1 to 25 of 139 Security Posture Jobs in the UK excluding London

Head of Information Security Governance, Risk and Compliance & Awareness - Doxford, SR3 3XP Arriva is a leading European passenger transport partner, operating in 11 countries across the UK and Europe. The company employs around 35,000 people, delivering more than 1.5 billion passenger journeys connecting people and communities safely, reliably and sustainably. We have strong roots dating back to … agenda, and a continuously developing relationship with I Squared Capital – a global infrastructure investment fund manager - who acquired Arriva in 2024. We are looking for a Head of Information Security Governance, Risk, Compliance (GRC) & Awareness to join our Information Security Team on a full time, permanent basis, based from either our Doxford office, Sunderland or Lacon House, London. … Reporting to the Group Chief Information Security Officer, the Head of InfoSec GRC & Awareness is responsible for leading the governance, risk, and compliance functions within the Information Security domain. This role ensures that the organisation maintains a robust security posture through the development and enforcement of policies, standards, and awareness initiatives. The role is pivotal in More ❯

Financial Services Security Architect Our client, a leading global supplier for IT services, requires experienced Financial Services Security Architect to be based at their client's office in Leeds, UK. This is a hybrid role - you can work remotely in the UK and attend the Leeds office 4 days per week . This is a 6+ month temporary … contract to start ASAP Day rate: Competitive Market rate Our client is looking for an exceptionally seasoned Security Architect with over 15 years of progressive experience, including extensive leadership in designing and implementing robust security architectures, particularly within large-scale cloud environments and the highly regulated financial domain. This role demands a deep understanding of complex security challenges, a proven track record of strategic influence, and the ability to translate business requirements into secure, scalable, and compliant technical solutions. Key Responsibilities Strategic Security Leadership: Define, evangelise, and evolve the overall cloud security architecture strategy and roadmap, aligning with business objectives, relevant European regulatory requirements (eg, GDPR, DORA, PSD2, NIS2 Directive), and industry best practices More ❯

Role: Cyber Security Engineer Location: Leeds, West Yorkshire Salary: £55,000 - £70,000 PLUS 25 Days Holiday, Vendor Certifications, International Travel, Private Pension About the Company: Our client, a global leader in Sustainability Consulting, is looking for a Cyber Security Engineer to join their growing Information Security Team. This exciting role provides an opportunity to shape and … strengthen security practices across the organization. If you are passionate about cybersecurity, have a strong technical background, and thrive in a fast-paced environment, we want to hear from you. Position Overview: As a Cyber Security Engineer, you will collaborate with the IT Security Team to advise, develop, and maintain security processes and policies. Your expertise … will guide the organization in enhancing security capabilities across its global infrastructure. This role offers a chance to make a real impact by ensuring the integrity and resilience of the company’s IT environment against evolving cyber threats. Key Responsibilities: Support incident management and security response efforts, providing expertise to address and resolve security incidents quickly and More ❯

Careers# Head of Cyber Security Team:Technology - UK Location:Leeds Work Model:hybrid Work Type:Permanent Hi, we're PEXA! We know you'll Google us before applying, so let's keep this brief. PEXA revolutionised the way that property is settled in Australia, turning a paper-based process into a digital one. Our solution is a world-first … just one aspect of your life - we want to help you create your ideal work/life blend, rather than squeezing in life around work.As the Head of Cyber Security at PEXA UK, you'll play a key role in protecting the digital backbone of our business. Working closely with the UK CTO, Group CISO in Australia, and the … PEXA UK leadership team, you'll define and drive the security strategy, standards, and posture across our three UK brands: PEXA UK, Smoove, and Optima Legal.You'll lead our Security Operations (SOC), Security Engineering, and Information Security and Governance functions, covering everything from incident response and secure architecture to audits, lender assurance, and compliance with More ❯

one aspect of your life - we want to help you create your ideal work/life blend, rather than squeezing in life around work. As the Head of Cyber Security at PEXA UK, you'll play a key role in protecting the digital backbone of our business. Working closely with the UK CTO, Group CISO in Australia, and the … PEXA UK leadership team, you'll define and drive the security strategy, standards, and posture across our three UK brands: PEXA UK, Smoove, and Optima Legal. You'll lead our Security Operations (SOC), Security Engineering, and Information Security and Governance functions, covering everything from incident response and secure architecture to audits, lender assurance, and compliance … with ISO 27001 and FCA requirements. This is a senior leadership role offering the opportunity to define security strategy, strengthen governance, and protect critical systems, data, and operations. You'll shape how we manage threats, embed secure-by-design principles, and foster a culture of security awareness across the organisation. You'll also collaborate closely with technology, legal More ❯

Overview AWS Cyber Security Engineer Location: Farnborough, UK (Hybrid Working Policy) Clearance: High level of security clearance - (DV - Developed Vetting) UNLEASH YOUR POTENTIAL Everything we do is built on a commitment to do the right thing for our customers, our people and our community. Our mission and our values guide the way we do business. The foundation of … conviction that ethics and integrity is core to how we operate. Because of a key strategic development and a new exciting business opportunity, we have a requirement for a security-cleared Cyber Security Engineer based in the UK working at our Farnborough site and remotely. Leidos has more than 30 years' experience of developing and running some of … committed to developing and growing our staff. Leidos is a global science and technology solutions leader working to solve the world's toughest challenges in the defence, intelligence, homeland security, civil, and health markets. The company's 33,000 employees support vital missions for government and commercial customers. Your Role and Responsibilities; As a result of some exciting programme More ❯

Information Security Engineer Birmingham Our client are a leading provider of care, education, and therapeutic services for vulnerable children and young people across the UK. They are passionate about creating safe, nurturing environments that transform lives. As part of their digital evolution, they are seeking a skilled Information Security Engineer/Analyst to help strengthen their cyber security posture and safeguard our systems and data. Reporting directly to the Head of IT this is a hands-on technical role focused on securing enterprise applications, infrastructure, and sensitive data. You'll be instrumental in implementing and maintaining robust security measures, conducting assessments, and responding to incidents. Collaboration across departments will be key to embedding security best practices throughout the organisation. Key Duties & Responsibilities Evaluate application architecture, source code, and third-party integrations for security risks Support secure software development lifecycle (SDLC) processes and promote secure coding standards Identify and remediate vulnerabilities using industry-standard tools Administer and configure security technologies (e.g., firewalls, SIEM, IDS/IPS, endpoint protection) Oversee access controls and More ❯

I am currently working with a Charity who are seeking a Head of Information Security and Compliance. You will join an ambitious, focused and dynamic team who are passionate about how technology can enable our staff to deliver incredible support to the armed forces community. Role Purpose: The Information Security and Compliance Manager is responsible for developing, implementing … and maintaining security policies, procedures, and controls to protect the data and systems. They will play a pivotal role in the management and containment of security incidents, ensuring continuous improvement in their security posture while raising awareness for staff, volunteer and member communities. The post holder will lead on activities that assess, report and mitigate risk … practices and settings to include sensitivity labels, data retention policies and data loss protection policies Collaborate with the Head of Risk, DPO and VCISO to identify and manage information security risks and mitigating controls Lead the wider business areas to ensure security policies and procedures are embedded in all business processes. Take an active role in in the More ❯

ensure they focus on the right priorities Oversee SOC activities by reviewing your team's performance metrics, incident reports and other key indicators Lead incident response efforts when a security incident occurs, the SOC team has to respond as quickly as possible Lead these efforts by establishing clear incident response procedures and protocols and conveying them to the team … Analyse incident reports to understand your organization's security posture by reviewing incident reports, SOC managers identify patterns and trends that may indicate weaknesses or vulnerabilities in their security defences Serve as the point of contact (POC) for security incidents within the company. You are the primary liaison between the SOC team, other internal stakeholders, and … external parties such as vendors, clients or regulatory bodies. Be responsible for conducting information security investigations as a result of security incidents. These are previously identified by the Level 2 security analyst who are monitoring the security consoles from various SOC entry channels (SIEM, Tickets, Email and Phone) End to end security incident management. You More ❯

safe and secure information space. Cloud SecOps Lead – Job Description We are looking for a Cloud SecOps Lead to guide and support a team of engineers in managing cloud security operations across partner environments. This role involves close collaboration with SOC teams, project stakeholders, and architecture groups to ensure a strong security posture and operational excellence. This … and is open only to UK Citizens or individuals with Indefinite Leave to Remain (ILR) who have resided continuously in the UK for the past five years, due to Security Clearance requirements. Key Responsibilities Lead investigations of security incidents raised by SIEM and CNAPP tooling. Drive improvements in cloud security posture using Microsoft Defender for Cloud. … Guide project teams on remediation steps and ensure alignment with security best practices. Support WebOps activities including deployment and configuration of SIEM and CNAPP tools. Oversee vulnerability management processes and ensure timely remediation. Manage and maintain LogicMonitor for cloud platform monitoring Create and update logicmodules Configure alert rules and escalation chains Manage ServiceNow integration for incident handling Build and More ❯

Application Security Lead Entertainment UK Hybrid/Remote Job description This role works closely with development teams to verify our partners applications satisfy the defined security criteria, supporting the organization on the security design and conducting reviews of applications, while improving automation. Primary Responsibilities: Provide technical leadership and guidance on application security best practices, methodologies, and … technologies. The ideal candidate will serve as a trusted advisor to development teams, architects, and stakeholders across our clients organisation. Design and review security architectures for applications, ensuring the implementation of effective security controls and countermeasures. Conduct threat modelling exercises to identify potential security risks and vulnerabilities early in the development lifecycle. Conduct in-depth security assessments, code reviews, and penetration testing of applications to identify and mitigate security vulnerabilities. Utilise industry-standard tools and methodologies to assess the security posture of applications and provide actionable recommendations for remediation Essential At least three years experience in a similar senior Information Security position Customer-oriented person, with the ability to educate and More ❯

our overall success. We invite you to share your perspectives, cultural backgrounds, and innovative ideas; we look forward to your contributions. Join the Vix team as an experienced Cloud Security Engineer! This on-site position in Manchester involves collaborating with our Cloud Operations team and the Security team to maintain robust security protocols. You'll play a … crucial role in guiding our technical teams to meet security standards, successfully passing security audits, and safeguarding both company and customer data. As the first point of contact for security incidents, your expertise will be essential in keeping our systems secure. We regret that this position is only available for UK citizens/Residents with indefinite leave … the UK, with current full time work rights for the United Kingdom, currently residing in the UK. The position is located in Manchester. Responsibilities Evaluate and strengthen our overall security posture by performing continuous audits, risk assessments, threat modelling, and architecture reviews to ensure effective controls and adherence to regulatory standards. Consistently monitor and assess cloud environments for More ❯

Description Security Engineer Security Clearance Required - DV ('Developed Vetting') Location: 80% On-Site to Huntingdon, UK UNLEASH YOUR POTENTIAL At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on … and our community. Our Mission, Vision, and Values guide the way we do business. Are your ready for your next challenge? We are in search for a number Cyber Security Engineers with a varied technical background - Required to work at our customer sites in Huntingdon and/or London with occasional travel to other UK sites. In this role … you will be working in a team of security engineers reporting into the cyber security engineering lead to ensure that the customer sites maintain a strong cyber security posture. You will have responsibility for ensuring that security enforcing functions and managed and maintained to a high standard whilst securely implementing new capabilities. You will ensure that More ❯

We are looking for an established IT Security Engineer to join the Information Security function of the UKs largest sofa retailer. This is a pivotal role, demanding an experienced professional to be the technical authority on security matters. You will be the hands-on force protecting our information systems across all our environments. We need a proactive … So, if your experience doesn't quite match the specification, we'd still really love to hear from you What you'll be doing This role is about reducing security risk through technical delivery and strategic oversight. 1. Security Engineering & Architecture Lead the deployment, configuration, and tuning of new and existing security tools to enhance defence and … efficiency. Drive the enforcement of security policy and controls across key domains Initiate, provide counsel and assurance on technical security projects from conception through to operational handover, ensuring clear risk reduction objectives are met. Working with other areas within the technology function to execute the delivery of the projects Provide technical counsel to the Head of Group IT More ❯

Role title: Information Security Manager Reports to: Head of Operational Resilience Location: Hub Location Hours of work: Full time, with 3 days per week in the office SMCR Function: Conduct Purpose of role Information Security Manager you will define and drive the information security strategy across our financial services business. You will lead a growing team of … security professionals to safeguard customer data, ensure compliance with regulatory frameworks, and build a culture of security awareness throughout the organisation. Your strategic vision and hands-on expertise will protect critical systems and support business growth. Key Responsibilities Develop and maintain the enterprise information security strategy aligned with business goals Lead the implementation and oversight of a … 3rd party managed Security Operations Centre (SOC) ensuring effective integration. Baseline and conduct regular reviews with an incoming 3rd party managed SOC and the security tools in the Cloud environment (Defender and Sentinel) Oversee security architecture, vulnerability management, incident response, and threat intelligence Lead security risk assessments and manage remediation plans for identified gaps Ensure compliance More ❯

Hiring Mobile Security Engineer - Contractual (Bristol - UK) Client Introduction: The company is a multinational Sweden SAAS product-based firm. Company Strength: 100+Key Responsibilities Job Summary Our team is accountable for security within the mobile channel. We provide a suite of mobile security components, that provides an all-round security posture in mobile apps including associated … passionate about our shared passion for delivering new features for customers across our brands in the mobile space. This role will be pivotal in building, delivering, and driving the security of our mobile platform. The key aspect of this role is the design and delivery of a world-class security framework, including associated services (penetration testing, research, consultancy … etc.). Essential skills & experience: Experience of Mobile platform security, threat modelling and mitigation techniques Capable of conducting regular reviews of our mobile application security posture using your hands-on experience. Develop and maintain pen-testing security tools, scripts, policies and procedures In depth knowledge of mobile app security standards (Android/iOS) Desirable knowledge More ❯

Job Description We are seeking a Senior Security GRC Manager to join our Group Technology team in Milton Keynes . You will play a pivotal role in shaping and advancing our security governance, risk, and compliance practices across the Group Technology function. You will have a hands-on role to monitor, report on and lead initiatives to strengthen … our security posture, ensuring regulatory alignment. This is an exciting opportunity to make a tangible impact, working with a diverse range of stakeholders and supporting the strategic direction of the business. Key Responsibilities: Governance & Compliance : Lead the development, implementation, and continuous improvement of security and technology control frameworks; maintain and update security policies and standards; support … governance forums, including Information Security, Business Continuity, and Audit & Risk Committees. Risk Management : Conduct operational risk assessments and provide expert consultancy on security risks, incidents, and investigations; identify and address gaps in controls, providing clear reporting and recommendations. Stakeholder Engagement: Collaborate with internal teams and external partners to manage security and technology risks; support external and internal More ❯

Job summary The Senior Security Analyst (Ops) sits within the Protective Monitoring function of the Cyber Security Operations Centre (CSOC). The CSOC is made up of Protective Monitoring, Incident Management, Threat Operations, Engineering and Consultancy. The role is a Tier 3 analyst in the Cloud Protective Monitoring Sub team. Cyber Operations purpose is to support safe care … be cyber resilient, supporting Transformation Directorate's purpose of delivering the best care and outcomes for the NHS. The Cyber Operations sub-directorate consists of 4 operational areas: Cyber Security Operations Unit (CSOU) Cyber Delivery Unit (CDU). Cyber Improvement Programme. Chief Information Security Office Function (CISO) The post of Senior Security Analyst has been awarded a … additional monthly RRP payment equal to 20% per annum. Please be aware that RRP is none contractual and subject to review. Main duties of the job As a Senior Security Analyst Ops you will: Provide Tier 3 security analytics and incident response for service-specific security monitoring. Deputise for Security Lead (Analyst) in their absence. Act More ❯

Job Title: Head of Cyber Security Salary: £82,000 - £95,000 Location: London Key Skills: Cyber Security Strategy & Governance, Incident Response & Risk Management, Stakeholder & Board-Level Communication, Leadership & Team Development We are seeking a highly experienced Head of Cyber Security to lead the delivery of a best-in-class security posture within a large, complex … service users, and wider stakeholders from cyber risk. Protecting critical health services from evolving threats is a top priority, and this role plays a central part in ensuring robust security measures are in place. Reporting directly to the Director of Digital Services, the Head of Cyber Security will be a core member of the senior digital leadership team. … You will oversee the development, implementation and governance of information security across the organisation, spanning infrastructure, applications, medical devices, communications, and policy frameworks. Key Duties & Responsibilities Lead the development and delivery of a comprehensive cyber security strategy across both corporate and clinical areas. Oversee the organisation's information security portfolio, including compliance frameworks, risk assessments, and threat More ❯

As Hargreaves Lansdown (HL) continues it digital journey, we are enhancing our Cloud Assurance capabilities, within our Information Security Team. We are seeking a highly skilled Senior Security Analyst with a proven track record in delivering and maintaining Cloud assurance, preferably within a financially regulated enterprise environment or similar. The Senior Security Analyst is a specialist lead … SME role with the primary focus on AWS Cloud Security Assurance, as well as Governance, Risk and supporting Compliance. You will be supporting the Information Security function to ensure HL remains effective in protecting critical information assets within risk appetite. You will be working with a highly skilled and committed Security, Digital IT and Cloud teams. You … will play a significant role in our Cloud journey, working with our AWS and Azure Cloud platforms and security toolsets. We offer a commitment to your career development through training, mentoring and internal opportunities. What you'll be doing You will be the SME and lead for the technical aspects of Cloud security assurance risk and controls. You More ❯

Information Security Manager We are recruiting an Information Security Manager who will be a key member of the Healix Risk Department. You will be working across Healix International Group to manage all areas of data & information security compliance including the oversight and management of the firm's control framework relating to these speciality areas. As the Information … Security Manager you will design, implement & maintain the Information Security Management System (ISMS) in accordance with ISO27001, Cyber Essential Plus & SOC2 and other relevant standards. In a travel risk management environment this role is critical for safeguarding sensitive traveller data, real-time location tracking and operational systems that support crisis response and duty of care obligations for clients … address these risks including the compilation of business continuity plans (BCP). You will work very closely with colleagues in IT to enhance the technology & control frameworks regarding information security compliance & cyber threat security. About Healix Healix safeguard's people's health and wellbeing in every corner of the world. We offer international risk management and assistance services around More ❯

Greetings We are Hiring Network Security Specialist in Warwick/Wokingham Network Security 6 Months Contract ? Designing, Architect, Implementing and Maintaining an organization's network security infrastructure solutions like Firewalls, IDPS, Proxy, Load Balancers, VPN, WAF etc., align with the organization's strategies, policies, and standards. ? Design and manage firewall policies, network access controls, AAA mechanisms, MFA … IAM solutions, RBAC, Privilege Management etc., ? In-depth understanding of cloud network security, different network architectures (e.g., LAN, WAN, DMZ) and topologies, network protocols, routing, switching, and subnetting. ? Ensure network security measures are aligned with relevant compliance standards and regulations (e.g., GDPR, HIPAA, PCI DSS). Conduct regular security audits and assessments to identify and address compliance … gaps. ? Familiarity with industry standards and frameworks like NIST Cybersecurity Framework, ISO 27001, and CIS Critical Security Controls. ? Familiarity with the use of standard security technology solutions and processes such as user provisioning, directory, SIEM, vulnerability management, Cloud Security (OCI/Azure/AWS), Web Security, Email Security, Logging and Monitoring, General PKI and Cryptography. More ❯

Cyber Security Lead Hamilton, Glasgow or Stonehouse, Gloucester Join a leading utilities company that champions innovation and service excellence. At Last Mile, were proud to deliver high-quality solutions across the multi-utility sector, and our IT team is expanding. Were now looking for a talented Cyber Security Lead to play a pivotal role in strengthening our digital … resilience. As a Cyber Security Lead, reporting into the Director, Technology and Data, youll lead and develop a team of security professionals, oversee the delivery and ongoing management of our security infrastructure, and act as the go-to technical expert in threat detection, incident response, and vulnerability management. Were looking for someone with strong leadership skills, a … deep knowledge of the cyber security landscape, and a real passion for safeguarding digital assets. Whats in it for you as a Cyber Security Lead? Here at Last Mile, we pride ourselves in providing a great range of benefits including a fantastic amount of annual leave, including a Christmas shut down. 25 days holiday, increasing after 2 years More ❯

Cyber Security GRC Consultant (DV Cleared) Location: Hybrid/Southeast Region - on-site presence required Contract Type: Permanent & Full-time Salary: Competitive + Benefits About the Role As a Cyber Security Consultant, you will play a pivotal role in delivering Secure by Design risk and security assurance services within MOD and Public Sector environments. You'll collaborate … with multi-disciplinary teams to define and implement security risk assessments and best practice solutions, ensuring alignment with business risk appetites and transformation goals. You'll be part of a knowledge-sharing culture, working alongside expert peers in Secure Architecture and Risk Planning. Key Responsibilities Deliver Secure by Design risk and security assurance functions within MOD/Public … Sector. Lead and advise on risk management frameworks, ISMS, and Enterprise Security Risk Management. Facilitate security and risk workshops with Authority departments. Produce clear reporting on vulnerabilities, risks, controls, and treatment activities. Provide pragmatic remediation and risk management guidance. Support secure design across technology platforms including cloud infrastructures. Contribute to blogs and research within the Cyberfort community. Experience More ❯

Project Security Analyst (Azure) We are seeking a Project Security Analyst with expertise in Microsoft Azure to support and enhance the cloud security posture across multiple projects. You will work closely with project managers, cloud architects, DevOps teams, and security stakeholders to ensure Azure-based solutions meet enterprise security standards and compliance requirements, dealing … with the following: Security Planning & Risk Assessment Analyze and define security requirements for Azure-based projects. Conduct threat modeling and risk assessments for cloud workloads. Support the secure configuration of Azure services (e.g., Azure AD, Key Vault, Defender for Cloud). Project Delivery Support Act as the security SME (Subject Matter Expert) in Azure-focused projects. Ensure … security milestones are integrated into project delivery timelines. Review architectural diagrams and deployment plans from a security perspective. Compliance & Governance Assist with the implementation of security policies and standards in Azure. Ensure project deliverables meet compliance frameworks (e.g., ISO 27001, NIST, CIS, GDPR). Support audits and evidence collection for Azure resources. Required Skills & Experience Strong background More ❯