1 to 25 of 57 Security Posture Jobs in London

to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny.Klaviyo is looking for a security engineer to add to our growing Security Intelligence & Operations Team. This is a hands-on role that involves responding to cyber threats and … digital forensics and investigations, and automating threat response playbooks. As a member of the team, you will have the opportunity to work on complex security challenges and work with engineers across the organization to improve the security posture of Klaviyo’s product, corporate, and cloud environments. What … analysis in a cloud first environmentDevelop and codify threat response processes and playbooksPerform digital forensic investigations to include analysis, collection, and preservation of evidenceBuild security tools to automate threat response tasksDevelop detailed post incident and investigation reportsCollaborate with detection engineers to identify threat detection use cases Work with engineering more »

UK LondonInformation Technology – Information Security/Employee - Regular/Permanent/HybridAt Bumble, we are seeking a forward-thinking Head of Application and Product Security who will not only empower our secure SDLC but also align closely with our Trust and Safety team to protect user data and … proactively prevent abuse. This role requires an inspirational leader capable of integrating cutting-edge security practices into our AI-enhanced platforms across mobile and web environments. You should be inspired by Bumble’s mission to create kind connections and deeply understand the complexities of doing that securely and safely.You … make things happen and bring others along with you.You are empathetic to the challenges of software engineering and work with engineering leaders to build security in by design and are accountable to ensure your team is an authoritative source of risk analysis and prioritization.You want to bring your experience more »

Our client is a leading financial technology firm based in London who are seeking a talented Cyber Security Analyst to join a dynamic team in London. We are looking for a skilled and proactive Cyber Security Analyst to enhance our cyber defense capabilities and safeguard our clients' critical … looking for a role where you can maintain your broad experience without fear of becoming siloed, then this could be for you.ResponsibilitiesMonitor and analyse security incidents to identify potential threats and vulnerabilities.Conduct regular assessments of our systems and networks to ensure compliance with industry standards and best practices.Develop and … implement security policies, procedures, and protocols to mitigate risks and enhance overall security posture.Collaborate with cross-functional teams to respond to security incidents and implement remediation measures.Stay abreast of the latest cybersecurity trends, technologies, and threats to provide proactive recommendations for improvementsRequirementsBachelor's degree in Computer Science more »

Senior IT Security Engineer Remote with 1-2 days in London per quarter as needed. 6-12 months, to £75,000 per annum Experienced IT Security Engineer required to bolster the Info Sec team, specifically to translate risks and threats into clear guidance of what that means to … required action, with a practical and hands on approach to the delivery of the same. This role will make a big impact on improved security posture and maturing the security skills of the team and technical environment. Must be a willing coach, able to share knowledge and … expertise and influence and guide teams, with a desire to get hands dirty to deliver and drive security initiatives. Key responsibility areas: Network Security: Network Access Control (NAC) Implementation: Design, implement, and maintain a NAC solution to prevent unauthorized devices from accessing the corporate network. Firewall Rule Review more »

Network Security Analyst Up to £70,000 As the Network Security Analyst, you'll be at the forefront of resolving technical issues with telecom suppliers, placing a strong emphasis on security and compliance. Your expertise will be pivotal in providing recommendations on security, risk, and compliance … matters, collaborating seamlessly with cross-functional teams to confirm audit results and propose crucial security improvements. You'll serve as a translator of complex technical issues, ensuring clear communication with non-technical staff. Working closely with security teams, you'll contextualise supplier security within the overarching framework. … Constantly on the lookout for opportunities to enhance processes and technology, you'll contribute to the continuous improvement of our security posture. Requirements for this confidential position include a recognised security qualification (e.g., CISSP), lead auditor/assessor qualification (e.g., ISO27001), and a relevant degree or equivalent. Bring more »

problems into technical design and mediate between stakeholders at all levels. Bridging the gap between the technical and non-technical. • Designing defence-in-depth security controls throughout solutions, and working with RSO’s Security Group and NCSC to make sure that the Buyer’s IT service accreditation is … includes but is not limited to solution technology costs, ongoing licencing, technical resource requirements, and total cost of ownership. • Taking account of the enhanced security posture and significant threats to the Buyer’s IT service and ensuring that designs justify this. Understanding the implications of design choices in … stations and USB hubs • working knowledge and practical delivery experience of using Mobile Device Management (MDM)/Unified Endpoint Management (UEM) platforms • Experience undertaking security assessments of physical hardware, with an understanding of sophisticated threats at the hardware, firmware and OS levels. more »

an established and actively expanding Financial Services firm. The opportunity has arisen, initially on a 12-month fixed-term contract basis for a talent Security Assurance Analyst to support their existing team. THE ROLE: Information Security Assurance Analyst The Security Assurance Analyst will participate in activities related … to regulatory compliance, cyber security assessments of vendors/delegated authorities, IT audits/assurances, security awareness and training initiatives, and the management and reporting of IT risks. You will promote a culture of Information Security within daily operations of the department and the broader organization, ensuring … working closely with key stakeholders across the business, including Procurement, Delegated Authority, Compliance, Risk, Operations, and the broader Technology Services team. KEY RESPONSIBILITIES: Information Security Assurance Analyst Be part of a dedicated Information Security team, contributing to various security initiatives. Conduct cyber security maturity assessments for more »

London, UK(Hybrid) Job Type: Fixed Term Contract(6 Months + Possible extensions) Job Description: Overview The Capability Maturity Assessment Consultant collaborates with the Security Advisory team to assess organizational security maturity. The ideal candidate has significant experience in BIG4 companies and in-depth knowledge of frameworks like … NIST and ISF. Requirements Experience working at a BIG4 firm, focusing on security assessments, consulting, or risk advisory services. Comprehensive understanding of the NIST cybersecurity framework and its practical application in assessments. Familiarity with the Information Security Forum (ISF) and its methodologies for measuring security maturity. Ability … to assess an organization's security posture, identifying strengths and areas for improvement. Experience in measuring and benchmarking security maturity across different domains within an enterprise. Ability to work on project-based engagements with a focus on security advisory services, for up to 6 months. more »

relationships. As the local Cyber management presence, provide guidance and support for the area. Key Tasks and Responsibilities: Review, analyze, design, and advise on security controls, configurations, and implementations for IT projects Continuously improve the integration and effectiveness of implemented technologies Maintain awareness of cybersecurity threats, events, tactics, techniques … tracking, remediation for identified cybersecurity operational weaknesses Identify, create and mature cybersecurity operations processes Work with IT risk assessment function to ensure the proper security configurations and controls are implemented for IT projects Provide pros/cons of security solutions impact business strategies Create documentation of findings and … CIRT) activities. Assign work to Cyber SOC for remediation Escalate pertinent findings in a timely manner Leverage vendors and internal resources to interface various security tools to automate critical response tasks Support Compliance managers in providing Cybersecurity artifacts Align information cybersecurity operations with NIST, and ISO 27001 requirements Establish more »

I am currently working with an exciting Software business looking for an Application Security Engineer in the UK to support a wider global security team. Working closely with the Application Security Manager and Engineering teams, we are looking for someone to provide expertise on a range of … services including secure coding techniques & reviews, Application Security awareness, integration of security into development lifecycles and more. Other responsibilities include: Provide guidance on Application Security & DevSecOps best practices Develop security testing plans and integrate security into the software development lifecycle Help to deliver overall Application … Security strategy Work closely with the develop team to identify, communicate and remediate vulnerabilities in code Perform and oversee security testing and manage remediation of identified vulnerabilities. Collaborate with the architecture and development teams to review the design and code for security vulnerabilities. Manage aspects of an more »

operations 3+ years of experience working with threat intelligence feeds and IOCs Education High School Diploma w/10 years of experience in information security or college diploma with 6 years of information security experience Additional 10 years of IT experience 7+ years in an information security … threat and vulnerability management program and operations 3+ years of experience working with threat intelligence feeds and IOCs 3+ years of experience in a security engineer role 3+ experience with cloud vulnerabilities 2+ years of experience with endpoint protection tools 2+ years of experience with security information and … event management (SIEM) tools 1+ years of experience with perimeter security Primary Functions Operate within the global Cybersecurity Team within the Information Technology department Ensure global alignment with Company’s best practices for patch, posture, and vulnerability management Maintain and improve the TVM program’s operational performance, processes more »

Senior Cloud Security Engineer - London hybrid - £75,000 - £95,000 + Bonus + Benefits Locke & McCloud are looking for an experienced Senior Cloud Security Engineer to join our clients growing security engineering function. As a Senior Cloud Security Engineer, you will be responsible for designing, implementing … and managing security measures across our clients cloud platforms. You will work to develop security strategies, respond to incidents, and continuously improve our client cloud security posture. Main responsibilities: Design and implement comprehensive security controls and best practices for cloud infrastructure. Develop and enforce security policies, standards, and guidelines to ensure compliance with ISO27001, NIST, PCI-DSS, Cyber Essentials, and GDPR. Conduct security assessments, vulnerability scans, and penetration tests to identify and mitigate risks. Monitor and respond to security incidents, including conducting forensic investigations and root cause analyses. Collaborate with DevOps and more »

responsible for the continued development of Uptime Institute’s s cybersecurity-focused services portfolio. Position Description: Developing short and long-term strategy for cyber security services including, driving requirements and improvement initiatives, developing roadmaps with actionable plans, leading cross-functional teams both internally and externally, and championing the execution … MSP, Cloud Services, SaaS and Colocation suppliers. Continuously evolving Uptime Institute cybersecurity services roadmap & scope parameters, to improve services offering against the expanding cyber security norms and standards relevant to data centres. Identifying and managing cybersecurity program development partners and advisory board in line with the company’s objective … programs in partnership with relevant functional areas. EXPERIENCE This is a Senior role (hands-on) aimed at improving our clients’ IT Estate's cyber security posture across. An understanding of infrastructure engineering/application engineering expertise is essential. The candidate should also have a working knowledge of cyber more »

want to build the best consumer lending experiences in the world helping people move forward with credit.We are looking for someone to lead our Security Architecture team to help us secure our modern cloud-native platform for brands such as Aqua, Marbles, Amazon, AO, Argos, and John Lewis & Partners.You … will help by facilitating work delivered by security architects and engineers:Helping to build and scale out an embedded security culture, working with teams to ensure secure-by-design and defense in depth principlesReviewing the security posture of our platforms identifying security risks and issues … and working with, security engineering, as well as platform and product teams to improve our platformDeliver clear recommendations for building security capabilities to deliver security policy and compliance objectivesLeading internal learning sessionsWhat you will getLeading a dedicated and capable team of security architectsWorking with our outstanding more »

global provider of information-based analytics and decision tools for professional and business customers About the Role We are looking for an experienced Application Security Leader to lead the Application Security discipline across RX Global. The Security Application Leader will play a critical role in ensuring that … all applications are developed, deployed, and maintained with security as a top priority, helping to protect sensitive data, mitigate risks, and maintain the trust of customers and stakeholders Responsibilities Conducting assessments of applications (web, cloud, mobile, API) using range of manual and automated source code review techniques (PASTA and … STRIDE) Working with development teams to analyse,evaluate and enhance the effectiveness of their application/product security posture at all levels. Owning and administration of security tooling such as Sonarcube, Acunetix, Dtrack, and others Collaborating with respective peer groups to safeguard company information assets against current more »

Job Title: Senior Network Security Engineer Location: London (In office, could be flexibility depending on the situation) Salary and Benefits: Over £100k + Bonus and Benefits Our client, a prominent fintech firm, is seeking a Senior Network Security Engineer to join their team and play a pivotal role … in ensuring the security of their network infrastructure. Role Overview: As a Senior Network Security Engineer, you will be instrumental in safeguarding our client's network infrastructure, focusing on perimeter networks, DMZs, firewalls, proxies, vulnerability scanning, and Network Access Control (NAC). You will lead the implementation of … key security controls, conduct audits, and provide consultancy to the Security Operations Infosec team. Key Responsibilities: Lead, implement, and manage key network security controls. Conduct audits, certifications, and provide consultancy support. Utilise automation to enhance security posture and response capabilities. Liaise with stakeholders to enforce more »

Information Security Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and … industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of information security experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g., GDPR more »

About Sekuro: Sekuro is a global cyber security consultancy with operations across 12 countries. Our UK arm is expanding, and we are seeking expressions of interest for passionate cybersecurity professionals to join our dynamic team. Initially we will be seeking experience with Managed Extended Detection and Response (MXDR) services. … At Sekuro we leverage cutting-edge technologies and strategic partnerships to provide top-tier security solutions to our global clientele. Job Description: We are looking to engage with highly skilled and motivated Senior MXDR Specialists with expertise in CrowdStrike and AWS to be part of Sekuros UK expansion. In … using CrowdStrike and AWS to protect client environments. Monitoring and Response: Conduct continuous monitoring, threat hunting, and incident response activities to identify and mitigate security threats. Integration: Integrate MXDR solutions with clients’ existing security infrastructure and workflows. Automation: Develop and implement automation scripts and tools to enhance threat more »

connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Security Consultant - Workforce Architecture & Skills Lead - Middle East BAE Systems Digital Intelligence has been contracted to deliver a National Cyber Security Programme in the … is an exciting opportunity to join a best of breed capability delivery team that will deliver a National Programme to enhance a Nations Cyber Security posture. The role is based in the Middle East on assignment for 12 months so there are no options for hybrid working as the … client site. As Workforce Architecture and Skills Lead you will be responsible for the production and authoring of a range of National Level Cyber Security Policies including skills frameworks, certification and accreditation standards and the production of National Cyber Security Strategy. About the job: The Workforce Architecture Lead more »

Job title: Security Engineer (Threat/Vulnerability) Client: Fintech Salary: £90,000 - £160,000 + Market leading bonus Location: London Experience level : 5+ years My client is looking for a world class Security Engineer to bolster their high grade threat detection team. This individual will be given the … information and computer systems. Role: Perform periodic and on-demand system audits and vulnerability assessments of systems, internal applications and Cloud services to identify security vulnerabilities. Threat detection - Analyse/monitor security infrastructure and detect potential threats Analyse cyber threat intelligence and mitigate threats/improve security … deploy detections/rules to prevent threats Threat hunting Stakeholder management Requirements: Experience with data analysis Proficiency in Python or PowerShell Extensive knowledge of security engineering concepts Exposure to cloud technologies (AWS/AZURE/GCP) hands on creating detections hands on experience within incident management/response If more »

the open, collaborative environment are the real reasons to work here. You will be an excellent individual contributor, working across a broad range of security roles and projects. You’ll be working on everything from physical to IT security, helping to transform signals into actionable intelligence and designing …/implementing authentication and authorisation systems. As the third hire into the security function, there is a lot of autonomy over your role and the opportunity to see the impact of your work almost instantly. You will also be working to assess third-party security to keep them … they will also have the necessary funding for you to be able to do what you need to do to build a world class security posture. For some of the projects that they have planned for you, you will need deep familiarity with UNIX and Windows authentication systems with more »

+ Bonus + Benefits Locke & McCloud are looking for an experienced Senior DevSecOps Engineer to join our client who’re currently building out their Security Engineering team within their established Cyber Security function. In this role, you will be part of a growing team that will enable you … to lead the growth and development of various DevSecOps and Security Architecture projects, influence and implement change, with various opportunities to lead and grow a team. Main responsibilities: Collaborate with cross-functional teams to implement security practices throughout the SDLC, emphasising DevSecOps principles. Design, implement, and manage security controls and automation tools to enhance the security posture of cloud-based applications and infrastructure. Conduct thorough security assessments and risk analyses, identifying vulnerabilities and recommending remediation strategies. Develop and maintain security policies, standards, and procedures in alignment with industry best practices and compliance requirements. more »

Job Post: Principal Security Platform Engineer - Infrastructure Location: London, Hybrid (1 day per week) Type: Full-Time Salary: Up to £90,000 Our client, a highly respected and well-established household name, is seeking a talented Principal Security Platform Engineer - Infrastructure to join their dynamic team. This is … an excellent opportunity to make a significant impact on the security posture of a leading organization. Key Responsibilities: Manage and improve the security posture of our client's on-premise estate, including endpoints and mobile devices Ensure compliance with security standards and drive remediation processes … Optimize security controls and configurations within infrastructure technologies Contribute to the development and implementation of security policies and procedures Define security standards and guardrails, supporting their implementation and ongoing support Essential Qualifications: Minimum 5 years of relevant experience in infrastructure security related to endpoints and mobile more »

Lead Security Engineer - Azure, Zscaler - £80,000 - £95,000 + bonus - FinTech A groundbreaking FinTech startup, backed by industry titans who are revolutionizing digital asset security for institutional investors, are looking for a Lead Security Engineer to look after their Azure infrastructure from a security perspective. … As the Lead Security Engineer, you will be have a substantial effect on the organization as they are building the future of secure crypto trading, so as you can imagine, security is at the heart of everything they do! This is a new role within the company as … they are currently going through a large digital transformation and are rapidly growing, so you will be building the security engineering function from the ground up and potentially building a team around you in the future. What will the Lead Security Engineer be doing? You will be the more »

Job Post: Principal Security Platform Engineer - Cloud Location: London, Hybrid (1 day per week) Type: Full-Time Salary: Up to £90,000 Our client, a highly respected and well-established household name, is seeking a talented Principal Security Platform Engineer - Cloud to join their dynamic team. This is … an excellent opportunity to make a significant impact on the security posture of a leading organization. Key Responsibilities: Manage and improve the security posture of our client's cloud environments hosted by strategic providers Ensure compliance with security standards and drive remediation processes Optimize security controls and configurations within cloud technologies Contribute to the development and implementation of security policies and procedures Define security standards and guardrails, supporting their implementation and ongoing support Essential Qualifications: Minimum 5 years of relevant experience in security engineering Extensive hands-on experience implementing and configuring more »