3,011 Cissp jobs in the United Kingdom
Information Security Engineer With CISSP
£45 - £55 hour
companies_data/recutify_inc.
Posted 21 days ago
Job Viewed
Job Description
Role: Information Security Engineer With CISSP
Location: Toronto, ON (5days Onsite)
MUST HAVE: CISSP certification and experience in security focused Devops engineering
Duties and Responsibilities
As a Staff Information Security Engineer at Client, you will be joining a diverse team of mixed background technologists. Your mandate as Staff Information Security Engineer is to provide secure and stable platform solutions that empower our organization to create the highest quality services for our customers. On a day to day basis, you’ll assist with triaging information security alerts, events, and investigations for potential security incidents by performing detailed analysis activities. You will take corrective actions if necessary and escalate as appropriate. Where necessary, you will provide technical insight into the development and support of all security operational processes, procedures and tools used for ensuring the integrity of Client’s security program. You will lead and participate in periodic access reviews, vulnerability assessments, Secure-SDLC, 3rd party engagements for security assessment, Security Steering Committee, PenTests, and routine external audit activities. You will be operating with a high level of autonomy, engaging with stakeholders, clients, and vendors at all levels across the organization and external, contributing to the continuous improvement of Client’s cyber security posture - as a result you must be a self starter and be able to manage the initiatives independently. Specifically, this role requires an advanced level of knowledge around secure cloud architecture design and compliance enforcement. You will be leading the security initiatives for all of Client’s systems across all domains. This role also requires strong communication skills, and a proactive mindset, such that the needs of the organization as a whole are met. Occasionally, there will be a need to provide security operations support outside business hours
Qualifications
● Bachelor’s degree in computer science, systems analysis or a related study, or equivalent experience.
● CISSP (certified with Endorsement phase fully completed).
● 5+ years of demonstrable experience spanning at least four different CISSP domains.
● Experience working with Compliance programs like PCI-DSS or SOC2.
● Strong understanding of defense-in-depth strategies and implementation of technical controls across the entire organization, with ability to assess gaps and risks around computing systems and operations.
● Experience developing and adopting information security and governance standards, policies and procedures.
● Experience in conducting successful vulnerability assessments across various infrastructure tiers, including penetration testing, scanning and remediation activities.
● Experience in cloud native technologies, especially around Kubernetes, and cloud environments is a must. ● Strong understanding of networking concepts, protocols and architectures.
● Strong understanding of security concepts around PKI, TLS and encryption.
● Experience using network and security assessment tools – both at host and at network tier.
● Experience with IAM, SSO, RBAC, and other AuthN/AuthZ management technologies.
● Familiarity with CVE databases, vulnerability scoring systems (e.g., CVSS), and security industry standards such as ISO 27001 and NIST.
● Strong proficiency in Linux/Unix based operating systems, Python programming language and Shell scripting.
● Other industry standard certifications like CISA, CISM, CGRC and CRISC are a plus.
● Experience as a team lead is a plus.
Location: Toronto, ON (5days Onsite)
MUST HAVE: CISSP certification and experience in security focused Devops engineering
Duties and Responsibilities
As a Staff Information Security Engineer at Client, you will be joining a diverse team of mixed background technologists. Your mandate as Staff Information Security Engineer is to provide secure and stable platform solutions that empower our organization to create the highest quality services for our customers. On a day to day basis, you’ll assist with triaging information security alerts, events, and investigations for potential security incidents by performing detailed analysis activities. You will take corrective actions if necessary and escalate as appropriate. Where necessary, you will provide technical insight into the development and support of all security operational processes, procedures and tools used for ensuring the integrity of Client’s security program. You will lead and participate in periodic access reviews, vulnerability assessments, Secure-SDLC, 3rd party engagements for security assessment, Security Steering Committee, PenTests, and routine external audit activities. You will be operating with a high level of autonomy, engaging with stakeholders, clients, and vendors at all levels across the organization and external, contributing to the continuous improvement of Client’s cyber security posture - as a result you must be a self starter and be able to manage the initiatives independently. Specifically, this role requires an advanced level of knowledge around secure cloud architecture design and compliance enforcement. You will be leading the security initiatives for all of Client’s systems across all domains. This role also requires strong communication skills, and a proactive mindset, such that the needs of the organization as a whole are met. Occasionally, there will be a need to provide security operations support outside business hours
Qualifications
● Bachelor’s degree in computer science, systems analysis or a related study, or equivalent experience.
● CISSP (certified with Endorsement phase fully completed).
● 5+ years of demonstrable experience spanning at least four different CISSP domains.
● Experience working with Compliance programs like PCI-DSS or SOC2.
● Strong understanding of defense-in-depth strategies and implementation of technical controls across the entire organization, with ability to assess gaps and risks around computing systems and operations.
● Experience developing and adopting information security and governance standards, policies and procedures.
● Experience in conducting successful vulnerability assessments across various infrastructure tiers, including penetration testing, scanning and remediation activities.
● Experience in cloud native technologies, especially around Kubernetes, and cloud environments is a must. ● Strong understanding of networking concepts, protocols and architectures.
● Strong understanding of security concepts around PKI, TLS and encryption.
● Experience using network and security assessment tools – both at host and at network tier.
● Experience with IAM, SSO, RBAC, and other AuthN/AuthZ management technologies.
● Familiarity with CVE databases, vulnerability scoring systems (e.g., CVSS), and security industry standards such as ISO 27001 and NIST.
● Strong proficiency in Linux/Unix based operating systems, Python programming language and Shell scripting.
● Other industry standard certifications like CISA, CISM, CGRC and CRISC are a plus.
● Experience as a team lead is a plus.
This advertiser has chosen not to accept applicants from your region.
0
UKCSC or CISSP chartered Head of Security Assurance
Glasgow, Scotland
£60000 - £90000 Annually
Expert Employment
Posted 7 days ago
Job Viewed
Job Description
Head of Security Assurance, who is UKCSC or CISSP chartered required to lead the protection of critical infrastructure systems.
This is a rare opportunity and responsibility to take strategic ownership of some national infrastructure cyber security. You will guide major programmes, shaping national resilience, and influencing board level decision making.
You will lead a cyber security technical team who deliver risk based assurance across systems and third parties, using NCSC aligned frameworks. This position requires a technically sharp leader with deep experience in cyber risk, security architecture and up to the minuet awareness, who can also engage stakeholders at the highest level.
Applicants must be chartered via the UKCSC or CISSP.
This advertiser has chosen not to accept applicants from your region.
1
UKCSC or CISSP chartered Head of Security Assurance
Cardiff, Wales
£60000 - £90000 Annually
Expert Employment
Posted 7 days ago
Job Viewed
Job Description
Head of Security Assurance, who is UKCSC or CISSP chartered required to lead the protection of critical infrastructure systems.
This is a rare opportunity and responsibility to take strategic ownership of some national infrastructure cyber security. You will guide major programmes, shaping national resilience, and influencing board level decision making.
You will lead a cyber security technical team who deliver risk based assurance across systems and third parties, using NCSC aligned frameworks. This position requires a technically sharp leader with deep experience in cyber risk, security architecture and up to the minuet awareness, who can also engage stakeholders at the highest level.
Applicants must be chartered via the UKCSC or CISSP.
This advertiser has chosen not to accept applicants from your region.
2
UKCSC or CISSP chartered Head of Security Assurance
CF10 Cardiff / Caerdydd, Wales
Expert Employment
Posted 4 days ago
Job Viewed
Job Description
Head of Security Assurance, who is UKCSC or CISSP chartered required to lead the protection of critical infrastructure systems.
This is a rare opportunity and responsibility to take strategic ownership of some national infrastructure cyber security. You will guide major programmes, shaping national resilience, and influencing board level decision making.
You will lead a cyber security technical team who deliver risk based assurance across systems and third parties, using NCSC aligned frameworks. This position requires a technically sharp leader with deep experience in cyber risk, security architecture and up to the minuet awareness, who can also engage stakeholders at the highest level.
Applicants must be chartered via the UKCSC or CISSP.
This advertiser has chosen not to accept applicants from your region.
3
UKCSC or CISSP chartered Head of Security Assurance
Glasgow, Scotland
Expert Employment
Posted 4 days ago
Job Viewed
Job Description
Head of Security Assurance, who is UKCSC or CISSP chartered required to lead the protection of critical infrastructure systems.
This is a rare opportunity and responsibility to take strategic ownership of some national infrastructure cyber security. You will guide major programmes, shaping national resilience, and influencing board level decision making.
You will lead a cyber security technical team who deliver risk based assurance across systems and third parties, using NCSC aligned frameworks. This position requires a technically sharp leader with deep experience in cyber risk, security architecture and up to the minuet awareness, who can also engage stakeholders at the highest level.
Applicants must be chartered via the UKCSC or CISSP.
This advertiser has chosen not to accept applicants from your region.
4
Information Security Engineer
BN1 1AA East Sussex, South East
£55000 Annually
WhatJobs
Posted 1 day ago
Job Viewed
Job Description
Our client is seeking a proactive and detail-oriented Information Security Engineer to join their team in **Brighton, East Sussex, UK**. This hybrid role offers a blend of in-office collaboration and remote flexibility, allowing you to contribute to critical security initiatives while maintaining a good work-life balance. You will be responsible for designing, implementing, and maintaining security solutions to protect our client's infrastructure and data from evolving cyber threats. This involves working closely with IT and development teams to embed security best practices throughout the software development lifecycle and infrastructure management.
Key responsibilities include configuring and managing firewalls, intrusion detection/prevention systems, and other security tools. You will also be involved in security monitoring, vulnerability assessments, and incident response activities. This role requires a strong understanding of network protocols, operating systems, and cloud security principles. You will contribute to developing and enforcing security policies and procedures, and conduct security awareness training for staff. Collaboration is key, so you will engage with various departments to ensure security requirements are met. The ideal candidate will have a passion for cybersecurity, a strong analytical aptitude, and excellent communication skills. Experience with scripting languages for automation and a familiarity with security frameworks such as ISO 27001 or NIST are highly valued. You will be part of a dedicated security team focused on continuous improvement and staying ahead of emerging threats. This position offers a fantastic opportunity to grow your career in a supportive and innovative environment. We are committed to providing our employees with the tools and resources they need to succeed. The successful candidate will demonstrate a keen interest in staying updated with the latest security technologies and methodologies. This is an exciting chance to make a tangible impact on our client's security posture.
Key responsibilities include configuring and managing firewalls, intrusion detection/prevention systems, and other security tools. You will also be involved in security monitoring, vulnerability assessments, and incident response activities. This role requires a strong understanding of network protocols, operating systems, and cloud security principles. You will contribute to developing and enforcing security policies and procedures, and conduct security awareness training for staff. Collaboration is key, so you will engage with various departments to ensure security requirements are met. The ideal candidate will have a passion for cybersecurity, a strong analytical aptitude, and excellent communication skills. Experience with scripting languages for automation and a familiarity with security frameworks such as ISO 27001 or NIST are highly valued. You will be part of a dedicated security team focused on continuous improvement and staying ahead of emerging threats. This position offers a fantastic opportunity to grow your career in a supportive and innovative environment. We are committed to providing our employees with the tools and resources they need to succeed. The successful candidate will demonstrate a keen interest in staying updated with the latest security technologies and methodologies. This is an exciting chance to make a tangible impact on our client's security posture.
This advertiser has chosen not to accept applicants from your region.
5
Information Security Engineer
BS1 4DJ Bristol, South West
£50000 Annually
WhatJobs
Posted 4 days ago
Job Viewed
Job Description
Our client is seeking a proactive and technically skilled Information Security Engineer to join their dedicated security team in Bristol, South West England, UK . This role operates on a hybrid model, allowing for a balance of in-office and remote work. You will be responsible for the design, implementation, and maintenance of robust security solutions to protect the organization's information systems and data. This includes managing and configuring security technologies such as firewalls, intrusion detection/prevention systems, endpoint security, and access control systems. Your expertise will be crucial in identifying and mitigating security risks, responding to security incidents, and ensuring compliance with relevant security standards and regulations. The ideal candidate will possess a strong technical background in cybersecurity, with hands-on experience in implementing and managing various security tools. You should have a solid understanding of network security principles, cryptography, and secure coding practices. Collaboration with IT infrastructure teams, development teams, and business stakeholders to integrate security into all aspects of the organisation's operations is essential. This role requires excellent analytical and problem-solving skills, as well as the ability to clearly communicate technical security information. You will also contribute to the development and enforcement of security policies and procedures, and participate in security awareness training initiatives. This is an excellent opportunity for an experienced security professional to make a significant impact on an organisation's security posture.
Key Responsibilities:
Key Responsibilities:
- Design, deploy, configure, and maintain security infrastructure, including firewalls, VPNs, IDS/IPS, and web application firewalls (WAFs).
- Implement and manage endpoint security solutions (antivirus, EDR) across the organization.
- Develop and enforce security policies, standards, and procedures.
- Conduct regular security assessments, vulnerability scans, and penetration tests.
- Respond to and investigate security incidents, coordinating remediation efforts.
- Manage identity and access management (IAM) solutions.
- Monitor security system performance and provide recommendations for improvement.
- Collaborate with IT teams to ensure secure system configurations and deployments.
- Stay current with evolving threats, vulnerabilities, and security technologies.
- Contribute to security awareness training programs.
- Bachelor's degree in Computer Science, Information Security, or a related technical field, or equivalent work experience.
- Minimum of 4 years of experience in an Information Security Engineer or similar role.
- Strong knowledge of network protocols, security architectures, and defence-in-depth strategies.
- Hands-on experience with managing enterprise-level security tools and technologies.
- Familiarity with scripting languages (e.g., Python, PowerShell) for automation is a plus.
- Understanding of cloud security principles (AWS, Azure, GCP) is desirable.
- Relevant security certifications such as CompTIA Security+, CISSP, CCNA Security, or GIAC are highly regarded.
- Excellent analytical, problem-solving, and troubleshooting skills.
- Strong communication and interpersonal skills, with the ability to work effectively in a hybrid team environment.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Cissp Jobs in United Kingdom !
6
Information Security Engineer
LS1 1UR Leeds, Yorkshire and the Humber
£70000 Annually
WhatJobs
Posted 8 days ago
Job Viewed
Job Description
Our client is actively seeking a skilled and dedicated Information Security Engineer to join their expanding, fully remote security operations team. This critical role will focus on designing, implementing, and maintaining secure systems and networks, ensuring the confidentiality, integrity, and availability of company data and assets. You will be responsible for deploying and managing a range of security technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), SIEM solutions, endpoint detection and response (EDR), and data loss prevention (DLP) tools. The successful candidate will play a key part in proactive threat hunting, vulnerability management, and security architecture reviews. This position requires a deep understanding of network protocols, operating systems (Windows, Linux), cloud security (AWS, Azure), and modern cybersecurity threats and countermeasures. You will collaborate with development and operations teams to integrate security best practices throughout the software development lifecycle (SDLC) and infrastructure deployment processes. Furthermore, you will be involved in developing and executing security test plans, analysing results, and recommending remediation strategies. This is an outstanding opportunity for an experienced security professional to excel in a remote-first environment, contributing to a robust security program and working with a talented team. You must be able to work independently, possess excellent analytical skills, and have a strong passion for cybersecurity.
Key Responsibilities:
Key Responsibilities:
- Design, implement, and maintain enterprise security solutions.
- Configure and manage security tools such as SIEM, IDS/IPS, firewalls, and EDR.
- Conduct regular vulnerability assessments and penetration tests.
- Develop and automate security processes and scripts.
- Monitor security alerts and investigate potential security incidents.
- Collaborate with IT teams to ensure secure system configurations and deployments.
- Participate in security architecture design and review.
- Develop and maintain security documentation and playbooks.
- Stay current with emerging security threats and technologies.
- Bachelor's degree in Cybersecurity, Computer Science, or a related field, or equivalent experience.
- 3-5 years of experience in information security engineering or a similar role.
- Hands-on experience with security technologies and platforms.
- Proficiency in scripting languages (e.g., Python, Bash) for automation.
- Strong understanding of networking, operating systems, and cloud environments.
- Experience with incident response and threat analysis.
- Relevant certifications (e.g., GIAC, CCSP) are a significant advantage.
- Excellent problem-solving and analytical skills.
This advertiser has chosen not to accept applicants from your region.
7
Information Security Engineer
BD5 9AP Bradford, Yorkshire and the Humber
£60000 Annually
WhatJobs
Posted 15 days ago
Job Viewed
Job Description
Our client is seeking a proactive and experienced Information Security Engineer to bolster their security infrastructure and incident response capabilities. This pivotal role involves the design, implementation, and management of security technologies to protect against evolving cyber threats. You will be instrumental in maintaining the confidentiality, integrity, and availability of our digital assets, ensuring compliance with industry best practices and regulatory requirements. The successful candidate will demonstrate a hands-on approach to security, with a strong technical background and a passion for continuous improvement.
Key Responsibilities:
Key Responsibilities:
- Design, deploy, and manage security solutions including firewalls, VPNs, IDS/IPS, and web application firewalls.
- Configure and maintain security information and event management (SIEM) systems for threat detection and analysis.
- Perform regular vulnerability assessments and penetration tests, documenting findings and recommending remediation steps.
- Develop and implement security automation scripts to streamline security operations.
- Respond to and investigate security incidents, providing timely and effective resolution.
- Collaborate with infrastructure and development teams to integrate security controls into new and existing systems.
- Maintain up-to-date knowledge of the threat landscape and emerging security technologies.
- Develop and refine security architecture to ensure robust protection of company assets.
- Contribute to security awareness programs and incident response training.
- Create and maintain detailed technical documentation for security systems and processes.
- Bachelor's degree in Computer Engineering, Information Security, or a related technical discipline.
- Proven experience (4+ years) in a dedicated Information Security Engineering role.
- Expertise in network security, cloud security (AWS, Azure), and endpoint security.
- Proficiency in scripting languages (e.g., Python, PowerShell) for automation.
- Experience with SIEM platforms (e.g., Splunk, QRadar) and vulnerability management tools.
- Excellent understanding of cybersecurity frameworks and compliance standards.
- Strong analytical skills with the ability to troubleshoot complex security issues.
- Effective communication and teamwork abilities.
- Industry certifications like CompTIA Security+, GIAC, or CCSP are advantageous.
This advertiser has chosen not to accept applicants from your region.
8
Information Security Engineer
Bath, South West
Maxwell Bond
Posted today
Job Viewed
Job Description
Information Security Engineer
Location:
UK (Hybrid – occasional office visits in the Bath area, a few days per month)nSalary:
£45,000 – £0,000 DOE + equity + benefitsnThe Company
We’re working with a fast-growing
SaaS scale-up
that is strengthening its security function. The company already has strong compliance and security foundations in place, but they’re now looking for an
Information Security Engineer
to take ownership of ongoing improvements, support audits, and ensure the business remains secure as it continues to scale.nThe Role
This role is a mix of
hands-on technical security engineering
and
governance, risk, and compliance (GRC) . You’ll be responsible for maintaining compliance frameworks, remediating issues flagged by security tools, and working closely with engineering teams to implement best practices.nKey Responsibilities:nMaintain and enhance compliance with
ISO
and
SOC 2
frameworks.nMonitor security alerts and
remediate issues directly
where appropriate.nConduct audits of systems, identify risks, and create remediation plans.nCollaborate with engineering teams to address vulnerabilities.nSupport upcoming audits and act as a point of contact for security-related queries.n(Bonus) Contribute to
threat intelligence
and
incident response
in collaboration with partners.nAbout You
We’re looking for someone with a strong mix of security and compliance skills, who enjoys wearing multiple hats and making a real impact in a scale-up environment.nMust-haves:nExperience across both
security engineering
and
GRC .nStrong knowledge of
cloud security
(with AWS and IAM being highly desirable).nAbility to run internal audits, identify risks, and document findings.nProactive, adaptable, and collaborative.nUK-based with flexibility to travel to the Bath area for occasional office visits (1–2 days per month).nNice-to-haves:nPrevious experience in a
SaaS, consultancy, or scale-up
environment.nExposure to incident response and/or threat intelligence.nCulture Fit
We’re looking for candidates who are
driven, curious, and accomplished
in something they’re passionate about, whether inside or outside of work. The company values collaboration, adaptability, and people who can make an impact in a growing business.nPackage & Benefits
£45,000 – £60, 0 DOEnEquity optionsnGenerous annual leavenAdditional benefits included in the packagenInterview Process
Screening call with recruitment partner.nHiring Manager interview.nInterview with VP of Technology + Engineering Lead.nFinal interview with the CEO.
#J-18808-Ljbffrn
Location:
UK (Hybrid – occasional office visits in the Bath area, a few days per month)nSalary:
£45,000 – £0,000 DOE + equity + benefitsnThe Company
We’re working with a fast-growing
SaaS scale-up
that is strengthening its security function. The company already has strong compliance and security foundations in place, but they’re now looking for an
Information Security Engineer
to take ownership of ongoing improvements, support audits, and ensure the business remains secure as it continues to scale.nThe Role
This role is a mix of
hands-on technical security engineering
and
governance, risk, and compliance (GRC) . You’ll be responsible for maintaining compliance frameworks, remediating issues flagged by security tools, and working closely with engineering teams to implement best practices.nKey Responsibilities:nMaintain and enhance compliance with
ISO
and
SOC 2
frameworks.nMonitor security alerts and
remediate issues directly
where appropriate.nConduct audits of systems, identify risks, and create remediation plans.nCollaborate with engineering teams to address vulnerabilities.nSupport upcoming audits and act as a point of contact for security-related queries.n(Bonus) Contribute to
threat intelligence
and
incident response
in collaboration with partners.nAbout You
We’re looking for someone with a strong mix of security and compliance skills, who enjoys wearing multiple hats and making a real impact in a scale-up environment.nMust-haves:nExperience across both
security engineering
and
GRC .nStrong knowledge of
cloud security
(with AWS and IAM being highly desirable).nAbility to run internal audits, identify risks, and document findings.nProactive, adaptable, and collaborative.nUK-based with flexibility to travel to the Bath area for occasional office visits (1–2 days per month).nNice-to-haves:nPrevious experience in a
SaaS, consultancy, or scale-up
environment.nExposure to incident response and/or threat intelligence.nCulture Fit
We’re looking for candidates who are
driven, curious, and accomplished
in something they’re passionate about, whether inside or outside of work. The company values collaboration, adaptability, and people who can make an impact in a growing business.nPackage & Benefits
£45,000 – £60, 0 DOEnEquity optionsnGenerous annual leavenAdditional benefits included in the packagenInterview Process
Screening call with recruitment partner.nHiring Manager interview.nInterview with VP of Technology + Engineering Lead.nFinal interview with the CEO.
#J-18808-Ljbffrn
This advertiser has chosen not to accept applicants from your region.
9