187 Cybersecurity Manager jobs in London

ABOUT TOSCA

Tosca is a global leader in reusable packaging and pooling solutions that service the supply chain end to end. Re-use is the key word as Tosca facilitates moving away from single use packaging towards a circular model of reusable packaging with its robust portfolio of plastic containers, pallets, bins, crates and more. We focus on optimizing the flow of perishables, eliminating waste at every turn – product, packaging, labor and transportation waste. Our reusable plastic products improve the quality of product delivered, create more efficient supply chains, and are more sustainable than single-use packaging.

To strengthen our IT department, we are currently looking for a Cybersecurity & Compliance Manager. This is a key role focused on ensuring the security and regulatory compliance of our systems and processes.

The position offers flexibility and can be fulfilled either remotely (within the Greater London area) or in a hybrid setup from our office in Dudley.

Position purpose

The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT, cross-functional teams, and third-party partners. Key qualifications include experience in cybersecurity and compliance, strong knowledge of NIST and ISO standards, risk management expertise, and effective communication skills.

This is a full-time role, with travel up to 30% of the time.

Responsibilities

• Implement security protocols and manage information security programs
• Report performance, exceptions, and outages to all audiences transparently.
• Align disaster recovery with business continuity plans.
• Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS.
• Identify risks, develop a comprehensive security plan.
• Test cyber-attacks regularly to address vulnerabilities.
• Monitor security trends, adapt strategies.
• Oversee incident monitoring, detection, response via SOC and MSSPs.
• Manage security tools like SIEM and endpoint protection.
• Lead incident response and post-incident analysis.
• Enforce policies for data privacy (GDPR & NIST).
• Conduct regular security audits.
• Manage vendor relationships and negotiate contracts.
• Report service performance to stakeholders.
• Coordinate with other Tosca functions for effective implementation.
• Other relevant responsibilities as required.

Requirements, Experience & Education

• Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field; a Master's degree is preferred.
• At least 5 years of experience in information security, specifically within security operations, with proven experience in a leadership or management role.
• Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CISA (Certified Information Systems Auditor) are highly desirable.
• Strong knowledge of security frameworks (e.g., ISO 27001, COBIT), security technologies, tools, and best practices across EU, UK, and USA
• Proficiency in risk management processes, vulnerability assessments, and incident response strategies.
• Current technical and hands-on experience with security tools and technologies, including Rapid7, Rubrik, Sentinel, and endpoint protection solutions like Microsoft Defender.
• Excellent analytical, problem-solving, and decision-making skills, with the ability to conduct post-incident analysis and implement corrective actions.
• Strong communication and interpersonal skills, capable of working effectively with diverse teams and stakeholders.
• Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape.
• Experience of manufacturing and/or supply chain industry is preferred.
• Able to operate in a multinational corporation with several locations.

Competencies

• You have expertise within Customer/Relationship Management.
• You have excellent communication skills. You excel in conveying ideas clearly and effectively.
• You possess specialized knowledge and skills in your field.
• You have a collaborative spirit. You thrive in teamwork and enjoy working with others.
• You can analyze situations and make informed decisions
• You think ahead and plan for long-term success.

Our Offer

You will have a permanent contract with a competitive remuneration package in line with your knowledge and experience.

We continuously invest in your personal and professional development through our training & coaching programs.

You will join a dynamic and fast growing company that is part of a strong international group. We take pride in our green service and encourage our employees to participate in our growth and help us co-define the path to success. You will work in a fun environment with a supportive team that cares about each other and encourages collaboration at all levels.

Interested?

We cultivate a tight-knit team of smart people who care about their work and their colleagues. We believe this is a really exciting opportunity for someone who is up for a fast-paced challenge and is eager to become an integral member of our team.

Send us your CV and your letter of motivation in English. We’re looking forward to meeting you!

We value diversity and equal opportunity. Applicants are welcomed on the basis of their individual merits as we do not discriminate on the grounds of age, sex, disability, ethnic or racial origin, religion or belief, or sexual orientation. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us.

External recruitment services/agencies will not be used for this position.

Founded and headquartered in Switzerland, Avaloq is continuously expanding its global footprint with around 2,500 colleagues in 12 countries, and more than 170 clients in 35 countries. We are an industry-leading provider of wealth management technology and services for financial institutions around the world, including private banks and wealth managers, investment managers, as well as retail and neo banks. Our research led approach and continual innovation is powered by the passion and creativity of our colleagues.
We are always looking for talented people to join us on our mission to orchestrate the financial ecosystem and democratize access to wealth management. Avaloq offers the opportunity to work closely with some of the world’s leading financial institutions as we jointly develop and shape careers. Championing a collaborative, supportive and flexible work environment empowers our colleagues to reach their full potential.

The CISO division spearheads our company's security strategy, ensuring robust protection for both our assets and those of our clients. This division oversees all aspects of information security, from policy development to incident response. Our Global Security Services and Automation team excels in gathering diverse security requirements from clients and delivering top-tier security infrastructure, tools, and operations at scale. The Security Officer position is an exciting opportunity where you will play a pivotal role in maintaining client relationships by delivering technical expertise and compliant, scalable solutions.
 

• Engaging with clients onsite and virtually to discuss and understand their security requirements and concerns, being their point of contact for security-related matters and providing ongoing consultation on best practices and compliance
• Coordinating security audits and assessments for clients, providing detailed reports and recommendations
• Developing and presenting scalable security solutions and services that meet client needs
• Collaborating with internal teams to ensure client security requirements are integrated into service delivery
• Leading incident response efforts and conducting post-incident analysis to prevent future occurrences
• Organizing tabletop exercises with both clients and our teams

• Ability to engage confidently with clients and collaborate with internal teams
• Interest in staying up-to-date with the latest security trends, threats, and regulatory requirements affecting the financial industry
• Comfortable representing the company professionally in meetings, while maintaining clear boundaries and ensuring discussions remain aligned with agreed project scope and priorities
• Experience with security tools and technologies such as SIEM (Splunk), vulnerability management (Tenable), and PAM
• Strong understanding of security frameworks and standards (e.g., ISO 27001, NIST), as well as asset management and risk assessment solutions

It would be a real bonus if you have:

• Master's degree in Computer Science, Information Security, or a related field
• Experience or understanding of SOC 2 and DORA regulation

We realize that managing work life balance is a challenge we all face in our daily lives and in order to support with this we are pleased to offer hybrid and flexible working for most of our Avaloqers to maintain work life balance and still continue our fantastic Avaloq culture in our global offices. 

In Avaloq we are proud to embrace diversity and understand the success of our business is built on the power of different opinions, we are whole heartedly committed to fostering an equal opportunity environment and inclusive culture where you can be your true authentic self. 

We hire, compensate and promote regardless of origin, age, gender identity, sexual orientation or any other fantastic traits that make us all unique, we have done our best to write this advert in an inclusive and neutral way. 

Please be aware that we will not accept speculative CV submissions for any of our roles from recruitment agencies, and any unsolicited candidate submissions will be exempt from any payment expectations.

#LI-Hybrid

We’re partnering with an innovative MedTech company in London that develops advanced solutions to improve cancer treatment. They are looking for a Senior Risk Engineer to lead and maintain risk management activities across their medical devices.

Role Overview:

• Own the development and upkeep of risk documentation, including risk plans, hazard analyses, registers, and benefit-risk evaluations
• Assess design modifications and post-market data to identify potential hazards and implement mitigation measures
• Chair risk review meetings and collaborate with cross-functional teams (hardware, software, systems) to ensure safety compliance
• Support regulatory submissions and inspections with accurate, up-to-date risk records

Candidate Profile:

• 5+ years’ experience in medical device risk management (Class II/III devices preferred)
• Strong working knowledge of ISO 14971, ISO/TR 24971, and familiarity with IEC 62304 / IEC 60601
• Proven track record of risk assessment throughout the product lifecycle, including post-market evaluation
• Comfortable with ALM/risk tools such as Polarion, DOORS, Enterprise Architect, or similar
• Excellent interpersonal and communication skills, able to work effectively across teams

What’s on Offer:

• Competitive package with bonus of up to 25%
• Pension, private healthcare, and gym membership
• Work on innovative MedTech solutions impacting leading cancer centres worldwide
• Dynamic, collaborative environment with international exposure

For more information or to apply:

+44 (0)