308 Security Expert jobs in London

Maybridge Associates are proud to be partnering with an award-winning Consultancy that is entering a significant growth phase following a series of new client wins. To support this expansion, they are hiring across all levels—offering a fantastic opportunity to join a dynamic, high-impact team operating within the Defence and National Security sector.

The firm delivers strategic advisory and transformation projects across a range of critical areas, including:

• Strategy
• Complex Transformation
• Operating Model Design
• Digital Transformation
• Business Analysis
• Product Development
• Solutions & Data Architecture
• Real Estate Advisory

You’ll be joining a close-knit, high calibre team working directly with clients on intellectually challenging assignments that have real-world significance. Their work spans key sectors such as Defence, Government, Intelligence, and National Security , often operating at the cutting edge of transformation and innovation.

Candidate Requirements:

To be considered, you should have:

• 4–12 years of experience in a relevant management consulting environment
• Current and active UK Security Vetting at DV (Developed Vetting) level or higher

This is an ideal role for someone who feels limited in a larger firm and is looking to make a greater personal impact in a smaller, fast-growing organisation—while continuing to work on meaningful and mission-critical projects.

If you're interested in learning more, please send your CV to .

• Monitor security alerts and events from various sources, including SIEM, IDS/IPS, and endpoint protection platforms.
• Investigate and respond to security incidents in a timely and effective manner, including root cause analysis and remediation.
• Conduct regular vulnerability assessments and penetration tests to identify security weaknesses.
• Develop and maintain security documentation, including policies, standards, and guidelines.
• Collaborate with IT and development teams to integrate security best practices into the software development lifecycle.
• Stay abreast of the latest security threats, trends, and technologies.
• Provide security awareness training to employees.
• Contribute to the continuous improvement of the information security program.
• Participate in security audits and compliance reviews.
• Evaluate and recommend new security technologies and solutions.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent practical experience).
• Proven experience (5+ years) in information security, with a focus on threat detection and incident response.
• Strong understanding of security frameworks such as ISO 27001, NIST, and GDPR.
• Experience with SIEM tools (e.g., Splunk, QRadar), EDR solutions, and network security technologies.
• Excellent analytical and problem-solving skills.
• Strong communication and interpersonal skills, with the ability to explain complex technical concepts to non-technical stakeholders.
• Relevant security certifications such as CISSP, CISM, or GIAC are highly desirable.

• Conduct comprehensive security risk assessments and vulnerability analyses.
• Develop and implement security policies, standards, and procedures.
• Manage and monitor security information and event management (SIEM) systems.
• Respond to and investigate security incidents, providing detailed post-incident reports.
• Collaborate with IT teams to ensure security is integrated into system design and deployment.
• Oversee the implementation of security awareness training programs for employees.
• Stay abreast of the latest security threats, trends, and technologies.
• Manage third-party security risks and ensure vendor compliance.
• Contribute to the development and execution of disaster recovery and business continuity plans.
• Mentor junior security analysts and provide technical guidance.

• Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. A Master's degree is a plus.
• Minimum of 5 years of experience in information security, with a proven track record in risk management and incident response.
• In-depth knowledge of security frameworks (e.g., NIST, ISO 27001).
• Proficiency in SIEM tools, intrusion detection/prevention systems, and firewalls.
• Strong understanding of network security, cryptography, and cloud security.
• Excellent analytical and problem-solving skills.
• Ability to communicate complex security concepts to both technical and non-technical audiences.
• Relevant security certifications such as CISSP, CISM, or CEH are highly desirable.

• Monitor security alerts and logs from various security tools (SIEM, IDS/IPS, EDR) to identify and investigate potential security incidents.
• Lead and coordinate incident response activities, including containment, eradication, and recovery.
• Perform in-depth forensic analysis of security breaches and develop remediation strategies.
• Develop, implement, and maintain security policies, procedures, and best practices.
• Conduct regular vulnerability assessments and penetration testing.
• Manage and configure security tools and technologies.
• Provide expert guidance on security best practices to IT teams and stakeholders.
• Develop and deliver security awareness training programs.
• Stay current with emerging threats, vulnerabilities, and security technologies.
• Participate in security architecture reviews and provide recommendations.
• Assist in the development and execution of disaster recovery and business continuity plans.
• Create detailed reports on security incidents, findings, and recommendations.

• Bachelor's degree in Computer Science, Cybersecurity, or a related field, or equivalent practical experience.
• Minimum of 6 years of experience in information security, with a focus on threat analysis and incident response.
• Strong understanding of networking protocols, operating systems (Windows, Linux), and common attack vectors.
• Hands-on experience with SIEM platforms (e.g., Splunk, QRadar), EDR solutions, and other security tools.
• Proficiency in security forensics and malware analysis techniques.
• Relevant certifications such as CISSP, CISM, CEH, or GIAC are highly desirable.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong written and verbal communication skills, with the ability to articulate technical issues to both technical and non-technical audiences.
• Ability to work independently and manage complex investigations under pressure in a remote setting.
• Experience with cloud security (AWS, Azure, GCP) is a plus.

• Providing technical security consultancy and managing risk assessments, including third-party and cybersecurity risks.
• Identifying and assessing AI risks and devising remediation programmes.
• Working on key Information and Cybersecurity remediation projects such as Data Leakage Prevention (DLP) and Supplier Assurance Security Reviews.
• Assess and advise on technical risk mitigation measures, review identified risks, analyse security incidents and communicate risk mitigation actions, plans and activities to management and peers for strategic decision-making.
• Ensuring regulatory compliance and supporting internal/external reviews.
• Work closely with the IT Department on technical aspects of information security in the Bank.

• Conduct Information Security and Cybersecurity assessments and technical risk evaluations.
• Design remediation projects, in particular around Data Leakage, Supplier Security Assurance and AI.
• Liaise with IT and MSSP teams to identify and remediate security risks/incidents.
• Draft reports, risk register updates, and maintain documentation aligned with best practice (ISO 27001, NIST CSF).
• Track and advise on industry security trends and their implications.
• Contribute to social engineering assessments, BAU risk mitigation, and business process evaluations.
• Influence and support change by aligning policy updates with new regulations and business needs.

• A Bachelor's or Master's degree (preferably in IT, Security, or Risk).
• At least one recognised IS qualification (CISM, CISA, CISSM, ISO 27001 Lead Auditor/Implementer, CIPP/E).
• Proven experience in delivering project and supplier assurance activities in the IS domain.
• Strong written and verbal communication skills, especially the ability to translate technical details into business-friendly language.
• Effective project management and stakeholder engagement abilities.
• Ability to work independently, manage multiple priorities, and maintain high attention to detail.
• A collaborative mindset with strong influencing and problem-solving capabilities.

• Varied, stimulating and engaging work that gives you an opportunity to interact with a wide range of experts in the financial, political, public and private sectors across the regions we invest in;
• A working culture that embraces inclusion and celebrates diversity;
• An environment that places sustainability, equality and digital transformation at the heart of what we do.

• Develop, implement, and maintain security policies, standards, and procedures for cloud environments.
• Monitor cloud infrastructure for security vulnerabilities, threats, and incidents using SIEM, IDS/IPS, and other security tools.
• Conduct regular security assessments, penetration testing, and vulnerability scans of cloud applications and infrastructure.
• Respond to and manage security incidents, including investigation, containment, eradication, and recovery.
• Implement and manage identity and access management (IAM) solutions in cloud environments.
• Ensure compliance with relevant security regulations and standards (e.g., ISO 27001, SOC 2, GDPR).
• Collaborate with development and operations teams to embed security into the DevOps lifecycle (DevSecOps).
• Stay informed about the latest cloud security threats, vulnerabilities, and best practices.
• Develop and deliver security awareness training to employees.
• Automate security tasks and processes where possible to improve efficiency.
• Lead security architecture reviews for new cloud deployments and services.
• Contribute to the development of disaster recovery and business continuity plans.

• Bachelor's degree in Computer Science, Information Security, or a related field, or equivalent practical experience.
• 5+ years of experience in information security, with a significant focus on cloud security (AWS, Azure, or GCP).
• In-depth knowledge of cloud security principles, best practices, and common vulnerabilities.
• Hands-on experience with security tools such as SIEM, vulnerability scanners, firewalls, and IDS/IPS.
• Proficiency in scripting languages (e.g., Python, Bash) for automation is highly desirable.
• Strong understanding of network security, cryptography, and authentication protocols.
• Experience with incident response and forensics.
• Relevant security certifications (e.g., CISSP, CCSP, AWS Certified Security – Specialty) are a plus.
• Excellent analytical and problem-solving skills.
• Strong communication skills, capable of explaining complex security concepts to both technical and non-technical audiences in a remote setting.