151 to 175 of 307 Security Posture Jobs in the UK

Role Overview: We are looking for a DevOps Engineer to strengthen our clients security-first infrastructure and drive their technology platform forward. You will be responsible for implementing and maintaining robust Infrastructure as Code (IaaC) solutions while ensuring compliance with ISO27001 and medical device regulations. In this role, you … will architect and maintain our cloud infrastructure on Azure, focusing on security, scalability, and automation. This includes managing our CI/CD pipelines, implementing comprehensive monitoring solutions, and ensuring our infrastructure meets the highest security standards. You'll work closely with our engineering team to implement DevSecOps practices … and maintain our SaaS platform's reliability and performance. A key focus will be on strengthening our security posture through automated compliance checks, regular security audits, and infrastructure hardening. You'll also be responsible for implementing and maintaining disaster recovery solutions, managing access controls, and ensuring our More ❯

Technical Head of Information Security required for financial services firm. The role will be both strategic and technically hands on as it's a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company … goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership updated on security posture and key metrics. Build relationships with security leaders in … threats and trends. Ensure compliance through audits and incident response exercises. Collaborate with tech teams to ensure secure software and infrastructure. Manage third-party security vendors and track their performance. Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security More ❯

to take your career to new heights, this opportunity is for you. In a nutshell role is responsible for supporting the governance of information security, ensuring that an appropriate risk, policy and reporting framework is managed to enable Virgin Atlantic Airways to use information safely and in compliance with … role is also responsible for supporting the communication of governance matters with internal and external groups, for example Internal Audit, Technology Leadership Team, Safety & Security, Virgin Group or CPNI. This role ensures robust identification, management, and mitigation of information and cyber security risks across Virgin Atlantic's operations. … With emphasis on risk management activities, third-party supply chain security and the assurance of policy, control, and compliance effectiveness, you'll work across functions to support operational resilience and maintain alignment with global security and regulatory frameworks including: - ISO/IEC 27001:2022 - NIST Cybersecurity Framework - PCI More ❯

this position, you'll spearhead Cyber projects with plans to build your own team in 2025 The role combines two dynamic elements: Core IT Security: Leverage your deep technical expertise to maintain the security of our infrastructure, servers, and systems. From leading our Managed Security Service Providers … MSSPs), building a best-in-class Cyber training and awareness programme, and performing security audits on critical systems. Cybersecurity Governance: Implement governance and frameworks to embed security across the business, across IT, Engineering, and other business verticals, ensuring best-practice configurations become the norm. Your Mission As our … CAB). Manage penetration testing for customer-facing and internal systems, working with internal teams and external partners to implement remediations effectively. Cloud & Application Security Act as the go-to expert for securing Microsoft Azure, ensuring that cloud security requirements are integrated into all new systems and services. More ❯

Marketing structure to reflect that. About the role We are seeking a hands-on IT & InfoSec Manager to own and scale our IT and security functions in a growing FinTech company. As our first in-house IT hire, you will work closely with the CTO to develop IT strategies … and enhance operational efficiency. Partner with the CTO to develop and execute IT strategies aligned with business needs. Plan and budget for IT and security investments, including hardware, software, and services. Work closely with other departments to align IT and InfoSec initiatives with business objectives. Regularly assess the performance … of the MSP, identify gaps, and refine the division of responsibilities between in-house and outsourced IT functions. Information Security Develop, implement, and enforce information security policies, procedures, and best practices. Work with the MSP to implement security-first IT practices. Monitor and respond to security More ❯

Play a key role in shaping IT security strategy! Work to develop policies, manage risks, and drive security innovation. Ideal for those with extensive experience in cyber and information security and a passion for safeguarding digital assets. Overview job description: Working directly with the IT Manager, this … role ensures IT Security by developing policies, managing risks, monitoring incidents, and ensuring compliance. Main duties and responsibilities: Working within IT strategy in support of the company's mission and core objectives. Developing IT security policies and procedures. Continuously evaluating the IT security posture of the … organisation, identifying areas for improvement and implementing changes accordingly. Establishing and developing solution architecture for IT security and end-user service domains, ensuring security is integrated into all aspects of the organisation's IT. Driving and facilitating vulnerability management and secure the design of IT services. Monitoring, identifying More ❯

Technical Program Manager, Application Security Amazon Application Security is looking for a security-focused Technical Program Manager who wants to make a difference and support Amazon builders to ensure that protecting customer data is at the forefront of all development. Our team approaches security challenges with … and curiosity to help Amazon builders identify areas of improvement and learn how to navigate the highly dynamic space of application security. Amazon Application Security focuses on enabling our builders to provide a secure and trustworthy experience to our customers without compromising the overall customer experience. In this role … you will work directly with security teams and Amazon builders providing direct front line support and security expertise to Amazon teams. You'll also find this role will routinely challenge your background in technical product ownership, process development, operational and management skills, project management, critical thinking, relationship-building More ❯

Our client is seeking a Cyber Security Specialist with expertise in ManageEngine products to strengthen their IT security operations. This is a fantastic opportunity to play a key role in securing enterprise systems, managing vulnerabilities, and ensuring compliance with industry standards. Location: Bridlington, East Yorkshire (On-site … days per week Monday to Friday) Competitive, depending on experience Key Responsibilities Implement and manage ManageEngine security solutions, including Log360 (SIEM), AD360 (IAM), and Endpoint Central. Monitor and analyze security logs to detect and respond to threats. Oversee identity and access management (IAM), including Active Directory security … and privileged access management (PAM). Conduct vulnerability assessments and manage patch deployment using Vulnerability Manager Plus and Patch Manager Plus. Ensure compliance with security frameworks such as ISO 27001, GDPR, and NIST. Collaborate with IT teams to strengthen security posture and improve incident response. Key Requirements More ❯

You will need to login before you can apply for a job. Security Engineer, AWS SOC Incident Response Sector: Technology Role: Professional Contract Type: Permanent Hours: Full Time DESCRIPTION The Amazon Web Services Security Operations Center AWS-SOC Team manages security issues across the globe. The team … is looking for a highly motivated, technically inclined individual to work as a Security Engineer. A successful candidate will need to embody our 16 leadership principles; especially in Learn and Be Curious, Earns Trust, and Dives Deep. You will work from the LHR14, London SOC location. You need to … be comfortable working in a dynamic technical, and at times, ambiguous environment. Key job responsibilities Detect, monitor and analyze security alerts from various sources to detect and respond to potential threats in real-time. Develop, implement, and fine-tune detection rules and correlation logic to improve threat detection capabilities. More ❯

December 2026. Purpose of Role: To be responsible for protecting the organisation's network and data from cyber-attacks by identifying, analysing and mitigating security threats. This role requires an in-depth knowledge of cyber threats, vulnerabilities, and current security trends. The ideal candidate will be able to … work independently and as part of a team. The candidate will demonstrate strong analytical and problem-solving skills. Reporting to the Cyber security Lead, you will cover mainly the operational dimension of CPEL Cyber security. The role will collaborate with the Managed Cyber security Service Provider MSSP to … companies to ensure they are resilient against cyber threats. CPEL has around 5600 information technology assets and around 1000 operational technology assets. Their cyber security needs to be managed to reduce the cyber risk to CPEL as much as possible. This role is required to help protect sensitive information More ❯

Information Security Specialist – Central Belt, Scotland 📍 Location: Central Belt (Hybrid working available) 💼 Salary: Competitive + Comprehensive Benefits Package 🕒 Type: Full-Time | Permanent Are you ready to take on a hands-on role protecting business-critical systems and data from evolving cyber threats? We’re seeking a technically skilled Information … Security Specialist to join our team and lead the implementation and operation of essential security controls that underpin our enterprise infrastructure. This is a fantastic opportunity to apply your deep technical knowledge in a complex and varied environment, supporting business-wide initiatives while developing and maturing our security posture. 🔧 Key Responsibilities Deliver technical expertise for the implementation and ongoing operation of information security technologies, ensuring controls meet business and compliance standards Provide in-depth technical support for the identification, investigation, and resolution of security vulnerabilities and threats Work with internal support teams to advise and More ❯

Exciting news for Splunk Engineers! We are rapidly growing our customer base due to the increasing demand for advanced data analytics, security monitoring, and operational intelligence solutions. Are you the Splunk Engineer we need, who can own the design, documentation and installation of security monitoring tools/platforms … that will provide data to the Sopra Steria Security Operational Centre (SOC) for analysis. This role IS pivotal in ensuring that we have the accurate tooling operating, so we provide protection and monitoring of our clients. Collaborate with multi-functional teams to assess risks, design controls, and define testing … requirements. This is a superb opportunity to continue developing your hands-on experience in the field of cybersecurity while contributing to the overall security posture of the organisation. You do ned to be eligible for SC and NPPV Clearance. Office based in Hemel Hempstead. On call 1 week More ❯

engineering teams on a day-to-day basis to ensure applications and products have been developed and deployed securely. You will continue to champion security best practices, working closely with engineering teams and managers to ensure we develop secure products. . Reporting to the Head of DevSecOps, you will … be directly influencing the security posture of the applications and products across the company to ensure that security plays a key part in the development and engineering life cycles. The Role You will manage and develop a team of DevSecOps engineers, guiding them through the delivery of … your strategy. You'll help develop and drive the DevSecOps strategy, continuing to integrate security into the whole lifecycle of development. Whether it's software or infrastructure you'll be the go to expert on point. You'll be responsible for the DevSecOps engagement plan, to educate engineers by More ❯

to make the world work better for our employees and customers when you work in ServiceNow Digital Technology, you work for them. The ServiceNow Security Organization delivers world-class, innovative security solutions to reduce risk and protect the company and our customers. We create an environment where our … high expectations and a career at ServiceNow means challenging yourself to be better. Position Overview: We are seeking a dynamic and experienced Information Staff Security Contracts Manager to join our team. In this critical role, you will be a primary driver in ensuring that ServiceNow's security contract … process aligns with our information security principles and architecture. As a pivotal part of our team, you will collaborate closely with our legal team, various stakeholders, and cross-functional teams across the organization to shape contractual language that reflects our current security stance, thereby minimizing risks to both More ❯

On behalf of DWP, we are looking for a Head of Security Design for a 12 month (Inside IR35) contract. Hybrid working with 2 days per week required in London, Manchester, Leeds or Newcastle. The Department for Work and Pensions (DWP) is responsible for welfare, pensions, and child maintenance … including the most vulnerable in society. Improve the experience of our services while maximising value for money for the taxpayer. As a Head of Security Design, your main responsibilities will be: Provide leadership to ensure effective security and fraud risk expertise, advice, and support is delivered to include … business managers, Senior Risk Owners, and the Working Age Services SLT within DWP. Establish and manage the Working Age Services security posture and initiatives, ensuring the protection of information assets from internal and external threats. Develop, manage, and enhance the fraud risk management framework to minimize the department More ❯

Penetration Tester Position Description CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. … At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk … Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel More ❯

Job Description Penetration Tester Position Description CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and … many more. At CGI, you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas … including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure More ❯

Role Title: Cyber Security Engineer - Penetration & Vulnerability Testing Client Details: Oliver James has partnered with a leading distribution organisation with a strong market presence and significant investment in their IT security strategy. They are expanding their Cybersecurity team to enhance their vulnerability management and testing capabilities. This is … an exciting opportunity for an experienced Cyber Security Engineer to contribute to strengthening the organisation's security posture through targeted vulnerability assessments and penetration testing, primarily focused on Microsoft Azure and associated technologies. Description: The Cyber Security Engineer will play a critical role in identifying and … mitigating security vulnerabilities across the organisation's technology estate. You will lead regular vulnerability assessments, conduct penetration tests, and work collaboratively with IT teams to address risks and improve security standards. Key Responsibilities: Perform penetration testing and vulnerability assessments across cloud and on-premises environments. Focused security More ❯

for current and new clients, supporting engagements across multiple sectors and technical environments. This hands-on, client-facing position focuses on control implementation, infrastructure security hardening, technical remediation, and cyber risk reduction. You will be expected to work independently while maintaining alignment with industry standards and client requirements. Responsibilities … across a wide range of client environments, ensuring alignment with industry standards and regulatory requirements. Perform system and infrastructure hardening activities, including configuration reviews, security baseline application, and policy enforcement across cloud, on-premises, and hybrid environments. Conduct technical control assessments, gap analysis, and remediation planning to address vulnerabilities … mechanisms. Collaborate with client stakeholders and internal teams to provide actionable guidance and implementation support tailored to specific business and regulatory contexts. Contribute to security design reviews and technical workshops, offering practical insights to improve client security posture and delivery assurance. Provide clear and concise technical documentation More ❯

take your career to new heights, this opportunity is for you. In a nutshell The role is responsible for supporting the governance of information security, ensuring that an appropriate risk, policy, and reporting framework is managed to enable Virgin Atlantic Airways to use information safely and in compliance with … role is also responsible for supporting the communication of governance matters with internal and external groups, such as Internal Audit, Technology Leadership Team, Safety & Security, Virgin Group, or CPNI. This role ensures robust identification, management, and mitigation of information and cybersecurity risks across Virgin Atlantic's operations. With an … emphasis on risk management activities, third-party supply chain security, and the assurance of policy, control, and compliance effectiveness, you'll work across functions to support operational resilience and maintain alignment with global security and regulatory frameworks including: ISO/IEC 27001:2022 NIST Cybersecurity Framework PCI-DSS More ❯

driving laws, to being an industry leader in pricing sophistication, telematics, and, more recently, device and identity protection. Your role in the team The Security Data Insights Managing Engineer architect and design security metrics and data insights used to communicate the security posture of information security … direct reports on administrative policies and procedures, risks, issues, problem resolution, sourcing decisions, budgets, and priorities. Key Responsibilities Leads the effort of shaping the security metrics across the information security department. Participate in product scoping, discovery and framing, and inceptions providing technical input and helps translate user features … deployment pipelines and practices. Leads and participates in knowledge sharing and contributes to the overall growth of the collective knowledge of the Allstate Information Security community. Essential Skills Must have the legal right to work In the United Kingdom Possess a broad knowledge of risk and security. Be able More ❯

Intelligence Specialist, you will proactively identify, analyse, respond, and mitigate cyber threats that pose risks to Vanquis Banking Groups cybersecurity posture. This involves monitoring security events, conducting incident response activities, enhancing our threat detection capabilities, and ensuring compliance with policy, standards, and regulation. Your contributions will directly impact our … Intelligence Specialist, you will: Actively participate the delivery of services provided by the Cyber Intelligence Centre including by not limited to Cyber Threat Intelligence, Security Posture Management, Cyber Security Incident Response, Threat Hunting, Penetration Testing & Red Team Testing, and Cyber Risk Mitigation. Incorporate threat intelligence into CIC … activities. Collaborate and assist with the investigation and resolution of complex security incidents. Support the delivery of retrospective improvements based on incident analysis, RCAs and PIRs. Engage with third-party security partners to enhance and mature services. Maintain centralised processes across all VBG product lines, promoting synergy and More ❯

The Role The Principal Security Consultant is a senior leader specialising in designing, implementing and managing advanced security solutions. With expertise in SOC engineering tools and one of either Cloud Security, Identity and Access Management (IAM) or Threat Modelling, this role focuses on enhancing the security posture of organisations. The consultant will lead strategic security initiatives, collaborate with clients or stakeholders to solve complex challenges, and deliver solutions tailored to modern enterprise needs. Design and implement robust cloud security architectures across multi-cloud platforms (AWS, Azure, Google Cloud). Design and deploy … mitigate risks in systems and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security, with a significant portion in a leadership role. A More ❯

The Role The Principal Security Consultant is a senior leader specialising in designing, implementing and managing advanced security solutions. With expertise in SOC engineering tools and one of either Cloud Security, Identity and Access Management (IAM) or Threat Modelling, this role focuses on enhancing the security posture of organisations. The consultant will lead strategic security initiatives, collaborate with clients or stakeholders to solve complex challenges, and deliver solutions tailored to modern enterprise needs. Design and implement robust cloud security architectures across multi-cloud platforms (AWS, Azure, Google Cloud). Design and deploy … mitigate risks in systems and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security, with a significant portion in a leadership role. A More ❯

There are lots of opportunities to grow with the business. Your new role This is a genuinely interesting opportunity to enhance the organisation's security posture, at a good time when the company is expanding and is in need of expertise and guidance. This role will focus on … information security policies, procedures, playbooks, and assurance. The company has recently moved into a new office. They're in the process of improving their benefits package, which is already strong. You will bring confidence and expertise in how the organisation can improve their cybersecurity strategy. You will be the … first 100% cyber and infosec-focussed employee. Key parts of the role: Develop, implement, and maintain security policies, procedures, and protocols. Monitor, analyse and investigate security alerts, responding appropriately, documenting findings and collaborating with relevant teams. Conduct regular security assessments, audits and penetration tests to identify potential More ❯