26 to 50 of 58 Security Posture Jobs in London

to learn more about life at Klaviyo? Visit careers.klaviyo.com to see how we empower creators to own their own destiny.Klaviyo is looking for a security engineer to add to our growing Security Intelligence & Operations Team. This is a hands-on role that involves responding to cyber threats and … digital forensics and investigations, and automating threat response playbooks. As a member of the team, you will have the opportunity to work on complex security challenges and work with engineers across the organization to improve the security posture of Klaviyo’s product, corporate, and cloud environments. What … analysis in a cloud first environmentDevelop and codify threat response processes and playbooksPerform digital forensic investigations to include analysis, collection, and preservation of evidenceBuild security tools to automate threat response tasksDevelop detailed post incident and investigation reportsCollaborate with detection engineers to identify threat detection use cases Work with engineering more »

global provider of information-based analytics and decision tools for professional and business customers About the Role We are looking for an experienced Application Security Leader to lead the Application Security discipline across RX Global. The Security Application Leader will play a critical role in ensuring that … all applications are developed, deployed, and maintained with security as a top priority, helping to protect sensitive data, mitigate risks, and maintain the trust of customers and stakeholders Responsibilities Conducting assessments of applications (web, cloud, mobile, API) using range of manual and automated source code review techniques (PASTA and … STRIDE) Working with development teams to analyse,evaluate and enhance the effectiveness of their application/product security posture at all levels. Owning and administration of security tooling such as Sonarcube, Acunetix, Dtrack, and others Collaborating with respective peer groups to safeguard company information assets against current more »

Security Engineer - Application Security, £90,000 base, 15% bonus, + Great benefit package We're working with a FTSE 100 e-commerce firm that is looking for an experienced Application Security expert to enhance its secure software capabilities. This opportunity is ideal for a DevSecOps/Application … Security technical consultant or engineer with a proven track record in agile environments. The role involves providing expert guidance and driving improvements to bolster the client's Application Security posture. The role involves identifying and managing security toolsets, providing guidance to engineering teams, and maintaining solutions to … prevent security issues early in development. You will be responsible for assisting in the identification of appropriate toolsets that align with the application security team’s strategy, offering comprehensive guidance to enable engineering teams to effectively self-serve with the toolsets, and aiding in the management and maintenance more »

Job Post: Principal Security Architect Location: London, Hybrid (1 day per week) Type: Full-Time Salary: Up to £110,000 Our client, a highly respected and well-established household name, is seeking an experienced Principal Security Architect to join their dynamic team. This is an excellent opportunity to … make a significant impact on the security posture of a leading organization by identifying capabilities needed for InfoSec success and driving secure-by-design principles into business and technology change activities. Key Responsibilities: Clearly articulate needed capabilities, identify gaps, and assess improvement opportunities Map required InfoSec capabilities using … personal, organizational, and industry knowledge Communicate with stakeholders and sponsors to understand ambitions, issues, limitations, and constraints related to Security Architecture Create and maintain architecture artifacts and collateral Support InfoSec leadership in developing and implementing the InfoSec strategy Actively participate in Enterprise Architecture & Design community and governance processes Ensure more »

UK LondonInformation Technology – Information Security/Employee - Regular/Permanent/HybridAt Bumble, we are seeking a forward-thinking Head of Application and Product Security who will not only empower our secure SDLC but also align closely with our Trust and Safety team to protect user data and … proactively prevent abuse. This role requires an inspirational leader capable of integrating cutting-edge security practices into our AI-enhanced platforms across mobile and web environments. You should be inspired by Bumble’s mission to create kind connections and deeply understand the complexities of doing that securely and safely.You … make things happen and bring others along with you.You are empathetic to the challenges of software engineering and work with engineering leaders to build security in by design and are accountable to ensure your team is an authoritative source of risk analysis and prioritization.You want to bring your experience more »

assets. As the Head of IAM, the individual will lead a team of IAM professionals, collaborate with key stakeholders, and drive initiatives to enhance security posture and streamline access management processes. Key Responsibilities: Develops and executes IAM strategies aligned with business objectives and regulatory requirements. Leads the design … access controls. Oversees the operation of IAM technologies, ensuring system reliability, scalability, and performance. Establishes and enforces IAM policies, standards, and procedures to mitigate security risks and ensure compliance with industry regulations. Leads the evaluation and selection of IAM solutions, vendors, and technologies. Collaborates with internal teams and external … team members, fostering a culture of continuous learning and professional development. Monitors emerging trends and best practices in IAM, recommending innovative solutions to enhance security posture and operational efficiency. Serves as a subject matter expert on IAM matters, providing guidance and support to clients and internal stakeholders. Qualifications more »

Job AdvertAre you an accomplished Senior Security Engineer, with experience in a modern software-based platform environment?Would you relish the opportunity to work with one of the UK’s leading independent Software houses, with a global footprint (but UK HQ), 500 staff & a focus on technical excellence?If … so, we are looking for an experienced Senior Security Engineer to join our growing Security Ops team, working closely with the wide GRC & policy team, DevOps teams, Dev’ team & internal IT teams to make sure security is at the heart of all our technical process'.This role … will cover a wide array of security areas across our SaaS private and public cloud environments, as well as corporate domains & internal infrastructure and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential threats.Job title: Senior Security Engineer. Cyber Security more »

Information Security Risk Analyst Location: Hybrid - London Package: Negotiable + Benefits The Information Security Risk Analyst III at Brown & Brown is responsible for analysing information security controls both within our organisation and with third-party entities. This analysis aims to identify and assess associated information security risks, and effectively communicate these findings to the business stakeholders. This role requires a thorough understanding of information security principles and practices, as well as the ability to evaluate complex systems and processes. The Information Security Risk Analyst III plays a crucial role in safeguarding our organisation … s information assets and maintaining a strong security posture. The day to day: research and analysis to handle inbound cybersecurity inquiries from company’s third parties. research and analysis related to vetting new or potentially new third parties. recommendations for communicating identified security risks of new or potentially more »

Job Title: Senior Network Security Engineer Location: London (In office, could be flexibility depending on the situation) Salary and Benefits: Over £100k + Bonus and Benefits Our client, a prominent fintech firm, is seeking a Senior Network Security Engineer to join their team and play a pivotal role … in ensuring the security of their network infrastructure. Role Overview: As a Senior Network Security Engineer, you will be instrumental in safeguarding our client's network infrastructure, focusing on perimeter networks, DMZs, firewalls, proxies, vulnerability scanning, and Network Access Control (NAC). You will lead the implementation of … key security controls, conduct audits, and provide consultancy to the Security Operations Infosec team. Key Responsibilities: Lead, implement, and manage key network security controls. Conduct audits, certifications, and provide consultancy support. Utilise automation to enhance security posture and response capabilities. Liaise with stakeholders to enforce more »

leader in our field. Job Description The Role: As a Senior Penetration Tester at Sportradar, you will play a pivotal role in enhancing our security posture. Collaborating closely with our architecture, development, and system administration teams, as well as the broader business, you will be instrumental in protecting our … intellectual property and ensuring the security of our digital assets. This role requires deep technical expertise, strategic thinking, and the ability to lead and mentor a team. The Challenge: Lead and contribute to the protection and security of our intellectual property. Conduct advanced penetration testing across various platforms … and environments. Perform detailed risk analysis to identify and mitigate security issues leading to data loss or theft. Identify security breaches, implement corrective actions, and devise strategies to prevent future incidents. Collaborate with developers across Sportradar for in-depth security reviews and threat modeling. Work in an more »

Senior Cloud Security Engineer What you’ll be working on: Configuring cloud security applications and security policies. Tuning alerts with the L3 Ops teams to ensure the right alerts are being alerted. Roll out a security solution across cloud accounts within all regions including Kubernetes & containers. … Objectives: To work closely with the Cloud Engineering teams to ensure the cloud platforms are complying to security standards and there is a remediation process. To work with the SOC team & automation team to ensure alerting is correct for any detections or incidents that Op's will need to … investigate. To improve the security posture of cloud devices in AWS, GCP & Azure. What you’ll bring: Sound knowledge from a Cloud security perspective & how to create, update and improve polices for prevention, compliance, and sensor standpoint. Experience engineering and securing AWS, GCP and Azure Cloud platforms more »

it's never too late to make any day extraordinary. Viator. One app, 300,000+ travel experiences you’ll remember.Viator is seeking an experienced Security Manager with a blend of software engineering and security engineering skills to lead our Security and Compliance Engineering team, reporting to the … too. We have people in Singapore, Sydney, Oxford, London, Lisbon, Reykjavik, Boston, San Francisco, Krakow and more.You will be responsible for developing and implementing security strategies across the Security Engineering and Security Operations teams, as well as liaising with other teams delivering parts of our overall security posture. The ideal candidate will have a proven track record of building and/or implementing and improving the maturity of security programs in Cloud-based E-Commerce Marketplaces and possess excellent leadership and communication skills. You must have significant engineering acumen as this is a highly technology more »

In a nutshellThe Information Security Manager is responsible for assessing and managing the security posture of Business Applications and will lead a small team of colleagues. They provide security support and consultancy directly to business functions who are delivering products/projects and change outside of … the Technology function. The role has the following responsibilities: Building strong relationships with colleagues across multiple areas, working collaboratively and proactively to ensure security and governance requirements are effectively embedded in all business owned products/projects and programmes.Provide end to end engagement on a wide range of Products … ensuring that security is built in by design, are delivered securely, and data is protected appropriately.Provide Information Security subject matter expertise to business functions & Sainsburys Tech.Educate Business Stakeholders to ensure they are aware of formal governance processes to engage with. Escalate where this is not being followed.Work closely more »

Information Security Officer Key Responsibilities: - Perform security assessments for vendors and projects, identifying risks and recommending mitigation strategies. - Ensure compliance with security policies and standards in all vendor and project activities. - Develop and maintain frameworks for security assessments. - Stay updated on emerging security threats and … industry trends. - Participate in incident response and investigations. - Collaborate with procurement to evaluate and manage vendor security. - Review vendor documentation to assess security posture. - Apply risk management principles to prioritize and mitigate security risks. - Support the development and enforcement of security policies and procedures. - Conduct security awareness training for staff. Skills and Experience: - Over 5 years of information security experience. - Preferred certifications: CISA, CISM, or CISSP. - Strong knowledge of security principles, standards (e.g., ISO 27001, NIST), and best practices. - Experience in security assessments and risk management. - Familiarity with regulatory requirements (e.g., GDPR more »

entirely new network for the world's money. For everyone, everywhere.More about our mission.Job DescriptionAbout the role We are looking for an experienced application security engineer with a strong interest in all aspects of cyber security.Our team is the Application Security Team, our mission is to protect Wise … we must continually develop our systems for identifying and reporting vulnerabilities across the company. Moreover we must ensure work alongside product teams to ensure security practices are followed and mitigations are applied throughout the whole software development lifecycle. In addition to this we also work to ensure our engineering … the platform tribe.As we grow, you will be working as part of a high performing team to ensure our pillars are maintained and our security posture is always improving as well as our extensive compliance program. We need to sustain our growth by continuously iterating on the services more »

London, UK(Hybrid) Job Type: Fixed Term Contract(6 Months + Possible extensions) Job Description: Overview The Capability Maturity Assessment Consultant collaborates with the Security Advisory team to assess organizational security maturity. The ideal candidate has significant experience in BIG4 companies and in-depth knowledge of frameworks like … NIST and ISF. Requirements Experience working at a BIG4 firm, focusing on security assessments, consulting, or risk advisory services. Comprehensive understanding of the NIST cybersecurity framework and its practical application in assessments. Familiarity with the Information Security Forum (ISF) and its methodologies for measuring security maturity. Ability … to assess an organization's security posture, identifying strengths and areas for improvement. Experience in measuring and benchmarking security maturity across different domains within an enterprise. Ability to work on project-based engagements with a focus on security advisory services, for up to 6 months. more »

About Sekuro: Sekuro is a global cyber security consultancy with operations across 12 countries. Our UK arm is expanding, and we are seeking expressions of interest for passionate cybersecurity professionals to join our dynamic team. Initially we will be seeking experience with Managed Extended Detection and Response (MXDR) services. … At Sekuro we leverage cutting-edge technologies and strategic partnerships to provide top-tier security solutions to our global clientele. Job Description: We are looking to engage with highly skilled and motivated Senior MXDR Specialists with expertise in CrowdStrike and AWS to be part of Sekuros UK expansion. In … using CrowdStrike and AWS to protect client environments. Monitoring and Response: Conduct continuous monitoring, threat hunting, and incident response activities to identify and mitigate security threats. Integration: Integrate MXDR solutions with clients’ existing security infrastructure and workflows. Automation: Develop and implement automation scripts and tools to enhance threat more »

We are looking for an experienced SSPM Consultant to support the strategic design, implementation, and continuous enhancement of Security Monitoring Project initiatives. This role is ideal for security professionals aiming to make a significant impact within the financial sector. Key Responsibilities Design, build, and protect enterprise systems, applications … and personnel. Safeguard information, infrastructures, applications, and business operations against cyber threats. Develop telemetry solutions for observing malicious traffic. Investigate strategic XDR solutions. Enhance security posture management for 3rd Party SaaS configurations. Collaborate with global teams for consistent processes and solutions. Lead technical and strategic discussions on SSPM … services. Proficiency in SSPM or CSPM policies and configurations. Knowledge of API integration for SaaS 3rd Party applications. Familiarity with Salesforce, ServiceNow, and O365 security aspects. Experience with SSPM tools like Microsoft Defender for Cloud or AppOmni. Understanding of industry security frameworks like NIST and CIS. Experience with more »

Freelance Third Party IT Security Manager contractor needed Belgium based or UK based. long term contract Rate per day ASAP start Key responsibilities: Third-Party Assurance Lifecycle & Support the transformation of the activity Execute Third Party Due Diligence, risk profiling, onboarding, re-certification; Make an opinion on Third Party … Security Posture ; Define Remediation where applicable Support Contract Management - ensure that the security expectations included in the contract are proportionate to the risk profiling Contribute to the DORA regulation implementation – translate DORA requirements into actionable processes & materials (contract, assessment templates, …) to be used by the team. Core … Skills Previous experience in Third Party Security Management (i.e. Due Diligence, etc.) Knowledge of control frameworks, e.g., ISO 27000, NIST, CIS-20, COBIT-5 Knowledge of relevant regulations, i.e. DORA, Outsourcing, ESMA, etc. Previous experience in supporting or delivering of large scare regulatory change initiative Experience with contract review more »

create and run optimized Cloud Native solutions on AWS and Azure. This person will work to balance developer velocity and the overall stability and security of FactSet services running in the cloud. The leader will directly contribute to the growth of the business by partnering Cloud Architects with Strategic … engineering teams.Increase velocity of cloud migration and digital transformation by helping engineering teams adopt DevOps, Infrastructure as Code, and automated release processes.Work with FactSet security organization to ensure a strong security posture of services and data in the cloud.Identify and implement cost optimization strategies for cloud services.Minimum more »

We’re looking for an experienced Cyber Essentials Sales Consultant to join our growing Cybersecurity Company. CyberLab is a fast-growing cyber security consultancy business delivering Cyber Security as a Service (CSaaS) to our clients, as well as offering a range of consultancy services such as compliance and … work, a great place to be a customer” The Role: Our CSaaS portal delivers an innovative web app for organisations to manage their cyber security posture and understand their cyber risks giving them a competitive advantage. You will have the opportunity to sell a truly unique technology within … as part of a small team, you will have current experience in sales, in either a direct or channel capacity. Additionally, experience of cyber security would prove useful, but is by no means a prerequisite. This is a great opportunity for someone wanting to further their sales career in more »

We are hiring for Lead Security Analyst for London, UK location with remote working flexibility. Job Title: Lead Security Analyst Job Type: Permanent Location: London, UK(Remote) Job details: Purpose of the Job Leading the Response: Acting swiftly and decisively during security incidents to mitigate risks. Incident … post-incident to understand the root cause and to develop strategies to prevent recurrence. Continuous Monitoring: Keeping a vigilant eye on the organization's security systems to detect any suspicious activities early. Threat Analysis: Evaluating potential threats and vulnerabilities to ensure that the organization is prepared to defend against … them. Strategic Defense Implementation: Putting in place robust security measures to protect the organization's information assets. Cross-Team Coordination: Collaborating with various teams and entities to ensure a unified security strategy. This role demands a proactive mindset, deep technical expertise, and strong leadership skills to navigate the more »

remote working Location: United Kingdom (London – London) Type: PermanentCyber Risk Senior Consultant Up to 65,000UK Wide - Remote-First A dynamic and innovative cyber security consultancy is seeking a Senior Consultant specializing in cyber risk. This small, young consultancy thrives on challenges and values diverse perspectives. Known for their … Their projects are diverse, encompassing risk identification, frequency analysis of risk events, and quantification of operational impacts. Services also include Cyber Scorecards, in-depth security posture assessments, and cyber exercises (war games) for leadership teams.Key ResponsibilitiesAssess security postures and conduct quantified cyber risk assessments at the intersection … of cyber security and business operations.Collaborate with clients using internally developed and open-source tools.Lead engagements with senior business leaders, IT, security teams, and board members.Identify and prioritize protection needs, understand risk consequences, and develop recommendations.Problem-solve by breaking down challenges, documenting assumptions, and delegating tasks as needed.Communicate more »

Network Security Analyst Up to £70,000 As the Network Security Analyst, you'll be at the forefront of resolving technical issues with telecom suppliers, placing a strong emphasis on security and compliance. Your expertise will be pivotal in providing recommendations on security, risk, and compliance … matters, collaborating seamlessly with cross-functional teams to confirm audit results and propose crucial security improvements. You'll serve as a translator of complex technical issues, ensuring clear communication with non-technical staff. Working closely with security teams, you'll contextualise supplier security within the overarching framework. … Constantly on the lookout for opportunities to enhance processes and technology, you'll contribute to the continuous improvement of our security posture. Requirements for this confidential position include a recognised security qualification (e.g., CISSP), lead auditor/assessor qualification (e.g., ISO27001), and a relevant degree or equivalent. Bring more »

. We invite you to join our client’s dynamic team as a Red Team Lead for a leading and fast-growing UK cyber security consulting firm. Our client isn't just about providing cybersecurity solutions and services; they're dedicated to fostering your professional advancement and development. They … growth journey and funding certifications to help you excel. The Principal Red Team Operator will be at the forefront of the client’s offensive security operations, it will be your role to uncover weaknesses in client’s security posture and provide actionable insights to enhance their resilience … engagements, including attack simulation. Identify vulnerabilities in networks, applications, and systems through advanced penetration testing techniques. Collaborate closely with clients to understand their unique security challenges and develop tailored strategies for mitigating risks. Provide detailed reports and recommendations, guiding clients towards effective security solutions and best practices. Requirements more »