126 to 150 of 197 Security Posture Jobs in the UK

Specialist, you'll be responsible for the management, optimisation and continuous improvement of identity and access management systems across a global infrastructure. You'll support the organisation's digital security objectives by delivering reliable authentication, enforcing access control policies, and enhancing compliance across cloud and on-premise environments. Key Responsibilities Administer and maintain the organisation's IDAM platforms, ensuring … to ensure users receive appropriate access based on defined roles. Enforce access control standards and ensure alignment with organisational and regulatory requirements (e.g. GDPR, ISO Monitor IDAM systems for security incidents, vulnerabilities, and compliance risks, responding promptly to mitigate threats. Manage identity provisioning, de-provisioning and entitlement reviews across cloud and on-premise environments. Maintain accurate and auditable documentation … issues and IDAM-related incidents. Collaborate with Infrastructure, Cloud and Cybersecurity teams to ensure cohesive identity governance. Stay current with emerging technologies and best practice, recommending improvements to strengthen security posture and efficiency. What We're Looking For Proven experience in Identity & Access Management within a medium or large-scale enterprise. Strong technical knowledge of authentication, authorisation, and More ❯

a global environment. In this role, the Head of Cyber and IT will manage cloud infrastructure to ensure availability, scalability, and performance. The role also involves ensuring compliance with security standards, leading incident response and vulnerability management, and overseeing internal IT support and enterprise system administration. Additionally, the position requires building and leading a scalable team, aligning with DevOps … on infrastructure maturity and security posture, and managing vendor and license agreements. Requirement Cloud Operations Oversee cloud infrastructure (e.g. Azure and Oracle Cloud) for availability, scalability, and performance. Manage CloudOps practices including monitoring and automation. Collaborate with Engineering and Product teams to support secure and reliable deployments. Provision, support & maintain required cloud services for development, test and QA. … Implement cloud cost optimization strategies. Cybersecurity Ensure compliance with security standards (e.g., ISO 27001, SOC 2, GDPR) and internal policies and procedures for cloud and IT environments. Lead incident response, vulnerability management, and threat detection using SIEM tools, MDR and antivirus platforms. Secure and implement policies and procedures for disaster recovery and business continuity. Work with the CTO and More ❯

Client EUC Patch Management Specialist A critical enabler for the technology transformation, and for delivering wider business transformation priorities, is security operations across our infrastructure, Digital and End User environments. In parallel to supporting new business initiatives, we recognise the need to invest and innovate in partnership with our Cyber Security colleagues to ensure we are reducing and … removing our operational risk profile, improve security posture and scale the foundational technology capabilities which support today's business operations What You'll Get People are at the heart of what we do here, so it's essential we provide you with the right environment to perform at your very best. Let's talk lifestyle: Healthcare, pension, and … a In your role, you'll collaborate with different people across a range of skillsets. Here's a flavour of your day-to-day: Responsible for the management of security risk across the Digital infrastructure, End User environment including Windows OS, cloud based VDI, Partner with Cyber Security teams to identify strategic direction to secure all on-premises More ❯

At Vanta, our mission is to help businesses earn and prove trust.We believe that security should be monitored and verified continuously, and we empower companies to practice better security and prove it with ease. Vanta has a kind and talented team, and while some have prior security experience, many have been successful at Vanta without it. As … a Vanta Customer Success Manager you will play a pivotal role in guiding customers through their security and compliance journeys with Vanta's specialized solutions. By combining your customer-centric approach with expertise in Vanta's products and security best practices, you will contribute to the overall success and satisfaction of Vanta's customers in achieving robust security … Vanta's success over the last year was exponential and we are now working to solve the problem of how to provide world-class customer experience to as many security-minded software companies as possible. As a Vanta Customer Success Manager, you will be the voice of Vanta, responsible for helping keep our customers moving toward their goals and More ❯

What You'll Be Working On: ️ Leading and developing the organization's information security strategy, policies, and programs ️ Overseeing the implementation of risk management practices and ensuring compliance with industry regulations (e.g., GDPR, ISO 27001) ️ Managing and mentoring the cybersecurity team to strengthen the organization's security posture ️ Collaborating with cross-functional teams to align security … on the state of cybersecurity and potential risks What We're Looking For: ️ Proven experience as a CISO or in a senior cybersecurity leadership role ️ Extensive knowledge of information security frameworks, governance, and compliance standards ️ Strong experience in risk management, incident response, and disaster recovery planning ️ Ability to communicate complex security concepts to non-technical stakeholders ️ Relevant certifications More ❯

Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, EDR (e.g., Defender … to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events. Execution of the use cases on SIEM, SOAR & Threat Intelligence Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics More ❯

Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, EDR (e.g., Defender … to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events. Execution of the use cases on SIEM, SOAR & Threat Intelligence Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics More ❯

Role: 10+ years of experience in Cyber security Designing & implementation on Network Security, SIEM, SOAR & Threat Intelligence. Key Responsibilities: Lead Sentinel Deployment for OT SOC Architect and implement Microsoft Sentinel across global OT environments to centralize security monitoring and incident response. Log Source Integration Configure and onboard diverse log sources including Nozomi Networks, firewalls, EDR (e.g., Defender … to enhance detection capabilities and contextualize alerts within the OT landscape. Incident Response Automation Design and implement playbooks using Logic Apps to automate incident response workflows for common OT security events. Execution of the use cases on SIEM, SOAR & Threat Intelligence Build custom workbooks and dashboards to visualize OT security posture, threat trends, and SOC performance metrics More ❯

Job Title: Technical Presales Lead - Cyber Security, AI, Enterprise Location: London (Hybrid) Type: Full-time Salary: depending on experience + benefits About the Role We're looking for a Technical Presales Lead to shape and elevate our presales function. This is a unique opportunity for someone who thrives on combining strategic leadership with hands-on technical engagement. You'll … AI/ML Fundamentals: - Knowledge of Natural Language Processing (NLP), model lifecycle management, and explainability techniques. - Ability to articulate how AI models integrate into enterprise workflows and compliance frameworks. Security & Compliance: - Strong grasp of SOC 2, ISO 27001, GDPR, and enterprise security best practices. - Understanding of identity and access management (IAM), encryption standards, and secure API design. Integrations … trusted technical advisor in customer meetings, supporting strategic deals and proof-of-value (POV) engagements. * Own the Technical Narrative: Clearly articulate the value of our AI technology, platform architecture, security posture, and integration capabilities. * Create High-Impact Assets: Build demo environments, technical guides, and reference architectures that simplify complex concepts for senior stakeholders. * Collaborate Cross-Functionally: Work closely More ❯

What We Are Looking For As a Red Team Specialist focused on GenAI models, you will play a critical role in safeguarding the security and integrity of commercial cutting-edge AI technologies. Your primary responsibility will be to analyze and test commercial GenAI systems including, but not limited to, language models, image generation models, and related infrastructure. The objective … and deliver actionable insights that strengthen AI models and guardrails against potential threats. Key Responsibilities Execute sophisticated and comprehensive attacks on generative foundational models and agentic frameworks. Assess the security posture of AI models and infrastructure, identifying weaknesses and potential threats. Collaborate with security teams to design and implement effective risk mitigation strategies that enhance model resilience. … Apply innovative testing methodologies to ensure state-of-the-art security practices. Document all red team activities, findings, and recommendations with precision and clarity. Must-Have Proven track record in AI vulnerability analysis. Strong understanding of AI technologies and underlying architectures, especially generative models and frameworks. Minimum of 5 years of experience in offensive cybersecurity, with a focus on More ❯

What We Are Looking For As a Red Team Specialist focused on GenAI models, you will play a critical role in safeguarding the security and integrity of commercial cutting-edge AI technologies. Your primary responsibility will be to analyze and test commercial GenAI systems including, but not limited to, language models, image generation models, and related infrastructure. The objective … and deliver actionable insights that strengthen AI models and guardrails against potential threats. Key Responsibilities Execute sophisticated and comprehensive attacks on generative foundational models and agentic frameworks. Assess the security posture of AI models and infrastructure, identifying weaknesses and potential threats. Collaborate with security teams to design and implement effective risk mitigation strategies that enhance model resilience. … Apply innovative testing methodologies to ensure state-of-the-art security practices. Document all red team activities, findings, and recommendations with precision and clarity. Must-Have Proven track record in AI vulnerability analysis. Strong understanding of AI technologies and underlying architectures, especially generative models and frameworks. Minimum of 5 years of experience in offensive cybersecurity, with a focus on More ❯

Portsmouth Hybrid : 3 days onsite a week Permanent Cyber Security Assurance Manager Location: Portsmouth, UK Hybrid: 3 days onsite per week Salary: Up to £65,000 Employment Type: Permanent Job Summary: Our client, a leading IT services and consulting firm, is seeking a Cyber Security Assurance Manager to ensure their SOC meets and maintains top security certifications … activities, supporting RFIs, RFPs, and client audit requests Deliver training and awareness sessions on SOC assurance standards to internal teams Develop customer-facing assurance documentation demonstrating the organisation's security posture Lead the delivery and ongoing maintenance of SOC-related certifications (SOC 2 Type II, SOC 3, ISO/IEC 27001, Cyber Essentials Plus, CREST) Embed certification requirements … strategy Drive continuous improvement in assurance processes and evidence collection efficiency Produce regular reports and dashboards on certification status, audit outcomes, and assurance performance Collaborate with SOC operations, Information Security, Risk & Compliance, and Commercial teams Essential Qualifications & Requirements: Proven experience delivering and maintaining cybersecurity certifications (ISO/IEC 27001, SOC 2 Type II, Cyber Essentials Plus, CREST) Strong understanding More ❯

customer (digital service user) experience and service responsiveness, with a focus on purpose and the need to maximise service user productivity and effectiveness Improvement of performance, availability, reliability, and security, of service under-pinning technologies (Hosting & Data Centres, Compute, Storage, Networking, End User Computing) Visible leadership to the digital and information teams, deputising for the CDIO as required, and … their remit deliver on strategic, operational and regulatory objectives. Develop and deliver the technical strategy for the Trust in conjunction with the Head of Enterprise Architecture including, systems and security architecture, integration, cyber-security posture, Effective management, reporting, accountability and compliance for all aspects of Cyber & IT Security including compliance with law and guidance, and resolution … of Cyber & IT security risks and law issues About us The Northern Care Alliance NHS Foundation Trust (NCA) provides hospital and integrated health and social care services to over one million people living across Greater Manchester. Our 20,000 colleagues care for people in hospital and in the community, working across Bury, Rochdale, Oldham and Salford, to save and More ❯

Location: Belfast Workplace: Hybrid The opportunity: The Security Vulnerability and Penetration Testing Engineer will oversee and serve as a technical resource for all assessment activities related to the security posture of existing and proposed firm systems, platforms, and processes to protect and continually improve the confidentiality, integrity, and availability of information systems per the firm's business … objectives, regulatory requirements, and strategic goals. Main responsibilities: Perform security penetration testing of the Firm's systems, platforms, and applications Serve as a Subject Matter Expert (SME) for the VAPT function Serve as the system owner for common VAPT toolsets, platforms, and processes Provide technical assessment reports that are easily understandable by the target audience and include practical and … based upon sound risk management principles Skills and experience: A Computer Science bachelor's degree or substantially equivalent experience CISSP is required GIAC GPEN or GWAPT is preferred Offensive Security OSCP is required Commanding knowledge of VAPT concepts and best practices, including the requirements for WhiteHat/ethical hacking Expert understanding of the difference between a vulnerability assessment and More ❯

passionate and experienced Vulnerability Lead to shape and lead the creation and ongoing operation of our comprehensive vulnerability management program. This is a unique opportunity to establish a critical security function, define best practices, and significantly enhance our overall security posture. A key aspect of this role involves the end-to-end management and continuous improvement of the … vulnerability management programme. This includes defining scanning strategies, conducting risk-based triage and prioritisation, overseeing remediation efforts, and providing actionable reporting to enhance the Engine's security posture. What you'll get to do Conduct vulnerability scans regularly and proactively as needed. Validate findings and use a risk-based approach. Enrich findings with threat intelligence and business impact to … resolver groups by triaging and prioritising vulnerabilities to facilitate timely resolution of outstanding findings using a risk based approach Track and manage remediation through to closure with Technology and Security teams. Ensure timely patching of critical vulnerabilities in line with SLAs. Ensure visibility across the technology estate, including cloud environments. Coordinate scanning and coverage of data centre estate, cloud More ❯

Ready to take the lead in safeguarding complex digital ecosystems? Join a specialised cybersecurity consultancy dedicated to protecting organisations through advanced threat detection, incident response, and security architecture expertise. The organisation is recognised for its proactive approach to risk management and its commitment to delivering resilient, compliant, and secure technology environments. The team is hiring a Senior Cyber Security … lead investigations, analyse threats, and enhance defensive capabilities across diverse client infrastructures. The role will focus on identifying vulnerabilities, responding to incidents, and implementing best practices to strengthen overall security posture. Defend the future by staying one step ahead of cyber threats. Apply now! Key Responsibilities Oversee and deliver high-quality client engagements Risk and maturity assessments Cyber due … and trust Contribute to team culture by being an enthusiastic, supportive, and proactive member Requirements 2+ years' experience in a consulting environment or 3+ years' experience in an information security, cyber, or risk role within industry or government. Governance, Risk, and Compliance (GRC) OT Security/Industrial Control Systems Cyber protection of complex IT estates Incident response, crisis More ❯

protection solutions across Microsoft 365, Azure, and hybrid environments. You will be instrumental in helping clients secure their data estates, especially in AI-enabled environments, using Microsoft’s full security stack and Data Security Posture Management (DSPM) capabilities. This is a client-facing, delivery-focused role with opportunities to contribute to pre-sales, solution shaping, and thought More ❯

Employee Senior Threat Detection Specialist Location: London Happy to talk flexible working The Opportunity As we focus on transformation across the organisation, we’re also investing in our cyber security capabilities to keep our people, data, and customers safe. That’s why we’re building a new Detection Engineering function—and we’re looking for a talented and driven … and accuracy. Build and tune custom detection logic for complex environments and emerging threats. Monitor evolving attacker tactics (TTPs), integrating insights into detection and prevention strategies. Collaborate across Cyber Security, Engineering, and Global IT teams to enhance security posture and incident response. About you Strong experience across both offensive and defensive cyber security disciplines. Deep understanding … of attacker tactics, techniques, and procedures (TTPs), with expertise in the MITRE ATT&CK Framework. Hands-on technical knowledge in cyber detection engineering, security tools, and infrastructure. Skilled in Detection-as-Code and experienced with SIEM query languages. Confident communicator with experience working alongside global technical teams and senior stakeholders. Proactive, collaborative, and driven by curiosity and continuous improvement. More ❯

Job Description Core Purpose To lead the technical design, development, and delivery of the Originate SaaS suite of products while aligning engineering execution with business goals, ensuring scalability, security, reliability, and maintainability. Your contribution Key Responsibilities 1. Technical Leadership • Architect secure, high-availability systems with compliance in mind (e.g., PCI DSS, SOC 2, ISO 27001). • Ensure robust encryption … from design to deployment and maintenance. • Ensure on-time delivery by identifying and mitigating risks early. • Champion CI/CD practices and ensure smooth, automated deployment pipelines. 5. Reliability, Security, and Observability • Own the uptime, latency, and performance SLAs of financial APIs and services. • Proactively monitor risk vectors and enforce observability via metrics, logging, and alerting. • Work with DevSecOps … to embed security testing into the CI/CD pipeline. 6. Stakeholder Communication • Serve as the main technical point of contact for the Origination product suite. • Communicate progress, challenges, and trade-offs with both technical and non-technical stakeholders. • Present architectural proposals and technical updates to leadership. What makes you stand out Key Skills & Competencies Technical • Strong grasp of More ❯

wide cloud platform while minimising disruptions. Participate in the migration of infrastructure from AWS to Google Cloud Platform (GCP), ensuring a smooth transition and leveraging GCP services effectively. DevOps & Security: Maintain robust CI/CD pipelines, collaborating closely with development teams to streamline deployment processes. Maintain and enhance our security posture, ensuring compliance with industry standards and More ❯

Job Description- About the team Our team isaccountable for security within the mobile channel. Weprovide a suite of mobile security components,that provides an all-round security posture in mobile appsincluding associated services (penetration testing, obfuscation, consultancy etc.). Our mission is tobuild a scalable, adaptable, and proactive approach to securing customers mobile apps, enabling mobile … meet demanding NFRs Desirable knowledge & experience Experience of JAVA development Experience with cryptography frameworks in go and JAVA Experience with SQL databases Experience and/or Interest in application security and/or mobile app security. Experience with cloud environments including DevOps functions and pipelines More ❯

A leading fintech company is seeking a Lead AppSec Engineer to join their established team. Youll be instrumental in embedding security into every stage of the software development lifecycleguiding engineers, shaping best practices, and driving secure, scalable solutions across our platform. Key Responsibilities: Security Advisory : Serve as the go-to expert for application security across engineering teamsproviding … hands-on guidance, resolving concerns, and fostering a security-first mindset. DevSecOps Enablement : Promote and implement secure development practices across CI/CD pipelines, secrets and key management, dependency management, and secure design. Vulnerability Management : Lead vulnerability remediation effortstriaging findings, prioritizing risks, and partnering with teams to deliver effective, pragmatic fixes. Tooling & Automation : Integrate security tools (e.g., SAST … DAST, SCA, secrets scanning) into developer workflows, ensuring automation is both scalable and developer-friendly. Cloud Security Collaboration : Work alongside infrastructure teams to ensure secure configuration of AWS and Azure environments, with a focus on IAM, network security, encryption, and observability. Architecture & Design Reviews : Provide input and recommendations to ensure new services and features are secure by design. More ❯

Information Security Analyst – Leading UK Construction Company A leading UK construction and development firm is looking for a proactive Information Security Analyst to join their IT Infrastructure team. This is a key role focused on strengthening cybersecurity, managing key security platforms, and supporting compliance initiatives. Key responsibilities: Monitor and manage network defence and vulnerability testing tools. Administer … the cybersecurity awareness training platform and drive engagement. Support data protection and compliance activities. Conduct infrastructure security reviews and risk assessments. Collaborate with internal teams and external partners to enhance security posture. Ideal experience: Background in information security or infrastructure engineering. Strong understanding of network security, threat detection, and incident response. Familiarity with vulnerability testing and … security awareness tools. Knowledge of GDPR and ISO27001 frameworks. Relevant certifications (CISSP, CISM, or CompTIA Security+) beneficial. Location: Northampton – full-time, office-based? Type: PermanentIf you’re passionate about cybersecurity and want to make an impact within a forward-thinking construction environment, get in touch to find out more. More ❯

Strategy that aligns to the overall executive business strategy moving forward Around their4 Strategic Key Pillarsof: 1. Digital Access & Trust 2. Data & Insight 3. Core Systems & Technology 4. Governance & Security This spans the current technical environment to include - Infrastructure, Cloud, Security, Project, Data, BI and Product As well as ways of working people structure and future proofing the … for how digital experiences work & drive the development of digital services that significantly enhance the experience of both customers & colleagues. Cybersecurity & Risk Management -Maintain and strengthen a robust cyber security posture, ensuring the organisation remains resilient in the face of evolving threats Leadership & Culture Build and develop high performing teams Financial Stewardship Ownership & full budgetary responsibility You are … transformation & delivery focus Demonstrable success in leading enterprise-wide change programmes and PMO functions. Strong understanding of data strategy, analytics platforms, and digital enablement. Expertise in cloud infrastructure, cyber security, and enterprise systems. Excellent stakeholder engagement and communication skills, with the ability to influence at Board and Executive level. Track record of building high-performing teams and leading through More ❯

aerospace in a place where youll feel supported, inspired, and encouraged to grow. The role of a Cybersecurity Training and Awareness Specialist is pivotal in fostering a culture of security within an organization. This specialist is responsible for developing and implementing comprehensive training programs that educate employees about cybersecurity best practices, potential threats, and the importance of maintaining a … secure digital environment. By analysing user engagement and training effectiveness, they continuously improve the content to ensure it remains relevant and impactful. This role not only enhances the overall security posture but also empowers employees to be proactive in safeguarding sensitive information. The Cybersecurity function's goals Build a clear and practical framework to guide cybersecurity training and … Isle of Wight, Bristol, or Luton. With a preference for someone to be based at the East Cowes, Isle of Wight office with the rest of the UK Cyber Security team. Travel will be an expectation for this role so a Full UK Driving License would be beneficial. From day one, youll take part in a structured onboarding and More ❯