3,120 Security And Data jobs in the United Kingdom

Cloud Security Analyst – Data Security in a Health/ Finance Regulated Environment | BigQuery

• 2-month short-term contract
• £600–£650 p/d Outside IR35
• Fully Remote

The role

Our client, a global consumer finance platform, is receiving sensitive data from third-party sources, i.e. medical information, credit scores, and other data-driven insights, via APIs .

This data needs to be securely extracted, stored, encrypted, secured, and classified , with appropriate access controls and sensitivity labels applied.

You will be responsible for ensuring the data security , including encryption and key management. The data will primarily be for the US market, so knowledge of HIPAA or HITRUST is fantastic. However, experience with GDPR and ISO 27001 is also ok.

Non-Negotiables

• BigQuery in-depth use
• Data security principles and cloud compliance experience
• Encryption (KMS) , secrets management , and IAM/RBAC experience.

Core Focus Areas

• Data security and encryption across the Cloud, ensuring sensitive third-party data is encrypted, classified, and labelled appropriately.
• Configure IAM roles,
• Role-based access controls (RBAC).
• Segregation of duties to enforce secure, system-level access.
• Symmetric or asymmetric encryption.
• Enforce & maintain regulatory compliance under HIPAA compliance standards (US). Prior HIPAA experience is not required – you can read up on this.
• Support security audits, logging, and monitoring to provide compliance evidence.
• Advise on best practice data handling policies and procedures.
• Background in highly regulated industries, eg. healthcare, or finance.

Why Join

This is a high-impact role where your work will directly influence security design, governance, and trust across the organisation.

You’ll have autonomy, ownership, and the opportunity to set the benchmark for secure cloud data management in a rapidly evolving environment.

Cloud Security Analyst – Data Security in a Health/ Finance Regulated Environment | BigQuery

Complexio’s Foundational AI works to automate business activities by ingesting whole company data – both structured and unstructured – and making sense of it. Using proprietary models and algorithms Complexio forms a deep understanding of how humans are interacting and using it. Automation can then replicate and improve these actions independently.

Complexio is a joint venture between Hafnia and Símbolo, in partnership with Marfin Management, C Transport Maritime, Trans Sea Transport and BW Epic Kosan.

Join a dynamic team at the forefront of revolutionising human-machine interaction through generative AI in collaboration with global partners. We are poised to redefine the essence of human-AI collaboration, unlocking hidden patterns and insights in data that were once considered the exclusive domain of human intellect.

We’re seeking an exceptional person to lead our efforts in implementing a sophisticated privacy-preserving access control framework across our autonomous business process automation platform. You will ensure our system maintains the highest standards of data privacy, security, and regulatory compliance while enabling powerful autonomous capabilities.

Requirements

Strategic Leadership

- Design and implement a comprehensive data privacy and access control architecture that addresses multi-dimensional classification, dynamic permissions, and information barriers

- Tech lead a small dedicated team focused on privacy-preserving access controls and coordinate with cross-functional teams including data ingestion, knowledge mapping, and automation developers

-  Develop and enforce security and privacy standards, policies, and best practices throughout the product development lifecycle

Technical Implementation

- Architect a multi-layered access control model combining Role-Based Access Control (RBAC), Attribute-Based Access Control (ABAC), and purpose-based limitations

- Oversee implementation of fine-grained data classification frameworks using NLP and other technologies

- Design and validate permission propagation mechanisms for graph data models and derived insights

- Establish security boundaries for autonomous AI agents, ensuring proper context isolation and privilege controls

Cross-Team Coordination

- Work closely with engineering teams to integrate privacy controls into the data pipeline, knowledge graph, and AI components

- Collaborate with product management to balance privacy requirements with usability and functionality

- Coordinate with customer success to address client-specific privacy and compliance needs

- Influence and guide development teams to prioritize privacy-by-design principles

Benefits

- 5+ years of experience in information security, data privacy, or access control systems

- Proven track record designing and implementing complex security architectures

- Strong knowledge of modern authorization frameworks, RBAC/ABAC systems, and data classification methodologies

- Experience leading teams and influencing cross-functional stakeholders

- Technical background with understanding of databases, APIs, and enterprise software architecture

Preferred Skills & Experience

- Knowledge of AI/ML systems and the unique privacy challenges they present

- Understanding of data privacy regulations (GDPR, CCPA) and their technical implementation requirements

- Familiarity with LLMs and the privacy implications of their use in enterprise contexts

- Understanding of vector databases and embedding-based systems

- Experience in regulated industries (finance, healthcare, legal) with complex information barrier requirements

-  Background in data lineage and provenance tracking system

-  Experience with graph databases (particularly Neo4j) and their security models

- Security certifications such as CISSP, CIPT, or CIPP/E

About the Role

Our client is seeking an experienced Data Protection Specialist to strengthen their data governance and compliance capabilities. This is a key role within their organisation, focusing on ensuring responsible and compliant handling of personal data across all operations.

This position is not linked to a specific project, but rather encompasses a broad range of critical subject areas, including:

• Conducting and overseeing Data Protection Impact Assessments (DPIAs) for high-risk processing activities.
• Managing third-party vendor data protection risk, from initial due diligence through to ongoing monitoring.
• Overseeing personal data breach incident response, ensuring timely containment, investigation, and reporting.
• Monitoring and maintaining data retention processes, ensuring compliance with legal, regulatory, and business requirements.

This role offers the opportunity to work collaboratively with teams across the business, embedding best practice and promoting a culture of trust, accountability, and continuous improvement in data protection.

Essential Skills and Attributes

• Demonstrable expertise in data protection and privacy compliance (e.g. GDPR or equivalent frameworks).
• Strong understanding of data protection risk assessment and mitigation processes.
• Proven experience in data breach management and incident response coordination.

Desirable Skills and Attributes

• Collaboratively curious — keen to engage with colleagues to find pragmatic, compliant solutions.
• Trustworthy and ethically minded, with a strong sense of responsibility.
• Resilient under pressure and able to adapt to changing priorities.
• Demonstrates integrity and discretion in handling sensitive information.
• Listens actively and builds effective working relationships.
• Adaptable and proactive in staying up to date with evolving data protection requirements.

About the Role

Our client is seeking an experienced Data Protection Specialist to strengthen their data governance and compliance capabilities. This is a key role within their organisation, focusing on ensuring responsible and compliant handling of personal data across all operations.

This position is not linked to a specific project, but rather encompasses a broad range of critical subject areas, including:

• Conducting and overseeing Data Protection Impact Assessments (DPIAs) for high-risk processing activities.
• Managing third-party vendor data protection risk, from initial due diligence through to ongoing monitoring.
• Overseeing personal data breach incident response, ensuring timely containment, investigation, and reporting.
• Monitoring and maintaining data retention processes, ensuring compliance with legal, regulatory, and business requirements.

This role offers the opportunity to work collaboratively with teams across the business, embedding best practice and promoting a culture of trust, accountability, and continuous improvement in data protection.

Essential Skills and Attributes

• Demonstrable expertise in data protection and privacy compliance (e.g. GDPR or equivalent frameworks).
• Strong understanding of data protection risk assessment and mitigation processes.
• Proven experience in data breach management and incident response coordination.

Desirable Skills and Attributes

• Collaboratively curious — keen to engage with colleagues to find pragmatic, compliant solutions.
• Trustworthy and ethically minded, with a strong sense of responsibility.
• Resilient under pressure and able to adapt to changing priorities.
• Demonstrates integrity and discretion in handling sensitive information.
• Listens actively and builds effective working relationships.
• Adaptable and proactive in staying up to date with evolving data protection requirements.

About Us:

Judicium Education exists to keep schools and trusts safe by providing trusted professional services that focus on quality, reliability, and scale. We believe in the power of our people and encourage self-driven innovation. We work with you to drive your career development, providing you with learning opportunities and great specialist support.

We provide market-leading Data Protection Officer services to over 1,700 schools and academies across the United Kingdom, supporting them with everything from conducting data protection audits to drafting data policies and procedures, managing data requests to providing training for employees.

About the Role:

We have an exciting opening for a Data Protection Consultant to join us. Our consultants are true Data Protection experts, with a diverse range of experience and approaches.

We are passionate about Data Protection and are seeking a like-minded professional who values excellent service as much as we do.

Day-to-day, you will be:

• Conducting data compliance audits for clients, analysing findings and presenting the results in detailed audit reports with recommendations and follow-up actions.

• Reviewing policies and procedures to assess data protection compliance and providing practical recommendations for improvement.

• Responding to client queries by phone or email, offering clear, practical advice and guidance, conducting research, setting out options and managing any follow-up.

• Drafting and reviewing Data Protection Impact Assessments.

• Maintaining regular contact with clients to monitor progress towards compliance.

• Delivering training sessions to clients, ensuring staff understand and can fulfil their responsibilities.

• Assisting clients to handle data requests and data breaches in accordance with legal and regulatory requirements.

• A proactive member of the data protection team, contributing to department meetings, presenting areas for discussion and development ideas.

About You:

• You will possess prior Data Protection experience and strong subject matter knowledge.

• You will be an excellent communicator with the ability to build trusted relationships and deliver a robust and tailored service to clients.

• You will be able to work autonomously, with proven experience of data protection compliance.

• You will be comfortable reviewing and drafting policies and procedures with excellent analytical, research and report writing skills.

• You will have high-level problem-solving skills, with the capability to produce high quality, professional content.

• Ideally, you will have experience delivering client training sessions both virtually and in person.

• Experience in Education, Legal, Regulatory or Consultancy sectors would be desirable.

Our Benefits:

As an equal opportunities' employer, we celebrate diversity and flexibility, and we are committed to creating an inclusive environment for our incredible team. We offer:

• Generous annual leave allowance of 36 days (28+8 bank holidays) +1 for every year of service (up to a maximum of 5 days)

• Hybrid or remote working across the country

• Learning & Development

• Flexible benefits package including Healthcare Scheme and ability to purchase Annual Leave.

• Please click on the APPLY button to send your CV for this role.

WHO THEY ARE AND WHAT THEY’RE LOOKING FOR //

A leading professional sports organisation is seeking a Data Protection Officer to advise on and shape its privacy and data protection strategy across all areas of the business.

This organisation is renowned for its ambition both on and off the pitch, with a passionate fan base, world-class facilities, and a strong commercial footprint. As data becomes an increasingly vital asset, the organisation is looking for an experienced specialist who can ensure it’s managed responsibly, securely, and in compliance with evolving legislation.

They’re looking for a commercially minded data protection expert who can balance legal compliance with strategic business goals.

WHAT YOU’LL BE DOING //

• Implementing and maintaining a robust privacy governance framework aligned with UK GDPR and international legislation.
• Advising on data mapping, vendor reviews, and processing activities.
• Monitoring regulatory developments and providing solution-focused guidance.
• Developing and delivering training programs to embed privacy best practice across the organisation.
• Supporting commercial and digital innovation projects with privacy expertise.
• Overseeing breach investigations, DSARs, and engagement with regulators.
• Reporting regularly to senior leadership and ensuring operational compliance across departments.

THE SKILLS & EXPERIENCE YOU NEED //

• Extensive experience in data protection, legal, or compliance roles.
• Strong knowledge of UK and European data privacy regulation.
• Commercial acumen with the ability to balance compliance and business strategy.
• Excellent communication skills and stakeholder engagement at all levels.
• Relevant certifications (e.g. CIPP/E, CIPT, CIPM, ISEB) advantageous.
• Detail-oriented and proactive in driving change in fast-paced environments.