91 Security Manager jobs in London

• Develop, implement, and manage information security policies, procedures, and standards.
• Oversee compliance with relevant regulations such as GDPR, ISO 27001, SOC 2, and other industry-specific mandates.
• Conduct regular security risk assessments and vulnerability management activities.
• Manage internal and external security audits, ensuring timely remediation of findings.
• Develop and maintain the organization's business continuity and disaster recovery plans.
• Oversee the security awareness training program for all employees.
• Manage third-party risk by assessing the security posture of vendors and partners.
• Liaise with legal, compliance, and internal audit teams to ensure integrated security governance.
• Lead incident response planning and coordination efforts.
• Stay informed about evolving security threats and regulatory landscapes.
• Provide expert advice on security best practices and risk mitigation strategies to senior management and business units.
• Manage and develop a team of security professionals focused on governance and compliance.

• Bachelor's degree in Information Security, Computer Science, or a related field. Master's degree or advanced certifications are a plus.
• Minimum of 7 years of progressive experience in information security, with a strong focus on governance, risk, and compliance (GRC).
• Proven experience in implementing and managing security frameworks like ISO 27001, NIST CSF, or similar.
• In-depth knowledge of data privacy regulations (e.g., GDPR).
• Experience with security audit processes and vulnerability management tools.
• Strong understanding of risk assessment methodologies and business continuity planning.
• Excellent leadership, communication, and stakeholder management skills.
• Ability to work effectively in a hybrid work environment, balancing remote work with essential office presence.
• Relevant certifications such as CISSP, CISM, CISA, or CRISC are highly desirable.
• Ability to translate complex technical security concepts into business terms.

King's College London

Deputy Security Manager

£44,355 - £51,735 per annum (plus excellent benefits)

Core hours: 1pm - 9pm (Monday to Friday)

Ensuring the delivery of world-class customer centric services which offer value for money and continuously enhance the student experience and their wellbeing both on campuses and within residencies.

King's College London is one of the top 10 UK universities in the world (2020 QS World University Rankings) and among the oldest in England. Since its foundation in 1829 King’s has defined itself in terms of its service to society, and it now has some 40,000 students and more than 10,000 staff members. King’s Strategic Vision 2029, a strategy which will take the university to its 200th birthday, has pledged that its staff and students will continue to help make the world a better place.

Reporting to the Security Manager, the Deputy Security Manager will manage and assist in the security delivery across several campuses (including the Waterloo Campus), associated residences, and other areas of the campus, and will be the point of contact for all Security Supervisors. Being this key point of contact and escalation contact, the Deputy Security Manager will assist (with the Security Manager) and lead on the security response and effective team management of the Waterloo Campus security team.

The postholder will be responsible for ensuring the highest standards of conduct and customer-centric skills are displayed by all security staff. This will be achieved through effective line management and leadership, offering support and guidance to the wider security team. The Deputy Security Manager is expected to maintain a visible presence on site, addressing issues as they arise and providing expert advice and direction to ensure exceptional service delivery.

The successful candidate will have an outstanding background within the security industry, including working in demanding, high-footfall, and multi-site environments. You will bring your proven knowledge of incident and critical security management to this role, as well as your customer central approach and outstanding team leadership experience. This role would suit individuals with a track record in and are passionate about creating a culture of exceptional delivery. Strong communication skills will be essential as the role includes extensive partnerships with internal and external stakeholders. Experience or exposure of working with Unions is highly advantageous, as well as a sound knowledge or experience in dealing with a wide range of HR matters.

Please note, the core hours for this position are 1pm - 9pm (Monday to Friday)

The competitive benefits package includes 27 days annual leave + 4 closure days (over Christmas) + bank holidays. The USS pension scheme has generous employer contributions. Details of the benefits of working at KCL can be found at

For a confidential discussion please contact our advisor Rob Cullum of The Management Recruitment Group at The Management Recruitment Group has been exclusively retained for this campaign. All direct and third-party applications will be forwarded to them.

Applications should consist of a up-to-date CV and supporting statement outlining your suitability and motivations for applying for this position.

The further particulars can be viewed by clicking here .

Information Security Manager - Rail Sector, URGENT HIRE

Lawrence Harvey is delighted to be exclusively supporting a leading rail client once again to support with the growth of their exceptional technology team for their Information Security Manager.

The Role:

• Leading management of information security which includes ISO27001, PCI-DSS, and vulnerability management.
• Working alongside the DPO and Head of Technology to support on areas of data protection.
• Lead collaboration with key partners for train onboard systems cyber security assessments and risk management
• Establish and maintain appropriate policies, procedures, and practices in relations to cyber, data and governance practices
• Manage the information security incident response program
• Manage implementation and deployment of Information Security Management System (ISMS).
• Line management of the internal InfoSec specialists.

Requirements

• Extensive experience working with PCI-DSS and ISO27001
• Strong understanding on security tools such as IDS/IPS.
• Demonstrable experience of leading Information Security, Governance, Compliance teams.
• Ideally a form of cybersecurity qualification such as CISM or CISSP

Benefits:

• Salary between £55,000 - £70,000
• Hybrid working 3 days on site, 2 days at home.
• Working in Euston or Birmingham office.
• & more.

Sponsorship is not available for this position and the successful candidate will be subject to toxicology screening as standard for the rail industry.

We are looking for this hire ASAP so those will short (1 month or less) notice periods are encouraged to apply.

King's College London

Deputy Security Manager

£44,355 - £51,735 per annum (plus excellent benefits)

Core hours: 1pm - 9pm (Monday to Friday)

Ensuring the delivery of world-class customer centric services which offer value for money and continuously enhance the student experience and their wellbeing both on campuses and within residencies.

King's College London is one of the top 10 UK universities in the world (2020 QS World University Rankings) and among the oldest in England. Since its foundation in 1829 King’s has defined itself in terms of its service to society, and it now has some 40,000 students and more than 10,000 staff members. King’s Strategic Vision 2029, a strategy which will take the university to its 200th birthday, has pledged that its staff and students will continue to help make the world a better place.

Reporting to the Security Manager, the Deputy Security Manager will manage and assist in the security delivery across several campuses (including the Waterloo Campus), associated residences, and other areas of the campus, and will be the point of contact for all Security Supervisors. Being this key point of contact and escalation contact, the Deputy Security Manager will assist (with the Security Manager) and lead on the security response and effective team management of the Waterloo Campus security team.

The postholder will be responsible for ensuring the highest standards of conduct and customer-centric skills are displayed by all security staff. This will be achieved through effective line management and leadership, offering support and guidance to the wider security team. The Deputy Security Manager is expected to maintain a visible presence on site, addressing issues as they arise and providing expert advice and direction to ensure exceptional service delivery.

The successful candidate will have an outstanding background within the security industry, including working in demanding, high-footfall, and multi-site environments. You will bring your proven knowledge of incident and critical security management to this role, as well as your customer central approach and outstanding team leadership experience. This role would suit individuals with a track record in and are passionate about creating a culture of exceptional delivery. Strong communication skills will be essential as the role includes extensive partnerships with internal and external stakeholders. Experience or exposure of working with Unions is highly advantageous, as well as a sound knowledge or experience in dealing with a wide range of HR matters.

Please note, the core hours for this position are 1pm - 9pm (Monday to Friday)

The competitive benefits package includes 27 days annual leave + 4 closure days (over Christmas) + bank holidays. The USS pension scheme has generous employer contributions. Details of the benefits of working at KCL can be found at

For a confidential discussion please contact our advisor Rob Cullum of The Management Recruitment Group at The Management Recruitment Group has been exclusively retained for this campaign. All direct and third-party applications will be forwarded to them.

Applications should consist of a up-to-date CV and supporting statement outlining your suitability and motivations for applying for this position.

The further particulars can be viewed by clicking here.

We are Two Circles. We are a Sports & Entertainment Marketing business. We grow audiences and revenues. We do that by knowing fans best. We work with clients to help them understand & influence what their fans are doing – the way fans spend their money, the events that fans attend, the channels fans respond to, the content fans watch and more. And we use the understanding this gives us to help our clients grow. Grow their audiences and grow their revenues - both direct to consumer and business to business revenues. Our platforms and services are trusted by over 1000 clients globally, including the English Premier League, Red Bull, UEFA, VISA, the NFL, Nike and Amazon. We are over 1000 people, based out of 15 offices, and we deliver work for sports and entertainment businesses of all shapes and sizes all over the world.

As Cyber Security Manager at Two Circles, you play a key role in keeping our systems, people and data safe from external and internal threats by focusing on incident detection, response and remediation; threat hunting; security monitoring; continual improvement and providing technical assurance for solution design and changes. 

This will include maintaining and improving our security posture in tandem with GRC practices and policies as they evolve to align with current and future standards and frameworks, such as SOC 2, ISO 27001, as well as applicable legislation, including GDPR and UK DPA, working closely with our Legal and Privacy as well as the wider Technology team. 

Internally-facing, you will lead day to day cyber security operations and project based work.  You will help train and upskill your fellow Two Circlers on topics such security awareness, OWASP Top 10 and Security by Design, as well as understanding and feeding into their processes and workflows, to keep good security practice on the agenda. 

Externally, this role will also engage with our fascinating clients as appropriate to support their security assurance needs, as well as our technology partners and suppliers to ensure their alignment with our security approach and requirements. 

Internally, you will be responsible for our Security Operations activities with our operational team and external partners, including Incident Response and Threat Intelligence, to ensure these are executed consistently to our standards, as well as supporting Continual Security Improvement and being the Tech Ops representative in the GRC working group. 

As a fast growing organisation, with multiple offices across the globe, we are on a journey to standardize our security tools and infrastructure across the group, and this role will play a key part in aligning on best practice, and delivering improvements in our security posture. 

We are looking for a team player, who can work with our technology leaders to develop and implement cybersecurity policy, process and technology.  This person will have hands on knowledge of working in a cyber security team, in both a operational and ideally project delivery role, and is looking for their next step. 

Key Responsibilities Include: 

• Assuring day-to-day execution of operational security tasks across multiple areas including threat and vulnerability management, anti-virus management, security monitoring etc. 

• Helping design and deliver improved security tooling across all areas of cyber security (DR design and testing, End user tooling, SIEM tooling and event ingestion etc.) 

• Supporting the Technology team to keep information security infrastructure up to date with emerging threats and vulnerabilities, including advising on architecture and design of internal and client-facing solutions  

• Operationalising and ensuring delivery of security policy, standards and procedures 

• Providing technical expertise towards compliance initiatives and programmes e.g. ISO 27001, Cyber Essentials Plus, GDPR 

• Technical aspects of vendor and partner security reviews 

• Increasing the levels of understanding of Information Security with end users, leading to improved user interactions and overall experience with our team 

• Thinking of and implementing new ways to automate and improve security across the business 

• Protecting the data entrusted to us by our clients at all times 

Requirements

• Managing technical risks and proposing solutions and recommendations 

• Security Operations procedures, i.e. Incident management and response 

• Configuring, optimising and reporting with Microsoft 365 Security and Compliance modules, including Defender, Security Centre, Protection, Compliance Centre 

• Experience of both cyber operational roles, but experience of having delivered security change projects/programmes 

• Experience with GDPR/UK Data Protection, Cyber Essentials and ISO 27001 frameworks 

• Azure security tooling including Security Centre, Defender, Sentinel, Intune, AWS Security Hub, GuardDuty, Inspector, WAF, Security Lake, CloudTrail 

• Able to understand and effectively communicate technical concepts in discussions with both technical and non-technical colleagues 

• Broad knowledge around network technologies (especially cloud) and technical security  

• Configuring and maintaining endpoint security technologies (AV, firewall, encryption, email protection, web filtering)  

• Awareness of architectural principles for technical solution design, e.g. Zero Trust, least privilege RBAC, Security by Design, PAM, Segregation of Duties 

• Data Protection and DLP 

Experience with the following would also be beneficial: 

• NIST, SOC2 and additional compliance and regulatory frameworks 

• Project Management and technical delivery 

• Experience of, or a keen interest in, the business of sport 

Benefits

We offer a benefits package to suit you and your lifestyle! Out of a core monthly budget, you can choose your own comprehensive benefit package  

• Renowned Team Days often throughout the year   

• Summer Away Days   

• 23 standard days of holiday (+1 Birthday, +1 for a ‘Big Life Event’, +1 Well-being Day, and +1 Admin Day), closure of office over Christmas (plus Bank Holidays)  

• Discretionary Bonus based on company performance   

• Performance Reviews every 6 months with discretionary salary increases   

• Private healthcare (Vitality) and/or Health Care Plan (Medicash) 

• Mobile phone contribution   

• Sport Challenge contribution  

• Gym membership contribution  

• 2x annual kit drops   

Take Command of Cybersecurity as Our IT Security Manager

Step into a high impact leadership role where your expertise shapes security across 80 sites in 20 countries throughout EMEA.
This isn’t just another cybersecurity position, it’s your chance to steer and enhance a resilient defense protecting our global digital ecosystem from ever evolving threats.

You’ll own and evolve our Information Security Management System (ISMS) , drive ISO 27001 compliance , and lead a dynamic, high performing security team , including outsourced SOC, MDR, and DFIR partners, all focused on safeguarding our operations and enabling business resilience.

Your Mission

• Lead, mentor, and inspire the IT Security team, transforming complex challenges into clear, actionable solutions.

• Elevate our ISMS, policies, and security framework , ensuring we stay ahead of emerging threats and regulations.
• Own compliance with ISO 27001, ISAE 3402 Type II, and NIS2 and make it business friendly, not bureaucratic.
• Deliver impactful, data-driven security insights to executive leadership and board stakeholders.
• Collaborate cross functionally with auditors, vendors, and regional leaders to strengthen our security posture.
• Run proactive vulnerability management including penetration testing and risk assessments before attackers do.
• Lead decisive, fast, and calm incident responses to keep our networks and data secure.
• Oversee identity and access management , ensuring end-to-end protection of critical information assets.
• Own business continuity and disaster recovery strategies that don’t just exist on paper, they work.
• Drive engaging security awareness programs that change behaviour and build a security first culture.

Requirements

What You Bring

• Bachelor’s in Computer Science, Information Security , or related field.
• Recognized certifications such as CISM, CISSP , or equivalent.
• 7+ years of experience in IT security, including 3+ years in leadership roles.
• Deep technical knowledge across XDR, MDR, EDR, SIEM, NAC, IDS/IPS, SASE , and related tools.
• Proven expertise in incident response, threat management, and risk governance.

Your Edge

• Transformative leadership that inspires trust and drives results.
• Mastery of ISMS design, execution, and continuous improvement.
• Sharp analytical mind with creative problem-solving instincts.
• Confident communicator who makes complex security topics simple.
• Cool-headed under pressure with exceptional prioritization skills.
• Relentlessly detail-oriented with unwavering integrity.

Benefits

Why This Role?

Global reach. Complex systems. Meaningful impact.
This is a rare opportunity to lead security at scale   across countries, cultures, and cutting-edge technologies. You’ll have the freedom mandate to lead, the authority support to innovate, and the platform to make a difference. The company will provide you with a competitive remuneration package and a pathway to progress in your professional development. 

Step up. Secure the future. Apply now.

As Cyber Security Manager at Two Circles, you play a key role in keeping our systems, people and data safe from external and internal threats by focusing on incident detection, response and remediation; threat hunting; security monitoring; continual improvement and providing technical assurance for solution design and changes. 

This will include maintaining and improving our security posture in tandem with GRC practices and policies as they evolve to align with current and future standards and frameworks, such as SOC 2, ISO 27001, as well as applicable legislation, including GDPR and UK DPA, working closely with our Legal and Privacy as well as the wider Technology team. 

Internally-facing, you will lead day to day cyber security operations and project based work.  You will help train and upskill your fellow Two Circlers on topics such security awareness, OWASP Top 10 and Security by Design, as well as understanding and feeding into their processes and workflows, to keep good security practice on the agenda. 

Externally, this role will also engage with our fascinating clients as appropriate to support their security assurance needs, as well as our technology partners and suppliers to ensure their alignment with our security approach and requirements. 

Internally, you will be responsible for our Security Operations activities with our operational team and external partners, including Incident Response and Threat Intelligence, to ensure these are executed consistently to our standards, as well as supporting Continual Security Improvement and being the Tech Ops representative in the GRC working group. 

As a fast growing organisation, with multiple offices across the globe, we are on a journey to standardize our security tools and infrastructure across the group, and this role will play a key part in aligning on best practice, and delivering improvements in our security posture. 

We are looking for a team player, who can work with our technology leaders to develop and implement cybersecurity policy, process and technology.  This person will have hands on knowledge of working in a cyber security team, in both a operational and ideally project delivery role, and is looking for their next step. 

Key Responsibilities Include: 

• Assuring day-to-day execution of operational security tasks across multiple areas including threat and vulnerability management, anti-virus management, security monitoring etc. 

• Helping design and deliver improved security tooling across all areas of cyber security (DR design and testing, End user tooling, SIEM tooling and event ingestion etc.) 

• Supporting the Technology team to keep information security infrastructure up to date with emerging threats and vulnerabilities, including advising on architecture and design of internal and client-facing solutions  

• Operationalising and ensuring delivery of security policy, standards and procedures 

• Providing technical expertise towards compliance initiatives and programmes e.g. ISO 27001, Cyber Essentials Plus, GDPR 

• Technical aspects of vendor and partner security reviews 

• Increasing the levels of understanding of Information Security with end users, leading to improved user interactions and overall experience with our team 

• Thinking of and implementing new ways to automate and improve security across the business 

• Protecting the data entrusted to us by our clients at all times 

Requirements

• Managing technical risks and proposing solutions and recommendations 

• Security Operations procedures, i.e. Incident management and response 

• Configuring, optimising and reporting with Microsoft 365 Security and Compliance modules, including Defender, Security Centre, Protection, Compliance Centre 

• Experience of both cyber operational roles, but experience of having delivered security change projects/programmes 

• Experience with GDPR/UK Data Protection, Cyber Essentials and ISO 27001 frameworks 

• Azure security tooling including Security Centre, Defender, Sentinel, Intune, AWS Security Hub, GuardDuty, Inspector, WAF, Security Lake, CloudTrail 

• Able to understand and effectively communicate technical concepts in discussions with both technical and non-technical colleagues 

• Broad knowledge around network technologies (especially cloud) and technical security  

• Configuring and maintaining endpoint security technologies (AV, firewall, encryption, email protection, web filtering)  

• Awareness of architectural principles for technical solution design, e.g. Zero Trust, least privilege RBAC, Security by Design, PAM, Segregation of Duties 

• Data Protection and DLP 

Experience with the following would also be beneficial: 

• NIST, SOC2 and additional compliance and regulatory frameworks 

• Project Management and technical delivery 

• Experience of, or a keen interest in, the business of sport 

Benefits

We offer a benefits package to suit you and your lifestyle! Out of a core monthly budget, you can choose your own comprehensive benefit package  

• Renowned Team Days often throughout the year   

• Summer Away Days   

• 23 standard days of holiday (+1 Birthday, +1 for a ‘Big Life Event’, +1 Well-being Day, and +1 Admin Day), closure of office over Christmas (plus Bank Holidays)  

• Discretionary Bonus based on company performance   

• Performance Reviews every 6 months with discretionary salary increases   

• Private healthcare (Vitality) and/or Health Care Plan (Medicash) 

• Mobile phone contribution   

• Sport Challenge contribution  

• Gym membership contribution  

• 2x annual kit drops   

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company

• £70–80k base + 10% bonus
• Hybrid in London

Join a growing InfoSec team at a pivotal time for a global financial institution. This is an IT Security Manager role with governance oversight, guiding InfoSec operations, mentoring analysts, and translating security frameworks into practical, actionable steps. You’ll influence policy, architecture, and data governance, all while supporting the secure rollout of new banking operations.

What you’ll bring:

• 5+ years’ experience in InfoSec, IT Security, or operational security in a regulated environment
• Certifications: CISSP or SSCP (or equivalent) required
• Hands-on knowledge of ISO27001 and supporting an ISMS (audit experience useful but not central)
• Familiarity with security tools: Azure security, cloud IAM, Defender, web proxy, endpoint detection (CrowdStrike or equivalents)
• Understanding of zero trust networks, SSO, and network segregation principles
• Strong communicator: able to advise IT teams on practical security steps, not just theory
• Experience mentoring staff or junior analysts (no direct line management required)
• Adaptability to a medium-sized, SME environment

What you’ll be doing:

• Security oversight: Guide InfoSec operations with practical, hands-on input on incidents and risk mitigation
• Data governance: Drive data protection, labelling, and retention projects using Microsoft Purview
• Third-party risk: Support supplier security assessments and guide analysts’ work (tools like Panorays)
• Cloud & architecture: Advise on Azure security, shared responsibility models, and zero trust principles
• ISO27001 support: Maintain ISMS controls and governance, assist with policy implementation
• Mentoring & guidance: Support analysts with technical and governance expertise, acting as deputy for Head of InfoSec when needed
• Project involvement: Key InfoSec input for new market expansion and business initiatives

Tech & tools you’ll use:

• Microsoft Purview – Data governance and compliance
• Azure (and AWS) – IAM, monitoring, encryption
• Defender, web proxy, CrowdStrike-equivalent – Endpoint & email protection
• Panorays – Third-party risk
• Protecht – Enterprise risk & audit management
• Rapid7 / Armis – Vulnerability management and threat detection

Why this role?

• Hands-on, high-impact role in a dynamic SME environment
• Influence across security operations, governance, and data management
• Work alongside experienced InfoSec leadership in a culture that values mentoring, collaboration, and ethical practice

IT Security Manager | Zero Trust, Azure Security, ISO27001 | Global Payments Company

• Develop, implement, and manage all aspects of the company's aviation security program in compliance with national and international regulations (e.g., DfT, TSA, ICAO).
• Conduct regular risk assessments and threat analyses to identify vulnerabilities and implement appropriate mitigation strategies.
• Oversee the screening of passengers, baggage, cargo, and personnel to prevent unauthorized access and prohibited items.
• Manage and direct security operations, including access control, surveillance, and response protocols.
• Develop and deliver effective security training programs for all relevant staff and contractors.
• Lead, mentor, and manage a team of aviation security supervisors and officers, ensuring high performance and professional development.
• Liaise with external agencies, including law enforcement, regulatory bodies, and other aviation stakeholders, to ensure coordinated security efforts.
• Investigate security incidents, breaches, and suspicious activities, preparing detailed reports and recommending corrective actions.
• Stay abreast of emerging security threats, technologies, and best practices in the aviation sector.
• Manage the aviation security budget and ensure efficient allocation of resources.

• Bachelor's degree in Security Management, Criminal Justice, Aviation Management, or a related field. Relevant postgraduate qualifications are advantageous.
• Minimum of 8 years of progressive experience in aviation security management, with a significant portion in a senior role.
• In-depth knowledge of aviation security legislation, standards, and operational procedures.
• Proven experience in risk assessment, threat analysis, and emergency response planning.
• Strong leadership and team management skills, with the ability to motivate and develop security personnel.
• Excellent communication, interpersonal, and negotiation skills.
• Experience in managing security technology systems, such as CCTV, access control, and screening equipment.
• Ability to make sound decisions under pressure and manage complex situations effectively.
• Relevant certifications in aviation security (e.g., ASIS, IACIS) are highly desirable.
• Must be able to obtain and maintain necessary security clearances.