3,126 Cyber Risk Management jobs in the United Kingdom

Head of Fire Risk Assessments (FRA)

Location: Home-based (ideally Midlands-based for occasional travel)

Salary: £50,000 + bonus + car or car allowance + full benefits

Sector: Fire Safety / Risk Management / Compliance

Company Overview - FRA Manager/ Head of Risk assessments (Fire) - Midlands

We're recruiting on behalf of a national fire safety consultancy delivering high-quality Fire Risk Assessments a.

ZIPC1_UKTJ

• Analyse and evaluate complex insurance applications, including commercial property, casualty, and specialty lines.
• Assess risks associated with potential policyholders using data analysis, market research, and actuarial tools.
• Determine appropriate coverage limits, terms, conditions, and pricing to ensure profitability and competitiveness.
• Develop and maintain strong relationships with brokers and agents, providing expert underwriting guidance.
• Review and interpret financial statements, loss runs, and other relevant documentation.
• Collaborate with claims, legal, and actuarial departments to ensure consistent risk management strategies.
• Stay informed about industry trends, regulatory changes, and emerging risks.
• Contribute to the development and refinement of underwriting guidelines and policies.
• Mentor and guide junior underwriters, sharing knowledge and best practices.
• Authorise or decline risks based on underwriting authority and company guidelines.

• Extensive experience (minimum 5-7 years) in insurance underwriting, with a specialization in commercial lines.
• Proven track record of successfully underwriting complex risks and achieving profitable results.
• Strong understanding of insurance principles, actuarial concepts, and risk management techniques.
• Proficiency in underwriting software and data analysis tools.
• Excellent analytical, decision-making, and problem-solving skills.
• Exceptional communication and negotiation abilities.
• Ability to work independently and manage a substantial workload in a remote setting.
• Relevant professional qualifications (e.g., ACII, FCII) are highly desirable.
• Experience with various insurance software systems.
• A proactive approach to continuous learning and professional development.

• Conduct in-depth water safety evaluations in accordance with UK guidelines such as ACOP L8, HSG 274, and HTM/SHTM standards.
• Conduct risk assessment visits, accurately recording all relevant data to produce detailed risk assessments.
• Provide expert advice to clients, recommending necessary remedial actions
• Knowledge of mechanical and electrical building systems.
• Experience with asset management software and digital survey tools.
• Thorough understanding of relevant regulations, standards, and compliance requirements.
• Strong attention to detail, analytical skills, and excellent written communication.
• Willingness and ability to travel regularly across the UK, including London, Leeds, and other client sites, with some international travel and overnight stays as required
• Proven experience as an M&E surveyor or in a similar role within asset management or building services engineering, with up to 3 years of direct experience.
• Reasonable knowledge of the MEP/building surveying market.
• Proficient in IT to ensure timely delivery of reports and other deliverables.
• Deliver professional and exceptional service to clients.
• High degree of self-direction, assertiveness, and eagerness to learn.
• Eligible and willing to undergo DBS (CRB) and SC checks if required.
• At least 3 years of hands-on experience in water safety and risk assessment.
• Solid understanding of UK water hygiene regulations.
• Exceptional communication, organization, and report-writing skills.
• Valid driver’s license.

• Hold City and Guilds or Water Management Society qualifications in legionella control and risk assessment of domestic water systems.
• Possess a strong background in building services engineering, either as a tradesperson or through an M&E design career, with excellent knowledge of engineering plant, equipment, and relevant building services standards
• Experience within a similar role, preferably within an outsourced building services or facilities/asset management role
• Knowledge of asset management principles.
• Change control experience within projects
• Building strong working relationships with other stakeholders whilst ensuring that the best interests of the projects are promoted and maintained.
• Experience with web based (database) software platforms.

• Organization: 784 TCE
• Requisition #

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform

• £60–70k base + 10% bonus
• Hybrid in Coventry with monthly travel to London
• Security certification support & career development built-in

Join a growing InfoSec team at the heart of a global financial institution’s expansion. As an Analyst, you’ll work hands-on with data governance, security tooling, and access management — helping to shape how a modern SME approaches cybersecurity. You’ll bring technical curiosity, the ability to interrogate data, and the confidence to advise IT teams on the practical steps that keep the business secure.

What you’ll bring:

• 3+ years’ experience in an InfoSec, IT security, or analyst role
• Security certifications: Security+ and ideally Microsoft security certifications (e.g. SC-200/SC-400)
• Experience with security tools (Microsoft Defender, web proxy, email security, CrowdStrike or equivalents)
• Knowledge of single sign-on and zero trust networks (beyond just segregation)
• Exposure to data management / governance tools (e.g. Microsoft Purview, or similar)
• Strong communicator: able to translate technical concepts into practical advice for IT and stakeholders

What you’ll be doing:

• Recertification of accounts : Pulling and interrogating data through bespoke platforms
• Security tooling : Working with Defender, web proxy, CrowdStrike-equivalent tools
• Data management : Supporting data labelling & retention projects using Purview or similar
• Governance support : Involved in data loss prevention, labelling, and stakeholder engagement (including DPO)
• Practical incident response input : Advising IT on immediate steps during incidents, converting theory into quick, actionable responses
• Ongoing InfoSec operations : Metrics, monitoring, and security projects across applications and users

Tech & tools you’ll use:

• Microsoft Purview – Data governance and policy enforcement
• Microsoft Defender – Endpoint & email protection
• CrowdStrike / equivalents – Endpoint detection & response
• Web proxy & email security tools
• Azure (beneficial) – IAM, monitoring, and security logging

Why this role?

• Be central to shaping data governance and security operations in a dynamic SME environment
• Hands-on exposure to a wide range of security tools and concepts (not siloed to audit work)
• Opportunity to advise and influence IT directly on practical security decisions
• Work alongside experienced InfoSec leadership who value mentoring and professional growth

If this sounds like something you would be interested in, please apply!

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform

Information Security Consultant - Virtual CISO (vCISO)

Up to £80,000 | Fully Remote (with occasional client travel)

My client is seeking an experienced cyber security professional to step into a Virtual CISO (vCISO) role, acting as a trusted advisor to a diverse portfolio of organisations. This is an opportunity to directly influence and shape cyber security strategies at board level while embedding yourself as a valued extension of your clients’ security teams.

Key Responsibilities

• Serve as a strategic security partner, helping clients to define, develop, and mature their cyber security roadmap.
• Build strong, long-term relationships with stakeholders and establish yourself as a core member of their security function.
• Take ownership of client-specific Security Improvement Plans, ensuring risks are reduced and resilience is increased.
• Lead governance and oversight activities, including risk reviews, board-level reporting, and mentoring client teams.
• Carry out security reviews across cloud, hybrid, and on-premises environments, identifying vulnerabilities and improvement areas.
• Work closely with SOC teams to review threat hunting outcomes and ensure remediation of poor practices.
• Provide guidance on compliance and frameworks such as ISO 27001, Cyber Assessment Framework (CAF), and Cyber Essentials.
• Contribute to incident readiness and response as part of the Cyber Security Incident Response Team (CSIRT).
• Actively contribute to the internal growth and knowledge-sharing within the wider team, suggesting improvements and supporting colleagues.
• Ensure compliance with internal security and governance standards.

About You:

• Proven experience as a CISO, vCISO, or senior cyber security advisor.
• Strong knowledge of security frameworks, governance, risk management, and compliance.
• Excellent communication and stakeholder engagement skills, with the ability to influence at board level.
• Hands-on experience with cloud and hybrid architectures, audits, and security assessments.
• Incident response and crisis management experience is a plus.
• Holding CISSP/CISM
• ISO27001 Lead implementer

What’s on Offer

• Salary up to £80,000
• Fully remote role with flexibility to travel to client sites when required
• Opportunity to work across varied industries, influencing security at the highest levels

If you’re looking for a role where you can combine strategic influence with hands-on expertise, and you thrive on building trusted client relationships, this could be your next career move.

Information Security Specialist – UK remote - £50,000 - £55,000 + Benefits

We are recruiting on behalf of a client for an experienced Information Security Specialist to drive and refine their information security framework. This role is ideal for someone with strong ISO27001 experience and IT infrastructure experience, in addition to a hands-on approach to hardware and systems.

Key Responsibilities

• Lead the improvement of ISO27001 across the organisation for Audit.
• Prepare for and support the upcoming audit.
• Manage and secure IT hardware including PCs, laptops, and related infrastructure.
• Collaborate with garage teams and operational staff to ensure compliance and integration.
• Work closely with the IT Director and wider IT team to align security practices with business needs.

Ideal Candidate

• Proven experience implementing ISO27001 in an IT heavy environment.
• Strong understanding of IT infrastructure and hardware.
• Ability to multitask and communicate effectively with technical and non-technical teams.

Information Security Manager - Rail Sector, URGENT HIRE

Lawrence Harvey is delighted to be exclusively supporting a leading rail client once again to support with the growth of their exceptional technology team for their Information Security Manager.

The Role:

• Leading management of information security which includes ISO27001, PCI-DSS, and vulnerability management.
• Working alongside the DPO and Head of Technology to support on areas of data protection.
• Lead collaboration with key partners for train onboard systems cyber security assessments and risk management
• Establish and maintain appropriate policies, procedures, and practices in relations to cyber, data and governance practices
• Manage the information security incident response program
• Manage implementation and deployment of Information Security Management System (ISMS).
• Line management of the internal InfoSec specialists.

Requirements

• Extensive experience working with PCI-DSS and ISO27001
• Strong understanding on security tools such as IDS/IPS.
• Demonstrable experience of leading Information Security, Governance, Compliance teams.
• Ideally a form of cybersecurity qualification such as CISM or CISSP

Benefits:

• Salary between £55,000 - £70,000
• Hybrid working 3 days on site, 2 days at home.
• Working in Euston or Birmingham office.
• & more.

Sponsorship is not available for this position and the successful candidate will be subject to toxicology screening as standard for the rail industry.

We are looking for this hire ASAP so those will short (1 month or less) notice periods are encouraged to apply.

Information Security Manager - Rail Sector, URGENT HIRE

Lawrence Harvey is delighted to be exclusively supporting a leading rail client once again to support with the growth of their exceptional technology team for their Information Security Manager.

The Role:

• Leading management of information security which includes ISO27001, PCI-DSS, and vulnerability management.
• Working alongside the DPO and Head of Technology to support on areas of data protection.
• Lead collaboration with key partners for train onboard systems cyber security assessments and risk management
• Establish and maintain appropriate policies, procedures, and practices in relations to cyber, data and governance practices
• Manage the information security incident response program
• Manage implementation and deployment of Information Security Management System (ISMS).
• Line management of the internal InfoSec specialists.

Requirements

• Extensive experience working with PCI-DSS and ISO27001
• Strong understanding on security tools such as IDS/IPS.
• Demonstrable experience of leading Information Security, Governance, Compliance teams.
• Ideally a form of cybersecurity qualification such as CISM or CISSP

Benefits:

• Salary between £55,000 - £70,000
• Hybrid working 3 days on site, 2 days at home.
• Working in Euston or Birmingham office.
• & more.

Sponsorship is not available for this position and the successful candidate will be subject to toxicology screening as standard for the rail industry.

We are looking for this hire ASAP so those will short (1 month or less) notice periods are encouraged to apply.