I am currently working with an exciting Software business looking for an Application Security Engineer in the UK to support a wider global security team. Working closely with the Application Security Manager and Engineering teams, we are looking for someone to provide expertise on a range of … services including secure coding techniques & reviews, Application Security awareness, integration of security into development lifecycles and more. Other responsibilities include: Provide guidance on Application Security & DevSecOps best practices Develop security testing plans and integrate security into the software development lifecycle Help to deliver overall Application … Security strategy Work closely with the develop team to identify, communicate and remediate vulnerabilities in code Perform and oversee security testing and manage remediation of identified vulnerabilities. Collaborate with the architecture and development teams to review the design and code for security vulnerabilities. Manage aspects of an more »
Job Description Senior Information Security Analyst Our Client is a leading global company specialising in pharma products. They are looking to recruit a Senior Information Security Analyst with at least 5 to 7 years expertise in Technology Security. The Senior Information Security Analyst is responsible for maintaining … information security policies, architecture, technical standards, technical controls, security solutions, guidelines, procedures, and other elements necessary to maintain security posture. Responsible for assessing information risk and facilitating remediation of identified vulnerabilities & risks across the organization. Accountable for coordinating the execution of security measures to protect our … computer infrastructure, information systems and to ensure the organization maintains an acceptable risk posture. The Senior Information Security Analyst is highly engaged in risk management and mitigation, including evaluating vendor risk, examining vendor contracts for terms of service, understanding third-party risk, and data privacy issues. The analyst serves more »
We are looking for a Security Consultant with extensive experience in providing end-to-end security assurance for business projects. The ideal candidate will have a strong background in threat assessments, architectural design reviews, third-party risk assessments, RFP security requirements, network security, IDAM projects, ransomware … remediation, pen test scoping, and HLD/LLD reviews. Responsibilities: Perform threat modelling to identify potential security vulnerabilities and risks. Assess high and low-level architectural designs to identify security risks and provide recommendations for mitigation. Provide security requirements for RFPs and score RFPs based on security criteria. Conduct assessments of third-party securityposture to ensure compliance with security standards. Create scopes for penetration testing, organize pen tests, review results, and oversee remediation efforts. Collaborate with project teams to agree on specific security controls and gather evidence of implementation. Identify and more »
Job DescriptionJob Post: Principal Security Platform Engineer - InfrastructureLocation: London, Hybrid (1 day per week)Type: Full-TimeSalary: Up to £90,000Our client, a highly respected and well-established household name, is seeking a talented Principal Security Platform Engineer - Infrastructure to join their dynamic team. This is an excellent … opportunity to make a significant impact on the securityposture of a leading organization.Key Responsibilities:Manage and improve the securityposture of our client's on-premise estate, including endpoints and mobile devicesEnsure compliance with security standards and drive remediation processesOptimize security controls and … configurations within infrastructure technologiesContribute to the development and implementation of security policies and proceduresDefine security standards and guardrails, supporting their implementation and ongoing supportEssential Qualifications:Minimum 5 years of relevant experience in infrastructure security related to endpoints and mobile devicesHands-on experience with endpoint security tools more »
+ Bonus + Benefits Locke & McCloud are looking for an experienced Senior DevSecOps Engineer to join our client who’re currently building out their Security Engineering team within their established Cyber Security function. In this role, you will be part of a growing team that will enable you … to lead the growth and development of various DevSecOps and Security Architecture projects, influence and implement change, with various opportunities to lead and grow a team.Main responsibilities:Collaborate with cross-functional teams to implement security practices throughout the SDLC, emphasising DevSecOps principles.Design, implement, and manage security controls … and automation tools to enhance the securityposture of cloud-based applications and infrastructure.Conduct thorough security assessments and risk analyses, identifying vulnerabilities and recommending remediation strategies.Develop and maintain security policies, standards, and procedures in alignment with industry best practices and compliance requirements.Provide guidance and mentorship to more »
+ Bonus + Benefits Locke & McCloud are looking for an experienced Senior DevSecOps Engineer to join our client who’re currently building out their Security Engineering team within their established Cyber Security function. In this role, you will be part of a growing team that will enable you … to lead the growth and development of various DevSecOps and Security Architecture projects, influence and implement change, with various opportunities to lead and grow a team. Main responsibilities: Collaborate with cross-functional teams to implement security practices throughout the SDLC, emphasising DevSecOps principles. Design, implement, and manage security controls and automation tools to enhance the securityposture of cloud-based applications and infrastructure. Conduct thorough security assessments and risk analyses, identifying vulnerabilities and recommending remediation strategies. Develop and maintain security policies, standards, and procedures in alignment with industry best practices and compliance requirements. more »
Job Post: Principal Security Platform Engineer - Infrastructure Location: London, Hybrid (1 day per week) Type: Full-Time Salary: Up to £90,000 Our client, a highly respected and well-established household name, is seeking a talented Principal Security Platform Engineer - Infrastructure to join their dynamic team. This is … an excellent opportunity to make a significant impact on the securityposture of a leading organization. Key Responsibilities: Manage and improve the securityposture of our client's on-premise estate, including endpoints and mobile devices Ensure compliance with security standards and drive remediation processes … Optimize security controls and configurations within infrastructure technologies Contribute to the development and implementation of security policies and procedures Define security standards and guardrails, supporting their implementation and ongoing support Essential Qualifications: Minimum 5 years of relevant experience in infrastructure security related to endpoints and mobile more »
Job DescriptionLead Security Engineer - Azure, Zscaler - £80,000 - £95,000 + bonus - FinTechA groundbreaking FinTech startup, backed by industry titans who are revolutionizing digital asset security for institutional investors, are looking for a Lead Security Engineer to look after their Azure infrastructure from a security perspective. … As the Lead Security Engineer, you will be have a substantial effect on the organization as they are building the future of secure crypto trading, so as you can imagine, security is at the heart of everything they do! This is a new role within the company as … they are currently going through a large digital transformation and are rapidly growing, so you will be building the security engineering function from the ground up and potentially building a team around you in the future. What will the Lead Security Engineer be doing? You will be the more »
Job DescriptionJob Post: Principal Security Platform Engineer - CloudLocation: London, Hybrid (1 day per week)Type: Full-TimeSalary: Up to £90,000Our client, a highly respected and well-established household name, is seeking a talented Principal Security Platform Engineer - Cloud to join their dynamic team. This is an excellent … opportunity to make a significant impact on the securityposture of a leading organization.Key Responsibilities:Manage and improve the securityposture of our client's cloud environments hosted by strategic providersEnsure compliance with security standards and drive remediation processesOptimize security controls and configurations within … cloud technologiesContribute to the development and implementation of security policies and proceduresDefine security standards and guardrails, supporting their implementation and ongoing supportEssential Qualifications:Minimum 5 years of relevant experience in security engineeringExtensive hands-on experience implementing and configuring cloud security tools and technologies (CASBs, CSPMs, CWPPs more »
Lead Security Engineer - Azure, Zscaler - £80,000 - £95,000 + bonus - FinTech A groundbreaking FinTech startup, backed by industry titans who are revolutionizing digital asset security for institutional investors, are looking for a Lead Security Engineer to look after their Azure infrastructure from a security perspective. … As the Lead Security Engineer, you will be have a substantial effect on the organization as they are building the future of secure crypto trading, so as you can imagine, security is at the heart of everything they do! This is a new role within the company as … they are currently going through a large digital transformation and are rapidly growing, so you will be building the security engineering function from the ground up and potentially building a team around you in the future. What will the Lead Security Engineer be doing? You will be the more »
Job Post: Principal Security Platform Engineer - Cloud Location: London, Hybrid (1 day per week) Type: Full-Time Salary: Up to £90,000 Our client, a highly respected and well-established household name, is seeking a talented Principal Security Platform Engineer - Cloud to join their dynamic team. This is … an excellent opportunity to make a significant impact on the securityposture of a leading organization. Key Responsibilities: Manage and improve the securityposture of our client's cloud environments hosted by strategic providers Ensure compliance with security standards and drive remediation processes Optimize security controls and configurations within cloud technologies Contribute to the development and implementation of security policies and procedures Define security standards and guardrails, supporting their implementation and ongoing support Essential Qualifications: Minimum 5 years of relevant experience in security engineering Extensive hands-on experience implementing and configuring more »
Job DescriptionWe present an exciting opportunity to join a prominent organization in the financial services sector. They actively seek an experienced Cyber Security Engineer to ensure the company's adherence to security standards.Responsibilities:Collaborate with technology and business teams to implement security processes, technologies, and controls, serving … as the authority for security-related inquiries.Define, design, implement, and maintain security solutions tailored to the business's requirements.Support the definition, execution, and continuous improvement of key cybersecurity processes, including vulnerability and patch management, security incident response, monitoring, endpoint security, identity and access management, network security, and cryptography.Assist in developing and maintaining security policies, processes, incident response management plans, and playbooks.Create and document standard operating procedures and protocols.Provide expertise on security requirements for core technology processes, such as asset management, change management, third-party management, technology development and acquisition, configuration management, etc.Contribute as more »
We present an exciting opportunity to join a prominent organization in the financial services sector. They actively seek an experienced Cyber Security Engineer to ensure the company's adherence to security standards. Responsibilities: Collaborate with technology and business teams to implement security processes, technologies, and controls, serving … as the authority for security-related inquiries. Define, design, implement, and maintain security solutions tailored to the business's requirements. Support the definition, execution, and continuous improvement of key cybersecurity processes, including vulnerability and patch management, security incident response, monitoring, endpoint security, identity and access management … network security, and cryptography. Assist in developing and maintaining security policies, processes, incident response management plans, and playbooks. Create and document standard operating procedures and protocols. Provide expertise on security requirements for core technology processes, such as asset management, change management, third-party management, technology development and more »
Senior IT Security Engineer Remote with 1-2 days in London per quarter as needed. 6-12 months, to £75,000 per annum Experienced IT Security Engineer required to bolster the Info Sec team, specifically to translate risks and threats into clear guidance of what that means to … required action, with a practical and hands on approach to the delivery of the same. This role will make a big impact on improved securityposture and maturing the security skills of the team and technical environment. Must be a willing coach, able to share knowledge and … expertise and influence and guide teams, with a desire to get hands dirty to deliver and drive security initiatives. Key responsibility areas: Network Security: Network Access Control (NAC) Implementation: Design, implement, and maintain a NAC solution to prevent unauthorized devices from accessing the corporate network. Firewall Rule Review more »
responsible for the continued development of Uptime Institute’s s cybersecurity-focused services portfolio. Position Description: Developing short and long-term strategy for cyber security services including, driving requirements and improvement initiatives, developing roadmaps with actionable plans, leading cross-functional teams both internally and externally, and championing the execution … MSP, Cloud Services, SaaS and Colocation suppliers. Continuously evolving Uptime Institute cybersecurity services roadmap & scope parameters, to improve services offering against the expanding cyber security norms and standards relevant to data centres. Identifying and managing cybersecurity program development partners and advisory board in line with the company’s objective … programs in partnership with relevant functional areas. EXPERIENCE This is a Senior role (hands-on) aimed at improving our clients’ IT Estate's cyber securityposture across. An understanding of infrastructure engineering/application engineering expertise is essential. The candidate should also have a working knowledge of cyber more »
to join their team. This pivotal role will contribute to safeguarding the organization's digital assets and infrastructure from cybersecurity threats, ensuring a robust securityposture and effective incident response. Starting ASAP, paying up to £90,000 per annum. Role Overview: As the SOC Manager, you will be … responsible for providing strategic leadership, technical expertise, and operational oversight to the Security Operations Center (SOC) team. Your role will involve managing both external and internal SOC personnel, overseeing security monitoring and analysis, incident response, threat intelligence, and vulnerability management activities. Key Responsibilities: Act as the subject matter … expert on SOC matters for the organization. Manage the external SOC team and a small internal team, ensuring alignment with organizational security objectives. Review output from the external SOC team and ensure compliance with requirements. Set clear goals and objectives for the SOC team, providing guidance, support, and training more »
Job DescriptionJob Post: Principal Security ArchitectLocation: London, Hybrid (1 day per week)Type: Full-TimeSalary: Up to £110,000Our client, a highly respected and well-established household name, is seeking an experienced Principal Security Architect to join their dynamic team. This is an excellent opportunity to make a … significant impact on the securityposture of a leading organization by identifying capabilities needed for InfoSec success and driving secure-by-design principles into business and technology change activities.Key Responsibilities:Clearly articulate needed capabilities, identify gaps, and assess improvement opportunitiesMap required InfoSec capabilities using personal, organizational, and industry … knowledgeCommunicate with stakeholders and sponsors to understand ambitions, issues, limitations, and constraints related to Security ArchitectureCreate and maintain architecture artifacts and collateralSupport InfoSec leadership in developing and implementing the InfoSec strategyActively participate in Enterprise Architecture & Design community and governance processesEnsure correct application of security principles, patterns, and building more »
global provider of information-based analytics and decision tools for professional and business customers About the Role We are looking for an experienced Application Security Leader to lead the Application Security discipline across RX Global. The Security Application Leader will play a critical role in ensuring that … all applications are developed, deployed, and maintained with security as a top priority, helping to protect sensitive data, mitigate risks, and maintain the trust of customers and stakeholders Responsibilities Conducting assessments of applications (web, cloud, mobile, API) using range of manual and automated source code review techniques (PASTA and … STRIDE) Working with development teams to analyse,evaluate and enhance the effectiveness of their application/product securityposture at all levels. Owning and administration of security tooling such as Sonarcube, Acunetix, Dtrack, and others Collaborating with respective peer groups to safeguard company information assets against current more »
Senior Application Security Engineer We are looking for an information security professional to lead my clients application security program. As a Senior Application Security Engineer, you’ll partner with product teams to help improve the securityposture and design of both our enterprise and … consumer-facing products. You'll be part of a team developing a modern AppSec program with a highly automated approach to security coupled with a collaborative approach to working with Engineering partners. You’ll be operating in a fast paced, agile environment, with a goal of making security … will have a huge impact on the product roadmap, and in building a trusting relationship with the engineering community. What you'll do Provide security guidance to engineering teams on new products and technologies Taking ownership and driving the application security and privacy initiatives Perform threat modeling and more »
Job Post: Principal Security Architect Location: London, Hybrid (1 day per week) Type: Full-Time Salary: Up to £110,000 Our client, a highly respected and well-established household name, is seeking an experienced Principal Security Architect to join their dynamic team. This is an excellent opportunity to … make a significant impact on the securityposture of a leading organization by identifying capabilities needed for InfoSec success and driving secure-by-design principles into business and technology change activities. Key Responsibilities: Clearly articulate needed capabilities, identify gaps, and assess improvement opportunities Map required InfoSec capabilities using … personal, organizational, and industry knowledge Communicate with stakeholders and sponsors to understand ambitions, issues, limitations, and constraints related to Security Architecture Create and maintain architecture artifacts and collateral Support InfoSec leadership in developing and implementing the InfoSec strategy Actively participate in Enterprise Architecture & Design community and governance processes Ensure more »
wellness journeys for all those across the UK! They now need an experienced Lead InfoSec Engineer , to create and manage the company-wide information security programme to ensure that information assets are properly protected. You will be tasked with the design and execution of policies, procedures and technology, to … s information assets are properly protected against cyber threats. Reporting to the Head of Engineering, you will: Develop and implement the company's information security strategy, policies, and procedures. Design and execute security controls to protect the confidentiality, integrity, and availability of the company's systems and data. … Lead security assessments and audits to identify vulnerabilities and develop remediation plans. Monitor and respond to security incidents and breaches, ensuring timely resolution and escalation as needed. Conduct regular security awareness training for employees to promote a culture of security awareness. Collaborate with cross-functional teams more »
assets. As the Head of IAM, the individual will lead a team of IAM professionals, collaborate with key stakeholders, and drive initiatives to enhance securityposture and streamline access management processes.Key Responsibilities:Develops and executes IAM strategies aligned with business objectives and regulatory requirements.Leads the design, implementation, and … authorization, and access controls.Oversees the operation of IAM technologies, ensuring system reliability, scalability, and performance.Establishes and enforces IAM policies, standards, and procedures to mitigate security risks and ensure compliance with industry regulations.Leads the evaluation and selection of IAM solutions, vendors, and technologies.Collaborates with internal teams and external partners to … IAM team members, fostering a culture of continuous learning and professional development.Monitors emerging trends and best practices in IAM, recommending innovative solutions to enhance securityposture and operational efficiency.Serves as a subject matter expert on IAM matters, providing guidance and support to clients and internal stakeholders.Qualifications:Bachelor’s more »
assets. As the Head of IAM, the individual will lead a team of IAM professionals, collaborate with key stakeholders, and drive initiatives to enhance securityposture and streamline access management processes. Key Responsibilities: Develops and executes IAM strategies aligned with business objectives and regulatory requirements. Leads the design … access controls. Oversees the operation of IAM technologies, ensuring system reliability, scalability, and performance. Establishes and enforces IAM policies, standards, and procedures to mitigate security risks and ensure compliance with industry regulations. Leads the evaluation and selection of IAM solutions, vendors, and technologies. Collaborates with internal teams and external … team members, fostering a culture of continuous learning and professional development. Monitors emerging trends and best practices in IAM, recommending innovative solutions to enhance securityposture and operational efficiency. Serves as a subject matter expert on IAM matters, providing guidance and support to clients and internal stakeholders. Qualifications more »
Role: Senior Security Operations Engineer Location: Central London - Hybrid (2-3 days in office per week) Salary: c.£150,000 Base, £200k+ Total Comp Our client is a pioneering quantitative investment manager, who are building an elite global security team. We're looking for an exceptional Senior Security Operations Engineer to play a vital role in shaping their future securityposture and operations. In this pivotal position, you'll have the opportunity to design and implement cutting-edge security capabilities across a complex technology ecosystem. With teams distributed worldwide, you'll collaborate with experts … and ultra-low latency trading. Technologies span AWS, Azure, Linux, Windows, Docker, Kubernetes and more. What You'll Do Architect and automate sophisticated, scalable security systems, processes and controls Oversee and evolve comprehensive security monitoring, threat detection and intrusion prevention/response Proactively assess risks and threats to more »
Help strengthen our team as our Level 2 SOC/Security Analyst - Compliance, Assurance & Continual Improvement. Home based role. A great opportunity to join our operational security team to support our initial and ongoing assessment of Operational Security controls against Cyber Security best practice, Organizational Policies … and recognized Security Frameworks, working with relevant stakeholders to identify areas for improvement, and support development, enhancement and implementation of robust security controls. In addition, this role will identify areas of improvement within the Operational Security function, proactively identifying opportunities to enhance and optimize internal processes, ensuring … that they are both efficient and effective. This role is crucial in ensuring that even the most sophisticated cyber security controls are robustly implemented and enhanced. What You’ll Be Doing: Verification and Compliance: Verify that systems and processes meet specified security requirements. Assess the correctness of cyber more »