1 to 25 of 586 Information Security Jobs in the UK

actions are taken. Collaborate with procurement and legal teams to assess and manage privacy risks in vendor relationships. Work closely with legal, compliance, IT, security, and other relevant departments to integrate data privacy into business processes. To be considered for this role, you should have: Must have strong experience … of interest, please apply or reach out to Madison – 0203 854 2230/m.brookes@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company – through having a sole focus on the cyber & information security space we have been able to … foster solid relationships with some of the UK’s most exciting cyber security consultancies & end users. Our focus on the information security space allows us to be able to help you find the most exciting opportunities in the cyber security market. If you are on the more »

Job Title: Information Security Solution Designer Contract Type: Contract (Outside IR35 - pending determination) Location: Hybrid role with site in Central Manchester Duration: Until the end of the year Start Date: Immediate Role Overview: As an Information Security Solution Designer, you will be responsible for designing and … documenting Information Security solutions to meet the needs of our client's projects. This role requires strong technical expertise, excellent communication skills, and the ability to work independently as well as part of a team. Key Responsibilities: Engage with Architecture, Project, and Technical teams to gather project requirements. … Develop detailed design documents for technical teams. Lead Information Security design engagements and contribute to Information Security strategy. Ensure coherence and consistency in designs. Support project implementation and address technical queries or issues. Collaborate with business units to deliver technology solutions. Ensure the safety and security more »

Enterprise Security Architect Location: Glasgow (Remote within UK) The opportunity to join a world leading engineering business working at the forefront of sustainable and efficient mining operations. This is an influencing role for an Enterprise Security Architect to play a pivotal role in shaping the company's security landscape. Key Responsibilities: Develop and maintain security architecture processes and patterns that enable the enterprise to create and implement secure solutions. Develop a security strategy plans and roadmaps based on sound enterprise architecture practices Develop and maintain security architecture artefacts (e.g., models, patterns, standards and procedures … that can be used to leverage security capabilities in projects and operations Work with technical teams baseline security configuration standards for operating systems (e.g., OS hardening), network segmentation and identity and access management (IAM) Work with technical teams develops standards and practices for data encryption and tokenization Draft more »

new systems/software, and networks. · Deliver key technical projects, including moving the company’s infrastructure to a cloud-based environment. · Ensure compliance with Information Security Policies including data confidentiality and the operational security of the Information Systems used. · Be involved in maintaining and improving the more »

hybrid - £70,000 - £80,000 + Benefits Locke & McCloud are looking for an experienced Vulnerability Management Risk Specialist to join our clients growing Cyber Security function. In this role you will work with our clients various vendors and 3rd party suppliers to manage security risks internally and externally … with identified vulnerabilities. Coordinate with vendors to assess and manage risks associated with third-party products and services. Lead incident response efforts related to security vulnerabilities, including investigation, containment, and remediation. Conduct regular vulnerability scans and penetration tests to identify and address security weaknesses. Monitor security advisories … To be considered for this role, you should have: Prior strong experience in vulnerability management, risk assessments, and incident response. Strong understanding of common security vulnerabilities and attack vectors. Experience with vulnerability scanning tools such as Nessus, Qualys, or similar. Familiarity with industry standards and frameworks such as ISO27001 more »

Security Operations Specialist Hybrid working/Cumbernauld Nine Twenty are partnering with a renowned family ran business here in Scotland, who are actively seeking a Security Operations Specialist to join their team based in Cumbernauld. The Security Operations role is integral to the security team, which … is responsible for ongoing monitoring against cyber threats, assessing our cybersecurity effectiveness via operational metrics, and managing our security services. Within this team, the Security Operations role focuses on implementing new security services, enhancing current ones, and creating adaptable security patterns to promote consistent security standards and controls, emphasizing "Security by design" principles. Responsibilities: Develop and deploy cybersecurity services for system and network monitoring. Configure, troubleshoot, and upkeep security services infrastructure. Identify, document, and propose system security requirements and solutions. Contribute to planning, developing, and updating the company's information more »

We are currently working in partnership with a Housing Association based in Greater Manchester, who are recruiting for an Information Governance Officer to join the team, on a temporary three-month contract. The position is due to start immediately, and the hourly rate in negotiable, subject to experience for … working with data protection functions, and IAPP or relevant qualifications are desirable. Duties will include (but are not limited to): Logging and responding to information requests, acting as the first point of contact for dealing with Information Rights requests and advising stakeholders on any related Information Governance … issues Investigating information security incidents, including evidence gathering, recording actions for improvement and providing recommendations to the DPO on incidents that may need reporting Maintaining effective record keeping and undertaking appropriate analysis to produce departmental statistics Developing and providing training to colleagues on Information Governance, to ensure more »

manage data subject requests, and serve as the primary point of contact for data protection authorities. Qualifications and Skills: Education: Bachelor's degree in Information Security, Law, Information Technology, or a related field. Advanced degrees or certifications in data protection/privacy are a plus. Experience: Experience … or related fields. Knowledge: In-depth knowledge of data protection laws, including GDPR, CCPA, and other relevant regulations. Certifications: Relevant certifications such as Certified Information Privacy Professional (CIPP), Certified Information Systems Security Professional (CISSP), or similar are preferred. Skills: Strong communication, analytical, and problem-solving skills. Ability more »

Security Architect - Primarily Remote La Fosse have partnered with a client in the retail sector to recruit a Security Architect. This person will join a relatively greenfield function, working closely with both the Heads of Architecture & Security to implement governance, policies and standards across domains and to … support the wider security community. They will also take ownership of the platform security architecture roadmap, and drive forward the maturity of it. Role Responsibilities Define the security model and standards across customer applications (encompassing SAP, Marketing, Campaigns and some bespoke AWS apps) Define technical security standards and patterns. Help to define the security related areas of the domain’s technology strategy, objectives and develop new tools and techniques. Experience Required Experience in defining security architecture across cloud platforms (Preferably AWS but Azure is also beneficial) A track record in designing architecture blueprints more »

Job title: Security Analyst Client: Fintech Salary: £40,000 - £75,000 Location : London (Hybrid) Experience level: 1+Years My client is looking for a passionate, and talented Security engineer to join their firm in a top priority position/team. This candidate will be responsible for securing the firms … information and computer systems, implementing best practice solutions and providing an elite level of consulting for security operations. The main responsibilities are set around, monitoring, compliance, security engagement, and detection/response. Role: · Assist in the design, implementation, and maintenance of security measures. . Develop threat … intelligence capabilities . Provide a strong level consultancy when it comes to engineering security solutions. · Provide input for architecture plans with consideration of current standards. · Monitor new and emerging technologies that could be adopted · Take on incident response duties · Liaison with key stakeholders · Ensure smooth handover from engineering to more »

Security Lead Business Partner – Salary - National: £60,000 - £85,000 - London: £70,000 - £100,000 We are recruiting for a Security Lead Business Partner to join the UK CISO Team within Aviva. This is a great role for someone who thrives when supporting and facilitating the delivery of … CISO cyber portfolio projects and associated security standards into UK-based Aviva entities. A bit about the job: Aviva provides around 31 million customers worldwide with insurance, savings, and investment products. We are the UK’s largest insurer and one of Europe’s leading providers of life and general … limited travel to various other locations within the Aviva estate. Skills and experience we’re looking for: Solid technical knowledge with broad experience of security management concepts built up over several years in dedicated technical and security operations and/or management roles In-depth knowledge of IS more »

business), Ireland, UK, and the Netherlands. You will be the SME for our annual internal audit plan, for IT infrastructure, IT governance, Cyber and Information Security, IT and non-IT change programmes and projects, Business Continuity and Disaster Recovery, Data Governance, Vendor Management, and Change Management. What will more »

lists of who needs to complete CPD courses (audit qualified, specialist categories), tagging people where necessary and keeping specialism lists up to date. statistical information regarding the above as well as managing appropriate chasing and escalation where required. to be determined around new CPD regulations including identifying ICAEW members … qualification or be working towards an appropriate qualification. computer literacy and understanding of relevant software. Keeps up to date on all training such as information security. to work to specified standards, service levels and timeframes. to communicate effectively with others and build strong working relationships. required to influence using more »

Information Security Consultant required for market-leading financial services firm. The role will be focused on maturing their annual risk management cycle to enhance their risk level tolerance and to ensure more regularity. You will look at risk over the year, controls, incidents, and progress on projects, and … C-Level Produce documentation for the wider company audience to explain and better guide staff in selecting the best data classification labels for their information Collect the up-to-date information from Business regarding their most valuable data and its use on a yearly basis (at minimum) and … support the business in evaluating the most appropriate classification Maintain a proper audit track on signoffs provided by the Business, Information Security and the Data Privacy Office regarding Data Classification topics Act as intermediary with the IS Project Reviewer to be able to evaluate the most appropriate Data more »

Information Security Manager Are you passionate about safeguarding critical information assets in the fast-paced realm of engineering and technology? Do you thrive on the challenge of ensuring compliance within the intricate landscape of pharmaceutical research? If so, we have the perfect opportunity for you! Overview: As … a Information Security Manager, you will play a pivotal role in fortifying my clients defenses and upholding regulatory compliance across their operations in the US, UK, and Europe. You'll work independently to champion and enforce best practice inline with policies and frameworks. Responsibilities: Governance, Risk, and Compliance … GRC): Lead the development and implementation of robust information security policies, procedures, and controls to ensure compliance with industry standards and regulations. Risk Management: Identify, assess, and mitigate information security risks across all facets of our business operations, with a focus on safeguarding sensitive data and more »

the technological blueprint, facilitating collaboration and innovation across teams to realise the vision for high-quality, reliable software products. Architectural Oversight of Infrastructure and Information Security: Architect a future-proof strategy for infrastructure and information security that complements the SaaS product's vision, empowering the CISO … Operations with a clear framework to execute and advise on. Lead the charge in securing and maintaining ISO certifications, showcasing their Solutions' dedication to security and compliance while empowering the CISO and the Head of Cloud Architecture and Operations to operationalise these standards. Define the strategic direction for the … organisation's security frameworks, empowering the CISO and the Head of Cloud Architecture and Operations and their teams to implement and refine these practices, ensuring the CTO's vision is realised through effective execution and guidance. Leading Product Evolution and Technology Innovation: · Incorporating Feedback into Tech Development: Ensure close more »

controls. Attend walkthrough sessions with clients and document the relevant processes. Perform design & operational effectiveness testing. Review policy and procedures relating to client’s information security standards and apply these to controls testing criteria. Review regulatory requirements relevant to client environments & business practices and apply these to controls more »

in employment legislation and HR best practices, implementing necessary updates where relevant. Be committed to maintaining our ISO27001 certification and setting high standards for Information Security compliance. Personal Competencies Educated to degree level and/or relevant experience. Proven experience as a People Advisor or similar role, ideally more »

Information Security Manager – Crawley - £80 – 100k DOE - Permanent - Hybrid (3 days a week) Are you a Security Samurai ready to lead the charge? Information Security Manager - Hands On! Do you thrive in a dynamic environment where every day is a new challenge? Are you a … security expert who doesn't shy away from rolling up your sleeves and getting technical? If so, then we want you! We're searching for a passionate and experienced Information Security Manager to join our client’s growing team and become the champion of our data castle. … This is not your average security manager role. We need someone who is comfortable leading from the front lines, diving deep into technical details, and getting their hands dirty with security tools and processes. You'll be responsible for crafting and implementing a robust security program, leading more »

Head of Information Security Operations – CONTRACT – 6-12 Months – Urgent – Reading/Thames Valley🌳🌳🌳 Areti have exclusively partnered with a rapidly growing tech company seeking a Head of Information Security Operations to ensure that the confidentiality, integrity and availability of information systems are maintained to … the management of the CERT function as well as responsibility for the management of the SEIM and SOC partners. Responsibilities Creation and maintenance of Information Security processes and procedures to support business policies and operations. Provide leadership and management of Information Security Operational teams to ensure … efficient and effective, proactive and reactive security monitoring and defense across information assets. Ensure regular KPIs are developed and maintained and identify areas for improvement and make recommendations accordingly. Be the lead in Cyber security incident response and ensure processes and procedures and playbooks are efficient, effective more »

Line of Service Internal Firm Services Industry/Sector Technology Specialism IFS - Information Technology (IT) Management Level Manager Job Description & Summary A career in Information Security, within Internal Firm Services, will provide you with the opportunity to develop and support our internal security technologies and services … across the entire global and local PwC network. You'll focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhance security of internal information and protect our firm's intellectual assets. Our Information Security Technology and … them to take ownership of their personal development. Analyse complex ideas or proposals and build a range of meaningful recommendations. Use multiple sources of information including broader stakeholder views to develop solutions and recommendations. Address sub-standard work or work that does not meet firm's/client's more »

Senior Cyber Security Analyst/Senior Cyber Defence Analyst/SIEM SME/Incident SME Position Overview: As a member of the expanding security team, the Cyber Defence Analyst plays a pivotal role in conceptualising, implementing, and sustaining operational cyber security measures. This role encompasses proactive risk … the nurturing of junior analysts, real-time network monitoring for unauthorised activities, and active participation in incident response efforts. Your Responsibilities: Develop and integrate security event monitoring and incident management services. Respond promptly to security incidents as part of an incident response team. Establish metrics and dashboards to … Enterprise infrastructure. Utilise the SOAR platform to automate playbooks and streamline case management processes. Produce comprehensive documentation to ensure the repeatability and standardisation of security procedures. Innovate investigative methodologies using the SOC's software toolsets to bolster recognition opportunities for specific analysis. Maintain system security baseline in accordance more »

from set up and configuration through to BAU duties. The Role - You will be the primary point of contact for Workday Financials configuration and security administration. Ensure smooth operation of Workday Financials across various business functions by optimizing its configuration. Analyse configuration and review business processes to identify gaps … design of system process flow maps. Coordinate enhancements to streamline functionality and improve the user experience. Define and uphold governance and standard methodologies for information security, access, and consistency across the platform. Collaborate closely with stakeholders to implement Workday solutions addressing business needs. Collaborate with colleagues dedicated to more »

Cloud Security Architect | UK Hybrid | £80,000-£100,000 Locke & McCloud are working with a leading Cyber Security Consultancy that is home to over 4000 specialists who support clients across manufacturing, defence and security, energy and utilities, financial services and many other industries. They have offices globally … and are recognised for the impressive high standard of work they conduct. They are looking for a Cloud Security Architect in the Digital Trust and Cyber Security Team, you'll play a pivotal role in ensuring organizations navigate their cloud journey securely. Your expertise will shape robust security frameworks. Key Responsibilities: Conduct thorough reviews of client cloud setups, aligning them with best security practices. Craft and execute comprehensive cloud security strategies tailored to each organization's needs. Collaborate seamlessly across teams to develop and implement secure cloud architectures. Stay abreast of industry trends and emerging more »

ones that enable our growth. That’s why our IT team works closely with stakeholders to develop and implement technology solutions. As the Senior Information Security Manager here you will be responsible for maintaining and executing WHSmith’s cyber security strategy, ensuring compliance with regulations, managing incident … response efforts, and implementing effective security controls to protect the organisation's digital assets. You will lead cross-functional teams and our third-party providers and foster a culture of security awareness to mitigate cyber risks and safeguard critical information. What you will be doing Overseeing day-to … day security operations, including monitoring, incident response, vulnerability management, and threat intelligence, to maintain a strong security posture and promptly address any security incidents or vulnerabilities Establishing and maintaining cyber security policies, standards, and procedures, ensuring compliance with industry regulations and best practices, and creating a more »