1,442 Data Protection Act jobs in the United Kingdom
Data Security Architect
London, London
Avanade Inc.
Posted today
Job Viewed
Job Description
Avanade is looking for an experienced Data Security Architect to join our security practice. This is a client-facing role where you will be engaged in some of the most exciting, complex, and leading-edge projects. You will play an active role in transforming our client's Information Protection strategy, capabilities, and operations through the design and implementation of predominantly Microsoft Threat Protection technologies. You will also be part of the Avanade Security presales and Architecture function, creating proposals and solutions for our largest, most complex enterprise clients. This role will include partial delivery expectations for the year.
About the Role:
In this role, you will:
- Lead large projects and project teams.
- Manage deliverables and be responsible for delivering against critical milestones.
- Engage in solution architecture and pre-sales deal shaping.
- Develop and maintain long-term strategic client relationships.
- Lead the implementation and management of Microsoft Purview for data discovery, classification, sensitivity labelling, and retention policies
- Drive DSPM strategy to ensure AI models, pipelines, and infrastructure meet enterprise data protection and compliance requirements
- Design and enforce DSPM (Data Security Posture Management) frameworks tailored for AI-driven data infrastructure
- Define and monitor KPIs for data discovery, classification, and protection coverage
- Implementing DSPM solutions to discover, classify, and secure data across AI pipelines
- Integration of data classification and retention policies within AI lifecycle
- Develop Response plans for data breach and exfiltration response tailored to AI environments. Forensic tracing of AI usage and auditability of input data
- Integrate Purview alerts and telemetry with Microsoft Defender and Sentinel to enable real-time threat detection and incident correlation.
- Oversee configuration of E5 security tools, including Microsoft Information Protection, Data Loss Prevention, and Insider Risk Management
- Stay current with evolving data privacy regulations (e.g., GDPR, HIPAA, CCPA, NIST AI RMF) and recommend policy updates accordingly
- Develop high-level documentation and executive reports on data security posture, risk exposures, and improvement roadmaps.
- Additional experience with Entra suite, M365 and Defender is not mandatory but valuable.
Your responsibilities may include :
- Develop and maintain strong relationships with the account teams and client stakeholders
- Identify customer needs and understand business goals to envisage a high-level solution and winning strategy.
- Develop detailed security transformation and operations opportunities based on the capabilities, standardised tools, processes and partner technology with the security architects and other technology partners.
- Drive and be involved in the proposal, solution presentations and discussions.
- Conduct and follow through the sales process to accomplish deal closure.
Requirements:
- Advanced Microsoft Security Certifications such as: SC-100, SC-200, SC-401, AI-900
- Industry-recognised certifications such as: CISSP, CCSP, CISM, GIAC
- In-depth Knowledge of Azure Security Tools: Have a key in-depth Experience implementing Purview, and Purview DSPM strategies for AI models or hybrid data platforms.
- Security Architecture Design: Design and implement robust security architectures for cloud-based applications and services. Ensure compliance with industry standards and best practices.
- RFP Responses: Prepare and review responses to Requests for Proposals (RFPs) related to cloud security. Ensure that all security requirements are addressed and communicated to potential clients.
- Continuous Improvement: Stay updated on the latest security trends, technologies, and threats. Continuously improve security processes and tools to enhance the overall security posture.
- Strong knowledge of Azure Security tools and experience with compliance frameworks (e.g., GDPR, NIST AI RMF, ISO 27001, SOC 2).
- Familiarity with industry standards and best practices for cloud security.
- Excellent communication and collaboration skills.
- Ability to lead RFP responses related to cloud security and Managed Security Services.
- Beneficial Knowledge: Familiarity with the Defender suite of products, including Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Office 365, and Microsoft Cloud App Security.
Beneficial Knowledge:
- Understanding of how AI/ML models handle training data, inference data, and derived data.
- Experience with case management workflows and insider threat response protocols.
- Data lineage tracking for model input/output.
- Familiarity with Responsible AI practices, including bias, fairness, and explainability
Benefits We Offer:
- Opportunity to work for Microsoft's Global Alliance Partner of the Year (17 of the last 20 years!)
- Pension, Electric Car Purchase scheme (tax-free!), 25 days holiday, Flexible benefits, Car allowance (where applicable), bonus, PMI, Life cover, IP cover, and much more.
- Exceptional development and training with a minimum of 80 hours/year of training and paid certifications.
- Avanade University - real-time access to technical and skilled resources globally.
- Dedicated career adviser to encourage your progression.
- Engaged and helpful coworkers genuinely interested in you.
- Reward and recognition program.
- Full benefits package including medical coverage, income protection policy, extended benefits, bonus program, generous retirement plan, and much more.
About Avanade:
Avanade leads in providing innovative digital services, business solutions, and design-led experiences for its clients, delivered through the power of people and the Microsoft ecosystem. Our professionals combine technology, business, and industry expertise to build and deploy solutions to realize results for clients and their customers. Avanade has 39,000 digitally connected people across 24 countries, bringing clients the best thinking through a collaborative culture that honours diversity and reflects the communities in which we operate. The majority owned by Accenture, Avanade was founded in 2000 by Accenture LLP and Microsoft Corporation. Learn more at is an Equal Opportunity Employer. We evaluate applicants without regard to race, colour, age, religion, sex, national origin, gender identity or expression, sexual orientation, disability, veteran, military or marital status, genetic information, or any other protected status.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request accommodation.
We work hard to provide an inclusive, diverse culture with a deep sense of belonging for all our employees. Avanade believes that all persons are entitled to equal employment opportunities, and we do not discriminate against our employees, applicants, or job seekers because of their race, color, gender, religion, national origin, disability, veteran status, age, marital status, sexual orientation, genetic information, gender identity, or any other protect group status as defined by law.
About the Role:
In this role, you will:
- Lead large projects and project teams.
- Manage deliverables and be responsible for delivering against critical milestones.
- Engage in solution architecture and pre-sales deal shaping.
- Develop and maintain long-term strategic client relationships.
- Lead the implementation and management of Microsoft Purview for data discovery, classification, sensitivity labelling, and retention policies
- Drive DSPM strategy to ensure AI models, pipelines, and infrastructure meet enterprise data protection and compliance requirements
- Design and enforce DSPM (Data Security Posture Management) frameworks tailored for AI-driven data infrastructure
- Define and monitor KPIs for data discovery, classification, and protection coverage
- Implementing DSPM solutions to discover, classify, and secure data across AI pipelines
- Integration of data classification and retention policies within AI lifecycle
- Develop Response plans for data breach and exfiltration response tailored to AI environments. Forensic tracing of AI usage and auditability of input data
- Integrate Purview alerts and telemetry with Microsoft Defender and Sentinel to enable real-time threat detection and incident correlation.
- Oversee configuration of E5 security tools, including Microsoft Information Protection, Data Loss Prevention, and Insider Risk Management
- Stay current with evolving data privacy regulations (e.g., GDPR, HIPAA, CCPA, NIST AI RMF) and recommend policy updates accordingly
- Develop high-level documentation and executive reports on data security posture, risk exposures, and improvement roadmaps.
- Additional experience with Entra suite, M365 and Defender is not mandatory but valuable.
Your responsibilities may include :
- Develop and maintain strong relationships with the account teams and client stakeholders
- Identify customer needs and understand business goals to envisage a high-level solution and winning strategy.
- Develop detailed security transformation and operations opportunities based on the capabilities, standardised tools, processes and partner technology with the security architects and other technology partners.
- Drive and be involved in the proposal, solution presentations and discussions.
- Conduct and follow through the sales process to accomplish deal closure.
Requirements:
- Advanced Microsoft Security Certifications such as: SC-100, SC-200, SC-401, AI-900
- Industry-recognised certifications such as: CISSP, CCSP, CISM, GIAC
- In-depth Knowledge of Azure Security Tools: Have a key in-depth Experience implementing Purview, and Purview DSPM strategies for AI models or hybrid data platforms.
- Security Architecture Design: Design and implement robust security architectures for cloud-based applications and services. Ensure compliance with industry standards and best practices.
- RFP Responses: Prepare and review responses to Requests for Proposals (RFPs) related to cloud security. Ensure that all security requirements are addressed and communicated to potential clients.
- Continuous Improvement: Stay updated on the latest security trends, technologies, and threats. Continuously improve security processes and tools to enhance the overall security posture.
- Strong knowledge of Azure Security tools and experience with compliance frameworks (e.g., GDPR, NIST AI RMF, ISO 27001, SOC 2).
- Familiarity with industry standards and best practices for cloud security.
- Excellent communication and collaboration skills.
- Ability to lead RFP responses related to cloud security and Managed Security Services.
- Beneficial Knowledge: Familiarity with the Defender suite of products, including Microsoft Defender for Endpoint, Microsoft Defender for Identity, Microsoft Defender for Office 365, and Microsoft Cloud App Security.
Beneficial Knowledge:
- Understanding of how AI/ML models handle training data, inference data, and derived data.
- Experience with case management workflows and insider threat response protocols.
- Data lineage tracking for model input/output.
- Familiarity with Responsible AI practices, including bias, fairness, and explainability
Benefits We Offer:
- Opportunity to work for Microsoft's Global Alliance Partner of the Year (17 of the last 20 years!)
- Pension, Electric Car Purchase scheme (tax-free!), 25 days holiday, Flexible benefits, Car allowance (where applicable), bonus, PMI, Life cover, IP cover, and much more.
- Exceptional development and training with a minimum of 80 hours/year of training and paid certifications.
- Avanade University - real-time access to technical and skilled resources globally.
- Dedicated career adviser to encourage your progression.
- Engaged and helpful coworkers genuinely interested in you.
- Reward and recognition program.
- Full benefits package including medical coverage, income protection policy, extended benefits, bonus program, generous retirement plan, and much more.
About Avanade:
Avanade leads in providing innovative digital services, business solutions, and design-led experiences for its clients, delivered through the power of people and the Microsoft ecosystem. Our professionals combine technology, business, and industry expertise to build and deploy solutions to realize results for clients and their customers. Avanade has 39,000 digitally connected people across 24 countries, bringing clients the best thinking through a collaborative culture that honours diversity and reflects the communities in which we operate. The majority owned by Accenture, Avanade was founded in 2000 by Accenture LLP and Microsoft Corporation. Learn more at is an Equal Opportunity Employer. We evaluate applicants without regard to race, colour, age, religion, sex, national origin, gender identity or expression, sexual orientation, disability, veteran, military or marital status, genetic information, or any other protected status.
We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, perform essential job functions, and receive other benefits and privileges of employment. Please contact us to request accommodation.
We work hard to provide an inclusive, diverse culture with a deep sense of belonging for all our employees. Avanade believes that all persons are entitled to equal employment opportunities, and we do not discriminate against our employees, applicants, or job seekers because of their race, color, gender, religion, national origin, disability, veteran status, age, marital status, sexual orientation, genetic information, gender identity, or any other protect group status as defined by law.
This advertiser has chosen not to accept applicants from your region.
0
Regional Director, Data Security - EMEA/APJ
Zscaler
Posted 1 day ago
Job Viewed
Job Description
About **Zscaler**
Serving thousands of enterprise customers around the world including 45% of Fortune 500 companies, Zscaler (NASDAQ: ZS) was founded in 2007 with a mission to make the cloud a safe place to do business and a more enjoyable experience for enterprise users. As the operator of the world's largest security cloud, Zscaler accelerates digital transformation so enterprises can be more agile, efficient, resilient, and secure. The pioneering, AI-powered Zscaler Zero Trust Exchange platform, which is found in our SASE and SSE offerings, protects thousands of enterprise customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location.
Named a Best Workplace in Technology by Fortune and others, Zscaler fosters an inclusive and supportive culture that is home to some of the brightest minds in the industry. If you thrive in an environment that is fast-paced and collaborative, and you are passionate about building and innovating for the greater good, come make your next move with Zscaler.
The Zscaler Sales and Go-to-Market team is a global group of professionals who are passionate about delighting our customers, nurturing trusted partnerships, and sharing their expertise to drive a secure, cloud-enabled digital future and further cement our position as the world leader in cloud security. Sales, Customer Success, Sales Enablement, Solution Architects, Business Development, Transformation, and Technology Partnerships all work together to demonstrate the power and agility of Zscaler cloud transformation to the world.
We're looking for an experienced Regional Director to join our Sales and Go-to-Market team. Reporting to the Global Vice President-Data Security, you'll be responsible for:
+ Recruiting, hiring and developing world-class specialist sales talent in EMEA and APJ, build development plans for each sales rep, and coach and motivate sales team to overachieve on targets
+ Being the GM of your business and create a plan for success, and accurately forecast business monthly/quarterly/yearly
+ Aligning with regional sales leadership, field sales,marketing and partners to prioritize focused revenue attainment in a matrixed organization.
+ Engaging with Product Management, Product Marketing, Services and other cross-functional teams to drive continuous performance improvement.
**What We're Looking for (Minimum Qualifications):**
+ 10+ years of full-cycle sales experience within software or security industry
+ Experience managing teams in EMEA and APJ
+ Bachelor's degree or equivalent experience
+ Progressive selling experience engaging with accounts and selling at C-Level
+ 3 years leadership experience managing a team
**What Will Make You Stand Out (Preferred Qualifications):**
+ You have led a product specialist sales team or have past experience as a product sales specialist in a matrix environment
+ You have recent experience in the Data Protection industry and bring a passionate point of view to customers, partners and your team.
+ Proficiency in data-driven territory management
#LI-Remote
#LI-FO1
At Zscaler, we are committed to building a team that reflects the communities we serve and the customers we work with. We foster an inclusive environment that values all backgrounds and perspectives, emphasizing collaboration and belonging. Join us in our mission to make doing business seamless and secure.
Our Benefits program is one of the most important ways we support our employees. Zscaler proudly offers comprehensive and inclusive benefits to meet the diverse needs of our employees and their families throughout their life stages, including:
+ Various health plans
+ Time off plans for vacation and sick time
+ Parental leave options
+ Retirement options
+ Education reimbursement
+ In-office perks, and more!
Learn more about Zscaler's Future of Work strategy, hybrid working model, and benefits here ( .
By applying for this role, you adhere to applicable laws, regulations, and Zscaler policies, including those related to security and privacy standards and guidelines.
Zscaler is committed to providing equal employment opportunities to all individuals. We strive to create a workplace where employees are treated with respect and have the chance to succeed. All qualified applicants will be considered for employment without regard to race, color, religion, sex (including pregnancy or related medical conditions), age, national origin, sexual orientation, gender identity or expression, genetic information, disability status, protected veteran status, or any other characteristic protected by federal, state, or local laws. _See more information by clicking on the_ Know Your Rights: Workplace Discrimination is Illegal ( _link._
Pay Transparency
Zscaler complies with all applicable federal, state, and local pay transparency rules.
Zscaler is committed to providing reasonable support (called accommodations or adjustments) in our recruiting processes for candidates who are differently abled, have long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support.
Serving thousands of enterprise customers around the world including 45% of Fortune 500 companies, Zscaler (NASDAQ: ZS) was founded in 2007 with a mission to make the cloud a safe place to do business and a more enjoyable experience for enterprise users. As the operator of the world's largest security cloud, Zscaler accelerates digital transformation so enterprises can be more agile, efficient, resilient, and secure. The pioneering, AI-powered Zscaler Zero Trust Exchange platform, which is found in our SASE and SSE offerings, protects thousands of enterprise customers from cyberattacks and data loss by securely connecting users, devices, and applications in any location.
Named a Best Workplace in Technology by Fortune and others, Zscaler fosters an inclusive and supportive culture that is home to some of the brightest minds in the industry. If you thrive in an environment that is fast-paced and collaborative, and you are passionate about building and innovating for the greater good, come make your next move with Zscaler.
The Zscaler Sales and Go-to-Market team is a global group of professionals who are passionate about delighting our customers, nurturing trusted partnerships, and sharing their expertise to drive a secure, cloud-enabled digital future and further cement our position as the world leader in cloud security. Sales, Customer Success, Sales Enablement, Solution Architects, Business Development, Transformation, and Technology Partnerships all work together to demonstrate the power and agility of Zscaler cloud transformation to the world.
We're looking for an experienced Regional Director to join our Sales and Go-to-Market team. Reporting to the Global Vice President-Data Security, you'll be responsible for:
+ Recruiting, hiring and developing world-class specialist sales talent in EMEA and APJ, build development plans for each sales rep, and coach and motivate sales team to overachieve on targets
+ Being the GM of your business and create a plan for success, and accurately forecast business monthly/quarterly/yearly
+ Aligning with regional sales leadership, field sales,marketing and partners to prioritize focused revenue attainment in a matrixed organization.
+ Engaging with Product Management, Product Marketing, Services and other cross-functional teams to drive continuous performance improvement.
**What We're Looking for (Minimum Qualifications):**
+ 10+ years of full-cycle sales experience within software or security industry
+ Experience managing teams in EMEA and APJ
+ Bachelor's degree or equivalent experience
+ Progressive selling experience engaging with accounts and selling at C-Level
+ 3 years leadership experience managing a team
**What Will Make You Stand Out (Preferred Qualifications):**
+ You have led a product specialist sales team or have past experience as a product sales specialist in a matrix environment
+ You have recent experience in the Data Protection industry and bring a passionate point of view to customers, partners and your team.
+ Proficiency in data-driven territory management
#LI-Remote
#LI-FO1
At Zscaler, we are committed to building a team that reflects the communities we serve and the customers we work with. We foster an inclusive environment that values all backgrounds and perspectives, emphasizing collaboration and belonging. Join us in our mission to make doing business seamless and secure.
Our Benefits program is one of the most important ways we support our employees. Zscaler proudly offers comprehensive and inclusive benefits to meet the diverse needs of our employees and their families throughout their life stages, including:
+ Various health plans
+ Time off plans for vacation and sick time
+ Parental leave options
+ Retirement options
+ Education reimbursement
+ In-office perks, and more!
Learn more about Zscaler's Future of Work strategy, hybrid working model, and benefits here ( .
By applying for this role, you adhere to applicable laws, regulations, and Zscaler policies, including those related to security and privacy standards and guidelines.
Zscaler is committed to providing equal employment opportunities to all individuals. We strive to create a workplace where employees are treated with respect and have the chance to succeed. All qualified applicants will be considered for employment without regard to race, color, religion, sex (including pregnancy or related medical conditions), age, national origin, sexual orientation, gender identity or expression, genetic information, disability status, protected veteran status, or any other characteristic protected by federal, state, or local laws. _See more information by clicking on the_ Know Your Rights: Workplace Discrimination is Illegal ( _link._
Pay Transparency
Zscaler complies with all applicable federal, state, and local pay transparency rules.
Zscaler is committed to providing reasonable support (called accommodations or adjustments) in our recruiting processes for candidates who are differently abled, have long term conditions, mental health conditions or sincerely held religious beliefs, or who are neurodivergent or require pregnancy-related support.
This advertiser has chosen not to accept applicants from your region.
1
Data Privacy Officer
BT7 1AE Belfast, Northern Ireland
£70000 Annually
WhatJobs
Posted 4 days ago
Job Viewed
Job Description
Our client is seeking a highly skilled and experienced Data Privacy Officer to join their compliance team, based in Belfast, Northern Ireland, UK . This role operates on a hybrid model, requiring a balance of remote work and in-office presence. You will be responsible for developing, implementing, and overseeing the company's data privacy strategy and policies to ensure compliance with GDPR, DPA 2018, and other relevant data protection regulations. Your primary focus will be on safeguarding sensitive data, minimizing risk, and promoting a culture of privacy throughout the organization. This includes conducting Data Protection Impact Assessments (DPIAs), managing data subject access requests (DSARs), and advising departments on privacy-related matters. You will also be involved in training staff on data protection best practices and staying abreast of evolving legal and regulatory landscapes. The ideal candidate will possess a strong understanding of data protection laws, risk management, and information security principles. Excellent communication and interpersonal skills are essential to effectively liaise with all levels of the organization, including senior management and external regulatory bodies. You will need to demonstrate a proactive approach to identifying and mitigating privacy risks. This is a critical role in ensuring our client's commitment to data protection and maintaining the trust of its customers and partners. The ability to translate complex legal requirements into practical business solutions is key. You will play a vital part in shaping and upholding our client's privacy framework. Experience in conducting privacy audits and developing incident response plans is highly desirable. If you are a dedicated privacy professional passionate about protecting data and ensuring compliance, we encourage you to apply.
Key Responsibilities:
Key Responsibilities:
- Develop, implement, and maintain data privacy policies and procedures.
- Ensure compliance with GDPR, DPA 2018, and other applicable privacy regulations.
- Conduct Data Protection Impact Assessments (DPIAs) and Privacy Risk Assessments.
- Manage and respond to Data Subject Access Requests (DSARs) in a timely manner.
- Provide guidance and training to employees on data protection principles and practices.
- Monitor and audit the company's adherence to privacy policies.
- Liaise with regulatory authorities and external legal counsel on privacy matters.
- Investigate and manage data breaches, implementing corrective actions.
- Stay up-to-date with changes in data protection laws and best practices.
- Advise business units on privacy considerations for new projects and initiatives.
- Bachelor's degree in Law, Information Technology, or a related field.
- 5+ years of experience in data privacy, compliance, or legal roles.
- In-depth knowledge of GDPR, DPA 2018, and international data protection laws.
- Professional certifications such as CIPP/E, CIPM, or equivalent are highly desirable.
- Strong understanding of information security principles and risk management.
- Excellent analytical, problem-solving, and decision-making skills.
- Exceptional communication, presentation, and interpersonal skills.
- Ability to manage multiple priorities and work effectively in a hybrid environment.
This advertiser has chosen not to accept applicants from your region.
2
Senior Data Privacy Officer
LS1 1AA Leeds, Yorkshire and the Humber
£70000 Annually
WhatJobs
Posted 17 days ago
Job Viewed
Job Description
Our client is seeking a highly experienced Senior Data Privacy Officer to lead their data protection initiatives. This is a fully remote, strategic role where you will be responsible for developing, implementing, and overseeing the company's comprehensive data privacy program. You will ensure compliance with global data protection regulations, including GDPR, CCPA, and others as applicable. Your key responsibilities will include conducting Data Protection Impact Assessments (DPIAs), managing data subject access requests (DSARs), developing and delivering privacy training, and advising business units on privacy-related matters. You will also be instrumental in drafting and updating privacy policies, procedures, and contractual clauses. This role requires a deep understanding of data privacy laws, information security principles, and risk management frameworks. The ideal candidate will possess exceptional analytical, communication, and interpersonal skills, with the ability to translate complex legal and technical requirements into practical business solutions. Experience in developing and managing a privacy program within a technology-driven or regulated industry is essential. You should be adept at stakeholder management, working effectively with legal, IT, security, and business teams across different geographies. A proactive approach to identifying and mitigating privacy risks is crucial. This position demands a self-starter who can work autonomously in a remote setting, manage their workload effectively, and drive privacy best practices throughout the organization. If you are a dedicated privacy professional passionate about safeguarding sensitive data and upholding ethical data handling practices, this remote opportunity offers significant impact and professional growth.
Key Responsibilities:
Qualifications:
Key Responsibilities:
- Develop, implement, and maintain the global data privacy program.
- Ensure compliance with GDPR, CCPA, and other relevant data protection regulations.
- Conduct and document Data Protection Impact Assessments (DPIAs) and Privacy Risk Assessments.
- Manage and respond to Data Subject Access Requests (DSARs) and other privacy rights requests.
- Develop and deliver data privacy training and awareness programs for employees.
- Advise business stakeholders on privacy implications of new projects, products, and services.
- Draft, review, and update privacy policies, notices, and procedures.
- Monitor regulatory changes and update the privacy program accordingly.
- Investigate and manage data privacy incidents and breaches.
- Collaborate with Legal, IT, Security, and business teams to embed privacy by design and default.
Qualifications:
- Law degree or equivalent qualification, with a specialization in data protection or privacy law.
- Minimum of 7 years of experience in data privacy or compliance roles.
- In-depth knowledge of GDPR, CCPA, and other international privacy regulations.
- Professional certification such as CIPP/E, CIPP/US, CIPM, or equivalent.
- Experience conducting DPIAs and managing DSARs.
- Strong understanding of information security principles and technologies.
- Excellent analytical, problem-solving, and communication skills.
- Proven ability to work independently and manage complex projects in a remote setting.
- Experience in advising cross-functional teams on privacy matters.
This advertiser has chosen not to accept applicants from your region.
3
Senior Data Privacy Officer
EH1 1AA Edinburgh, Scotland
£75000 Annually
WhatJobs
Posted 20 days ago
Job Viewed
Job Description
Our client is seeking a highly experienced and knowledgeable Senior Data Privacy Officer to lead their data protection initiatives. This is a critical, fully remote position, offering the opportunity to shape and implement robust privacy frameworks across the organisation from anywhere in the UK. You will be responsible for ensuring compliance with all relevant data protection regulations, including GDPR and other international privacy laws. This includes developing and maintaining comprehensive data privacy policies, procedures, and guidelines. You will conduct regular data protection impact assessments (DPIAs), manage data subject access requests (DSARs), and oversee breach notification processes. The ideal candidate will possess a deep understanding of data privacy law, risk management, and information security principles. You will work closely with legal, IT, and business departments to embed privacy by design and by default into all operations. This role requires exceptional analytical skills, the ability to conduct thorough investigations, and strong communication and influencing skills to engage with stakeholders at all levels, including senior management. Experience in developing and delivering privacy training programs is essential. You will also stay abreast of evolving privacy regulations and best practices, advising the organisation on necessary adjustments. This senior role requires significant experience in a dedicated data privacy or compliance role, preferably with a legal or IT security background. A relevant professional certification (e.g., CIPP/E, CIPM) is highly desirable. This role is based in Edinburgh, Scotland, UK , however it is a fully remote position, enabling you to work autonomously and effectively from your chosen location.
Responsibilities:
Responsibilities:
- Develop, implement, and maintain the organisation's data privacy strategy and framework.
- Ensure compliance with GDPR, CCPA, and other applicable data protection regulations.
- Conduct Data Protection Impact Assessments (DPIAs) for new projects and systems.
- Manage and respond to Data Subject Access Requests (DSARs) and other individual rights requests.
- Develop and deliver data privacy training and awareness programs for all staff.
- Investigate and manage data breaches, including notification procedures.
- Advise on privacy implications of new technologies and business initiatives.
- Liaise with data protection authorities and relevant regulatory bodies.
- Oversee and update data processing agreements with third-party vendors.
- Conduct regular audits to ensure ongoing compliance with privacy policies.
- Minimum of 5-7 years of experience in data privacy, compliance, or information security roles.
- In-depth knowledge of GDPR and other international data protection laws.
- Proven experience in developing and implementing data privacy policies and procedures.
- Experience conducting DPIAs and managing DSARs.
- Strong analytical, risk assessment, and problem-solving skills.
- Excellent communication, negotiation, and interpersonal skills.
- Ability to influence and engage stakeholders at all levels.
- Relevant professional certifications such as CIPP/E, CIPM, or CIPP/US are highly desirable.
- Bachelor's degree in Law, IT, Business, or a related field.
- Ability to work independently and manage complex responsibilities in a remote setting.
This advertiser has chosen not to accept applicants from your region.
4
Cyber Security Consultant - Data/Application Security
Hursley, South East
IBM
Posted 14 days ago
Job Viewed
Job Description
**Introduction**
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Data and Application Security, you will help clients secure their applications and sensitive information across the full development and data lifecycle. You will guide organizations through application security challenges, embedding controls into design, build, and deployment phases, while leveraging practices such as Threat Modelling, Secure SDLC, and DevSecOps. With expertise in vulnerability management, data protection, and regulatory compliance, you will design security guardrails that support application modernization programs in multicloud environments, ensuring risks are minimized and business objectives are achieved securely.
Responsibilities
* Provide advisory and technical expertise on application security across the Software Development Lifecycle (Design, Build, Deploy).
* Lead activities such as Threat Modelling, Secure SDLC integration, DevSecOps practices, and application security testing.
* Implement security guardrails to support secure application modernization on multicloud platforms.
* Drive application vulnerability management, analyzing high-risk vulnerabilities, reducing false positives, and developing effective mitigation plans.
* Apply data protection techniques including encryption, masking, and anonymization to safeguard sensitive information.
* Define and enforce data classification and lifecycle management policies, ensuring security across all stages of data handling.
* Advise clients on regulatory requirements (e.g., GDPR, HIPAA, CCPA) and align security programs to meet compliance obligations.
* Strengthen database security through access management, auditing, and patch control.
* Integrate with SIEM platforms to monitor, analyze, and respond to potential data and application security incidents.
* Collaborate with development and infrastructure teams to embed security seamlessly into business processes and IT solutions.
**Required technical and professional expertise**
* Strong experience in application security domains, including Threat Modelling, Secure SDLC, DevSecOps, and security testing.
* Knowledge of data protection methods: encryption (at rest/in transit), masking, anonymization.
* Hands-on experience with Data Loss Prevention (DLP) tools and strategies.
* Proficiency in database security controls, including access, auditing, and patch management.
* Familiarity with SIEM platforms for monitoring and analysis of data/application security events.
* Understanding of data classification principles and lifecycle management practices.
* Knowledge of privacy regulations (GDPR, HIPAA, CCPA) and ability to align security programs to compliance.
* Strong grasp of security frameworks such as NIST, ISO 27001, and CIS Critical Security Controls.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 2 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Experience embedding security guardrails in application modernization programs across hybrid/multicloud environments.
* Proficiency with automation tools and pipelines supporting DevSecOps practices.
* Certifications such as CSSLP, CISSP, CISM, CCSP, or equivalent.
* Strong consulting experience, with the ability to translate complex security challenges into actionable recommendations for development and business stakeholders.
* Experience in designing and managing enterprise-wide data governance frameworks.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Data and Application Security, you will help clients secure their applications and sensitive information across the full development and data lifecycle. You will guide organizations through application security challenges, embedding controls into design, build, and deployment phases, while leveraging practices such as Threat Modelling, Secure SDLC, and DevSecOps. With expertise in vulnerability management, data protection, and regulatory compliance, you will design security guardrails that support application modernization programs in multicloud environments, ensuring risks are minimized and business objectives are achieved securely.
Responsibilities
* Provide advisory and technical expertise on application security across the Software Development Lifecycle (Design, Build, Deploy).
* Lead activities such as Threat Modelling, Secure SDLC integration, DevSecOps practices, and application security testing.
* Implement security guardrails to support secure application modernization on multicloud platforms.
* Drive application vulnerability management, analyzing high-risk vulnerabilities, reducing false positives, and developing effective mitigation plans.
* Apply data protection techniques including encryption, masking, and anonymization to safeguard sensitive information.
* Define and enforce data classification and lifecycle management policies, ensuring security across all stages of data handling.
* Advise clients on regulatory requirements (e.g., GDPR, HIPAA, CCPA) and align security programs to meet compliance obligations.
* Strengthen database security through access management, auditing, and patch control.
* Integrate with SIEM platforms to monitor, analyze, and respond to potential data and application security incidents.
* Collaborate with development and infrastructure teams to embed security seamlessly into business processes and IT solutions.
**Required technical and professional expertise**
* Strong experience in application security domains, including Threat Modelling, Secure SDLC, DevSecOps, and security testing.
* Knowledge of data protection methods: encryption (at rest/in transit), masking, anonymization.
* Hands-on experience with Data Loss Prevention (DLP) tools and strategies.
* Proficiency in database security controls, including access, auditing, and patch management.
* Familiarity with SIEM platforms for monitoring and analysis of data/application security events.
* Understanding of data classification principles and lifecycle management practices.
* Knowledge of privacy regulations (GDPR, HIPAA, CCPA) and ability to align security programs to compliance.
* Strong grasp of security frameworks such as NIST, ISO 27001, and CIS Critical Security Controls.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 2 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Experience embedding security guardrails in application modernization programs across hybrid/multicloud environments.
* Proficiency with automation tools and pipelines supporting DevSecOps practices.
* Certifications such as CSSLP, CISSP, CISM, CCSP, or equivalent.
* Strong consulting experience, with the ability to translate complex security challenges into actionable recommendations for development and business stakeholders.
* Experience in designing and managing enterprise-wide data governance frameworks.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
5
Cyber Security Consultant - Data/Application Security
IBM
Posted 14 days ago
Job Viewed
Job Description
**Introduction**
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Data and Application Security, you will help clients secure their applications and sensitive information across the full development and data lifecycle. You will guide organizations through application security challenges, embedding controls into design, build, and deployment phases, while leveraging practices such as Threat Modelling, Secure SDLC, and DevSecOps. With expertise in vulnerability management, data protection, and regulatory compliance, you will design security guardrails that support application modernization programs in multicloud environments, ensuring risks are minimized and business objectives are achieved securely.
Responsibilities
* Provide advisory and technical expertise on application security across the Software Development Lifecycle (Design, Build, Deploy).
* Lead activities such as Threat Modelling, Secure SDLC integration, DevSecOps practices, and application security testing.
* Implement security guardrails to support secure application modernization on multicloud platforms.
* Drive application vulnerability management, analyzing high-risk vulnerabilities, reducing false positives, and developing effective mitigation plans.
* Apply data protection techniques including encryption, masking, and anonymization to safeguard sensitive information.
* Define and enforce data classification and lifecycle management policies, ensuring security across all stages of data handling.
* Advise clients on regulatory requirements (e.g., GDPR, HIPAA, CCPA) and align security programs to meet compliance obligations.
* Strengthen database security through access management, auditing, and patch control.
* Integrate with SIEM platforms to monitor, analyze, and respond to potential data and application security incidents.
* Collaborate with development and infrastructure teams to embed security seamlessly into business processes and IT solutions.
**Required technical and professional expertise**
* Strong experience in application security domains, including Threat Modelling, Secure SDLC, DevSecOps, and security testing.
* Knowledge of data protection methods: encryption (at rest/in transit), masking, anonymization.
* Hands-on experience with Data Loss Prevention (DLP) tools and strategies.
* Proficiency in database security controls, including access, auditing, and patch management.
* Familiarity with SIEM platforms for monitoring and analysis of data/application security events.
* Understanding of data classification principles and lifecycle management practices.
* Knowledge of privacy regulations (GDPR, HIPAA, CCPA) and ability to align security programs to compliance.
* Strong grasp of security frameworks such as NIST, ISO 27001, and CIS Critical Security Controls.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 2 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Experience embedding security guardrails in application modernization programs across hybrid/multicloud environments.
* Proficiency with automation tools and pipelines supporting DevSecOps practices.
* Certifications such as CSSLP, CISSP, CISM, CCSP, or equivalent.
* Strong consulting experience, with the ability to translate complex security challenges into actionable recommendations for development and business stakeholders.
* Experience in designing and managing enterprise-wide data governance frameworks.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Data and Application Security, you will help clients secure their applications and sensitive information across the full development and data lifecycle. You will guide organizations through application security challenges, embedding controls into design, build, and deployment phases, while leveraging practices such as Threat Modelling, Secure SDLC, and DevSecOps. With expertise in vulnerability management, data protection, and regulatory compliance, you will design security guardrails that support application modernization programs in multicloud environments, ensuring risks are minimized and business objectives are achieved securely.
Responsibilities
* Provide advisory and technical expertise on application security across the Software Development Lifecycle (Design, Build, Deploy).
* Lead activities such as Threat Modelling, Secure SDLC integration, DevSecOps practices, and application security testing.
* Implement security guardrails to support secure application modernization on multicloud platforms.
* Drive application vulnerability management, analyzing high-risk vulnerabilities, reducing false positives, and developing effective mitigation plans.
* Apply data protection techniques including encryption, masking, and anonymization to safeguard sensitive information.
* Define and enforce data classification and lifecycle management policies, ensuring security across all stages of data handling.
* Advise clients on regulatory requirements (e.g., GDPR, HIPAA, CCPA) and align security programs to meet compliance obligations.
* Strengthen database security through access management, auditing, and patch control.
* Integrate with SIEM platforms to monitor, analyze, and respond to potential data and application security incidents.
* Collaborate with development and infrastructure teams to embed security seamlessly into business processes and IT solutions.
**Required technical and professional expertise**
* Strong experience in application security domains, including Threat Modelling, Secure SDLC, DevSecOps, and security testing.
* Knowledge of data protection methods: encryption (at rest/in transit), masking, anonymization.
* Hands-on experience with Data Loss Prevention (DLP) tools and strategies.
* Proficiency in database security controls, including access, auditing, and patch management.
* Familiarity with SIEM platforms for monitoring and analysis of data/application security events.
* Understanding of data classification principles and lifecycle management practices.
* Knowledge of privacy regulations (GDPR, HIPAA, CCPA) and ability to align security programs to compliance.
* Strong grasp of security frameworks such as NIST, ISO 27001, and CIS Critical Security Controls.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 2 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Experience embedding security guardrails in application modernization programs across hybrid/multicloud environments.
* Proficiency with automation tools and pipelines supporting DevSecOps practices.
* Certifications such as CSSLP, CISSP, CISM, CCSP, or equivalent.
* Strong consulting experience, with the ability to translate complex security challenges into actionable recommendations for development and business stakeholders.
* Experience in designing and managing enterprise-wide data governance frameworks.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Data protection act Jobs in United Kingdom !
6
Cyber Security Consultant - Data/Application Security
Leicester, East Midlands
IBM
Posted 14 days ago
Job Viewed
Job Description
**Introduction**
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Data and Application Security, you will help clients secure their applications and sensitive information across the full development and data lifecycle. You will guide organizations through application security challenges, embedding controls into design, build, and deployment phases, while leveraging practices such as Threat Modelling, Secure SDLC, and DevSecOps. With expertise in vulnerability management, data protection, and regulatory compliance, you will design security guardrails that support application modernization programs in multicloud environments, ensuring risks are minimized and business objectives are achieved securely.
Responsibilities
* Provide advisory and technical expertise on application security across the Software Development Lifecycle (Design, Build, Deploy).
* Lead activities such as Threat Modelling, Secure SDLC integration, DevSecOps practices, and application security testing.
* Implement security guardrails to support secure application modernization on multicloud platforms.
* Drive application vulnerability management, analyzing high-risk vulnerabilities, reducing false positives, and developing effective mitigation plans.
* Apply data protection techniques including encryption, masking, and anonymization to safeguard sensitive information.
* Define and enforce data classification and lifecycle management policies, ensuring security across all stages of data handling.
* Advise clients on regulatory requirements (e.g., GDPR, HIPAA, CCPA) and align security programs to meet compliance obligations.
* Strengthen database security through access management, auditing, and patch control.
* Integrate with SIEM platforms to monitor, analyze, and respond to potential data and application security incidents.
* Collaborate with development and infrastructure teams to embed security seamlessly into business processes and IT solutions.
**Required technical and professional expertise**
* Strong experience in application security domains, including Threat Modelling, Secure SDLC, DevSecOps, and security testing.
* Knowledge of data protection methods: encryption (at rest/in transit), masking, anonymization.
* Hands-on experience with Data Loss Prevention (DLP) tools and strategies.
* Proficiency in database security controls, including access, auditing, and patch management.
* Familiarity with SIEM platforms for monitoring and analysis of data/application security events.
* Understanding of data classification principles and lifecycle management practices.
* Knowledge of privacy regulations (GDPR, HIPAA, CCPA) and ability to align security programs to compliance.
* Strong grasp of security frameworks such as NIST, ISO 27001, and CIS Critical Security Controls.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 2 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Experience embedding security guardrails in application modernization programs across hybrid/multicloud environments.
* Proficiency with automation tools and pipelines supporting DevSecOps practices.
* Certifications such as CSSLP, CISSP, CISM, CCSP, or equivalent.
* Strong consulting experience, with the ability to translate complex security challenges into actionable recommendations for development and business stakeholders.
* Experience in designing and managing enterprise-wide data governance frameworks.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
At IBM CIC, we provide technical and industry expertise to a wide range of public and private sector clients in the UK.
A career in IBM CIC means you'll have the opportunity to work with leading professionals across multiple industries to improve the hybrid cloud and AI journey for the most innovative and valuable companies in the world. You will get the chance to deliver effective solutions, driving meaningful business change for our clients, using some of the latest technology platforms.
Curiosity and a constant quest for knowledge serve as the foundation to success here. You'll be encouraged and supported to constantly reinvent yourself, focusing on skills in demand in an ever changing market. You'll be working with diverse teams, coming up with creative solutions which impact a wide network of clients, who may be at their site or one of our CIC or IBM locations. Our culture of evolution centres on long-term career growth and development opportunities in an environment that embraces your unique skills and experience.
We offer:
* Many training opportunities from classroom to e-learning, mentoring and coaching programs and the chance to gain industry recognized certifications
* Regular and frequent promotion opportunities to ensure you can drive and develop your career with us
* Feedback and checkpoints throughout the year
* Diversity & Inclusion as an essential and authentic component of our culture through our policies and process as well as our Employee Champion teams and support networks
* A culture where your ideas for growth and innovation are always welcome
* Internal recognition programs for peer-to-peer appreciation as well as from manager to employees
* Tools and policies to support your work-life balance from flexible working approaches, sabbatical programs, paid paternity leave, maternity leave and an innovative maternity returners scheme
* More traditional benefits, such as 25 days holiday (in addition to public holidays), private medical, dental & optical cover, online shopping discounts, an Employee Assistance Program, life assurance and a group personal pension plan of an additional 5% of your base salary paid by us monthly to save for your future.
**Your role and responsibilities**
As a Security Consultant specializing in Data and Application Security, you will help clients secure their applications and sensitive information across the full development and data lifecycle. You will guide organizations through application security challenges, embedding controls into design, build, and deployment phases, while leveraging practices such as Threat Modelling, Secure SDLC, and DevSecOps. With expertise in vulnerability management, data protection, and regulatory compliance, you will design security guardrails that support application modernization programs in multicloud environments, ensuring risks are minimized and business objectives are achieved securely.
Responsibilities
* Provide advisory and technical expertise on application security across the Software Development Lifecycle (Design, Build, Deploy).
* Lead activities such as Threat Modelling, Secure SDLC integration, DevSecOps practices, and application security testing.
* Implement security guardrails to support secure application modernization on multicloud platforms.
* Drive application vulnerability management, analyzing high-risk vulnerabilities, reducing false positives, and developing effective mitigation plans.
* Apply data protection techniques including encryption, masking, and anonymization to safeguard sensitive information.
* Define and enforce data classification and lifecycle management policies, ensuring security across all stages of data handling.
* Advise clients on regulatory requirements (e.g., GDPR, HIPAA, CCPA) and align security programs to meet compliance obligations.
* Strengthen database security through access management, auditing, and patch control.
* Integrate with SIEM platforms to monitor, analyze, and respond to potential data and application security incidents.
* Collaborate with development and infrastructure teams to embed security seamlessly into business processes and IT solutions.
**Required technical and professional expertise**
* Strong experience in application security domains, including Threat Modelling, Secure SDLC, DevSecOps, and security testing.
* Knowledge of data protection methods: encryption (at rest/in transit), masking, anonymization.
* Hands-on experience with Data Loss Prevention (DLP) tools and strategies.
* Proficiency in database security controls, including access, auditing, and patch management.
* Familiarity with SIEM platforms for monitoring and analysis of data/application security events.
* Understanding of data classification principles and lifecycle management practices.
* Knowledge of privacy regulations (GDPR, HIPAA, CCPA) and ability to align security programs to compliance.
* Strong grasp of security frameworks such as NIST, ISO 27001, and CIS Critical Security Controls.
As an equal opportunities' employer, we welcome applications from individuals of all backgrounds. However, for you to be eligible for this role, you must have the valid right to work in the UK. Unfortunately, we do not offer visa sponsorship and have no future plans to do so. You must be a resident in the UK and have been living continuously in the UK for the last 2 years. You must be able to hold or gain a UK government security clearance.
**Preferred technical and professional experience**
* Experience embedding security guardrails in application modernization programs across hybrid/multicloud environments.
* Proficiency with automation tools and pipelines supporting DevSecOps practices.
* Certifications such as CSSLP, CISSP, CISM, CCSP, or equivalent.
* Strong consulting experience, with the ability to translate complex security challenges into actionable recommendations for development and business stakeholders.
* Experience in designing and managing enterprise-wide data governance frameworks.
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.
This advertiser has chosen not to accept applicants from your region.
7
Data centre Security Officer
RH10 9BE Crawley, South East
£12 Hourly
Workrate UK
Posted 6 days ago
Job Viewed
Job Description
Data Centre Security Officer at Workrate UK
Workrate UK is seeking a number of highly skilled and motivated individuals to join our Data Centre Security Team as a Security Officer. As a Data Centre Security Officer, you will play a crucial role in ensuring the safety and security of our client's data centres.
Responsibilities:
Monitor and control access to the data centre premises using proprietary software
Conduct regular patrols to ensure the physical security of the facility
Respond to security incidents and emergencies
Maintain accurate records of all security-related activities
Collaborate with other security personnel to implement and enforce security policies and procedures
Requirements:
Prior experience in a similar role is preferred but not essential
Knowledge of security protocols and procedures
Strong attention to detail and observation skills
Excellent communication and interpersonal skills
Ability to work independently and as part of a team
What we can offer you
An excellent rate of pay of £12.00+ per hour
Work pattern 4 days on, 4 days off, Day and Night shifts with some overtime available if you are interested
Life assurance scheme
Pension Scheme
Access to an industry leading Employee Benefits Platform offering lifestyle savings and discounts on most high street retailers
A Reward and Recognition programme
The opportunity to develop your security career with access to a large and well-established online training and development programme
Employee Assistance Programme that provides a health and wellbeing support service
As an employer of choice, we focus on wellbeing, training, and career progression - our Supervisors, Account Managers and Operations Managers are all long-term Workraters who progressed from within
An Employee Referral Scheme of £250 for each new employee you refer who successfully completes 3 months probation
WORKRATE is an equal opportunities employer and welcomes applications from all suitably qualified persons regardless of their race, sex, disability, religion/belief, sexual orientation or age.
If you are a dedicated and reliable individual with a passion for security, we invite you to apply for the Data Centre Security Officer role at Workrate UK. Join our team and contribute to the protection of our client's valuable data assets.
Other requirements are:
Valid SIA licence
Proficient computer skills including Microsoft Office (this will be tested during interview)
Availability to work both night and day shifts (shifts run 07.00 to 19.00 and 19.00 to 07.00)
Effective oral and written communication skills (this will be tested during interview)
Ability to assess and evaluate situations effectively
Ability to identify critical issues quickly and accurately
Excellent attention to detail
A 5 year checkable work/ education history is imperative. All successful candidates are subject to BS7858 security clearance. (Same as the vetting required for a SIA licence).
This advertiser has chosen not to accept applicants from your region.
8
Data Centre Security Manager, AWS
London, London
Amazon
Posted 14 days ago
Job Viewed
Job Description
Description
AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage,
networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain - and we're
looking for talented people who want to help.
You'll join a diverse team of software, hardware, and network engineers, supply chain specialists, security experts, operations managers, and other vital roles. You'll collaborate with people across AWS to help us deliver the highest standards for safety and security while providing seemingly infinite capacity at the lowest possible cost for our
customers. And you'll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion.
At Amazon we believe that every day is still day one. A day to take a first step. A day to look forwards to new challenges. And today is that day for you. It's your day to be part of something great. A day to make your ideas come to life. And your day to join a company that redefines itself every day. That's the energy and passion behind Amazon.
For our data centres and other facilities we are looking for Data Centre Security Manager (DCSM) to work closely with the Cluster Security Manager and oversee security excellence across the Region.
- The DCSM is responsible for the execution of the Security Program in the Data Centre Cluster.
- They will provide on-site direction, consistency and guidance to the contract security officers via their chain of command to ensure proper execution and enforcement of security policies and procedures set forth by AWS.
- The role will support other DCSM's and be expected on occasions to back-fill absences from a site
- Partner directly with AWS Security customers to review security related documentation and help them understand the implementation of all physical security standards and policies to their real-world environment.
- Develop and review new and cutting-edge technology and security measures for possible application to the existing suite of security processes and measures to enhance the security posture of our data facilities.
A day in the life
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve in the cloud.
Inclusive Team Culture
Here at AWS, it's in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.
Mentorship and Career growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
About the team
The Data Centre Security Manager will be part of a small team managing data centre security and incidents across the region.
Key job responsibilities
You will need to be a UK national and able to obtain and maintain a UK Government Security Clearance. Further details found here: Qualifications
- Commutable to the Central London. Proficiency in use of Microsoft Office with a good working knowledge of Excel, Good analytical skills, Demonstrable knowledge of physical security best practices to include but not limited to application of physical security systems, investigation techniques, management of contract security guards and incident management.
- Strong experience within similar role in the security industry, Track record for being detail-oriented with a demonstrable ability to self-motivate and follow-through on projects, Ability to handle confidential information with care, Able to demonstrate operating at a strategic level
- Experience in working with customers at a senior level, Able to demonstrate ability to identify, own and resolve complex problems, Able to demonstrate the management of multiple work-strands and operate at speed
Preferred Qualifications
- Considerable knowledge of state-of-the-art security technology including access control & CCTV systems. (Experience with the LENEL Access Control & Alarm Monitoring System is a plus).
- Demonstrable expertise in selection, installation, trouble-shooting, and application of access control, intrusion detection, and video surveillance systems.
- Bachelor's degree or equivalent; CPP/PSP Certification
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
AWS Infrastructure Services owns the design, planning, delivery, and operation of all AWS global infrastructure. In other words, we're the people who keep the cloud running. We support all AWS data centers and all of the servers, storage,
networking, power, and cooling equipment that ensure our customers have continual access to the innovation they rely on. We work on the most challenging problems, with thousands of variables impacting the supply chain - and we're
looking for talented people who want to help.
You'll join a diverse team of software, hardware, and network engineers, supply chain specialists, security experts, operations managers, and other vital roles. You'll collaborate with people across AWS to help us deliver the highest standards for safety and security while providing seemingly infinite capacity at the lowest possible cost for our
customers. And you'll experience an inclusive culture that welcomes bold ideas and empowers you to own them to completion.
At Amazon we believe that every day is still day one. A day to take a first step. A day to look forwards to new challenges. And today is that day for you. It's your day to be part of something great. A day to make your ideas come to life. And your day to join a company that redefines itself every day. That's the energy and passion behind Amazon.
For our data centres and other facilities we are looking for Data Centre Security Manager (DCSM) to work closely with the Cluster Security Manager and oversee security excellence across the Region.
- The DCSM is responsible for the execution of the Security Program in the Data Centre Cluster.
- They will provide on-site direction, consistency and guidance to the contract security officers via their chain of command to ensure proper execution and enforcement of security policies and procedures set forth by AWS.
- The role will support other DCSM's and be expected on occasions to back-fill absences from a site
- Partner directly with AWS Security customers to review security related documentation and help them understand the implementation of all physical security standards and policies to their real-world environment.
- Develop and review new and cutting-edge technology and security measures for possible application to the existing suite of security processes and measures to enhance the security posture of our data facilities.
A day in the life
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why flexible work hours and arrangements are part of our culture. When we feel supported in the workplace and at home, there's nothing we can't achieve in the cloud.
Inclusive Team Culture
Here at AWS, it's in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness.
Mentorship and Career growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
About the team
The Data Centre Security Manager will be part of a small team managing data centre security and incidents across the region.
Key job responsibilities
You will need to be a UK national and able to obtain and maintain a UK Government Security Clearance. Further details found here: Qualifications
- Commutable to the Central London. Proficiency in use of Microsoft Office with a good working knowledge of Excel, Good analytical skills, Demonstrable knowledge of physical security best practices to include but not limited to application of physical security systems, investigation techniques, management of contract security guards and incident management.
- Strong experience within similar role in the security industry, Track record for being detail-oriented with a demonstrable ability to self-motivate and follow-through on projects, Ability to handle confidential information with care, Able to demonstrate operating at a strategic level
- Experience in working with customers at a senior level, Able to demonstrate ability to identify, own and resolve complex problems, Able to demonstrate the management of multiple work-strands and operate at speed
Preferred Qualifications
- Considerable knowledge of state-of-the-art security technology including access control & CCTV systems. (Experience with the LENEL Access Control & Alarm Monitoring System is a plus).
- Demonstrable expertise in selection, installation, trouble-shooting, and application of access control, intrusion detection, and video surveillance systems.
- Bachelor's degree or equivalent; CPP/PSP Certification
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
This advertiser has chosen not to accept applicants from your region.
9