2,224 Security Policy Development jobs in the United Kingdom

Lead_Analyst Information Security Governance Risk Compliance

PSI Services

Posted 13 days ago

Job Viewed

Tap Again To Close

Job Description

**Description**
**Title:** Lead Analyst, Information, Security, Governance, Risk and Compliance
**Location:** Remote-UK
**Salary:** £60,000 / annually
**About PSI**
We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers.
We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent.
At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That's why you'll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle.
Learn more about what we do at: the Role**
The Lead Analyst, Information Security - GRC plays a key role in supporting PSI's commitment to data security, privacy, and compliance. This role is responsible for driving core activities across quality, risk management, Information Security, data protection, and audit readiness to ensure the organization meets ISO, PCI, SOC 2, and other relevant standards. The position helps deliver assurance to stakeholders that PSI prioritizes the security and privacy of its data and systems.
This is a full-time, permanent role, Monday to Friday, with flexible working hours around a standard 09:00 - 17:30 schedule. The role reports to the Snr Director of Information Security, Governance, Risk and Compliance and may be performed remotely, with occasional travel to offices and test centres as required for audits and assessments.
**Role Responsibilities**
+ Act as the primary point of contact for implementing and maintaining the security GRC framework.
+ Collaborate with internal teams to support an integrated end-to-end GRC approach across the organization.
+ Collaborate with internal teams to ensure documentation of security control in the form of system architecture diagrams, data flow diagrams and Information System Continuity Plans are in place.
+ Maintain and update security policies, standards, procedures, and guidelines, ensuring they align with current business and IT practices.
+ Monitor and assess the effectiveness of security controls across business systems and processes.
+ Ensure alignment with client, regulatory, and internal compliance requirements.
+ Support the automation and continual improvement of GRC processes and tools.
+ Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership.
+ Support and coordinate internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses.
+ Assist in third-party and entity-level risk assessments, identifying and mitigating risks through effective controls.
+ Build and maintain cross-functional relationships with teams such as Legal, IT, Audit, Finance, and Business Operations to ensure GRC practices support overall business objectives.
+ Support ongoing compliance initiatives, including security incident reviews, risk memos, and policy exceptions.
+ Deliver training and awareness programs related to information security, policies, and best practices.
+ Participate in the development of operational reports, metrics dashboards, and trend analysis related to security and compliance activities.
+ Prepare and support audit plans and compliance documentation for internal or external stakeholders.
+ Conduct vetting for access to sensitive systems and data, including continuous monitoring and clearance reviews.
**Knowledge, Skills and Experience Requirements**
+ Experience working within, achieving and/or maintaining ISO standards such as ISO 27001, 9001, 14001 and 2000 (essential).
+ Experience in implementing and maintaining externally awarded certifications such as ISO27001 is essential.
+ Proficient with MS Office
+ Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS/IPS, AV software) strongly recommended
+ Extensive training and experience in computer disciplines such as application and data security, systems programming, systems design, computer technology or software disciplines
+ Familiarity with OneTrust or ServiceNow GRC and Privacy tools desired
+ Certified training in security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, or related certification(s) desirable.
+ Experience in a fast-paced GRC/ISO function (desirable).
**Benefits & Culture**
At PSI, our culture is to be transparent and fair. That's why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the salary so you can see if we align with your expectations when looking for your next role.
In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes:
+ 401k/Pension/Retirement Plan - with country specific employer %
+ Enhanced PTO/Annual Leave
+ Medical insurance - country specific
+ Dental, Vision, Life and Short-Term Disability for US
+ Flexible Spending Accounts - for the US
+ Medical Cashback plan covering vision, dental and income protection for UK
+ Employee Assistance Programme
+ Commitment and understanding of work/life balance
+ A culture of embracing wellness, including regular global initiatives
+ Access to supportive and professional mechanisms to help you plan for your future
+ Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities
This advertiser has chosen not to accept applicants from your region.

Information Security - Governance, Risk & Compliance Analyst

London, London Kurt Geiger

Posted 10 days ago

Job Viewed

Tap Again To Close

Job Description

Permanent

Kurt Geiger | About Us

We are an inclusive, creative footwear and accessories brand powered by kindness. We want to empower our talent to be confident and true to themselves, the London way. London is our home, our heartbeat, and we draw inspiration from the energy and spirit of the city; its diversity and creativity. For over fifty years our team of in-house shoe and accessory designers have been creating authentic, distinctive designs from our London headquarters. The rainbow is our signature. It represents the good energy and love we have for our community and the many ways we collectively express our individual style.

We are looking for a detail-oriented and dependable GRC Analyst to join our Technology and Information Security team. This role is ideal for someone with a strong work ethic, experience in information security, and a collaborative mindset.

You will help protect our digital assets, ensure compliance with regulatory standards, and promote a security-first culture across the organisation.

Requirements

Key Responsibilities

  • Coordinate and support security incident response activities.
  • Support in Investigating security incident and data breaches.
  • Assist with security audits and risk assessments across cloud and on-prem environments.
  • Help develop and maintain security policies and standards (ISO 27001, NIST, GDPR).
  • Support data protection efforts and GDPR compliance.
  • Support access controls and identity management (Microsoft Entra ID, AWS IAM).
  • Collaborate with teams across DevOps, IT, and digital marketing to embed security practices.
  • Conduct third-party risk assessments and vendor reviews.
  • Participate in change advisory boards to assess risks.
  • Prepare documentation for audits and compliance reviews.
  • Promote security awareness and provide guidance to teams.

Skills and Experience

  • Previous experience in Information Security or a similar role.
  • Experience in incident response, audits, and data privacy.
  • Familiarity with cybersecurity frameworks (ISO 27001, SOC 2, NIST).
  • Familiarity with SIEM/EDR tools (e.g., CrowdStrike, Microsoft Defender).
  • Knowledge of cloud platforms (Azure, AWS) and security tools.
  • Understanding of VPNs, firewalls, and Zero Trust principles.
  • Strong communication and collaboration skills.
  • Self-motivated and detail oriented.

Preferred Qualifications

  • Certifications such as ISO 2700, Security+ or similar.
  • Experience with risk registers and mitigation planning.
  • Familiarity with GDPR breach protocols and privacy impact assessments.

What We Offer

  • A collaborative and supportive work environment.
  • Opportunities for professional development and certifications.
  • A chance to make a meaningful impact in a security-conscious organisation.

Benefits

  • Competitive basic salary
  • Pension and life assurance
  • Enviable discounts
  • Gym Discounts
  • Summer Hours - 3pm Friday finish
  • Half Day, Pay Day Friday (once per month)
  • RetailTrust support
  • And so much more!

Our Culture  

We’re an energic fast-paced brand that embraces progress and strives for innovation. Hard work is rewarded with new opportunities at every level and kindness is celebrated in everything we do. Our summer working hours accommodate a healthy work life balance. Wellbeing is important to our working culture, which is why we nurture a friendly environment for talent to thrive in, alongside a vibrant social community.

Our Stores

The first Kurt Geiger store opened on London Bond street in 1963.  Today, our brand has global appeal and is distributed in hundreds of cities around the world. We operate over 70 stand-alone stores nationwide, including our new flagship store on London Oxford street, and in over 400 stores globally. Beyond stand-alone stores and retail pop ups, our retail partners include some of the world’s most famous department stores.

We Are One: For Love | For Diversity | For Change | For Equality | For Kindness |  For Freedom | For Unity Against Racism

This advertiser has chosen not to accept applicants from your region.

Security Governance Manager

Newmarket, Eastern £50000 - £60000 annum Beyond

Posted 583 days ago

Job Viewed

Tap Again To Close

Job Description

Permanent

Security Governance Manager 

Reports to: Head of Information Security 

Location: Hybrid (Newmarket) and or Remote

Hours: 32 hours across a 4-day week (no salary sacrifice) 

Salary: £50,000 - £60,000 

Product: Group level - Wonde, Evouchers & Secure Schools 

Who we are and what is important to us:

Beyond unifies three technology-driven brands, Wonde, Evouchers and Secure Schools. 

Each brand shares a vision to reduce the friction of adapting technology, to help customers navigate an often overwhelming area and provide powerful solutions that make their everyday life easier. 

The three brands run independently with the autonomy to continue to prosper although as part of the Beyond team, you’ll join a wider, supportive environment where you’ll be able to pull on the expertise and capabilities of the group. 

We do not limit ourselves to standing still. We look ahead and strive to disrupt the sector we operate in. We believe technology should not be complicated or overwhelming. It should do what it says - quickly, safely and efficiently.

Job snapshot:

As Security Governance Manager, you will be responsible for ensuring the effectiveness of security policies and control frameworks. You will support the group in adopting a security mindset using a combination of coaching, supporting and leading by example. 

This is a newly created position where you will be provided with a genuine opportunity to create impact and drive the best security practices across the group. 

What you’ll be doing:

  • Management and maintenance of the central Information Security Management System
  • Maintain and certify new products to ISO  
  • Create, consult and operationalise security policies 
  • Organise, lead and manage all security-related audit activity 
  • Track and manage audit findings from conception through to delivery 
  • Coordinate, monitor and measure activities to ensure the ISMS continues to operate as expected  
  • Support and manage the supplier security assurance process 
  • Manage the security awareness and training programme 
  • Manage the continuous improvement process to ensure improvements and efficiencies within Security are achieved

Requirements

What we’re hoping you’ll bring:

  • Previous experience in a security-focused role, particularly focusing on the implementation and management of an information security management system supporting ISO
  • A qualified ISO 27001 Lead Implementer or auditor (a nice to have)
  • Excellent written and oral communication skills
  • Natural capabilities to communicate with a diverse range of stakeholders
  • Ability to influence and coach technical and non-technical stakeholders 
  • Ambition and initiative to drive change in an evolving sector
  • Self-motivation with the confidence and enthusiasm to take the initiative and get things done 
  • Ability to prioritise workflow and ensure deadlines are met
  • The willingness to learn and adapt in an ever-changing environment

Benefits

What you’ll get:

Beyond is much more than just a place to work. It is a place to grow, innovate, excel and learn. We have tech people, creative people and people people, all focused on providing a superior customer experience. 

We value, support and champion those we work with - promoting personal growth and happiness. We get that our success is dependent on the collective energy, intelligence and contributions of all our team members and we are committed to ensuring our work environment is the best it can be. 

We value your commitment and have worked hard to create adaptable and comprehensive benefits packages to suit individual needs, although you can expect the below as standard:

  • 4-day working week 
  • Flexible working schedule/work-from-home opportunities
  • Onsite gym and well-being (quiet room) facilities 
  • Buying and selling holiday scheme
  • Additional holiday for length of service 
  • Annual allowance for volunteering days 
  • Onsite trained mental health and well-being champions 
  • Monthly lunch club (on us) 
  • Comprehensive wellness programmes (think meditation retreats and continuous access to well-being apps/initiatives) 
  • Enhanced maternity, paternity and adoption benefits 
  • Electric car scheme 
  • Cycle to Work Scheme 
  • Eye examination scheme 
  • Financial contribution to the set up of work-from-home environments 
  • Use of new and leading technology in the form of apple products 
  • Frequent company-funded social events
  • Office closure between Christmas & New Year 
  • Access to continuous learning and development opportunities
  • Comprehensive employee referral scheme 
  • Casual Dress Code

In addition to the above, you’ll have access to our ‘take your pick’ benefits scheme which is tailored specifically to you! 

Beyond is an equal-opportunity employer. We encourage interest from all candidates and do not discriminate against any non-merit factors. If you require any adjustments to the application or selection process please call or email us so we can ensure you have the correct support: careers@wonde.com/ .

This advertiser has chosen not to accept applicants from your region.

Security Governance and Service Management Specialist

London, London Adecco

Posted 1 day ago

Job Viewed

Tap Again To Close

Job Description

My Banking client is seeking to recruit a Security Governance and Service Management Specialist on an initial 6 month contract for a Financial Services client based in London. It is hybrid and will require 3x days onsite per week.Role Purpose:Enhance the Security Intra group Governance and Service Management process for EU entities in line with ECB expectationsMaintain and update the intra group governance framework, processes and procedures and standard suite, across Information and Cyber Security within EMEA.Manage the intragroup relationships across AD and EMEA for Information and Cyber Security, ensuring service levels are met for all services received and/or provided.Accountabilities & Responsibilities:Define intra group security governance and service management frameworkEnhance and embed the operating/engagement model and service level agreement to ensure continuous oversight and service managementDefine and maintain EU specific entity level reporting template, including metrics to support the service performance management and service operations management.Embed a centralised ticketing module within ServiceNow for EMEA region. Use cases relevant to security service management, service request and service issue management.Coordinate the relevant reporting data points from Information and Cyber Security Committees relevant to EU, including inputs to and actions arising from the committees, the preparation of Security Performance Dashboards, and tracking of improvements.Consistently look for improvements in the efficiency and effectiveness of Information and Cyber Security intra group Governance and Compliance reportingSkills required:SME experience in third party service management including developing and maintaining service level agreements, metrics and compliance requirements.In depth knowledge of third-party regulations across UK and EU such as ECB's EBA, DORA and related standardsInformation and Cyber Security Frameworks and industry Standards (e.g., NIST/ISO 27001/COBIT/ITIL)Experience creating and delivering presentations and concise writing skills to produce clear documentation (security policy, senior management posture reports)Excellent inter-personal communication skills, able to liaise with all levels of the business across all regions including key stakeholders and senior management.n#J-18808-Ljbffrn
This advertiser has chosen not to accept applicants from your region.

Security Governance and Service Management Specialist

London, London Cyber UK

Posted 1 day ago

Job Viewed

Tap Again To Close

Job Description

OverviewnMy Banking client is seeking to recruit a Security Governance and Service Management Specialist on an initial 6 month contract for a Financial Services client based in London. It is hybrid and will require 3x days onsite per week.nRole Purpose:

Enhance the Security Intra group Governance and Service Management process for EU entities in line with ECB expectationsnMaintain and update the intra group governance framework, processes and procedures and standard suite, across Information and Cyber Security within EMEA.nManage the intragroup relationships across AD and EMEA for Information and Cyber Security, ensuring service levels are met for all services received and/or provided.

Responsibilities

Define intra group security governance and service management frameworknEnhance and embed the operating/engagement model and service level agreement to ensure continuous oversight and service managementnDefine and maintain EU specific entity level reporting template, including metrics to support the service performance management and service operations management.nEmbed a centralised ticketing module within ServiceNow for EMEA region. Use cases relevant to security service management, service request and service issue management.nCoordinate the relevant reporting data points from Information and Cyber Security Committees relevant to EU, including inputs to and actions arising from the committees, the preparation of Security Performance Dashboards, and tracking of improvements.nConsistently look for improvements in the efficiency and effectiveness of Information and Cyber Security intra group Governance and Compliance reporting

Skills required

SME experience in third party service management including developing and maintaining service level agreements, metrics and compliance requirements.nIn depth knowledge of third-party regulations across UK and EU such as ECB’s EBA, DORA and related standardsnInformation and Cyber Security Frameworks and industry Standards (e.g., NIST/ISO 27001/COBIT/ITIL)nExperience creating and delivering presentations and concise writing skills to produce clear documentation (security policy, senior management posture reports)nExcellent inter-personal communication skills, able to liaise with all levels of the business across all regions including key stakeholders and senior management.

#J-18808-Ljbffrn
This advertiser has chosen not to accept applicants from your region.

Information Security Manager

Birmingham, West Midlands NTT America, Inc.

Posted 13 days ago

Job Viewed

Tap Again To Close

Job Description

**The team you'll be working with:**
**Job Title:** Information Security Manager
**Location:** London, UK or Birmingham hybrid Variable
**Department:** Information Security
**About Us:**
NTT Data is a leading Managed Service Provider (MSP) with a global reach empowering local team, undertaking hugely exciting work and is genuinely changing the world.
We specialise in delivering cutting-edge IT and cybersecurity solutions to our diverse client base. We provide expert-managed services to help clients protect their data, comply with regulations, and manage evolving cyber threats. We are looking for a skilled Information Security Manager to join our team and be billed out to a key client to enhance their information security posture.
**What you'll be doing:**
**What you will be doing;**
We are seeking an experienced Information Security Manager to play a critical role in ensuring the security and resilience of our client's IT systems and data. As a client-facing professional, you will act as the pivotal point of contact for all matters relating to information and cybersecurity. You will collaborate closely with multiple teams to develop, implement, and manage robust information security frameworks, policies, and protocols.
This role combines both strategic leadership and technical expertise, enabling you to influence decision-making, advise on best practices, and ensure continuous improvement in the security posture. You will lead efforts in risk management, regulatory compliance, incident response, and security awareness training, while ensuring the client remains aligned with industry standards and legal requirements (e.g., ISO 27001, GDPR, Cyber Essentials). Your expertise will help mitigate risks, defend against cyber threats, and maintain the highest level of security across the client's infrastructure, all while maintaining a clear focus on delivering outstanding service and value.
Key to your success will be your ability to manage complex security challenges, foster strong relationships with teams, and drive a proactive security culture within their organisation.
**Core responsibilities;**
+ Act as the primary information security point of contact for relevant teams, developing a trusted relationship and advising on all aspects of cybersecurity.
+ Develop, implement, and maintain information security policies, procedures, and frameworks, ensuring alignment with industry standards (e.g., ISO 27001, NIST) and legal requirements (e.g., GDPR, Cyber Essentials).
+ Conduct security risk assessments and vulnerability management for the client, providing actionable recommendations to mitigate risks.
+ Lead incident detection, investigation, and response efforts, ensuring minimal impact to the client's business operations.
+ Collaborate with the client's IT and business teams to integrate security solutions and processes that align with their goals.
+ Deliver regular reporting to the client on security status, incidents, risks, and compliance with agreed SLAs and KPIs.
+ Provide guidance and support for the client in meeting their regulatory obligations (e.g., GDPR compliance, data protection).
+ Oversee and lead security audits, penetration testing, and vulnerability assessments for the client.
+ Manage security awareness training programs for the client's staff, fostering a culture of cybersecurity awareness.
+ Provide ongoing advice on emerging threats, vulnerabilities, and security best practices, helping the client stay ahead of the curve.
+ Ensure that the client's information security posture is continuously improved through proactive security measures, monitoring, and reporting.
**What experience you'll bring:**
**What you will bring;**
Proven experience (typically 5+ years) in information security management or a related role, preferably within an MSP or client-facing environment.
+ Strong understanding of UK and international cybersecurity regulations, including GDPR, Cyber Essentials, and ISO 27001.
+ Experience managing and leading security operations, incident response, and risk assessments.
+ Understanding and knowledge of security technologies (SIEM, firewalls, endpoint protection, encryption, etc.) and practices (vulnerability management, penetration testing).
+ Experience working in a service delivery or consultancy capacity with external clients.
+ Excellent communication skills, able to convey technical security information to non-technical stakeholders at all levels.
+ Relevant certifications such as CISSP, CISM, CISA, or equivalent are highly desirable.
**Desirable Attributes:**
+ Strong stakeholder engagement experiences.
+ Ability to work independently, take initiative, and work in a dynamic environment.
+ Proactive approach to identifying and solving problems before they escalate.
+ Strong leadership and mentoring skills to support junior staff and teams.
+ Ability to translate business needs into security solutions.
**Who we are:**
We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.
Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.
For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA ( we'll offer you:**
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
You can find more information about NTT DATA UK & Ireland here: are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.
Back to search Email to a friend Apply now
This advertiser has chosen not to accept applicants from your region.

Information Security Analyst

LS1 1UR Leeds, Yorkshire and the Humber £50000 Annually WhatJobs

Posted today

Job Viewed

Tap Again To Close

Job Description

full-time
Our client is seeking a vigilant and skilled Information Security Analyst to bolster their cybersecurity defenses. This is a crucial on-site role based in **Leeds, West Yorkshire, UK**, ensuring the protection of sensitive company data and systems. You will be responsible for monitoring security alerts, investigating potential threats, implementing security measures, and responding to incidents. The ideal candidate possesses a strong technical aptitude, a proactive approach to threat detection, and a commitment to maintaining a secure digital environment. You will work as part of a dedicated security team, safeguarding the organization against evolving cyber risks.

Key Responsibilities:
  • Monitor security systems, including firewalls, intrusion detection/prevention systems, and anti-virus software, for suspicious activity.
  • Investigate security breaches and cyber-attacks, determining the scope and impact.
  • Develop and implement security policies, procedures, and best practices.
  • Conduct vulnerability assessments and penetration testing to identify and remediate weaknesses.
  • Respond to security incidents, coordinating remediation efforts and post-incident analysis.
  • Manage security awareness training programs for employees.
  • Stay up-to-date with the latest security threats, trends, and technologies.
  • Assist in the development and maintenance of incident response plans.
  • Collaborate with IT teams to ensure security is integrated into all systems and applications.
  • Maintain accurate records of security incidents and actions taken.
  • Ensure compliance with relevant data protection regulations (e.g., GDPR).
Qualifications and Experience:
  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
  • Proven experience in information security, cybersecurity operations, or a similar role.
  • Strong understanding of network security, operating systems security, and common attack vectors.
  • Experience with security tools such as SIEM, IDS/IPS, and vulnerability scanners.
  • Relevant certifications such as CISSP, CompTIA Security+, CEH are highly desirable.
  • Excellent analytical and problem-solving skills.
  • Strong communication and interpersonal skills, with the ability to explain technical concepts clearly.
  • Ability to work effectively under pressure and manage critical incidents.
  • Proactive mindset towards identifying and mitigating security risks.
  • Familiarity with regulatory compliance requirements is a plus.
This is a vital role for safeguarding our digital assets, located in **Leeds, West Yorkshire, UK**. Join a dedicated team committed to maintaining a robust security posture.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know

About the latest Security policy development Jobs in United Kingdom !

Information Security Analyst

BD1 1LA Bradford, Yorkshire and the Humber £45000 Annually WhatJobs

Posted today

Job Viewed

Tap Again To Close

Job Description

full-time
Our client, a leading financial services institution, is seeking a skilled Information Security Analyst to join their team in **Bradford, West Yorkshire, UK**. This role offers a fantastic opportunity to contribute to the protection of sensitive data and critical systems in a hybrid work environment. You will be responsible for monitoring security alerts, investigating security incidents, and implementing security controls to mitigate risks. Key responsibilities include conducting vulnerability assessments and penetration testing, developing and maintaining security policies and procedures, and ensuring compliance with relevant regulations and standards. You will also play a crucial role in security awareness training for employees and assist in the development and execution of incident response plans. The ideal candidate will have a strong understanding of cybersecurity principles, networking protocols, and common attack vectors. Experience with security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection is essential. Relevant certifications like CISSP, CISM, or CompTIA Security+ are highly desirable. You should possess excellent analytical and problem-solving skills, with a meticulous attention to detail. This is a hybrid position, requiring a balance of in-office collaboration and remote work flexibility. Our client is committed to fostering a culture of security excellence and provides opportunities for professional development and advancement within the cybersecurity field. You will work within a supportive team environment, collaborating with IT and business units to ensure robust security posture across the organisation. The role involves staying abreast of the latest security threats and technologies to proactively defend against evolving cyber risks. If you are a dedicated security professional looking to make a significant impact, we encourage you to apply.
This advertiser has chosen not to accept applicants from your region.

Information Security Analyst

NG1 3BG Nottingham, East Midlands £40000 Annually WhatJobs

Posted today

Job Viewed

Tap Again To Close

Job Description

full-time
Our client is a leading financial services firm seeking an experienced Information Security Analyst to bolster their cybersecurity efforts. This role is based in Nottingham, Nottinghamshire, UK , and operates on a hybrid model, requiring the successful candidate to be in the office a minimum of two days per week. You will play a crucial role in protecting the company's digital assets and sensitive data from evolving cyber threats. This involves implementing and maintaining robust security measures, monitoring systems for suspicious activity, and responding effectively to security incidents.

Responsibilities:
  • Conduct regular security assessments and vulnerability scans to identify potential weaknesses.
  • Develop, implement, and enforce security policies and procedures.
  • Monitor security systems, including firewalls, intrusion detection/prevention systems, and SIEM tools.
  • Investigate and respond to security incidents, providing timely and effective remediation.
  • Assist in the development and delivery of security awareness training for employees.
  • Stay up-to-date with the latest cybersecurity threats, trends, and technologies.
  • Collaborate with IT teams to ensure security is integrated into all system designs and implementations.
  • Prepare reports on security status, incidents, and recommendations for management.
  • Manage and maintain security-related hardware and software.

Qualifications:
  • Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
  • Minimum of 3-5 years of experience in information security or cybersecurity roles.
  • Strong understanding of security principles, frameworks (e.g., ISO 27001, NIST), and best practices.
  • Hands-on experience with security tools such as SIEM, vulnerability scanners, endpoint protection, and firewalls.
  • Knowledge of network security, cryptography, and threat intelligence.
  • Excellent analytical and problem-solving skills.
  • Strong communication and reporting abilities.
  • Relevant certifications such as CISSP, CEH, or Security+ are highly desirable.

This is an excellent opportunity for a dedicated security professional to make a significant impact within a reputable organization. The hybrid working arrangement offers a blend of collaborative office time and flexible remote work.
This advertiser has chosen not to accept applicants from your region.

Information Security Manager

BN1 1AA East Sussex, South East £70000 Annually WhatJobs

Posted today

Job Viewed

Tap Again To Close

Job Description

full-time
Our client, a leading financial services firm, is seeking an experienced Information Security Manager to join their progressive team in Brighton, East Sussex, UK . This hybrid role offers a dynamic work environment where you will be responsible for overseeing and enhancing the company's overall information security posture. You will lead initiatives to protect sensitive data, manage security risks, and ensure compliance with regulatory standards. The ideal candidate will possess strong leadership skills and a deep understanding of cybersecurity best practices.

Key Responsibilities:
  • Develop, implement, and maintain robust information security strategies, policies, and procedures across the organization.
  • Lead and manage the information security team, providing guidance, mentorship, and performance management.
  • Oversee the implementation and operation of security technologies, including firewalls, IDS/IPS, SIEM, DLP, and endpoint protection solutions.
  • Conduct comprehensive risk assessments, vulnerability management programs, and penetration testing activities.
  • Develop and manage the incident response plan, leading investigations and remediation efforts for security breaches.
  • Ensure compliance with relevant industry regulations and data protection laws (e.g., GDPR, PCI DSS).
  • Manage security awareness training programs for all employees.
  • Collaborate with IT, development, and business units to integrate security into all aspects of operations and system lifecycles.
  • Stay abreast of emerging threats, vulnerabilities, and security technologies, and proactively adapt security measures.
  • Manage relationships with third-party security vendors and service providers.
  • Develop and manage the information security budget.
Qualifications:
  • Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree or equivalent experience preferred.
  • Minimum of 7 years of progressive experience in information security, with at least 3 years in a management or leadership role.
  • In-depth knowledge of cybersecurity principles, frameworks (e.g., ISO 27001, NIST), and best practices.
  • Proven experience in managing security operations, incident response, risk management, and compliance.
  • Hands-on experience with a variety of security technologies and tools.
  • Excellent leadership, communication, and stakeholder management skills.
  • Strong analytical and problem-solving abilities.
  • Relevant security certifications such as CISSP, CISM, CISA are highly desirable.
  • Ability to balance strategic planning with hands-on operational oversight.
This is a critical leadership role for an experienced security professional looking to make a significant impact within a well-established organization. If you are passionate about protecting digital assets and leading security initiatives, we encourage you to apply.
This advertiser has chosen not to accept applicants from your region.
 

Nearby Locations

Other Jobs Near Me

Industry

  1. request_quote Accounting
  2. work Administrative
  3. eco Agriculture Forestry
  4. smart_toy AI & Emerging Technologies
  5. school Apprenticeships & Trainee
  6. apartment Architecture
  7. palette Arts & Entertainment
  8. directions_car Automotive
  9. flight_takeoff Aviation
  10. account_balance Banking & Finance
  11. local_florist Beauty & Wellness
  12. restaurant Catering
  13. volunteer_activism Charity & Voluntary
  14. science Chemical Engineering
  15. child_friendly Childcare
  16. foundation Civil Engineering
  17. clean_hands Cleaning & Sanitation
  18. diversity_3 Community & Social Care
  19. construction Construction
  20. brush Creative & Digital
  21. currency_bitcoin Crypto & Blockchain
  22. support_agent Customer Service & Helpdesk
  23. medical_services Dental
  24. medical_services Driving & Transport
  25. medical_services E Commerce & Social Media
  26. school Education & Teaching
  27. electrical_services Electrical Engineering
  28. bolt Energy
  29. local_mall Fmcg
  30. gavel Government & Non Profit
  31. emoji_events Graduate
  32. health_and_safety Healthcare
  33. beach_access Hospitality & Tourism
  34. groups Human Resources
  35. precision_manufacturing Industrial Engineering
  36. security Information Security
  37. handyman Installation & Maintenance
  38. policy Insurance
  39. code IT & Software
  40. gavel Legal
  41. sports_soccer Leisure & Sports
  42. inventory_2 Logistics & Warehousing
  43. supervisor_account Management
  44. supervisor_account Management Consultancy
  45. supervisor_account Manufacturing & Production
  46. campaign Marketing
  47. build Mechanical Engineering
  48. perm_media Media & PR
  49. local_hospital Medical
  50. local_hospital Military & Public Safety
  51. local_hospital Mining
  52. medical_services Nursing
  53. local_gas_station Oil & Gas
  54. biotech Pharmaceutical
  55. checklist_rtl Project Management
  56. shopping_bag Purchasing
  57. home_work Real Estate
  58. person_search Recruitment Consultancy
  59. store Retail
  60. point_of_sale Sales
  61. science Scientific Research & Development
  62. wifi Telecoms
  63. psychology Therapy
  64. pets Veterinary
View All Security Policy Development Jobs