164 Cybersecurity jobs in London

About Ipsotek

Founded in 2001, Ipsotek, an Eviden business, is a global leader in AI-powered video analytics. With over 800 successful projects spanning airports, government facilities, retail environments, and smart cities worldwide, our VISuite AI platform doesn't just process video—it understands it.

We’re in an exciting phase of growth, expanding our reach and building on over two decades of experience. As AI continues to shape the future, Ipsotek is helping define how it is used responsibly, creatively, and effectively in the real world.

At Ipsotek, we’re more than a technology company; we are a team united by a shared purpose. We believe in creating safe and secure spaces while contributing to a smarter, more connected world. Innovation, curiosity, and impact drive everything we do. In this rapidly evolving industry, continuous learning isn't just encouraged, it's essential. Here, you'll constantly engage with new technologies and challenges that keep you at the cutting edge of AI innovation.

As part of Eviden, an Atos group company, we benefit from the strength of a global organisation while operating with the autonomy and agility of a focused, mission-driven team. Our remote-first, high-trust culture values ownership, collaboration, and continuous learning.

Whether you're passionate about AI, inspired by purpose-driven work, or looking to be part of something that truly matters, Ipsotek is where your ideas and impact can thrive.

Role Overview

Ipsotek is seeking a strategic and hands-on Security Lead to own and evolve our security posture across the business. This pivotal role will oversee security strategy , vulnerability management , and security operations (SecOps) , acting as the primary point of contact for all security-related matters within Ipsotek and externally with the Eviden Centre of Excellence .

You will also liaise directly with the Eviden COO to align Ipsotek’s security strategy with broader group-level initiatives and priorities.

This role requires close collaboration with development , project operations , presales , and client-facing teams , ensuring security is embedded across the lifecycle of our solutions. It also includes client trust and onboarding activities , helping build and maintain confidence in Ipsotek’s information protection practices.

Key Responsibilities

Security Strategy & Governance

• Define and implement Ipsotek’s security strategy aligned with business and regulatory requirements.
• Liaise with the Eviden COO and Eviden Centre of Excellence to ensure alignment with group-wide security standards and initiatives.

Vulnerability Management, Penetration Testing & PSIRT

• Lead vulnerability assessments and coordinate penetration testing activities with external vendors and internal teams.
• Track and manage remediation efforts across infrastructure, applications, and cloud environments.
• Establish and maintain a Product Security Incident Response Team (PSIRT) process to handle reported vulnerabilities, disclosures, and security incidents related to Ipsotek products.
• Ensure timely triage, investigation, and resolution of product-related security issues.

Security Operations (SecOps)

• Oversee incident response, monitoring, and reporting processes.
• Manage security tooling and automation for detection and prevention.
• Continuously improve threat detection and response capabilities.

Cross-Functional Collaboration

• Work with development teams to embed secure coding practices and DevSecOps principles.
• Support project operations and presales with security input for bids, proposals, and delivery.
• Provide security guidance during solution design and deployment.

Client Trust & Information Protection

• Lead client onboarding from a security perspective, including documentation, assurance, and due diligence.
• Respond to client security questionnaires and audits.
• Maintain and evolve policies around data protection, access control, and compliance.

Stakeholder Engagement

• Act as the internal and external point person for all security matters.
• Represent Ipsotek in security forums and client meetings.
• Provide regular updates to leadership on risk posture and mitigation plans.

Requirements

• Proven experience in a senior security role, ideally within a technology or SaaS environment.
• Strong understanding of vulnerability management, penetration testing, SecOps, and cloud security.
• Experience establishing or contributing to PSIRT processes.
• Experience working with cross-functional teams including engineering, operations, and client services.
• Excellent communication and stakeholder management skills.
• Familiarity with ISO 27001, GDPR, and other relevant standards.
• Ability to work independently and drive initiatives forward.

Desirable

• Experience interfacing with enterprise clients and responding to security due diligence.
• Knowledge of AI/ML or video analytics environments.
• Certifications such as CISSP, CISM, or equivalent.

ABOUT TOSCA

Tosca is a global leader in reusable packaging and pooling solutions that service the supply chain end to end. Re-use is the key word as Tosca facilitates moving away from single use packaging towards a circular model of reusable packaging with its robust portfolio of plastic containers, pallets, bins, crates and more. We focus on optimizing the flow of perishables, eliminating waste at every turn – product, packaging, labor and transportation waste. Our reusable plastic products improve the quality of product delivered, create more efficient supply chains, and are more sustainable than single-use packaging.

To strengthen our IT department, we are currently looking for a Cybersecurity & Compliance Manager. This is a key role focused on ensuring the security and regulatory compliance of our systems and processes.

The position offers flexibility and can be fulfilled either remotely (within the Greater London area) or in a hybrid setup from our office in Dudley.

Position purpose

The Cybersecurity & Compliance Manager will lead Tosca’s efforts to ensure adherence to NIST CFS 2.0, ISO 27001, and other standards. This role focuses on developing security protocols, maintaining documentation, conducting risk assessments, and ensuring regulatory compliance. Responsibilities include managing security infrastructure, incident response, and promoting cybersecurity awareness. The position requires collaboration with Global IT, cross-functional teams, and third-party partners. Key qualifications include experience in cybersecurity and compliance, strong knowledge of NIST and ISO standards, risk management expertise, and effective communication skills.

This is a full-time role, with travel up to 30% of the time.

Responsibilities

• Implement security protocols and manage information security programs
• Report performance, exceptions, and outages to all audiences transparently.
• Align disaster recovery with business continuity plans.
• Ensure compliance with ISO27001, NIST CFS 2.0, and maintain ISMS.
• Identify risks, develop a comprehensive security plan.
• Test cyber-attacks regularly to address vulnerabilities.
• Monitor security trends, adapt strategies.
• Oversee incident monitoring, detection, response via SOC and MSSPs.
• Manage security tools like SIEM and endpoint protection.
• Lead incident response and post-incident analysis.
• Enforce policies for data privacy (GDPR & NIST).
• Conduct regular security audits.
• Manage vendor relationships and negotiate contracts.
• Report service performance to stakeholders.
• Coordinate with other Tosca functions for effective implementation.
• Other relevant responsibilities as required.

Requirements, Experience & Education

• Bachelor's degree in Computer Science, Information Technology, Information Security, or a related field; a Master's degree is preferred.
• At least 5 years of experience in information security, specifically within security operations, with proven experience in a leadership or management role.
• Relevant certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), or CISA (Certified Information Systems Auditor) are highly desirable.
• Strong knowledge of security frameworks (e.g., ISO 27001, COBIT), security technologies, tools, and best practices across EU, UK, and USA
• Proficiency in risk management processes, vulnerability assessments, and incident response strategies.
• Current technical and hands-on experience with security tools and technologies, including Rapid7, Rubrik, Sentinel, and endpoint protection solutions like Microsoft Defender.
• Excellent analytical, problem-solving, and decision-making skills, with the ability to conduct post-incident analysis and implement corrective actions.
• Strong communication and interpersonal skills, capable of working effectively with diverse teams and stakeholders.
• Ability to stay current with security trends, emerging threats, and best practices in the cybersecurity landscape.
• Experience of manufacturing and/or supply chain industry is preferred.
• Able to operate in a multinational corporation with several locations.

Competencies

• You have expertise within Customer/Relationship Management.
• You have excellent communication skills. You excel in conveying ideas clearly and effectively.
• You possess specialized knowledge and skills in your field.
• You have a collaborative spirit. You thrive in teamwork and enjoy working with others.
• You can analyze situations and make informed decisions
• You think ahead and plan for long-term success.

Our Offer

You will have a permanent contract with a competitive remuneration package in line with your knowledge and experience.

We continuously invest in your personal and professional development through our training & coaching programs.

You will join a dynamic and fast growing company that is part of a strong international group. We take pride in our green service and encourage our employees to participate in our growth and help us co-define the path to success. You will work in a fun environment with a supportive team that cares about each other and encourages collaboration at all levels.

Interested?

We cultivate a tight-knit team of smart people who care about their work and their colleagues. We believe this is a really exciting opportunity for someone who is up for a fast-paced challenge and is eager to become an integral member of our team.

Send us your CV and your letter of motivation in English. We’re looking forward to meeting you!

We value diversity and equal opportunity. Applicants are welcomed on the basis of their individual merits as we do not discriminate on the grounds of age, sex, disability, ethnic or racial origin, religion or belief, or sexual orientation. With both customers and employees around the world, we are committed to ensuring our team reflects the unique communities around us.

External recruitment services/agencies will not be used for this position.

• Monitor security systems and networks for suspicious activities and potential threats using SIEM tools.
• Investigate and respond to security incidents, including malware infections, phishing attacks, and data breaches.
• Conduct vulnerability assessments and penetration testing.
• Develop and implement security policies, standards, and procedures.
• Analyse security logs and traffic to identify patterns and anomalies.
• Research and stay up-to-date on the latest cybersecurity threats and trends.
• Recommend and implement security enhancements to protect systems and data.
• Collaborate with IT teams to ensure the security of infrastructure and applications.
• Participate in security awareness training for employees.
• Maintain detailed documentation of security incidents and response activities.

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related field.
• Minimum of 5 years of experience in cybersecurity, with a focus on threat detection and incident response.
• In-depth knowledge of networking protocols, firewalls, IDS/IPS, and endpoint security solutions.
• Experience with Security Information and Event Management (SIEM) tools (e.g., Splunk, QRadar).
• Familiarity with common attack vectors and mitigation techniques.
• Strong analytical and problem-solving skills.
• Relevant certifications such as CISSP, CEH, or CompTIA Security+ are highly desirable.
• Excellent communication and interpersonal skills.
• Ability to work independently and as part of a team in a hybrid work setting.

• Monitor security alerts and logs from various security tools (SIEM, IDS/IPS, EDR) to identify potential security incidents.
• Investigate, analyze, and respond to cybersecurity incidents in a timely and effective manner, minimizing impact.
• Conduct in-depth forensic analysis of security breaches and provide detailed reports on findings and remediation steps.
• Perform regular vulnerability assessments and penetration testing to identify and address weaknesses in the IT infrastructure.
• Develop and maintain security policies, procedures, and standards to ensure compliance with regulatory requirements.
• Stay current with the latest cybersecurity threats, vulnerabilities, and industry best practices.
• Implement and manage security technologies and solutions to enhance the organization's defense posture.
• Collaborate with IT teams to ensure secure system configurations and promote a security-aware culture.
• Develop and deliver security awareness training programs for employees.
• Participate in incident response planning and tabletop exercises.
• Contribute to the continuous improvement of the Security Operations Center (SOC) capabilities.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 5 years of experience in cybersecurity operations, incident response, or security analysis.
• In-depth knowledge of cybersecurity principles, frameworks (e.g., NIST, ISO 27001), and best practices.
• Proficiency with SIEM tools (e.g., Splunk, QRadar), EDR solutions, and network security technologies.
• Experience with vulnerability management tools and penetration testing methodologies.
• Strong understanding of network protocols, operating systems (Windows, Linux), and common attack vectors.
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and interpersonal skills, with the ability to explain complex technical issues to non-technical audiences.
• Relevant industry certifications such as CISSP, CEH, GSEC, or SANS certifications are highly desirable.
• Ability to work effectively in a team and independently, often under pressure.

• Monitor security systems and analyze security alerts for potential threats and breaches.
• Conduct in-depth investigations into security incidents and perform forensic analysis.
• Develop, implement, and maintain security policies, procedures, and guidelines.
• Perform vulnerability assessments and penetration testing to identify and remediate security weaknesses.
• Utilize SIEM, IDPS, firewalls, and other security tools to enhance threat detection and response capabilities.
• Stay abreast of the latest cybersecurity threats, trends, and technologies.
• Collaborate with IT teams to ensure secure system configurations and network designs.
• Develop and deliver cybersecurity awareness training to employees.
• Participate in incident response planning and execution.
• Provide technical guidance and mentorship to junior security staff.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent work experience.
• 5+ years of experience in cybersecurity operations and analysis.
• In-depth knowledge of network security, endpoint security, and cryptography.
• Proficiency with SIEM, IDPS, firewalls, and vulnerability scanning tools.
• Experience with incident response and forensic investigation techniques.
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Relevant certifications such as CISSP, CEH, GIAC, or CompTIA Security+ are highly desirable.
• Demonstrated ability to work independently and effectively in a remote environment.

• Monitor and analyze security alerts and events from various security tools (SIEM, IDS/IPS, EDR, firewalls).
• Investigate security incidents, perform root cause analysis, and develop remediation plans.
• Conduct vulnerability assessments and penetration testing to identify and mitigate security weaknesses.
• Develop and maintain security policies, procedures, and standards.
• Implement and manage security technologies, including firewalls, antivirus, intrusion detection systems, and data loss prevention solutions.
• Respond to and manage cybersecurity incidents, coordinating with internal teams and external stakeholders.
• Provide security awareness training and guidance to employees.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
• Contribute to the development and enhancement of the company's overall cybersecurity strategy.
• Collaborate with IT operations and development teams to ensure security is integrated into all systems and applications.
• Participate in security audits and compliance activities.
• Maintain detailed documentation of security configurations, incidents, and procedures.

• Monitor security systems (SIEM, IDS/IPS, firewalls) for suspicious activity and potential security breaches.
• Conduct in-depth security investigations, including incident response, root cause analysis, and forensic examinations.
• Develop, implement, and maintain security policies, procedures, and best practices.
• Perform vulnerability assessments and penetration testing to identify and remediate security weaknesses.
• Manage and configure security tools and technologies to enhance threat detection and prevention capabilities.
• Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
• Provide security awareness training to employees and promote a security-conscious culture.
• Collaborate with IT and development teams to ensure security is integrated into all systems and applications.
• Develop and execute incident response plans, ensuring minimal disruption and rapid recovery from security incidents.
• Contribute to the continuous improvement of the organisation's overall security architecture.

• Bachelor's degree in Computer Science, Cybersecurity, Information Technology, or a related field.
• Minimum of 5 years of hands-on experience in cybersecurity, threat analysis, and incident response.
• Strong understanding of network security principles, protocols, and technologies.
• Proficiency with SIEM tools (e.g., Splunk, QRadar), IDS/IPS, and endpoint security solutions.
• Experience with vulnerability assessment tools (e.g., Nessus, Qualys) and penetration testing methodologies.
• Relevant certifications such as CISSP, CompTIA Security+, or CEH are highly desirable.
• Excellent analytical and problem-solving skills with the ability to think critically under pressure.
• Effective communication and interpersonal skills for collaboration with technical and non-technical teams.
• Experience working in a hybrid work environment, balancing remote and office-based tasks.
• Familiarity with cloud security concepts (AWS, Azure) is a plus.

• Lead the development and implementation of robust cybersecurity policies, procedures, and standards.
• Oversee threat detection, incident response, and forensic investigations.
• Conduct regular vulnerability assessments and penetration testing to identify and mitigate security risks.
• Manage and configure security tools, including SIEM, IDS/IPS, EDR, and DLP solutions.
• Develop and deliver cybersecurity awareness training programs for all employees.
• Stay abreast of the latest cybersecurity threats, vulnerabilities, and technologies, and proactively adapt security measures.
• Collaborate with IT and business units to ensure security is integrated into all aspects of the organization.
• Mentor and guide junior security analysts, fostering a culture of continuous learning and improvement.
• Respond to and manage security incidents, ensuring minimal disruption and data loss.
• Contribute to the strategic roadmap for the cybersecurity program, aligning with business objectives.

• Bachelor's degree in Cybersecurity, Computer Science, or a related field, or equivalent work experience.
• Minimum of 8 years of experience in cybersecurity, with a proven track record in leadership roles.
• Extensive knowledge of security frameworks (e.g., ISO 27001, NIST CSF) and compliance regulations.
• Hands-on experience with various security technologies and tools.
• Strong understanding of network security, application security, cloud security, and endpoint security.
• Excellent analytical, problem-solving, and critical thinking skills.
• Exceptional communication and interpersonal skills, with the ability to effectively communicate complex security issues to diverse audiences.
• Professional certifications such as CISSP, CISM, or GIAC are highly preferred.
• Experience in the insurance industry is a significant advantage.

• Lead and manage cybersecurity incident response activities.
• Conduct comprehensive security assessments and vulnerability analyses.
• Monitor security systems and analyze logs for potential threats using SIEM tools.
• Develop and implement proactive security measures and defense strategies.
• Manage and maintain security tools and technologies.
• Mentor and guide junior cybersecurity analysts.
• Develop and deliver security awareness training programs.
• Contribute to the development and refinement of security policies and procedures.
• Stay abreast of emerging cybersecurity threats and vulnerabilities.
• Collaborate with IT and business units to ensure security best practices are integrated into all operations.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent experience.
• 5+ years of experience in cybersecurity, with a focus on security operations and incident response.
• Strong understanding of network security principles, firewalls, IDS/IPS, and VPNs.
• Experience with SIEM tools (e.g., Splunk, QRadar, ArcSight).
• Proficiency in vulnerability assessment and penetration testing methodologies.
• Knowledge of cloud security best practices (AWS, Azure, GCP).
• Excellent analytical, problem-solving, and critical thinking skills.
• Strong communication and interpersonal skills, with the ability to explain technical concepts to non-technical audiences.
• Relevant certifications such as CISSP, CEH, or GIAC are highly desirable.
• Experience in the financial services industry is a plus.