1 to 25 of 32 Permanent Security Posture Jobs in London

A Senior Cyber Security Engineer is required for a respected Financial Services organisation in London. Known for its excellence, this company is enhancing its internal security maturity to meet evolving threats. You'll be instrumental in maturing their security posture, understanding the current landscape, and implementing … future-state strategies. Scope of Work & Value You'll Add: Strengthen security posture throughout the bank, implementing a future-state security framework. Proactively identify, design, and develop new security stack capabilities to reduce manual effort and increase resilience. Stay current with new technologies and trends, identifying … and recording security risks. Support on-call rotation as agreed with your manager. Work with infrastructure teams to ensure resilient and robust infrastructure (Windows and Linux operating systems, virtualisation, and networking protocols). Identify process optimisation opportunities to increase efficiencies and decrease customer impact risk. Key Responsibilities: Security more »

that delivers service improvements and keeps at the forefront of new technology. Main duties of the job This role is part of our Information Security & Business Continuity team, responsible for: Ensuring the protection of the information in our organisation throughout the information lifecycle - that ensures the confidentiality, integrity, purpose … for ensuring the availability of minimum services at a sufficient level for the business to sustain in the event of disasters. Lead the information security and business continuity team, including managed services and accountability for performance and quality measures. Evolve and define governance, taking ownership and responsibility for ensuring … adherence to IT requirements in the Data Security & Protection Toolkit (DSPT), and other appropriate governance frameworks. Develop, maintain, and improve our data and technology Business Continuity & Disaster Recovery Plans, enabling us to respond to and recover from business continuity events - ensuring we can provide a safe level of service more »

Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining … information security policies, architecture, technical standards, technical controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating the execution of security measures to protect our … computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior Information Security Analyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves more »

As a Cyber Security Architect, you will play a pivotal role in shaping our enterprise's security posture in a rapidly evolving digital landscape. You will be at the forefront of designing and implementing cutting-edge security architectures that protect our assets and data against sophisticated … threats. This role demands a visionary approach to security, a deep understanding of current cybersecurity trends, and the ability to innovate and adapt to protect the business. Responsibilities: Strategic Security Design : Develop comprehensive security architectures, integrating advanced security practices, to safeguard against emerging threats. Focus on … cloud security, AI-driven threat detection, and the adoption of zero-trust principles. Standards and Frameworks : Define and update technical security standards and principles, incorporating industry best practices and compliance requirements from frameworks such as NIST, ISO, and GDPR. Security Reviews and Threat Modeling : Conduct rigorous security more »

Role: Information Security Manager Location: London Salary: £95,000+ Are you an Information Security Manager looking to join a reputable legal services firm? Looking for an Information Security Manager/Officer to support a Head of Information Security Manager. The successful individual will deputise for the … Head of Information Security. Key Responsibilities: Managing and leading on governance meetings. Developing and implementing information security policies. Reviews information security policy, standards and guidelines. Ensures architectural principles are applied during design to reduce risk and drives adoption and adherence to policy, standards and guidelines. Maintains and manages … the Security Incident Response plans and affected processes. Responsibility for oversight of information security initiatives, including client security questions, audit action points, phishing tests etc. Delivers projects in collaboration with other IT Team members to further improve the security posture of the firm. About you more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced Senior DevSecOps Engineer to join our client who’re currently building out their Security Engineering team within their established Cyber Security function. In this role, you will be part of a growing team that will enable you … to lead the growth and development of various DevSecOps and Security Architecture projects, influence and implement change, with various opportunities to lead and grow a team. Main responsibilities: Collaborate with cross-functional teams to implement security practices throughout the SDLC, emphasising DevSecOps principles. Design, implement, and manage security controls and automation tools to enhance the security posture of cloud-based applications and infrastructure. Conduct thorough security assessments and risk analyses, identifying vulnerabilities and recommending remediation strategies. Develop and maintain security policies, standards, and procedures in alignment with industry best practices and compliance requirements. more »

We present an exciting opportunity to join a prominent organization in the financial services sector. They actively seek an experienced Cyber Security Engineer to ensure the company's adherence to security standards. Responsibilities: Collaborate with technology and business teams to implement security processes, technologies, and controls, serving … as the authority for security-related inquiries. Define, design, implement, and maintain security solutions tailored to the business's requirements. Support the definition, execution, and continuous improvement of key cybersecurity processes, including vulnerability and patch management, security incident response, monitoring, endpoint security, identity and access management … network security, and cryptography. Assist in developing and maintaining security policies, processes, incident response management plans, and playbooks. Create and document standard operating procedures and protocols. Provide expertise on security requirements for core technology processes, such as asset management, change management, third-party management, technology development and more »

IT Security Architect, Azure London, City/Hybrid Competitive plus bonus plus benefits IT Security Architect is sought by prestigious and vibrant financial services organisation in the City. This role will see you reporting into the Global Head of IT Security as a key contributor to their … operational security delivery framework, encompassing IT infrastructure and business application security on a global scale. This role will be instrumental in ensuring that they design and implement robust secure IT solutions that align to their IT and Security strategies, you will be joining at an exciting time … as the IT organisation delivers numerous transformational technology and security improvement projects, leverages the latest cloud services, and other emerging technologies to enable the business to deliver on its future objectives. Key Responsibilities: Design and implement security solutions that protect the organisation’s systems, networks, and applications. Collaborate more »

to join their team. This pivotal role will contribute to safeguarding the organization's digital assets and infrastructure from cybersecurity threats, ensuring a robust security posture and effective incident response. Starting ASAP, paying up to £90,000 per annum. Role Overview: As the SOC Manager, you will be … responsible for providing strategic leadership, technical expertise, and operational oversight to the Security Operations Center (SOC) team. Your role will involve managing both external and internal SOC personnel, overseeing security monitoring and analysis, incident response, threat intelligence, and vulnerability management activities. Key Responsibilities: Act as the subject matter … expert on SOC matters for the organization. Manage the external SOC team and a small internal team, ensuring alignment with organizational security objectives. Review output from the external SOC team and ensure compliance with requirements. Set clear goals and objectives for the SOC team, providing guidance, support, and training more »

global provider of information-based analytics and decision tools for professional and business customers About the Role We are looking for an experienced Application Security Leader to lead the Application Security discipline across RX Global. The Security Application Leader will play a critical role in ensuring that … all applications are developed, deployed, and maintained with security as a top priority, helping to protect sensitive data, mitigate risks, and maintain the trust of customers and stakeholders Responsibilities Conducting assessments of applications (web, cloud, mobile, API) using range of manual and automated source code review techniques (PASTA and … STRIDE) Working with development teams to analyse,evaluate and enhance the effectiveness of their application/product security posture at all levels. Owning and administration of security tooling such as Sonarcube, Acunetix, Dtrack, and others Collaborating with respective peer groups to safeguard company information assets against current more »

Senior Application Security Engineer We are looking for an information security professional to lead my clients application security program. As a Senior Application Security Engineer, you’ll partner with product teams to help improve the security posture and design of both our enterprise and … consumer-facing products. You'll be part of a team developing a modern AppSec program with a highly automated approach to security coupled with a collaborative approach to working with Engineering partners. You’ll be operating in a fast paced, agile environment, with a goal of making security … will have a huge impact on the product roadmap, and in building a trusting relationship with the engineering community. What you'll do Provide security guidance to engineering teams on new products and technologies Taking ownership and driving the application security and privacy initiatives Perform threat modeling and more »

assets. As the Head of IAM, the individual will lead a team of IAM professionals, collaborate with key stakeholders, and drive initiatives to enhance security posture and streamline access management processes. Key Responsibilities: Develops and executes IAM strategies aligned with business objectives and regulatory requirements. Leads the design … access controls. Oversees the operation of IAM technologies, ensuring system reliability, scalability, and performance. Establishes and enforces IAM policies, standards, and procedures to mitigate security risks and ensure compliance with industry regulations. Leads the evaluation and selection of IAM solutions, vendors, and technologies. Collaborates with internal teams and external … team members, fostering a culture of continuous learning and professional development. Monitors emerging trends and best practices in IAM, recommending innovative solutions to enhance security posture and operational efficiency. Serves as a subject matter expert on IAM matters, providing guidance and support to clients and internal stakeholders. Qualifications more »

Role: Senior Security Operations Engineer Location: Central London - Hybrid (2-3 days in office per week) Salary: c.£150,000 Base, £200k+ Total Comp Our client is a pioneering quantitative investment manager, who are building an elite global security team. We're looking for an exceptional Senior Security Operations Engineer to play a vital role in shaping their future security posture and operations. In this pivotal position, you'll have the opportunity to design and implement cutting-edge security capabilities across a complex technology ecosystem. With teams distributed worldwide, you'll collaborate with experts … and ultra-low latency trading. Technologies span AWS, Azure, Linux, Windows, Docker, Kubernetes and more. What You'll Do Architect and automate sophisticated, scalable security systems, processes and controls Oversee and evolve comprehensive security monitoring, threat detection and intrusion prevention/response Proactively assess risks and threats to more »

Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement. Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies … and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance and optimize internal processes, ensuring … that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You’ll Be Doing: Verification and Compliance: Verify that systems and processes meet specified security requirements. Assess the correctness of cyber more »

A financial trading organisation in London is looking to hire an AWS Security Engineer to join their cloud team in London. This person will interface with Information Security and Development teams by designing, engineering and maintaining a secure cloud infrastructure. Core Responsibilities: Develop tools, scripts and programs in … Python to streamline security processes Design and Engineer AWS Security components with a key focus on IAM, encryption and secure security architecture Secure CI/CD pipelines and leveraging tools including Terraform and Ansible to integrate security measures into DevOps processes Researching, integrating and applying the … latest security techniques and processes to enhance their security posture Requirements: Extensive AWS, DevSecOps and Cloud Security experience Automation and Development experience with Python, Bash, PowerShell Infrastructure as Code and DevOps tools and technology experience Strong understanding of security engineering, networking and infrastructure environments Ideally more »

Cyber Security and Risk Consultant - 6-month contract, £600 - £700 Outside IR35 - London, Hybrid An experienced Cyber Security and Risk Consultant is required to support the development and maintenance of the Cyber Risk and Information Security framework for a leading, specialty insurance company based in London. With … regions. With clear success, the organisation is supported by a robust financial stability and resilience. This role is integral to the company's cyber security strategy, you will be making a significant impact. Are you an ambitious and motivated Security Consultant who can bring your valuable, experience and … and mentor/coach less experienced members of the team and fulfil this opportunity? Responsibilities: Provide support and consultation across all elements of Cyber Security including Threat intelligence, cyber risk management, security operations, data loss and fraud preventions, IDAM, vulnerability management and more. Arrange materials for the Cyber more »

Information Security Risk Analyst Location: Hybrid - London Package: Negotiable + Benefits The Information Security Risk Analyst III at Brown & Brown is responsible for analysing information security controls both within our organisation and with third-party entities. This analysis aims to identify and assess associated information security risks, and effectively communicate these findings to the business stakeholders. This role requires a thorough understanding of information security principles and practices, as well as the ability to evaluate complex systems and processes. The Information Security Risk Analyst III plays a crucial role in safeguarding our organisation … s information assets and maintaining a strong security posture. The day to day: research and analysis to handle inbound cybersecurity inquiries from company’s third parties. research and analysis related to vetting new or potentially new third parties. recommendations for communicating identified security risks of new or potentially more »

Senior Cloud Security Engineer What you’ll be working on: Configuring cloud security applications and security policies. Tuning alerts with the L3 Ops teams to ensure the right alerts are being alerted. Roll out a security solution across cloud accounts within all regions including Kubernetes & containers. … Objectives: To work closely with the Cloud Engineering teams to ensure the cloud platforms are complying to security standards and there is a remediation process. To work with the SOC team & automation team to ensure alerting is correct for any detections or incidents that Op's will need to … investigate. To improve the security posture of cloud devices in AWS, GCP & Azure. What you’ll bring: Sound knowledge from a Cloud security perspective & how to create, update and improve polices for prevention, compliance, and sensor standpoint. Experience engineering and securing AWS, GCP and Azure Cloud platforms more »

Home based role Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement . Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies, and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance … and optimize internal processes, ensuring that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You'll Be Doing: Verification and Compliance: '€¢Verify that systems and processes meet specified security requirements. more »

Information Security Engineer - Hybrid- £90K Our client is an industry leading e commerce who are looking to expand their Security team by adding an experienced Senior Information Security Engineer. They are offering hybrid working with their office located in Central London You will play a crucial part … in implementing and maintaining PCI DSS compliance, spearheading security initiatives and improvements throughout our organisation and supporting our security operations centre (SOC) team as a line of business SME. You'll be working closely with infrastructure, software engineering, and product focused business units to improve our security posture for new and existing products and ways of working. Requirements: Proven knowledge of information and cyber security engineering Great experience with PCI DSS. Good SIEM knowledge (Splunk is ideal) Great understanding of logs and log events across Linux, Windows, AWS, AV and Vulnerability scanning etc Good more »

to sustainability and good corporate citizenship, we have over 250,000 dedicated employees serving clients across 66 countries. About the role: As the OT Security Consultant, the incumbent is expected to perform a consulting led yet technofunctional role and therefore it is essential that they have a strong OT … Security consulting and Security architectural background. The role holder needs tohave a broad-based understanding of Cybersecurity Solutions in the areas of OT and will likely have fulfilled roles in the areas of OT, IoT, Infrastructure Security design/transformation. The candidate shall be responsible to oversee … as pre-sales consultant. The role holder must therefore possess excellent architectural and communication skills to support development and conversion of pipeline for OT Security services. Core Responsibilities Lead & develop security solution architecture for customer. Work closely with customer business and technical teams to identify OT Security more »

Terraform whilst adopting best practises to ensure infrastructure consistency and high standards Implement performance baselines, establish efficient delivery pipelines, maintain robust production health and security posture Evaluate system security and compliance, optimising private network configurations Lead on CI/CD processes and enhancement of deployment cycles Prototype … Actively seek and research new technologies which may improve existing systems About you: Demonstrated proficiency with Google Cloud Platform (GCP) Experienced in assessing platform security and compliance posture, prior experience introducing VPC AND SOC2 compliance is highly favourable Exposure to AWS & Azure is a bonus Have worked in more »

London, UK(Hybrid) Job Type: Fixed Term Contract(6 Months + Possible extensions) Job Description: Overview The Capability Maturity Assessment Consultant collaborates with the Security Advisory team to assess organizational security maturity. The ideal candidate has significant experience in BIG4 companies and in-depth knowledge of frameworks like … NIST and ISF. Requirements Experience working at a BIG4 firm, focusing on security assessments, consulting, or risk advisory services. Comprehensive understanding of the NIST cybersecurity framework and its practical application in assessments. Familiarity with the Information Security Forum (ISF) and its methodologies for measuring security maturity. Ability … to assess an organization's security posture, identifying strengths and areas for improvement. Experience in measuring and benchmarking security maturity across different domains within an enterprise. Ability to work on project-based engagements with a focus on security advisory services, for up to 6 months. more »

appoint a new CISO. Our client believes in leveraging technology to enhance their offerings, and are thus seeking a seasoned CISO to lead information security efforts. The CISO will be responsible for developing and executing the company's information security strategy, policies, and procedures. The successful candidate will … with applicable regulations and other relevant industry standards. The CISO will also be responsible for overseeing the day-to-day operations of our information security team and working collaboratively with other departments to ensure that security risks are identified, assessed, and addressed. Key Responsibilities: Develop and implement a … comprehensive information security program that includes policies, procedures, and controls to protect the confidentiality, integrity, and availability of our information assets. Collaborate with other departments to ensure that information security risks are identified, assessed, and addressed in a timely and effective manner. Ensure that the company's information more »

of Service Internal Firm Services Industry/Sector Technology Specialism IFS - Information Technology (IT) Management Level Manager Job Description & Summary A career in Information Security, within Internal Firm Services, will provide you with the opportunity to develop and support our internal security technologies and services across the entire … local PwC network. You'll focus on being the forefront of designing, developing, and implementing information technology including hardware, software, and networks that enhance security of internal information and protect our firm's intellectual assets. Our Information Security Technology and Operations function identifies technology trends and opportunities to … points. Uphold the firm's code of ethics and business conduct. About The Role Team focuses on operational engineering activities across the suite of security tools managed in the NIS central service environment. The core areas of focus for Perimeter Security are Firewalls (Cloud, Physical, Virtual, WAF), Proxies more »