3,235 Cybersecurity Specialist jobs in the United Kingdom

• Conduct comprehensive security risk assessments and threat modeling for automotive systems and components.
• Develop and implement cybersecurity strategies and architectures for in-vehicle infotainment, ADAS, and connectivity platforms.
• Perform penetration testing and vulnerability analysis on embedded software, firmware, and hardware.
• Define and enforce automotive cybersecurity standards and guidelines (e.g., ISO/SAE 21434).
• Collaborate with software and hardware engineers to integrate security controls and features.
• Investigate security incidents and provide timely remediation plans.
• Stay current with the latest cybersecurity threats, trends, and technologies relevant to the automotive industry.
• Develop and deliver cybersecurity training to engineering teams.
• Contribute to the secure software development lifecycle (SSDLC).
• Participate in industry forums and working groups to influence automotive cybersecurity standards.

• Bachelor's or Master's degree in Computer Science, Cybersecurity, Electrical Engineering, or a related field.
• Minimum of 5 years of experience in cybersecurity, with a significant focus on embedded systems or automotive applications.
• In-depth knowledge of cybersecurity principles, protocols, and attack vectors.
• Experience with automotive communication protocols (CAN, LIN, Automotive Ethernet, UDS).
• Familiarity with security testing tools and methodologies (e.g., Wireshark, Nmap, Burp Suite).
• Understanding of cryptography and secure coding practices.
• Knowledge of automotive cybersecurity regulations and standards (ISO/SAE 21434, WP.29).
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and collaboration skills, with the ability to work effectively in a remote, international team.
• Relevant certifications such as CISSP, OSCP, or similar are a strong advantage.

Security Analyst

3 months - with extensions

London - hybrid

400 per day inside IR35 - Umbrella only

Active or lapsed SC Security Clearance required

The Role

As a Cyber Security Analyst in the Cyber Operations workstream, you will report to the Operational Cyber Security Architect and support BAU cyber activities across the organisation. You will play a key role in helping the department detect, respond to, and manage cyber threats, vulnerabilities, and operational risks.

You will work closely with technical teams, service owners, and delivery partners to ensure robust security controls are in place and actively monitored. The role is hands-on and well-suited to someone who is proactive, curious, and eager to go beyond the call of duty to protect the clients digital estate.

Responsibilities include but are not limited to:

• Coordinating and supporting cyber requests, using predefined playbooks and processes
• Supporting vulnerability identification, triage, and remediation, including follow-up with relevant technical teams.
• Monitoring and analysing alerts and logs from LogRhythm, CyberArk, Semperis and other security tools, but experience with other cyber tools would also suffice.
• Participating in the change management process to ensure proposed changes are reviewed for security risk.
• Contributing to penetration testing planning, coordination and tracking of remediation.
• Maintaining risk logs and status dashboards for security findings and control effectiveness.
• Supporting reviews of cloud and on-premises systems to validate secure configurations.
• Conducting general risk assessments of new applications or tools being used within the organisation.
• Experience in co-ordination of the requirements to meet ISO27001 & the Cyber Essentials+ certification.
• Administrative requirements of PAM tool. (CyberArk)
  

Experience

• Experience administrating PAM solutions, such as CyberArk - MANDATORY
• Working understanding of security operations, threat detection, and incident response.
• Experience using SIEM and security tooling for triage and log analysis.
• Experience tracking and managing vulnerabilities using industry frameworks.
• Familiarity with enterprise systems including Microsoft 365 and Azure AD.
• Experience working in a digital service or infrastructure team undergoing change.
• Experience engaging across teams to investigate issues and improve controls.

Technical

• Experience administrating PAM solutions, such as CyberArk.
• Hands-on experience with tools such as LogRhythm, Semperis.
• Understanding of NCSC cyber security principles and good practice.
• Familiarity with change and configuration management from a cyber perspective.
• Working knowledge of ISO 27001 or NIST standards.
• Relevant certifications (e.g., Security+, CySA+, CISMP) are desirable.

If you are interested, please apply at first instance!

We are looking for an enthusiastic and detail-oriented entry-level Security Analyst to join our growing information security and data protection team. This is an ideal opportunity for someone starting their career in information security and data protection. 

The Security Analyst will perform fundamental security and data protection tasks under the supervision of more experienced team members. You will assist in conducting security and data protection assessments, supporting vulnerability management, reviewing security configurations, and contributing to the development of security and data protection policies. The ideal candidate is eager to learn and grow within the information security and data protection fields while contributing to the team’s efforts to protect our organisation's data and IT infrastructure. 

Successful candidates will be enrolled on a fully funded Level 4 Cyber Security Risk Analyst apprenticeship and will be provided with mentoring support to help you grow and learn. Upon successful completion of the level 4 qualification, it is anticipated that you will be able to progress to a Senior Analyst role and continue on to a fully funded level 6 Cyber Security Risk Analyst apprenticeship. 

This is a full-time position with a paid salary of £28,200. Occasional after-hours work may be required for incident response or urgent security tasks.  

Key Responsibilities:

 Support in KPI Reporting & Metrics:   

• Assist in gathering data and preparing reports on security and data protection KPIs.  

• Help track trends and assist in identifying security and data protection issues based on metrics.  

 Assist with Security Assessments:   

• Support senior analysts in conducting risk assessments, managing vulnerability scan results, and other security and data protection assessments. 

• Help document findings and provide input into the risk mitigation process.  

Contribute to Policy & Standards Development:   

• Assist in researching and drafting security and data protection policies, procedures, standards, and guidance.  

• Help review and update existing policies under the guidance of senior team members.  

Configuration Reviews Support:   

• Help review system configurations to ensure alignment with security and data protection best practices.  

• Assist in documenting configuration settings and potential security and data protection concerns.  

Vulnerability Remediation Assistance:   

• Support the vulnerability remediation process by tracking open vulnerabilities and following up on remediation progress.  

• Help maintain records of vulnerabilities and remediation activities. 

Incident Response  

• Support the incident management leads, helping to coordinates the response to security incidents, including data breaches, system compromises, or attacks. 

Application Security  

• Work with development teams to embed secure coding practices. 

• Conduct regular security assessments of the company’s software, including the proprietary products sold to clients.  

Collaboration & Communication:   

• Help internal teams with security and data protection inquiries and guidance under supervision.  

• Participate in ongoing security and data protection awareness and training initiatives. 

Requirements

• Level 3 qualification in Information Technology or a related field, or equivalent experience 

• 0-2 years of experience in cyber security or a related IT role. 

• CompTIA Security+, Cisco CCNA, CISMP, or other entry-level certifications are preferred, but not essential. 

• Familiarity with basic security concepts, tools, and technologies (e.g., SIEM, firewalls, vulnerability scanners). 

• Basic understanding of network security and operating systems. 

Benefits

Work’s a treat!

On top of a competitive salary, you can expect a whole load of perks:

• 25 days’ holiday + bank holidays  – we understand the importance of you getting some down time.

• Annual Wellbeing Day –  enjoy an additional day on us to look after your physical and mental wellbeing.
• Pension Scheme –  helping you save towards your retirement home in the sun!
• Corporate Medical Cash Plan –  claim back the cost of your medical treatments.
• Smart Working Options –  spend up to 40% of your working week from home.
• So many savings  – through our online community platform, you can access dozens of daily deals, from money off top brands to discounts on days out.

• Employee Assistance Programme  – our people are at the heart of everything we do, so if you’re happy, we’re happy.
• Cycle to Work Scheme  – save on the cost of biking to work.
• Monthly Employee Awards  - Employee of the Month programme with £50 bonus
• Raising money for charity  including a paid Volunteer Day  – we’re all about giving back… and having lots of fun in the process!
• Referral scheme  – know the perfect person to join the team? You could bag £1,500 for a utting a good word in.

• Wellbeing Programme –  giving you the opportunity to join regular, interactive Wellbeing Workshops or join our 30 plus Wellbeing Champions.
• Enhanced Family Friendly Leave –  support for you and your family to help you navigate through the craziness of family life.

We Value Diversity

We champion and welcome diversity in our workforce and ensure all job applicants receive equal and fair treatment, regardless of age, race, gender or gender identity, religion, sexual orientation, disability, or nationality.

We are not only committed to increasing the visibility and recognition of talent from under-represented groups within our organisation, but the wider industry too.

At the end of the day, we make sure we take time to look after ourselves, each other, and the planet, because we’re always stronger together.

ITG have a number of community groups (ERGs) available to employees which offer a safe space for like-minded colleagues, with shared interests to connect, socialise and check in with each other. These include Black ITGers Together, LGBTQ+ Together, Mens Health Together, Muslims Together, Neurodiversity Together, Working Parents and Carers Together and Women In Tech Together.

#LI-NW1

We are looking for an enthusiastic and detail-oriented entry-level Security Analyst to join our growing information security and data protection team. This is an ideal opportunity for someone starting their career in information security and data protection. 

The Security Analyst will perform fundamental security and data protection tasks under the supervision of more experienced team members. You will assist in conducting security and data protection assessments, supporting vulnerability management, reviewing security configurations, and contributing to the development of security and data protection policies. The ideal candidate is eager to learn and grow within the information security and data protection fields while contributing to the team’s efforts to protect our organisation's data and IT infrastructure. 

Successful candidates will be enrolled on a fully funded Level 4 Cyber Security Risk Analyst apprenticeship and will be provided with mentoring support to help you grow and learn. Upon successful completion of the level 4 qualification, it is anticipated that you will be able to progress to a Senior Analyst role and continue on to a fully funded level 6 Cyber Security Risk Analyst apprenticeship. 

This is a full-time position. Occasional after-hours work may be required for incident response or urgent security tasks.  

Key Responsibilities:

 Support in KPI Reporting & Metrics:   

• Assist in gathering data and preparing reports on security and data protection KPIs.  

• Help track trends and assist in identifying security and data protection issues based on metrics.  

 Assist with Security Assessments:   

• Support senior analysts in conducting risk assessments, managing vulnerability scan results, and other security and data protection assessments. 

• Help document findings and provide input into the risk mitigation process.  

Contribute to Policy & Standards Development:   

• Assist in researching and drafting security and data protection policies, procedures, standards, and guidance.  

• Help review and update existing policies under the guidance of senior team members.  

Configuration Reviews Support:   

• Help review system configurations to ensure alignment with security and data protection best practices.  

• Assist in documenting configuration settings and potential security and data protection concerns.  

Vulnerability Remediation Assistance:   

• Support the vulnerability remediation process by tracking open vulnerabilities and following up on remediation progress.  

• Help maintain records of vulnerabilities and remediation activities. 

Incident Response  

• Support the incident management leads, helping to coordinates the response to security incidents, including data breaches, system compromises, or attacks. 

Application Security  

• Work with development teams to embed secure coding practices. 

• Conduct regular security assessments of the company’s software, including the proprietary products sold to clients.  

Collaboration & Communication:   

• Help internal teams with security and data protection inquiries and guidance under supervision.  

• Participate in ongoing security and data protection awareness and training initiatives. 

Requirements

• Level 3 qualification in Information Technology or a related field, or equivalent experience 

• 0-2 years of experience in cyber security or a related IT role. 

• CompTIA Security+, Cisco CCNA, CISMP, or other entry-level certifications are preferred, but not essential. 

• Familiarity with basic security concepts, tools, and technologies (e.g., SIEM, firewalls, vulnerability scanners). 

• Basic understanding of network security and operating systems. 

Benefits

Work’s a treat!

On top of a competitive salary, you can expect a whole load of perks:

• 25 days’ holiday + bank holidays  – we understand the importance of you getting some down time.

• Annual Wellbeing Day –  enjoy an additional day on us to look after your physical and mental wellbeing.
• Pension Scheme –  helping you save towards your retirement home in the sun!
• Corporate Medical Cash Plan –  claim back the cost of your medical treatments.
• Smart Working Options –  spend up to 40% of your working week from home.
• So many savings  – through our online community platform, you can access dozens of daily deals, from money off top brands to discounts on days out.

• Employee Assistance Programme  – our people are at the heart of everything we do, so if you’re happy, we’re happy.
• Cycle to Work Scheme  – save on the cost of biking to work.
• Monthly Employee Awards  - Employee of the Month programme with £250 bonus
• Raising money for charity  including a paid Volunteer Day  – we’re all about giving back… and having lots of fun in the process!
• Referral scheme  – know the perfect person to join the team? You could bag £1,500 for a putting a good word in.

• Wellbeing Programme –  giving you the opportunity to join regular, interactive Wellbeing Workshops or join our 30 plus Wellbeing Champions.
• Enhanced Family Friendly Leave –  support for you and your family to help you navigate through the craziness of family life.

We Value Diversity

We champion and welcome diversity in our workforce and ensure all job applicants receive equal and fair treatment, regardless of age, race, gender or gender identity, religion, sexual orientation, disability, or nationality.

We are not only committed to increasing the visibility and recognition of talent from under-represented groups within our organisation, but the wider industry too.

At the end of the day, we make sure we take time to look after ourselves, each other, and the planet, because we’re always stronger together.

ITG have a number of community groups (ERGs) available to employees which offer a safe space for like-minded colleagues, with shared interests to connect, socialise and check in with each other. These include Black ITGers Together, LGBTQ+ Together, Mens Health Together, Muslims Together, Neurodiversity Together, Working Parents and Carers Together and Women In Tech Together.

#LI-NW1

Information Security Analyst

Up to 50,000 + benefits

Hereford | Hybrid

Permanent | Full-time

We are looking for an experienced Information Security Analyst to join our client who will play a key role in driving compliance, governance, and continual improvement across key security frameworks including ISO 27001, PCI DSS, and Cyber Essentials Plus.

Key Responsibilities:

* Lead on the operation and continual improvement of the Information Security Management System (ISMS)

* Coordinate internal and external audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus

* Draft and update information security policies, procedures, and technical standards

* Work with procurement and commercial teams to support supplier assurance and risk assessment

* Contribute to tender responses and bid processes, ensuring security and compliance requirements are met

* Promote good security practices and raise awareness across departments

* Act as an escalation point and day-to-day contact for other team members

* Stay up to date with changes in legislation and standards relating to information and cyber security

Key Skills & Experience:

Essential:

* Background in IT, Cyber Security, Information Systems, or a related discipline

* Strong working knowledge of ISO 27001, PCI DSS, and Cyber Essentials Plus

* Proven ability to support and prepare for audits, including evidence collation and audit readiness

* Excellent attention to detail and ability to produce high-quality documentation

* Strong stakeholder communication skills, both written and verbal

* Ability to build effective working relationships and influence at all levels

* Comfortable working independently and proactively across teams

Desirable:

* Experience in supplier risk management and/or tender processes

* ISO 27001 Lead Auditor/Implementer, PCIP, CISM, CompTIA Security+, or CISMP certification

What you get in return:

* Up to 50,000 per annum + benefits

* Hybrid working (3 to 4 days in office)

* Opportunity to lead and mentor within a growing security team

* Professional development and training support

This company is an equal opportunity employer and values diversity. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

Interested?

Please submit your CV to Meg Kewley at DCS Recruitment via the link provided.

DCS Recruitment and all associated companies are committed to creating a working environment where diversity is celebrated and everyone is treated fairly, regardless of gender, gender identity, disability, ethnic origin, religion or belief, sexual orientation, marital or transgender status, age, or nationality

Information Security Analyst | Contract | Northampton | Hybrid

My client is looking for an Information Security Analyst / GRC Analyst to be a part of their growing security team.

Policy and process is already in place, so you’ll play a key role in managing Subject Access Requests (SARs), Right to Be Forgotten (RTBF) requests, and ensuring the organisation maintains the highest standards of data privacy and governance.

Key Responsibilities on the Information Security Analyst:

• Manage and respond to Subject Access Requests (SARs) in accordance with GDPR timelines and procedures.
• Oversee Right to Be Forgotten and data deletion requests, ensuring complete and compliant execution.
• Support the wider GRC and Information Security team in data protection and risk management activities.
• Help maintain the Information Security Management System (ISMS).
• Maintain accurate records of all data protection requests and actions taken.
• Provide expert advice on GDPR compliance and data subject rights.
• Liaise with internal teams and stakeholders to ensure consistent adherence to data protection principles.

Information Security Analyst Experience/Technology:

• Proven experience in GRC and Information security.
• Extensive expertise of GDPR, SAR, and Right to Be Forgotten requirements.
• Experience running user awareness campaigns.
• Hands-on experience with Microsoft Purview or other data discovery and governance tools are desirable but not necessary.
• Good communication and attention to detail.

The successful candidate will be required to work 2-days a week onsite in Northampton.

Apply now to speak with VIQU IT in confidence. Or reach out to Matt Farrell via the VIQU IT website.

Do you know someone great? We’ll thank you with up to £1,000 if your referral is successful (terms apply).

For more exciting roles and opportunities like this, please follow us on LinkedIn @VIQU IT Recruitment.

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform

• £60–70k base + 10% bonus
• Hybrid in Coventry with monthly travel to London
• Security certification support & career development built-in

Join a growing InfoSec team at the heart of a global financial institution’s expansion. As an Analyst, you’ll work hands-on with data governance, security tooling, and access management — helping to shape how a modern SME approaches cybersecurity. You’ll bring technical curiosity, the ability to interrogate data, and the confidence to advise IT teams on the practical steps that keep the business secure.

What you’ll bring:

• 3+ years’ experience in an InfoSec, IT security, or analyst role
• Security certifications: Security+ and ideally Microsoft security certifications (e.g. SC-200/SC-400)
• Experience with security tools (Microsoft Defender, web proxy, email security, CrowdStrike or equivalents)
• Knowledge of single sign-on and zero trust networks (beyond just segregation)
• Exposure to data management / governance tools (e.g. Microsoft Purview, or similar)
• Strong communicator: able to translate technical concepts into practical advice for IT and stakeholders

What you’ll be doing:

• Recertification of accounts : Pulling and interrogating data through bespoke platforms
• Security tooling : Working with Defender, web proxy, CrowdStrike-equivalent tools
• Data management : Supporting data labelling & retention projects using Purview or similar
• Governance support : Involved in data loss prevention, labelling, and stakeholder engagement (including DPO)
• Practical incident response input : Advising IT on immediate steps during incidents, converting theory into quick, actionable responses
• Ongoing InfoSec operations : Metrics, monitoring, and security projects across applications and users

Tech & tools you’ll use:

• Microsoft Purview – Data governance and policy enforcement
• Microsoft Defender – Endpoint & email protection
• CrowdStrike / equivalents – Endpoint detection & response
• Web proxy & email security tools
• Azure (beneficial) – IAM, monitoring, and security logging

Why this role?

• Be central to shaping data governance and security operations in a dynamic SME environment
• Hands-on exposure to a wide range of security tools and concepts (not siloed to audit work)
• Opportunity to advise and influence IT directly on practical security decisions
• Work alongside experienced InfoSec leadership who value mentoring and professional growth

If this sounds like something you would be interested in, please apply!

Information Security Analyst | Security+, Microsoft Purview, Defender | Global Trading Platform

• Monitor security alerts and events using SIEM and other security tools.
• Investigate and respond to security incidents, breaches, and unauthorized access attempts.
• Conduct vulnerability assessments and penetration testing.
• Analyze security threats and provide intelligence to inform defensive strategies.
• Develop, implement, and enforce information security policies and procedures.
• Manage and maintain security infrastructure, including firewalls, IDS/IPS, and endpoint security solutions.
• Conduct security awareness training for employees.
• Assist in the development and execution of incident response plans.
• Perform regular security audits and compliance checks.
• Stay current with emerging cybersecurity trends, threats, and technologies.

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
• Minimum of 3-5 years of experience in information security or cybersecurity roles.
• Strong understanding of security principles, networking protocols, and operating systems.
• Experience with security tools such as SIEM (e.g., Splunk, QRadar), firewalls, IDS/IPS.
• Familiarity with vulnerability assessment and penetration testing techniques.
• Excellent analytical and problem-solving skills.
• Strong written and verbal communication skills.
• Relevant certifications such as CompTIA Security+, CISSP, or CEH are a plus.