2 of 2 Security Posture Jobs in West London

Application Security Lead Entertainment UK Hybrid/Remote Job description This role works closely with development teams to verify our partners applications satisfy the defined security criteria, supporting the organization on the security design and conducting reviews of applications, while improving automation. Primary Responsibilities: Provide technical leadership and guidance on application security best practices, methodologies, and … technologies. The ideal candidate will serve as a trusted advisor to development teams, architects, and stakeholders across our clients organisation. Design and review security architectures for applications, ensuring the implementation of effective security controls and countermeasures. Conduct threat modelling exercises to identify potential security risks and vulnerabilities early in the development lifecycle. Conduct in-depth security assessments, code reviews, and penetration testing of applications to identify and mitigate security vulnerabilities. Utilise industry-standard tools and methodologies to assess the security posture of applications and provide actionable recommendations for remediation Essential At least three years experience in a similar senior Information Security position Customer-oriented person, with the ability to educate and More ❯

a private equity owned legal firm who are growing exponentially. Due to this rapid expansion, they are scaling their technology function and are recruiting for a Head of Cyber Security to join their team and lead their security posture. The Role Define and execute the overall Cyber Security strategy, ensuring it aligns with business objectives, manages risk … and supports the firm's rapid growth. Oversee the Cyber Security function, including Security Operations, Incident Response, and Governance, Risk, and Compliance (GRC) specialists, providing leadership, mentorship, and effective resource allocation. Establish and enforce a robust security governance framework, including policies and procedures for information security, risk management, and compliance with legal and regulatory requirements (e.g. … GDPR, ISO 27001, PCI DSS if applicable). Manage and continuously improve the firm's security architecture and controls across all domains: network, cloud (SaaS/IaaS), endpoints, and applications. Lead the Incident Response and Disaster Recovery programs, ensuring capabilities are tested, effective, and ready to mitigate the impact of security breaches. Drive security awareness and training More ❯