51 to 75 of 331 Security Posture Jobs in the UK

About Bridewell One of the most exciting prospects in the UK cyber security sector today, Bridewell is a leading cyber security services company specialising in protecting and transforming critical business functions for some of the world's most trusted organisations. We are the trusted partner for operators of essential services and provide end-to-end cyber security capabilities that help our clients overcome their security challenges, allowing them to operate safely and securely. Bridewell holds the Gold level, Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly one team. Who are we looking for? We are looking for an experienced Project Manager who can lead and … projects at any one time, with proven experience engaging and managing relationships with various stakeholders, including clients, vendors, and internal teams. Ideally, you'll have worked with a Cyber Security services provider or within a Cyber Security function, with knowledge of Cyber Security principles, standards, and technologies desirably resulting in at least a foundation level qualification (e.g. More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations … security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF … and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and provide evaluation and treatment options, consultation on remediation approaches to More ❯

Job information: Functional Title - IT Security Specialist Department – Security Governance and Risk Management Corporate level – Associate Vice President Report to – Director of Security Location - London, onsite 2 days per week About the role: The individual will be part of the security function that is responsible for security governance, risk and assurance, to ensure the organisations … security posture is robust, compliant against the security policy, standards and controls. The position will require close collaboration with technical, operational, compliance and audit teams to create a secure and compliant technology environment. What you will be doing: Maintain security policy, standards, procedures and frameworks. Ensure alignment with security industry standards such as NIST CSF … and NIST 800-53. Act as an advisor to colleagues across the organisation on best security practice. Conduct regular risk assessments and maintain risk register in RSA Archer. Identify assess and prioritize security risk across the organisation’s information assets and environments. Understanding security gaps and provide evaluation and treatment options, consultation on remediation approaches to More ❯

The Role As a Security Operations Engineer in the IT Operations team, you will be responsible for maintaining and enhancing our company's security posture. About Suits Me Suits Me is a multi-award-winning, ethical fintech dedicated to promoting financial inclusion and equal opportunity. We provide an innovative alternative to traditional banking that’s built to serve … a safe, accessible, and modern way to manage their money, regardless of background, income, or employment status. What you’ll be doing Monitor and maintain the company's IT security infrastructure using Microsoft Defender and other security tools. Respond to and investigate security alerts, performing root cause analysis and remediation. Develop and maintain operational documentation, runbooks, and … secure and efficient identity and access management practices, including integration with M365 and Azure AD. Contribute to incident response planning and participate in post-incident reviews. Continuously improve IT security posture by identifying gaps and implementing effective solutions in line with best practices and regulatory guidance. Configure, deploy, maintain, troubleshoot and support computer workstations, laptops, printers, and other More ❯

Location: Manchester (hybrid) The Role As a Security Operations Engineer in the IT Operations team, you will be responsible for maintaining and enhancing our company's security posture. About Suits Me Suits Me is a multi-award-winning, ethical fintech dedicated to promoting financial inclusion and equal opportunity. We provide an innovative alternative to traditional banking that's … a safe, accessible, and modern way to manage their money, regardless of background, income, or employment status. What you'll be doing Monitor and maintain the company's IT security infrastructure using Microsoft Defender and other security tools. Respond to and investigate security alerts, performing root cause analysis and remediation. Develop and maintain operational documentation, runbooks, and … secure and efficient identity and access management practices, including integration with M365 and Azure AD. Contribute to incident response planning and participate in post-incident reviews. Continuously improve IT security posture by identifying gaps and implementing effective solutions in line with best practices and regulatory guidance. Configure, deploy, maintain, troubleshoot and support computer workstations, laptops, printers, and other More ❯

Giacom makes it really simple for technology resellers and MSPs to access everything they need to create brilliant technology solutions for UK businesses. Forming a core part of the Security team this is a hands-on role offering the successful candidate the opportunity to hone their skills whilst working to secure our cloud estate. We are seeking a Cloud … Security Engineer who will provide security expertise for our cloud infrastructure. You will collaborate with DevOps and engineering teams to design, build, and maintain security services, ensuring compliance with relevant regulations and industry standards. Key responsibilities include improving security monitoring and automation across our AWS and Azure infrastructure and supporting ongoing security operations. You will … also proactively assess our systems for vulnerabilities and work with stakeholders to embed security standards and best practices. What you'll be doing: Responsible for the continued development and improvement of our cloud security posture; by providing security expertise and guidance on our cloud infrastructure Work with the Cloud Infrastructure team - AWS and Azure to ensure More ❯

office. Purpose of the Role Primark Technology is on a transformation journey supporting the business strategy which includes modernising our operating model as well as technology architecture and Cyber Security and Risk posture. This role is key in building and improving Primark's Cyber Security posture. Duties & Responsibilities Actively progress and improve Primark's cyber security posture … Agile delivery methodology and development methods Certified with appropriate qualifications is desirable, 1. Structured Project Management : Prince/PMP 2. Agile certification, such as Scrum, SaFe, AgilePM 3. Information Security/Data Protection certification An appropriate degree, equivalent qualification or experience Desirable Be a passionate and visionary technologist able to inspire others to challenge and disrupt the current reality … ways to translate that into business opportunities. Be able to take people along with you, empowering new ways of working and successfully executing on those opportunities. Have extensive cyber security delivery and programme/project management experience, Retail experience would be beneficial. Be technically strong across a range of IT disciplines and systems, including cloud and network security. Have More ❯

GTF is currently hiring an CyberSecurity Consultant to work remotely. As a cybersecurity consultant, your key responsibilities revolve around helping organizations protect their digital assets and improve their overall security posture. Key responsibilities: Conducting comprehensive security assessments: This involves evaluating an organization's IT infrastructure, networks, systems, and applications to identify potential weaknesses and vulnerabilities. Performing vulnerability testing … Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing threat analysis schedules and staying updated on emerging threats: Keeping abreast of the latest attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and procedures: This includes creating guidelines aligned with industry best practices and regulatory requirements (e.g., NIST CSF, ISO … GDPR). Designing and architecting secure IT environments: This may involve network security design, cloud security architecture (AWS, Azure, GCP), and implementing security technologies. Developing and assisting in the implementation of incident response plans: Creating documented procedures for handling security breaches and other incidents. Conducting tabletop exercises and simulations: Helping organizations practice their incident response procedures. More ❯

Information Security/Information Privacy SME (Contract) Location: Central London (Hybrid – 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6–12 months (with potential extension) Industry: Private Banking/Wealth Management Role Overview: We are seeking a highly experienced Information Security/Information Privacy Subject Matter Expert (SME) to support a leading private bank … and customer data remain secure and compliant with applicable standards (e.g., ISO 27001, GDPR, FCA requirements). Key Responsibilities: Serve as the SME for all matters related to information security and privacy. Advise on the development and maintenance of security policies, procedures, and frameworks. Review and strengthen current information security architecture and controls. Conduct risk assessments, gap … . Provide expert input on GDPR, UK Data Protection Act, and other relevant regulations. Partner with internal stakeholders across legal, compliance, IT, and operations to improve the organisation’s security posture. Assist with incident response planning and investigations as needed. Provide training and awareness support to staff and leadership. Support internal and external audits, including FCA and ISO More ❯

GTF is currently hiring an CyberSecurity Consultant to work remotely. As a cybersecurity consultant, your key responsibilities revolve around helping organizations protect their digital assets and improve their overall security posture. Key responsibilities: Conducting comprehensive security assessments: This involves evaluating an organization's IT infrastructure, networks, systems, and applications to identify potential weaknesses and vulnerabilities. Performing vulnerability testing … Suite, Metasploit), you'll simulate attacks to uncover exploitable flaws. Developing threat analysis schedules and staying updated on emerging threats: Keeping abreast of the latest attack vectors, malware, and security trends is crucial. Developing and implementing security policies, standards, and procedures: This includes creating guidelines aligned with industry best practices and regulatory requirements (e.g., NIST CSF, ISO … GDPR). Designing and architecting secure IT environments: This may involve network security design, cloud security architecture (AWS, Azure, GCP), and implementing security technologies. Developing and assisting in the implementation of incident response plans: Creating documented procedures for handling security breaches and other incidents. Conducting tabletop exercises and simulations: Helping organizations practice their incident response procedures. More ❯

Information Security/Information Privacy SME (Contract) Location: Central London (Hybrid - 2 days onsite per week) Contract: Inside IR35 or Umbrella Engagement Duration: 6-12 months (with potential extension) Industry: Private Banking/Wealth Management Role Overview: We are seeking a highly experienced Information Security/Information Privacy Subject Matter Expert (SME) to support a leading private bank … and customer data remain secure and compliant with applicable standards (e.g., ISO 27001, GDPR, FCA requirements). Key Responsibilities: Serve as the SME for all matters related to information security and privacy. Advise on the development and maintenance of security policies, procedures, and frameworks. Review and strengthen current information security architecture and controls. Conduct risk assessments, gap … . Provide expert input on GDPR, UK Data Protection Act, and other relevant regulations. Partner with internal stakeholders across legal, compliance, IT, and operations to improve the organisation's security posture. Assist with incident response planning and investigations as needed. Provide training and awareness support to staff and leadership. Support internal and external audits, including FCA and ISO More ❯

The team you'll be working with: Security Consultant (GRC) NTT DATA is one of the world's largest global security service providers, partnering with some of the most recognized security technology brands. We're looking for passionate, curious, and motivated individuals to join our team. What you'll be doing: Using your background in Governance, Risk … will help our clients: Governance: directs, oversees, designs, implements or operates within the set of multi-disciplinary structures, policies, procedures, processes and controls implemented to manage cyber and information security at an enterprise level. Supporting an organisation's immediate and future regulatory, legal, risk, environmental and operational requirements and ensuring compliance with those requirements. Policy and Procedure Management: directs … develops or maintains organisational cyber and information security policies, standards and processes, using recognised standards (e.g. the ISO/IEC 27000 family, NIST CSF) where appropriate. Applies recognised cyber and information security standards and controls within an organisation, programme, project or operation. Applies relevant security classification. Risk Management: develops cyber and information security risk management strategies More ❯

Description We are looking for a Lead Cyber Security Engineer - Threat Simulation to be an integral part of our Offensive Security organization and contribute towards improving CME Group's security posture. This role will be responsible for participating in the execution of Red Team cyber exercises of internal and internet facing information systems and infrastructure to identify … misconfigurations and cyber security vulnerabilities that could be exploited by a threat actor to gain unauthorized access to computer systems and data. In addition, the role will require participation in Purple Team exercises to help the Blue Team improve their detection capabilities. This is a perfect opportunity for the right person to become a key part of a team … Participate in purple team exercises that are intelligence driven to test cyber detections Build and maintain Red and Purple team infrastructure, automating functions where possible. Continually research new offensive security tactics, techniques, and procedures and communicate knowledge of the same to other team members . Conduct ad-hoc offensive security testing using industry standard tools and/or More ❯

to Move to Skip to Content Link Select how often (in days) to receive an alert: Create Alert Select how often (in days) to receive an alert: (Senior) Platform Security Engineer - AZURE d/f/m Location(s): Swindon, Wiltshire, GB, SN5 6PB Essen, NW, DE, 45141 RWE Supply & Trading GmbH To start as soon as possible, full … quality code development Operations: daily operational support & financial management, including operational availability, deployment patching, incident resolution, request fulfilment. Your responsibilities Senior technical expert/SME for Microsoft Azure platform security, policies and IT/general security representative for topics within the Cloud & Data Centre team's remit. Be responsible for the detailed design and maintenance for support of … RWE's Cloud and Data Centre (C&DC) security and policies in conjunction with other SME's, Cyber Security, Cloud Service Providers (CSPs) and Managed Service Providers (MSPs). Taking a lead from Cyber Security, create and maintain forward looking roadmaps for Azure security topics. Communicate and define RWE IT requirements and standards to the MSP More ❯

about healthcare, and we plan to be the largest digital primary healthcare platform for people across Europe. About the role We are seeking a motivated and detail-oriented Information Security Engineer to join our team here at ZAVA. In this role, the successful candidate will support the organisation's cybersecurity efforts by assisting with the implementation, monitoring, and maintenance … of security systems and processes. They will work closely with senior security team members to identify vulnerabilities, respond to incidents, and ensure compliance with security policies and frameworks. The role involves hands-on tasks such as configuring security tools, analysing alerts, and supporting investigations into potential threats, as well as contributing to the development ofa secure … IT environment. Additionally, the successful candidate will participate in security awareness initiatives, help document processes, and stay updated on emerging threats and technologies to enhance the organisation's security posture. Key Accountabilities You will be working from home, but you do have the opportunity to come to the office, if you wish. You will use our collaboration tools More ❯

SOC Analyst Mondas Consulting Mondas are looking for a skilled Security Operations Center (SOC) Analyst to strengthen our security team. The ideal candidate will be responsible for monitoring, detecting, and responding to security incidents, as well as conducting thorough investigations to ensure the security of our clients' IT environments. This role requires a proactive and detail … oriented individual with a deep understanding of Cyber Security threats and defences. About Us Our head office located in central Hampshire is the home of our SOC which is the heart and soul of our business identity as a whole. We strive for excellence and our team is full of ambitious, skilled and hard working professionals who all share … the Mondas vision. We are a Cyber Consultancy that specialises in Security prevention and detection. Mondas delivers bespoke Cyber Security Solutions, helping our clients streamline their incident response and recovery process with our automated approach to SOAR, SIEM & MDR. Responsibilities: ? Respond to and manage security incidents, ensuring timely and eff ective resolution ? Conduct in-depth investigations to More ❯

and Compliance Lead (GRC) - Cyber We're partnering with a leading global financial services firm to appoint a Governance, Risk, and Compliance (GRC) Lead into their high-performing Information Security function. GRC Lead - Cybersecurity (Financial Services) London Competitive Package This is an exciting opportunity to join a fast-paced, globally recognised institution with a mature cyber programme and significant … investment in its security posture. As a trusted search partner, we're looking for an experienced and strategic GRC professional who can bring deep subject matter expertise across third-party risk, regulatory compliance, audit readiness, and awareness training. You'll play a pivotal role in helping the firm navigate the evolving threat landscape while maintaining compliance with complex global … Third-party risk platforms (e.g., Venminder, CyberGRX, Upguard) Microsoft O365 suite Why Apply? This is a high-impact role offering direct visibility with senior stakeholders, the chance to shape security posture across a global organisation, and real opportunities for career progression. You'll be supported by a collaborative team culture, continuous learning, and the ability to influence how More ❯

The team you'll be working with: Consultant - Offensive Security Testing Role Overview: We are seeking a highly skilled and experienced Offensive Security Consultant with a strong focus on threat intelligence and attack methods. The ideal candidate will manage and conduct advanced penetration testing engagements, leveraging threat intelligence to simulate real-world attacks across various environments, including OT … applications, cloud infrastructure, and APIs. This role requires a deep understanding of adversarial tactics, excellent communication skills, and the ability to provide strategic, actionable recommendations to enhance our clients' security posture. What you'll be doing: Responsibilities: Lead and manage the full lifecycle of complex penetration testing engagements, applying a threat intelligence-led approach. Execute advanced penetration tests across … and schedule testing engagements based on threat assessments and client needs. Produce clear, detailed reports with technical findings, business impact, and strategic remediation recommendations for diverse audiences. Communicate complex security concepts and threat insights effectively to technical and non-technical stakeholders. Collaborate with client IT and cybersecurity teams to improve security protocols and address vulnerabilities. Monitor remediation efforts More ❯

Job Title: Cyber Security ManagerLocation:Wiltshire, United Kingdom (with some travel required)Salary:£62,000 - £73,000 (depending on experience) + Bonus + Excellent BenefitsClearance:Must be a British National and SC Cleared or EligibleAbout the Role:We are seeking a highly skilled and motivated Cyber Security Manager to lead and enhance our cyber security posture. This … is a pivotal role responsible for overseeing incident management, ensuring compliance with information security standards, and driving cyber assurance across the organisation. You will work closely with the Security Operations Centre (SOC), senior stakeholders, and cross-functional teams to maintain a robust security framework aligned with industry best practices.Key Responsibilities:* Lead and manage cyber security incidents … ensuring timely resolution and root cause analysis.* Oversee the implementation and maintenance of InfoSec and Cyber Security compliance and assurance programs.* Ensure alignment with ISO 27001, NIST, and other relevant security frameworks.* Collaborate with the Security Operations team to monitor, detect, and respond to threats.* Manage governance, risk, and compliance (GRC) activities, including risk assessments and mitigation More ❯

Job Title: Cyber Security Manager Location: Wiltshire, United Kingdom (with some travel required) Salary: £62,000 - £73,000 (depending on experience) + Bonus + Excellent Benefits Clearance: Must be a British National and SC Cleared or Eligible About the Role: We are seeking a highly skilled and motivated Cyber Security Manager to lead and enhance our cyber security posture. This is a pivotal role responsible for overseeing incident management, ensuring compliance with information security standards, and driving cyber assurance across the organisation. You will work closely with the Security Operations Centre (SOC), senior stakeholders, and cross-functional teams to maintain a robust security framework aligned with industry best practices. Key Responsibilities: * Lead and manage … cyber security incidents, ensuring timely resolution and root cause analysis. * Oversee the implementation and maintenance of InfoSec and Cyber Security compliance and assurance programs. * Ensure alignment with ISO 27001, NIST, and other relevant security frameworks. * Collaborate with the Security Operations team to monitor, detect, and respond to threats. * Manage governance, risk, and compliance (GRC) activities, including More ❯

Technical Head of Information Security required for financial services firm. The role will be both strategic and technically hands on as it's a small function. What You'll Do Lead and support a small, global cybersecurity team. Create and manage a strategic security plan aligned with company goals and ISO 27001. Proactively identify and address security risks and threats. Respond to and manage cybersecurity incidents and breaches. Conduct risk assessments, penetration tests, and other security evaluations. Keep senior leadership updated on security posture and key metrics. Build relationships with security leaders in similar firms to stay ahead of threats and trends. Ensure compliance through audits and incident response exercises. Collaborate with … tech teams to ensure secure software and infrastructure. Manage third-party security vendors and track their performance. Run regular training to promote cybersecurity awareness across the company. What You Bring Experience leading high-performing global security teams. Strong understanding of security frameworks and regulations (eg, ISO 27001, NIST, GDPR, DORA). Background in network, cloud (Azure), endpoint More ❯

We’re seeking an Azure Security Architect who will join a well known Insurance Company and be part of the global security architecture and engineering function with twin teams in the US and APAC regions. The successful candidate will be a key technical resource in the Global Cyber and Information Security (GCIS) side of the business. You … ll be responsible for creating security architecture frameworks, design patterns, standards, reference architectures, best practices and technical specifications. The new Azure Security Architect will work closely with other Information Security colleagues, IT & Infrastructure organisations and Business teams globally to provide security architecture guidance and recommendations. This Azure Security Architect position will pay up to … per annum, it comes with a substantial bonus scheme, Company pension, private medical package and much much more! We’re looking for Azure Security Architects that have the following attributes/experience; Extensive commercial experience working with Azure Extensive commercial experience working with networking, firewalls, end point protection, Identity and Access Management and data protection. Strong knowledge of cloud More ❯

We’re seeking an Azure Security Architect who will join a well known Insurance Company and be part of the global security architecture and engineering function with twin teams in the US and APAC regions. The successful candidate will be a key technical resource in the Global Cyber and Information Security (GCIS) side of the business. You … ll be responsible for creating security architecture frameworks, design patterns, standards, reference architectures, best practices and technical specifications. The new Azure Security Architect will work closely with other Information Security colleagues, IT & Infrastructure organisations and Business teams globally to provide security architecture guidance and recommendations. This Azure Security Architect position will pay up to … per annum, it comes with a substantial bonus scheme, Company pension, private medical package and much much more! We’re looking for Azure Security Architects that have the following attributes/experience; Extensive commercial experience working with Azure Extensive commercial experience working with networking, firewalls, end point protection, Identity and Access Management and data protection. Strong knowledge of cloud More ❯

Join Us in BCG Worldwide IT! We are seeking an exceptional data protection expert to play key role in our growing Information Protection team, as an IT Data Protection Security Engineer. You will be part of a growing team, providing world class Security Engineering, Architecture and Operations, driving and supporting improvements globally to our Information Protection Portfolio. You … will be: Engaging collaboratively with application development, data protection, information security, and risk management teams to understand and implement data security solutions. Supporting vendor assessments, including proof of concepts & security technologies research Continuously improving data protection services based on input from a diverse network of internal and external stakeholders, technology teams and security industry at large … difficult and stressful situations with poise, tact and patience, while demonstrating a sense of urgency. What You'll Bring Minimum 8+ years of data loss solutions and/or security engineering experience with large scale globally distributed implementations Extensive experience in data-at-rest and data-in-transit, data security techniques and methodologies Experience of using relevant DLP More ❯

the customer. We use cutting-edge technologies to manage BMC's infrastructure and showcase it to the customers - program is called BMC on BMC! BMC is looking for a Security Engineer to join our amazing global Corporate Cybersecurity team within the IS&T department! In this role, you will build, maintain, and troubleshoot our information security systems while … supporting internal customers. You will have the opportunity to learn multiple tools and technologies across multiple security domains. So, if you're committed to customer success, an awesome team player, and enjoy building relationships - this is the role for you! Here is how, through this exciting role, YOU will contribute to BMC's and your own success: Deploy and … maintain security tools and systems to secure our multi-cloud and on-premise environments. Implement security policy, standards, guidelines, processes, and procedures to ensure ongoing security posture. Provide expertise in security control configuration to business as needed. Develop documentation to support ongoing security systems operation. Develop, analyze, and implement security specifications. Participate in incident More ❯