51 to 75 of 493 Information Security Jobs in the UK excluding London

Information Security Officer Full-time, Permanent Basingstoke (hybrid) £85,000 Reassured are looking for an Information Security Officer to lead and evolve our approach to protecting data, systems and customer trust. If you're passionate about embedding security into business operations and driving awareness across teams, this is a brilliant opportunity to make a real … impact. You’ll be responsible for managing our information security operations, governance and certifications, including ISO27001 and Cyber Essentials Plus. Working closely with IT leadership and stakeholders across the business, you’ll ensure our systems and processes meet the highest standards while fostering a culture of security-first thinking. What you'll be doing: Leading the development … and delivery of our information security strategy Managing audits, certifications and risk assessments Supporting secure system design and change Driving company-wide security awareness and training Acting as Incident Response Manager for security events What we're looking for: 5+ years’ experience in information security Strong knowledge of ISO27001, Cyber Essentials Plus and risk More ❯

Information Security Officer Full-time, Permanent Basingstoke (hybrid) £85,000 Reassured are looking for an Information Security Officer to lead and evolve our approach to protecting data, systems and customer trust. If you're passionate about embedding security into business operations and driving awareness across teams, this is a brilliant opportunity to make a real … impact. You’ll be responsible for managing our information security operations, governance and certifications, including ISO27001 and Cyber Essentials Plus. Working closely with IT leadership and stakeholders across the business, you’ll ensure our systems and processes meet the highest standards while fostering a culture of security-first thinking. What you'll be doing: Leading the development … and delivery of our information security strategy Managing audits, certifications and risk assessments Supporting secure system design and change Driving company-wide security awareness and training Acting as Incident Response Manager for security events What we're looking for: 5+ years’ experience in information security Strong knowledge of ISO27001, Cyber Essentials Plus and risk More ❯

speaks to who we are and where we're headed. We're proud to share our story and Make Amazing Happen at CDW. Job Summary As the Head of Information Security for the UK and International business you will report into the global CISO and also dotted line into the Director of Technology for UK&I and will … be accountable for all aspects of Information Security in the UK&I business. You will work as part of the global security leadership team to represent the UK&I business and as part of the UK&I Technology leadership team to implement global security best practices, protect our operations from threats and ensure compliance with customer … and regulatory requirements. What you will do Own and drive all aspects of Information Security across the UK&I business Build partnerships with UK&I leadership to ensure that local priorities and needs are understood while instilling a strong cybersecurity culture across the organisation Act as a senior member of the global Information Security team to More ❯

Information Security Analyst Contract Northampton Hybrid My client is looking for an Information Security Analyst/GRC Analyst to be a part of their growing security team. Policy and process is already in place, so you ll play a key role in managing Subject Access Requests (SARs), Right to Be Forgotten (RTBF) requests, and ensuring … the organisation maintains the highest standards of data privacy and governance. Key Responsibilities on the Information Security Analyst: Manage and respond to Subject Access Requests (SARs) in accordance with GDPR timelines and procedures. Oversee Right to Be Forgotten and data deletion requests, ensuring complete and compliant execution. Support the wider GRC and Information Security team in … data protection and risk management activities. Help maintain the Information Security Management System (ISMS). Maintain accurate records of all data protection requests and actions taken. Provide expert advice on GDPR compliance and data subject rights. Liaise with internal teams and stakeholders to ensure consistent adherence to data protection principles. Information Security Analyst Experience/Technology More ❯

Information Security Analyst | Contract | Northampton | Hybrid My client is looking for an Information Security Analyst/GRC Analyst to be a part of their growing security team. Policy and process is already in place, so you’ll play a key role in managing Subject Access Requests (SARs), Right to Be Forgotten (RTBF) requests, and ensuring … the organisation maintains the highest standards of data privacy and governance. Key Responsibilities on the Information Security Analyst: Manage and respond to Subject Access Requests (SARs) in accordance with GDPR timelines and procedures. Oversee Right to Be Forgotten and data deletion requests, ensuring complete and compliant execution. Support the wider GRC and Information Security team in … data protection and risk management activities. Help maintain the Information Security Management System (ISMS). Maintain accurate records of all data protection requests and actions taken. Provide expert advice on GDPR compliance and data subject rights. Liaise with internal teams and stakeholders to ensure consistent adherence to data protection principles. Information Security Analyst Experience/Technology More ❯

Role: Information Security Officer Location: Milton Keynes Salary: £50k - £60k Work Pattern: Hybrid Summary: A new position has opened at an exciting software company for an Information Security Officer to lead the organisation's security strategy, operations, and compliance efforts. This hands-on role blends strategic security architecture with day-to-day operational management … and regulatory compliance oversight. The ideal candidate will establish and maintain security standards across the product portfolio, oversee secure system environments, and act as the primary contact for ISO 27001, PCI DSS, and GDPR compliance. Additionally, this role will support our commercial teams by contributing to tender responses and ensuring client security assurance. The Company: They are a … experience and a broad global client base, they develop solutions that simplify complexity and drive smarter, more efficient ways of working. Core Responsibilities: Strategic (30%) Define and maintain robust security architecture and standards across multi-cloud SaaS platforms. Integrate security best practices into product design, development, and roadmap planning. Conduct threat modelling and risk assessments for new features More ❯

energy and creativity to make a positive difference, then this is the job for you. We have an exciting opportunity for a PCI and Compliance Lead to join our Information Security team for a fixed term of 18 months. The Benefits Salary - up to £64,898 p.a. – depending on skills and experience. Holidays - 25 days holiday plus public … Cycle to Work scheme. Community Day - We offer our people an extra paid day off every year to help local charities and community organisations. The Role Reporting to our Information Security Assurance Manager, you’ll be responsible for oversight, management and continuous compliance of the Payment Card Industry Data Security Standard (PCI DSS) requirements across the Society … within the Information Security Assurance Team. You’ll assist in the oversight and control of all aspects of the Information Security Management System, ensuring controls and assurance audits are in place to prevent/minimise threats such as security breaches, computer viruses or attacks by cyber criminals as well as carrying out audits in line More ❯

Information Security Analyst Up to £50,000 + benefits Hereford | Hybrid Permanent | Full-time We are looking for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus. Key Responsibilities … Lead on the operation and continual improvement of the Information Security Management System (ISMS) * Coordinate internal and external audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus * Draft and update information security policies, procedures, and technical standards * Work with procurement and commercial teams to support supplier assurance and risk assessment * Contribute to tender responses … and bid processes, ensuring security and compliance requirements are met * Promote good security practices and raise awareness across departments * Act as an escalation point and day-to-day contact for other team members * Stay up to date with changes in legislation and standards relating to information and cyber security Key Skills & Experience: Essential: * Background in IT More ❯

We are seeking an experienced and visionary Head of Security to lead the Trust's cyber, information security, resilience, and governance strategy. This senior leadership role sits within the Digital Data & Technology (DDaT) team and plays a critical part in safeguarding patient and organisational data, enabling secure digital transformation, and aligning local strategies with IFC and national … initiatives. The postholder will act as the Deputy Senior Information Risk Owner (SIRO) and provide strategic and operational leadership across architecture, infrastructure, live services, cyber security, and information governance. Main duties of the job Develop and implement a comprehensive cyber and information security strategy across the Trust and ICs. Lead risk management, resilience planning, and … cyber threats are integrated into resilience planning. Manage budgets, business cases, and funding proposals for cyber initiatives. Promote a culture of continuous improvement, training, and professional development across the security function. Deputise for the Associate Director of Digital Operations when required. About us Diversity makes us interesting Inclusion is what will make us outstanding. Inequality exists and the journey More ❯

Bristol Product Cyber Security - Undergraduate Placement 2026 The Cyber Security department delivers effective information security solutions for complex weapon systems and their associated sub-systems, providing documentation and evidence to support security approval and assurance activities within the programme context. Salary : £23,495 Dynamic (Hybrid) Working : 2 days per week on-site due to workload … classification Security Clearance : British Citizen or a Dual UK national with British citizenship. Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security … Up to 15 additional days Facilities : Fantastic site facilities including subsidised meals, free car parking and much more... The opportunity Throughout this opportunity, you will be involved in identifying security risks within complex weapon systems, products and solutions and ensuring that those risks are addressed by the implementation and delivery of effective and balanced security measures. You will More ❯

Permanent Based in Milton Keynes £50,000 pa - £60,000 pa Information Security Officer Hybrid Our client are a leading provider of software solutions for student accommodation, event management, catering, and residential services, they help institutions streamline operations, elevate customer experiences, and unlock their full potential.With over 25 years of experience and trusted by more than 350 institutions … and your impact is real. If you're ready to help shape the future of operational technology in education and events, we'd love to meet you. An experienced Information Security Officer to lead security strategy, operations, and compliance. This is a hands-on role combining strategic security architecture with operational security management and regulatory … compliance oversight. The successful candidate will define security standards across our product portfolio, manage security environments, and serve as our central point for ISO27001, PCI/DSS, and GDPR compliance while supporting commercial teams with tender responses and client security assurance. Core Responsibilities: Strategic (30%) Define technical security architecture and standards across multi-cloud SaaS platforms More ❯

Permanent Based in Milton Keynes £50,000 pa - £60,000 pa Information Security Officer Hybrid Our client are a leading provider of software solutions for student accommodation, event management, catering, and residential services, they help institutions streamline operations, elevate customer experiences, and unlock their full potential. With over 25 years of experience and trusted by more than … and your impact is real. If you're ready to help shape the future of operational technology in education and events, we'd love to meet you. An experienced Information Security Officer to lead security strategy, operations, and compliance. This is a hands-on role combining strategic security architecture with operational security management and regulatory … compliance oversight. The successful candidate will define security standards across our product portfolio, manage security environments, and serve as our central point for ISO27001, PCI/DSS, and GDPR compliance while supporting commercial teams with tender responses and client security assurance. Core Responsibilities: Strategic (30%) Define technical security architecture and standards across multi-cloud SaaS platforms More ❯

Our client, a leading city-based insurance broker, is seeking an experienced Information Security Manager to lead the development and delivery of the firm's information security programme. This key role will be central to protecting business systems, data, and operations across a growing organisation. Key responsibilities:* Design and implement security policies and procedures aligned … with ISO 27001, NIST, and other recognised frameworks. * Manage the information security risk register and lead internal and external audits. * Oversee incident response, including investigation, containment, and recovery. * Conduct vendor security assessments and review contractual security requirements. * Lead day-to-day security operations, including access control, vulnerability management, and endpoint protection. * Build and mentor a … new security team while driving organisation-wide security awareness. Key experience:* Extensive experience in information security within regulated financial services. * Strong understanding of UK insurance broking operations. * Knowledge of FCA, PRA, GDPR, and SOX regulatory frameworks. * Experience in post-acquisition integration and operating model design. * Excellent stakeholder engagement and communication skills. This is an outstanding opportunity More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction … CTPRR) program defines the framework and conducts the assessments which enable the business to protect sensitive information, physical assets, and confirms the Third Parties’ ability to provide continual services. This role will partner with a community of internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party … s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction … CTPRR) program defines the framework and conducts the assessments which enable the business to protect sensitive information, physical assets, and confirms the Third Parties’ ability to provide continual services. This role will partner with a community of internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party … s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction … CTPRR) program defines the framework and conducts the assessments which enable the business to protect sensitive information, physical assets, and confirms the Third Parties’ ability to provide continual services. This role will partner with a community of internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party … s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction … CTPRR) program defines the framework and conducts the assessments which enable the business to protect sensitive information, physical assets, and confirms the Third Parties’ ability to provide continual services. This role will partner with a community of internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party … s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction … CTPRR) program defines the framework and conducts the assessments which enable the business to protect sensitive information, physical assets, and confirms the Third Parties’ ability to provide continual services. This role will partner with a community of internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party … s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing More ❯

Nottingham Trent House (95002), United Kingdom, Nottingham, Nottinghamshire Risk Remediation Assessor About the Role Capital One has a team of Information Security specialists who not only focus on security, but are relationship experts, risk assessment champions, and resolve complex information security issues related to Capital One’s third parties. The Cyber Third Party Risk Reduction … CTPRR) program defines the framework and conducts the assessments which enable the business to protect sensitive information, physical assets, and confirms the Third Parties’ ability to provide continual services. This role will partner with a community of internal and external stakeholders to ensure third party engagements receive the necessary CTPRR due diligence; evaluate the effectiveness of the third party … s security environment and deliver a quality assessment report. It also supports ongoing security by working with the third parties to remediate any identified issues, enabling effective risk management in alignment with business tolerance and industry requirements. Those that work for this team pragmatic and practical in your understanding of risk and security, but are also willing More ❯

Information Security GRC Specialist - 12m Contract London, UK - 3 days on site [non-negotiable] Inside IR35 12-month contract Role Overview We're looking for an experienced Information Security GRC Specialist to join a leading organisation undergoing major technology change. This is a hands-on role within a growing Information Security team helping to … shape and embed GRC strategy across new systems, platforms, and processes. You'll play a key part in defining and implementing security governance , risk , and compliance frameworks , ensuring alignment with industry standards and upcoming regulations. The role combines policy development, risk management, and compliance oversight with strong technical awareness across infrastructure and cloud environments. Key Responsibilities Develop and maintain … cybersecurity policies, procedures, and controls Conduct and support risk assessments, mitigation, and reporting Ensure compliance with regulatory and internal standards Partner with technology teams to integrate security across platforms and workflows Support incident response and post-incident reviews Promote security awareness and best practice across the organisation Essential Experience You'll have a technical background ( infrastructure, systems, or More ❯

Information Security Engineer Birmingham, West Midlands Full time Permanent £50,000 - £55,000 Per Annum, Plus Benefis Package Our leading services client in Birmingham is seeking a highly skilled Information Security Engineer/Analyst on a full time basis, to help strengthen their Cyber Security posture and safeguard their systems and data. Reporting directly to … the Head of IT this is a hands-on technical role focused on securing enterprise applications, infrastructure, and sensitive data. You'll be instrumental in implementing and maintaining robust security measures, conducting assessments, and responding to incidents. Collaboration across departments will be key to embedding security best practices throughout the organisation. Key Duties & Responsibilities: Evaluate application architecture, source … code, and third-party integration's for security risks Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks More ❯

Information Security Engineer Full time Permanent £50,000 - £55,000 Per Annum, Plus Benefits Package Location: Central Birmingham, West Midlands (Hybrid Working - 2 days per week onsite) Our leading services client in Birmingham is seeking a highly skilled Information Security Engineer/Analyst on a full time basis, to help strengthen their Cyber Security posture … the Head of IT this is a hands-on technical role focused on securing enterprise applications, infrastructure, and sensitive data. You'll be instrumental in implementing and maintaining robust security measures, conducting assessments, and responding to incidents. Collaboration across departments will be key to embedding security best practices throughout the organisation. Key Duties & Responsibilities: Evaluate application architecture, source … code, and third-party integration's for security risks Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and identity management systems Conduct penetration testing and routine vulnerability scans Monitor networks More ❯

you can make a real impact? We’re looking for a Governance, Risk, and Compliance Consultant to join our clients team and help organizations navigate the complex world of information security, compliance, and risk management. This is a fully remote role, offering you the flexibility to work from anywhere while delivering top-notch consultancy services to our diverse … Excellence: Manage and deliver client projects on time and to a high standard, ensuring a seamless experience for our customers. Consult and Advise: Conduct assessments and reviews for ISO27001 (Information Security Management) and ISO22301 (Business Continuity Management). Provide expert advice on compliance standards such as PCI-DSS, Cyber Essentials, and more. Policy Development: Create, review, and update … information security policies to align with business and regulatory requirements. Technical Expertise: Translate information security requirements into actionable IT security controls and measures. Stay Ahead: Keep up-to-date with the latest regulations, standards, and best practices in cybersecurity and compliance. Client Engagement: Participate in scoping calls, client meetings, and ongoing project management to ensure More ❯

Information Security Engineer Birmingham Our client are a leading provider of care, education, and therapeutic services for vulnerable children and young people across the UK. They are passionate about creating safe, nurturing environments that transform lives. As part of their digital evolution, they are seeking a skilled Information Security Engineer/Analyst to help strengthen their … cyber security posture and safeguard our systems and data. Reporting directly to the Head of IT this is a hands-on technical role focused on securing enterprise applications, infrastructure, and sensitive data. You'll be instrumental in implementing and maintaining robust security measures, conducting assessments, and responding to incidents. Collaboration across departments will be key to embedding security best practices throughout the organisation. Key Duties & Responsibilities Evaluate application architecture, source code, and third-party integrations for security risks Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and More ❯

On behalf of the Met Office, we are looking for a Cyber Security Analyst (Inside IR35) for a 6 month contract based hybrid in Exeter as and when required. As a Cyber Security Analyst, your main responsibilities will be: . Supporting information security delivery work, including the development and implementation of Information Security Policies … Standards, processes and guidance. . The security of Digital infrastructure by proactively analysing security threats/challenges/risks to the environment, including conducting penetration testing and compliance reviews monitoring of Information Security and information management to ensure compliance including reviewing and monitoring system and network logs for malicious activity or unacceptable use. Typical Skills … . Technical Knowledge within anti-virus, networking, vulnerability management, encryption, Microsoft technologies, Linux. Knowledge of Information Security standards, legislation and practices, including GDPR & Data Protection Act 2018. . Experience in dealing with a wide range of Information Security matters and operating in an ITIL based environment. . Strong problem solving ability, with flexibility to think creatively More ❯