependent upon experience. A hybrid working arrangement is available with … an expectation of 2-3 days onsite in Bristol per week. RESPONSIBILITIES: Identification of necessary artefacts in comparison to existing security reports Mature the artefacts in discussion with Subject Matter Experts (SMEs) and functional and prime Contractor input. Finalise the Security Management Plan (SyMP) Plan security-related activities required for CUP2 A-phase and beyond Representation … at various security working groups. SKILLS & QUALIFICATIONS: Demonstrable expertise in securing and assuring complex, mission-critical systems. Deep understanding of Secure by Design methodologies and their application in system and network design. Strong knowledge of securing cloud environments, software applications, and networked systems. Strong analytical skills with a focus on risk management and continuous security improvement. Able More ❯

Transformation Standardise and simplify technology governance, policies, and processes to reflect a modern, strategic IT function. Embed frameworks such as: ISO/IEC 27001: The international standard for information security management systems (ISMS), ensuring data confidentiality, integrity, and availability. ITIL (Information Technology Infrastructure Library): A framework for standardising IT service management practices and aligning them with business … to reduce cost and complexity. Oversee the consolidation of the IT environment, supporting migration towards a unified operating ecosystem (currently a mix of Microsoft and Google platforms). Relationship Management Lead and be responsible for overall implementation of the architecture and technology deliverables, fostering a culture of collaboration across IT and business teams to identify and address IT business … requirements, addressing them effectively. Finance Oversee delivery of financial business cases to reduce IT costs. Profile Experience : Experience in tender negotiation and IT purchasing Experience in supplier and contract management and reviewing performance against SLAs Experienced in developing strong working relationships with key external partners Experience in implementing IT strategies Experienced in running and managing IT infrastructure, application, and More ❯

London, offering ahybrid work model. However, for candidates located outside of London, there ispotential for a fully remote arrangement. How you will create impact: Plan audits by analyzing Information Security Standards, such as ISO 27001:2022, and define audit scopes within your area of expertise. Create and maintain structured audit catalogues tailored to the identified scope. Draft audit plans … plan, covering both internal processes and assets as well as audits of external service providers. Assess a broad range of audit topics, including IT systems, infrastructure and processes, information security management, and on-premise or virtual audits of physical security. Document findings clearly and thoroughly to enable process and asset owners to identify and develop mitigation measures and … in certification audits. Support client assessments by providing information or take part in client meetings. Your profile: You hold a university degree or equivalent in informatics, business informatics, IT security, or a similar field. Fluent English and intermediate German skills (at least B1 level). Trained or have developed yourself into an Auditor or Senior Auditor for information security More ❯

action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity Lead the research and development of Deloitte Global cybersecurity standards, detailed security baselines and their supporting documents, to meet Deloitte's business objectives and cybersecurity risk appetite Collaborate with subject matter experts and leadership to determine the impact of cybersecurity standards … professional experience Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security/cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non … technical audiences at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO/IEC 27001/27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel, PowerPoint Excellent written More ❯

action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity Lead the research and development of Deloitte Global cybersecurity standards, detailed security baselines and their supporting documents, to meet Deloitte's business objectives and cybersecurity risk appetite Collaborate with subject matter experts and leadership to determine the impact of cybersecurity standards … professional experience Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security/cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non … technical audiences at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO/IEC 27001/27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel, PowerPoint Excellent written More ❯

action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity Lead the research and development of Deloitte Global cybersecurity standards, detailed security baselines and their supporting documents, to meet Deloitte's business objectives and cybersecurity risk appetite Collaborate with subject matter experts and leadership to determine the impact of cybersecurity standards … professional experience Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security/cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non … technical audiences at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO/IEC 27001/27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel, PowerPoint Excellent written More ❯

action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity Lead the research and development of Deloitte Global cybersecurity standards, detailed security baselines and their supporting documents, to meet Deloitte's business objectives and cybersecurity risk appetite Collaborate with subject matter experts and leadership to determine the impact of cybersecurity standards … professional experience Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security/cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non … technical audiences at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO/IEC 27001/27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel, PowerPoint Excellent written More ❯

action we take, guiding us to deliver impact how and where it mattersmost . Connect to your opportunity Lead the research and development of Deloitte Global cybersecurity standards, detailed security baselines and their supporting documents, to meet Deloitte's business objectives and cybersecurity risk appetite Collaborate with subject matter experts and leadership to determine the impact of cybersecurity standards … professional experience Required Qualifications: Bachelor's degree (or equivalent) in cybersecurity, information systems, computer science, or other technology-related field, or equivalent experience Proven combined experience in the information security/cybersecurity domain, with a focus on policies and standards, or cybersecurity governance and risk management Strong ability to clearly communicate complex cybersecurity statements to technical and non … technical audiences at various hierarchical levels Deep knowledge of common information security management frameworks and standards, such as ISO/IEC 27001/27002, NIST 800-53, and the NIST Cybersecurity Framework Soft skills: collaboration, teamwork, persuasion, attention to detail, time management, prioritization, resourcefulness Advanced proficiency with MS Office products, primarily MS Word, Excel, PowerPoint Excellent written More ❯

microservices, 'DevOps' and reusable Web Components. As an ideal Lead Devops Engineer , you will have a strong understanding of DevOps principals as well as an in-depth knowledge of security best practice with the cloud platform. You will have thorough experience of cloud technologies (preferably Azure Platform) and experience of release and deployment tools. The successful Lead Devops Engineer … scripting languages such as PowerShell scripts, YAML, Python Experience of azure automation using arm templates Experience of Linux, Windows Server, Azure SQL Server, Azure Storage, CosmosDB Experience in cloud security management (IAM, Security Groups, certificates & key management) Experience with logging, monitoring and alerting platforms such as app Insights Experience of working within an Agile and Scrum More ❯

willing to listen to others ideas. Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality management and information security processes. The National Institute for Health and Care Excellence has recommended DERM for use within the NHS until May 2028, while further evidence is gathered. Competitive salary Share options package - all our employees have ownership in the company Private healthcare 25 days annual leave (5 day company shutdown in August + bank holidays) Enhanced parental More ❯

the business objectives across new and growth areas. Key Responsibilities: Leading and scaling the UX function - setting up design systems, accessibility standards etc from scratch. Working with the Senior Management Team - making cases for more design resources and continuously measure, track and share the value on an ongoing basis. People Management and Leadership - managing and developing UX Designer … upload your portfolio with your application Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality management and information security processes. The National Institute for Health and Care Excellence has recommended DERM for use within the NHS until May 2028, while further evidence is gathered. Competitive salary Share options package - all our employees have ownership in the company Private healthcare 25 days annual leave (5 day company shutdown in August + bank holidays) Enhanced parental More ❯

systems for protecting personal and business-sensitive information. Providing support and guidance on data privacy impact assessments (DPIAs) under the guidance of the DPO. Ensuring staff complete mandatory information security training and producing regular compliance reports. Supporting the DPO and management in responding to information security incidents and participating in information governance projects. What skills & qualifications you … understanding of the Data Protection Act (DPA) 2018 and the General Data Protection Regulations (GDPR). Understanding of the Environmental Information Regulations (EIR) 2004,. Broad knowledge of Information Security best practices. Practical experience in developing and implementing policies and procedures. Practical experience in data protection, including leading change, writing, and embedding policy and compliance standards. Excellent written and … problem-solving skills, along with excellent analytical abilities. You will also benefit from having: ISEB qualification in Data Privacy or Practitioner Certificate in Data Protection, and Certificate in Information Security Management Principles (CISMP) or equivalent. Experience dealing with subject access and Environmental Information Regulations (EIR) requests. Practical experience in carrying out compliance activities such as reviews and audits. More ❯

Manage and collaborate with integrations squad - working with Tech Lead, Fullstack Engineer and QA Engineer. Cross functional working - working with other business unit Product Managers, Engineers and the Senior Management Team. Prioritisation and building roadmap for future integrations - push back on requests, guiding teams and strategising about what's best for the business. Managing demanding workload - requests will come … knowledge (platform/backend) is advantageous Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality management and information security processes. The National Institute for Health and Care Excellence has recommended DERM for use within the NHS until May 2028, while further evidence is gathered. Competitive salary Share options package - all our employees have ownership in the company Private healthcare 25 days annual leave (5 day company shutdown in August + bank holidays) Enhanced parental More ❯

headquartered in the UK and FCA-regulated. The Role Goji is looking for a hands-on Head of IT to build and nurture our IT function, ensuring seamless infrastructure, security, and user support. This role provides an exciting opportunity to shape IT operations with a people-first approach, designing systems, processes, and policies that support our teams in doing … The Head of IT will report to the CTO and work closely with key stakeholders across the company to create and deliver an IT strategy that balances operational efficiency, security, and a positive employee experience. We are looking for someone who is collaborative, inclusive, and passionate about enabling teams through technology. How you'll contribute Develop and deliver a … term growth. Lead and uplift IT operations and support functions, ensuring a seamless and reliable experience for all teams across the organisation. Work in close partnership with the Information Security Officer (ISO) to continuously evolve our Information Security Management System (ISMS), balancing strong protection with ease of adoption. Provide efficient, empathetic IT support across hardware, software, VPNs More ❯

the better our work will be. Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality management and information security processes. More ❯

the better our work will be. Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality management and information security processes. Seniority level Seniority level Mid-Senior level Employment type Employment type Full-time Job function Industries Non-profit Organizations and Primary and Secondary Education Referrals increase your chances of interviewing at Skin Analytics by 2x Get notified about new Engineering Manager jobs in London, England, United Kingdom . London, England, United Kingdom 1 month More ❯

of working - within our regulatory standards (ISO 13485, ISO 27001). ️ We want to hear from you if you Have experience in the following tech stack: Frontend: React, State Management, React Native (optional but advantageous) Backend: Node, JavaScript, TypeScript Databases: MySQL Infrastructure: AWS (EC2, SNS/SQS, RDS, ES), Linux Docker Have experience in: Familiarity with Publish-Subscribe pattern … including ISO 62304 (optional but advantageous) Skin Analytics manufactures medical devices and complies with ISO standards 13485 and 27001. As part of your employment, you will be assigned Quality Management System (QMS) and Information Security Management System (ISMS). We require that our employees agree to complete their assigned training and diligently follow all company quality management and information security processes. The National Institute for Health and Care Excellence has recommended DERM for use within the NHS until May 2028, while further evidence is gathered. Competitive salary Share options package - all our employees have ownership in the company Private healthcare 25 days annual leave (5 day company shutdown in August + bank holidays) Enhanced parental More ❯