136 Security Policy Development jobs in the United Kingdom
Lead_Analyst Information Security Governance Risk Compliance
PSI Services
Posted 18 days ago
Job Viewed
Job Description
**Description**
**Title:** Lead Analyst, Information, Security, Governance, Risk and Compliance
**Location:** Remote-UK
**Salary:** £60,000 / annually
**About PSI**
We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers.
We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent.
At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That's why you'll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle.
Learn more about what we do at: the Role**
The Lead Analyst, Information Security - GRC plays a key role in supporting PSI's commitment to data security, privacy, and compliance. This role is responsible for driving core activities across quality, risk management, Information Security, data protection, and audit readiness to ensure the organization meets ISO, PCI, SOC 2, and other relevant standards. The position helps deliver assurance to stakeholders that PSI prioritizes the security and privacy of its data and systems.
This is a full-time, permanent role, Monday to Friday, with flexible working hours around a standard 09:00 - 17:30 schedule. The role reports to the Snr Director of Information Security, Governance, Risk and Compliance and may be performed remotely, with occasional travel to offices and test centres as required for audits and assessments.
**Role Responsibilities**
+ Act as the primary point of contact for implementing and maintaining the security GRC framework.
+ Collaborate with internal teams to support an integrated end-to-end GRC approach across the organization.
+ Collaborate with internal teams to ensure documentation of security control in the form of system architecture diagrams, data flow diagrams and Information System Continuity Plans are in place.
+ Maintain and update security policies, standards, procedures, and guidelines, ensuring they align with current business and IT practices.
+ Monitor and assess the effectiveness of security controls across business systems and processes.
+ Ensure alignment with client, regulatory, and internal compliance requirements.
+ Support the automation and continual improvement of GRC processes and tools.
+ Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership.
+ Support and coordinate internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses.
+ Assist in third-party and entity-level risk assessments, identifying and mitigating risks through effective controls.
+ Build and maintain cross-functional relationships with teams such as Legal, IT, Audit, Finance, and Business Operations to ensure GRC practices support overall business objectives.
+ Support ongoing compliance initiatives, including security incident reviews, risk memos, and policy exceptions.
+ Deliver training and awareness programs related to information security, policies, and best practices.
+ Participate in the development of operational reports, metrics dashboards, and trend analysis related to security and compliance activities.
+ Prepare and support audit plans and compliance documentation for internal or external stakeholders.
+ Conduct vetting for access to sensitive systems and data, including continuous monitoring and clearance reviews.
**Knowledge, Skills and Experience Requirements**
+ Experience working within, achieving and/or maintaining ISO standards such as ISO 27001, 9001, 14001 and 2000 (essential).
+ Experience in implementing and maintaining externally awarded certifications such as ISO27001 is essential.
+ Proficient with MS Office
+ Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS/IPS, AV software) strongly recommended
+ Extensive training and experience in computer disciplines such as application and data security, systems programming, systems design, computer technology or software disciplines
+ Familiarity with OneTrust or ServiceNow GRC and Privacy tools desired
+ Certified training in security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, or related certification(s) desirable.
+ Experience in a fast-paced GRC/ISO function (desirable).
**Benefits & Culture**
At PSI, our culture is to be transparent and fair. That's why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the salary so you can see if we align with your expectations when looking for your next role.
In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes:
+ 401k/Pension/Retirement Plan - with country specific employer %
+ Enhanced PTO/Annual Leave
+ Medical insurance - country specific
+ Dental, Vision, Life and Short-Term Disability for US
+ Flexible Spending Accounts - for the US
+ Medical Cashback plan covering vision, dental and income protection for UK
+ Employee Assistance Programme
+ Commitment and understanding of work/life balance
+ A culture of embracing wellness, including regular global initiatives
+ Access to supportive and professional mechanisms to help you plan for your future
+ Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities
**Title:** Lead Analyst, Information, Security, Governance, Risk and Compliance
**Location:** Remote-UK
**Salary:** £60,000 / annually
**About PSI**
We are PSI Services. We power world leading tests. Delivered with trusted science and the very best test taker experience. PSI supports test-takers on their journey to pursuing dreams and gaining certifications that are important to them. They believe that their dreams are worth working for; that their dreams are worth the effort. And we believe that too. This is our core purpose, to empower people to achieve their dreams. We do this by being the best provider of workforce solutions, which foster both technology and science to deliver the best solutions for our test takers.
We are searching for top talent to join our PSI team and help grow our products and services. We have a creative, supportive and inclusive culture where we empower people in their careers to be their authentic self and make the most of their great talent.
At PSI, we are committed to helping people meet their potential and we believe that promoting diversity, equity and inclusion is critical to our success. That's why you'll find these ideals are intrinsic to our company culture and applied throughout the employee lifecycle.
Learn more about what we do at: the Role**
The Lead Analyst, Information Security - GRC plays a key role in supporting PSI's commitment to data security, privacy, and compliance. This role is responsible for driving core activities across quality, risk management, Information Security, data protection, and audit readiness to ensure the organization meets ISO, PCI, SOC 2, and other relevant standards. The position helps deliver assurance to stakeholders that PSI prioritizes the security and privacy of its data and systems.
This is a full-time, permanent role, Monday to Friday, with flexible working hours around a standard 09:00 - 17:30 schedule. The role reports to the Snr Director of Information Security, Governance, Risk and Compliance and may be performed remotely, with occasional travel to offices and test centres as required for audits and assessments.
**Role Responsibilities**
+ Act as the primary point of contact for implementing and maintaining the security GRC framework.
+ Collaborate with internal teams to support an integrated end-to-end GRC approach across the organization.
+ Collaborate with internal teams to ensure documentation of security control in the form of system architecture diagrams, data flow diagrams and Information System Continuity Plans are in place.
+ Maintain and update security policies, standards, procedures, and guidelines, ensuring they align with current business and IT practices.
+ Monitor and assess the effectiveness of security controls across business systems and processes.
+ Ensure alignment with client, regulatory, and internal compliance requirements.
+ Support the automation and continual improvement of GRC processes and tools.
+ Generate and present GRC-related metrics and reports to internal stakeholders and executive leadership.
+ Support and coordinate internal and external audits (e.g., ISO27001, SOC2, etc.), including gathering evidence and managing responses.
+ Assist in third-party and entity-level risk assessments, identifying and mitigating risks through effective controls.
+ Build and maintain cross-functional relationships with teams such as Legal, IT, Audit, Finance, and Business Operations to ensure GRC practices support overall business objectives.
+ Support ongoing compliance initiatives, including security incident reviews, risk memos, and policy exceptions.
+ Deliver training and awareness programs related to information security, policies, and best practices.
+ Participate in the development of operational reports, metrics dashboards, and trend analysis related to security and compliance activities.
+ Prepare and support audit plans and compliance documentation for internal or external stakeholders.
+ Conduct vetting for access to sensitive systems and data, including continuous monitoring and clearance reviews.
**Knowledge, Skills and Experience Requirements**
+ Experience working within, achieving and/or maintaining ISO standards such as ISO 27001, 9001, 14001 and 2000 (essential).
+ Experience in implementing and maintaining externally awarded certifications such as ISO27001 is essential.
+ Proficient with MS Office
+ Solid understanding of common security tools (e.g., vulnerability scanners, firewalls, IDS/IPS, AV software) strongly recommended
+ Extensive training and experience in computer disciplines such as application and data security, systems programming, systems design, computer technology or software disciplines
+ Familiarity with OneTrust or ServiceNow GRC and Privacy tools desired
+ Certified training in security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, or related certification(s) desirable.
+ Experience in a fast-paced GRC/ISO function (desirable).
**Benefits & Culture**
At PSI, our culture is to be transparent and fair. That's why all of our roles have been benchmarked at a competitive rate against the local market they are based in. To be transparent all of our adverts now include the salary so you can see if we align with your expectations when looking for your next role.
In addition to a competitive salary, we offer a comprehensive benefits package and supportive culture when you join us. This includes:
+ 401k/Pension/Retirement Plan - with country specific employer %
+ Enhanced PTO/Annual Leave
+ Medical insurance - country specific
+ Dental, Vision, Life and Short-Term Disability for US
+ Flexible Spending Accounts - for the US
+ Medical Cashback plan covering vision, dental and income protection for UK
+ Employee Assistance Programme
+ Commitment and understanding of work/life balance
+ A culture of embracing wellness, including regular global initiatives
+ Access to supportive and professional mechanisms to help you plan for your future
+ Volunteer Day and a culture of giving back to our community and industry through volunteering opportunities
This advertiser has chosen not to accept applicants from your region.
0
Security Governance Lead
London, London
Albany Beck
Posted today
Job Viewed
Job Description
Job Title: Security Governance Lead – NIST & Archer Expertise
Location: London
About the Role:
Albany Beck is seeking a highly skilled Security Governance Lead to support a key financial services client in advancing its information security governance capabilities. This role requires deep expertise in NIST frameworks and Archer GRC, as well as strong leadership in centralising security policy management, controls, and compliance operations.
Key Responsibilities:
- Collaborate with the Executive Director of Security Governance to maintain and evolve the client’s information security policies, standards, and procedures in alignment with the organization’s master policy.
- Lead the centralisation, documentation, and continuous improvement of a unified controls inventory, including clear assignment of control ownership and alignment of roles and responsibilities.
- Maintain the service catalogue and ensure organizational alignment across business units and technology teams.
- Develop and deliver consolidated reports on agreed security metrics, such as training completion rates and awareness initiatives.
- Coordinate the collection of evidence to support internal and external regulatory attestations and compliance reviews.
- Drive continuous governance improvements through structured policy lifecycle management and stakeholder engagement.
Required Experience and Skills:
- Proven experience in a security governance or risk management leadership role within the financial services or consulting industry.
- Strong working knowledge of NIST frameworks (e.g., NIST CSF, NIST 800-53).
- Hands-on experience with RSA Archer GRC platform, particularly in managing controls, risks, and compliance reporting.
- Excellent understanding of regulatory compliance requirements and security policy management.
- Exceptional communication and organizational skills, with the ability to influence and guide stakeholders across technical and business domains.
- Experience with metrics development and reporting dashboards is a plus.
This advertiser has chosen not to accept applicants from your region.
1
Security Governance Lead
Albany Beck
Posted today
Job Viewed
Job Description
Job Title: Security Governance Lead – NIST & Archer Expertise
Location: London
About the Role:
Albany Beck is seeking a highly skilled Security Governance Lead to support a key financial services client in advancing its information security governance capabilities. This role requires deep expertise in NIST frameworks and Archer GRC, as well as strong leadership in centralising security policy management, controls, and compliance operations.
Key Responsibilities:
- Collaborate with the Executive Director of Security Governance to maintain and evolve the client’s information security policies, standards, and procedures in alignment with the organization’s master policy.
- Lead the centralisation, documentation, and continuous improvement of a unified controls inventory, including clear assignment of control ownership and alignment of roles and responsibilities.
- Maintain the service catalogue and ensure organizational alignment across business units and technology teams.
- Develop and deliver consolidated reports on agreed security metrics, such as training completion rates and awareness initiatives.
- Coordinate the collection of evidence to support internal and external regulatory attestations and compliance reviews.
- Drive continuous governance improvements through structured policy lifecycle management and stakeholder engagement.
Required Experience and Skills:
- Proven experience in a security governance or risk management leadership role within the financial services or consulting industry.
- Strong working knowledge of NIST frameworks (e.g., NIST CSF, NIST 800-53).
- Hands-on experience with RSA Archer GRC platform, particularly in managing controls, risks, and compliance reporting.
- Excellent understanding of regulatory compliance requirements and security policy management.
- Exceptional communication and organizational skills, with the ability to influence and guide stakeholders across technical and business domains.
- Experience with metrics development and reporting dashboards is a plus.
This advertiser has chosen not to accept applicants from your region.
2
Security Governance Manager
Newmarket, Eastern
£50000 - £60000 annum
Beyond
Posted 540 days ago
Job Viewed
Job Description
Security Governance Manager
Reports to: Head of Information Security
Location: Hybrid (Newmarket) and or Remote
Hours: 32 hours across a 4-day week (no salary sacrifice)
Salary: £50,000 - £60,000
Product: Group level - Wonde, Evouchers & Secure Schools
Who we are and what is important to us:
Beyond unifies three technology-driven brands, Wonde, Evouchers and Secure Schools.
Each brand shares a vision to reduce the friction of adapting technology, to help customers navigate an often overwhelming area and provide powerful solutions that make their everyday life easier.
The three brands run independently with the autonomy to continue to prosper although as part of the Beyond team, you’ll join a wider, supportive environment where you’ll be able to pull on the expertise and capabilities of the group.
We do not limit ourselves to standing still. We look ahead and strive to disrupt the sector we operate in. We believe technology should not be complicated or overwhelming. It should do what it says - quickly, safely and efficiently.
Job snapshot:
As Security Governance Manager, you will be responsible for ensuring the effectiveness of security policies and control frameworks. You will support the group in adopting a security mindset using a combination of coaching, supporting and leading by example.
This is a newly created position where you will be provided with a genuine opportunity to create impact and drive the best security practices across the group.
What you’ll be doing:
- Management and maintenance of the central Information Security Management System
- Maintain and certify new products to ISO 270001
- Create, consult and operationalise security policies
- Organise, lead and manage all security-related audit activity
- Track and manage audit findings from conception through to delivery
- Coordinate, monitor and measure activities to ensure the ISMS continues to operate as expected
- Support and manage the supplier security assurance process
- Manage the security awareness and training programme
- Manage the continuous improvement process to ensure improvements and efficiencies within Security are achieved
Requirements
What we’re hoping you’ll bring:
- Previous experience in a security-focused role, particularly focusing on the implementation and management of an information security management system supporting ISO 270001
- A qualified ISO 27001 Lead Implementer or auditor (a nice to have)
- Excellent written and oral communication skills
- Natural capabilities to communicate with a diverse range of stakeholders
- Ability to influence and coach technical and non-technical stakeholders
- Ambition and initiative to drive change in an evolving sector
- Self-motivation with the confidence and enthusiasm to take the initiative and get things done
- Ability to prioritise workflow and ensure deadlines are met
- The willingness to learn and adapt in an ever-changing environment
Benefits
What you’ll get:
Beyond is much more than just a place to work. It is a place to grow, innovate, excel and learn. We have tech people, creative people and people people, all focused on providing a superior customer experience.
We value, support and champion those we work with - promoting personal growth and happiness. We get that our success is dependent on the collective energy, intelligence and contributions of all our team members and we are committed to ensuring our work environment is the best it can be.
We value your commitment and have worked hard to create adaptable and comprehensive benefits packages to suit individual needs, although you can expect the below as standard:
- 4-day working week
- Flexible working schedule/work-from-home opportunities
- Onsite gym and well-being (quiet room) facilities
- Buying and selling holiday scheme
- Additional holiday for length of service
- Annual allowance for volunteering days
- Onsite trained mental health and well-being champions
- Monthly lunch club (on us)
- Comprehensive wellness programmes (think meditation retreats and continuous access to well-being apps/initiatives)
- Enhanced maternity, paternity and adoption benefits
- Electric car scheme
- Cycle to Work Scheme
- Eye examination scheme
- Financial contribution to the set up of work-from-home environments
- Use of new and leading technology in the form of apple products
- Frequent company-funded social events
- Office closure between Christmas & New Year
- Access to continuous learning and development opportunities
- Comprehensive employee referral scheme
- Casual Dress Code
In addition to the above, you’ll have access to our ‘take your pick’ benefits scheme which is tailored specifically to you!
Beyond is an equal-opportunity employer. We encourage interest from all candidates and do not discriminate against any non-merit factors. If you require any adjustments to the application or selection process please call or email us so we can ensure you have the correct support: careers@wonde.com/ 01638 438094.
This advertiser has chosen not to accept applicants from your region.
3
Head of Information Security & Assurance Governance (Edgewing)
GU15 Camberley, South East
JobFlurry-WhatJobs-GB
Posted 6 days ago
Job Viewed
Job Description
Job Title:
Head of Information Security & Assurance Governance (Edgewing)
Location:
Reading area. The role could be contracted to any BAE Systems site (preferably Frimley) but on commencement will immediately be assigned to our Edgewing JV in the Reading area. A financial support package may be available to enable this assignment if required, dependent on certain criteria being met. Due to the nature of this assignment, we envisage there will be a need for mostly on site working, however, flexible working arrangements may be possible - please speak to your recruiter about the options for this role.
Salary:
£115,000 plus executive benefits
What you'll be doing:
Be empowered by the Head of Governance to deliver lines of activity in the adoption and sustainment of Joint Venture (JV) cyber security strategy, team health and pioneering approaches and controls aligned to JV objectives and strategic goalsnDesign and deliver a new threat led approach to cyber security across digital engineering, international collaboration environments and brand-new high assurance digital engineering capabilitiesnLead delivery of Cyber Policy services for JV and support in the monitoring and improvement of service performance.nFacilitates cyber incident response activities within JVnSupports the policy creation for product and supply chain cyber security activities within JVnAct as leaders in our transition to Secure by Design assurance methodologynIs responsible for ensuring cyber security is embedded within all stages of JV project lifecyclesnMaintains an influential position at a senior level, ensuring cyber security is advocated and understood.nShapes and lead cyber security innovation through effective leadership within JVnEnsures visibility of security throughout the business and achieves value through remaining agile and enabling opportunities.nSustain appropriate industry internal and external networks always representing JV's best interests (HQ and NatCos)nThe role holder will prepare and issue internal regulatory documentation for the application of provisions on security and the protection of classified and/or exclusive informationnThe role holder will define the cybersecurity baseline to ensure compliance of IT systems and, if necessary, manage requests regarding exceptions to policies, procedures, and requirements
Your skills and experiences:
Strong stakeholder management skills, communicating with senior leaders across multiple functionsnProven people management skills, current team of 5 which will be increasingnExperienced with influencing and making an impact on business decisions working for a highly regulated organization ideally in the Defense, Military or Government industrynRelevant security related qualifications - CISSP, CompTIA Security+ or CISAnProfessional accreditation such as Chartered Cyber Security Professional (ChCSP), or the necessary professional experience to attain it within the first year of starting the rolenBachelor's degree or relevant security equivalent qualification/experience
Benefits:
As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive.
The team:
By joining Edgewing, you will have a unique opportunity to help shape the company from the ground up - setting the foundations for generations to come, influencing how we work, and helping us build something world-class together. At Edgewing, we're united by a shared purpose to drive what's next in defence - uniting UK, Italian, and Japanese expertise to shape the future of global defence. With trust at the heart of everything we do, we empower our people to dare to go beyond, bring their best as one, and leave a mark that matters on a truly global mission, making a lasting impact through work that truly matters.
Why BAE Systems?
This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.
Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.
Closing Date:
26 th August 2025
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
#LI-KW1
#LI-Onsite
Head of Information Security & Assurance Governance (Edgewing)
Location:
Reading area. The role could be contracted to any BAE Systems site (preferably Frimley) but on commencement will immediately be assigned to our Edgewing JV in the Reading area. A financial support package may be available to enable this assignment if required, dependent on certain criteria being met. Due to the nature of this assignment, we envisage there will be a need for mostly on site working, however, flexible working arrangements may be possible - please speak to your recruiter about the options for this role.
Salary:
£115,000 plus executive benefits
What you'll be doing:
Be empowered by the Head of Governance to deliver lines of activity in the adoption and sustainment of Joint Venture (JV) cyber security strategy, team health and pioneering approaches and controls aligned to JV objectives and strategic goalsnDesign and deliver a new threat led approach to cyber security across digital engineering, international collaboration environments and brand-new high assurance digital engineering capabilitiesnLead delivery of Cyber Policy services for JV and support in the monitoring and improvement of service performance.nFacilitates cyber incident response activities within JVnSupports the policy creation for product and supply chain cyber security activities within JVnAct as leaders in our transition to Secure by Design assurance methodologynIs responsible for ensuring cyber security is embedded within all stages of JV project lifecyclesnMaintains an influential position at a senior level, ensuring cyber security is advocated and understood.nShapes and lead cyber security innovation through effective leadership within JVnEnsures visibility of security throughout the business and achieves value through remaining agile and enabling opportunities.nSustain appropriate industry internal and external networks always representing JV's best interests (HQ and NatCos)nThe role holder will prepare and issue internal regulatory documentation for the application of provisions on security and the protection of classified and/or exclusive informationnThe role holder will define the cybersecurity baseline to ensure compliance of IT systems and, if necessary, manage requests regarding exceptions to policies, procedures, and requirements
Your skills and experiences:
Strong stakeholder management skills, communicating with senior leaders across multiple functionsnProven people management skills, current team of 5 which will be increasingnExperienced with influencing and making an impact on business decisions working for a highly regulated organization ideally in the Defense, Military or Government industrynRelevant security related qualifications - CISSP, CompTIA Security+ or CISAnProfessional accreditation such as Chartered Cyber Security Professional (ChCSP), or the necessary professional experience to attain it within the first year of starting the rolenBachelor's degree or relevant security equivalent qualification/experience
Benefits:
As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive.
The team:
By joining Edgewing, you will have a unique opportunity to help shape the company from the ground up - setting the foundations for generations to come, influencing how we work, and helping us build something world-class together. At Edgewing, we're united by a shared purpose to drive what's next in defence - uniting UK, Italian, and Japanese expertise to shape the future of global defence. With trust at the heart of everything we do, we empower our people to dare to go beyond, bring their best as one, and leave a mark that matters on a truly global mission, making a lasting impact through work that truly matters.
Why BAE Systems?
This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments.
Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role, to allow for meaningful security vetting checks.
Closing Date:
26 th August 2025
We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible.
#LI-KW1
#LI-Onsite
This advertiser has chosen not to accept applicants from your region.
4
Security Controller,Governance,Risk & Assurance
London, London
Amazon
Posted 19 days ago
Job Viewed
Job Description
Description
Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWSu2019 multi-tenant infrastructure
Amazon Security are looking for a security practitioner to manage secure facilities, maintain UK Government security accreditation and build strong relationships with Public Sector account management teams. Working with personnel security, information security and insider risk teams, ensure a security first approach to the delivery of services and solutions to our customers.
Key job responsibilities
Responsible for the operation and strategic development of secure facilities. Maintain and improve policies and procedure to ensure compliance with UK Government security standards. Work with our people to continuously improve our security culture through training and briefings. Give advice and guidance where needed. Oversee security investigations and report to the relevant authority as required. Work with internal and external customers to advise on new and existing contracts from a security perspective. Own and develop regular meetings and reporting to demonstrate compliance to our assurance team and stakeholders
A day in the life
Working with internal teams to guide them through actions to take to have security cleared staff available for their programmes. Review requests for maintenance or carry out changes to facilities.
Oversee day to day running of facilities and operations. Review all incidents raised against facilities, staff and visitors, making improvements and updating policies as necessary. Liaise with government departments to understand and implement latest security initiatives. Work alongside our security teams to improve all aspects of security.
About the team
The Amazon Security team consists of personnel security, information security, insider risk and assurance. They combine to provide secure facilities, security cleared staff who can work in our facilities or our customers to deliver AWS solutions and services.
About Amazon Security
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasnu2019t followed a traditional path, or includes alternative experiences, donu2019t let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazonu2019s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Training & Career Growth
Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, thereu2019s nothing we canu2019t achieve.
Basic Qualifications
Have a minimum of 5 years working in or with UK accredited secure facilities. Have a good understanding of the UK security vetting system and UK Government Classification System.
Experience in maintaining UK Government IPSA and FSC accreditations.
Experience with and knowledge of IT infrastructure (networking, servers, cabling). Building infrastructure/services. Experience in Risk Management - identifying and managing. Creation of policies, procedures and bringing to life. Logical and physical security of systems. Stakeholder management and ability to run meetings. Ability to create management reporting - monthly documents and six page business cases to justify future initiatives. Demonstrate delivery across complex stakeholder arrangements (multiple customers and internal stakeholders)
Preferred Qualifications
Previous Security Controller with minimum 5 years experience and has successfully maintained IPSA and FSC accreditation after audit.
Project Management experience delivering secure IT projects. Established relationships with UK government departments and industry partners. Basic certification in a hyperscale cloud vendors technology - ideally AWS.
Holds a current UK security clearance. 5 years experience working with account management teams, solution architects and professional services. Recognised security certifications
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.
Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWSu2019 multi-tenant infrastructure
Amazon Security are looking for a security practitioner to manage secure facilities, maintain UK Government security accreditation and build strong relationships with Public Sector account management teams. Working with personnel security, information security and insider risk teams, ensure a security first approach to the delivery of services and solutions to our customers.
Key job responsibilities
Responsible for the operation and strategic development of secure facilities. Maintain and improve policies and procedure to ensure compliance with UK Government security standards. Work with our people to continuously improve our security culture through training and briefings. Give advice and guidance where needed. Oversee security investigations and report to the relevant authority as required. Work with internal and external customers to advise on new and existing contracts from a security perspective. Own and develop regular meetings and reporting to demonstrate compliance to our assurance team and stakeholders
A day in the life
Working with internal teams to guide them through actions to take to have security cleared staff available for their programmes. Review requests for maintenance or carry out changes to facilities.
Oversee day to day running of facilities and operations. Review all incidents raised against facilities, staff and visitors, making improvements and updating policies as necessary. Liaise with government departments to understand and implement latest security initiatives. Work alongside our security teams to improve all aspects of security.
About the team
The Amazon Security team consists of personnel security, information security, insider risk and assurance. They combine to provide secure facilities, security cleared staff who can work in our facilities or our customers to deliver AWS solutions and services.
About Amazon Security
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasnu2019t followed a traditional path, or includes alternative experiences, donu2019t let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazonu2019s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Training & Career Growth
Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, thereu2019s nothing we canu2019t achieve.
Basic Qualifications
Have a minimum of 5 years working in or with UK accredited secure facilities. Have a good understanding of the UK security vetting system and UK Government Classification System.
Experience in maintaining UK Government IPSA and FSC accreditations.
Experience with and knowledge of IT infrastructure (networking, servers, cabling). Building infrastructure/services. Experience in Risk Management - identifying and managing. Creation of policies, procedures and bringing to life. Logical and physical security of systems. Stakeholder management and ability to run meetings. Ability to create management reporting - monthly documents and six page business cases to justify future initiatives. Demonstrate delivery across complex stakeholder arrangements (multiple customers and internal stakeholders)
Preferred Qualifications
Previous Security Controller with minimum 5 years experience and has successfully maintained IPSA and FSC accreditation after audit.
Project Management experience delivering secure IT projects. Established relationships with UK government departments and industry partners. Basic certification in a hyperscale cloud vendors technology - ideally AWS.
Holds a current UK security clearance. 5 years experience working with account management teams, solution architects and professional services. Recognised security certifications
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.
This advertiser has chosen not to accept applicants from your region.
5
Security Controller,Governance,Risk & Assurance
London, London
Amazon
Posted 19 days ago
Job Viewed
Job Description
Description
Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWSu2019 multi-tenant infrastructure
Amazon Security are looking for a security practitioner to manage secure facilities, maintain UK Government security accreditation and build strong relationships with Public Sector account management teams. Working with personnel security, information security and insider risk teams, ensure a security first approach to the delivery of services and solutions to our customers.
Key job responsibilities
Responsible for the operation and strategic development of secure facilities. Maintain and improve policies and procedure to ensure compliance with UK Government security standards. Work with our people to continuously improve our security culture through training and briefings. Give advice and guidance where needed. Oversee security investigations and report to the relevant authority as required. Work with internal and external customers to advise on new and existing contracts from a security perspective. Own and develop regular meetings and reporting to demonstrate compliance to our assurance team and stakeholders
A day in the life
Working with internal teams to guide them through actions to take to have security cleared staff available for their programmes. Review requests for maintenance or carry out changes to facilities.
Oversee day to day running of facilities and operations. Review all incidents raised against facilities, staff and visitors, making improvements and updating policies as necessary. Liaise with government departments to understand and implement latest security initiatives. Work alongside our security teams to improve all aspects of security.
About the team
The Amazon Security team consists of personnel security, information security, insider risk and assurance. They combine to provide secure facilities, security cleared staff who can work in our facilities or our customers to deliver AWS solutions and services.
About Amazon Security
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasnu2019t followed a traditional path, or includes alternative experiences, donu2019t let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazonu2019s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Training & Career Growth
Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, thereu2019s nothing we canu2019t achieve.
Basic Qualifications
Have a minimum of 5 years working in or with UK accredited secure facilities. Have a good understanding of the UK security vetting system and UK Government Classification System.
Experience in maintaining UK Government IPSA and FSC accreditations.
Experience with and knowledge of IT infrastructure (networking, servers, cabling). Building infrastructure/services. Experience in Risk Management - identifying and managing. Creation of policies, procedures and bringing to life. Logical and physical security of systems. Stakeholder management and ability to run meetings. Ability to create management reporting - monthly documents and six page business cases to justify future initiatives. Demonstrate delivery across complex stakeholder arrangements (multiple customers and internal stakeholders)
Preferred Qualifications
Previous Security Controller with minimum 5 years experience and has successfully maintained IPSA and FSC accreditation after audit.
Project Management experience delivering secure IT projects. Established relationships with UK government departments and industry partners. Basic certification in a hyperscale cloud vendors technology - ideally AWS.
Holds a current UK security clearance. 5 years experience working with account management teams, solution architects and professional services. Recognised security certifications
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.
Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWSu2019 multi-tenant infrastructure
Amazon Security are looking for a security practitioner to manage secure facilities, maintain UK Government security accreditation and build strong relationships with Public Sector account management teams. Working with personnel security, information security and insider risk teams, ensure a security first approach to the delivery of services and solutions to our customers.
Key job responsibilities
Responsible for the operation and strategic development of secure facilities. Maintain and improve policies and procedure to ensure compliance with UK Government security standards. Work with our people to continuously improve our security culture through training and briefings. Give advice and guidance where needed. Oversee security investigations and report to the relevant authority as required. Work with internal and external customers to advise on new and existing contracts from a security perspective. Own and develop regular meetings and reporting to demonstrate compliance to our assurance team and stakeholders
A day in the life
Working with internal teams to guide them through actions to take to have security cleared staff available for their programmes. Review requests for maintenance or carry out changes to facilities.
Oversee day to day running of facilities and operations. Review all incidents raised against facilities, staff and visitors, making improvements and updating policies as necessary. Liaise with government departments to understand and implement latest security initiatives. Work alongside our security teams to improve all aspects of security.
About the team
The Amazon Security team consists of personnel security, information security, insider risk and assurance. They combine to provide secure facilities, security cleared staff who can work in our facilities or our customers to deliver AWS solutions and services.
About Amazon Security
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasnu2019t followed a traditional path, or includes alternative experiences, donu2019t let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazonu2019s products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Training & Career Growth
Weu2019re continuously raising our performance bar as we strive to become Earthu2019s Best Employer. Thatu2019s why youu2019ll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, thereu2019s nothing we canu2019t achieve.
Basic Qualifications
Have a minimum of 5 years working in or with UK accredited secure facilities. Have a good understanding of the UK security vetting system and UK Government Classification System.
Experience in maintaining UK Government IPSA and FSC accreditations.
Experience with and knowledge of IT infrastructure (networking, servers, cabling). Building infrastructure/services. Experience in Risk Management - identifying and managing. Creation of policies, procedures and bringing to life. Logical and physical security of systems. Stakeholder management and ability to run meetings. Ability to create management reporting - monthly documents and six page business cases to justify future initiatives. Demonstrate delivery across complex stakeholder arrangements (multiple customers and internal stakeholders)
Preferred Qualifications
Previous Security Controller with minimum 5 years experience and has successfully maintained IPSA and FSC accreditation after audit.
Project Management experience delivering secure IT projects. Established relationships with UK government departments and industry partners. Basic certification in a hyperscale cloud vendors technology - ideally AWS.
Holds a current UK security clearance. 5 years experience working with account management teams, solution architects and professional services. Recognised security certifications
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region youu2019re applying in isnu2019t listed, please contact your Recruiting Partner.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Security policy development Jobs in United Kingdom !
6
Security Controller, Governance, Risk & Assurance
London, London
Amazon
Posted 18 days ago
Job Viewed
Job Description
Description
Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWS' multi-tenant infrastructure
Amazon Security are looking for a security practitioner to manage secure facilities, maintain UK Government security accreditation and build strong relationships with Public Sector account management teams. Working with personnel security, information security and insider risk teams, ensure a security first approach to the delivery of services and solutions to our customers.
Key job responsibilities
Responsible for the operation and strategic development of secure facilities. Maintain and improve policies and procedure to ensure compliance with UK Government security standards. Work with our people to continuously improve our security culture through training and briefings. Give advice and guidance where needed. Oversee security investigations and report to the relevant authority as required. Work with internal and external customers to advise on new and existing contracts from a security perspective. Own and develop regular meetings and reporting to demonstrate compliance to our assurance team and stakeholders
A day in the life
Working with internal teams to guide them through actions to take to have security cleared staff available for their programmes. Review requests for maintenance or carry out changes to facilities.
Oversee day to day running of facilities and operations. Review all incidents raised against facilities, staff and visitors, making improvements and updating policies as necessary. Liaise with government departments to understand and implement latest security initiatives. Work alongside our security teams to improve all aspects of security.
About the team
The Amazon Security team consists of personnel security, information security, insider risk and assurance. They combine to provide secure facilities, security cleared staff who can work in our facilities or our customers to deliver AWS solutions and services.
About Amazon Security
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Training & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Basic Qualifications
Have a minimum of 5 years working in or with UK accredited secure facilities. Have a good understanding of the UK security vetting system and UK Government Classification System.
Experience in maintaining UK Government IPSA and FSC accreditations.
Experience with and knowledge of IT infrastructure (networking, servers, cabling). Building infrastructure/services. Experience in Risk Management - identifying and managing. Creation of policies, procedures and bringing to life. Logical and physical security of systems. Stakeholder management and ability to run meetings. Ability to create management reporting - monthly documents and six page business cases to justify future initiatives. Demonstrate delivery across complex stakeholder arrangements (multiple customers and internal stakeholders)
Preferred Qualifications
Previous Security Controller with minimum 5 years experience and has successfully maintained IPSA and FSC accreditation after audit.
Project Management experience delivering secure IT projects. Established relationships with UK government departments and industry partners. Basic certification in a hyperscale cloud vendors technology - ideally AWS.
Holds a current UK security clearance. 5 years experience working with account management teams, solution architects and professional services. Recognised security certifications
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
Amazon Web Services (AWS) is the leading cloud provider, providing virtualized infrastructure, storage, networking, messaging, and many other services to customers all over the world. AWS runs a globally distributed environment, operating at massive levels of scale. Businesses, from start-ups to enterprises, run their operations and applications on AWS' multi-tenant infrastructure
Amazon Security are looking for a security practitioner to manage secure facilities, maintain UK Government security accreditation and build strong relationships with Public Sector account management teams. Working with personnel security, information security and insider risk teams, ensure a security first approach to the delivery of services and solutions to our customers.
Key job responsibilities
Responsible for the operation and strategic development of secure facilities. Maintain and improve policies and procedure to ensure compliance with UK Government security standards. Work with our people to continuously improve our security culture through training and briefings. Give advice and guidance where needed. Oversee security investigations and report to the relevant authority as required. Work with internal and external customers to advise on new and existing contracts from a security perspective. Own and develop regular meetings and reporting to demonstrate compliance to our assurance team and stakeholders
A day in the life
Working with internal teams to guide them through actions to take to have security cleared staff available for their programmes. Review requests for maintenance or carry out changes to facilities.
Oversee day to day running of facilities and operations. Review all incidents raised against facilities, staff and visitors, making improvements and updating policies as necessary. Liaise with government departments to understand and implement latest security initiatives. Work alongside our security teams to improve all aspects of security.
About the team
The Amazon Security team consists of personnel security, information security, insider risk and assurance. They combine to provide secure facilities, security cleared staff who can work in our facilities or our customers to deliver AWS solutions and services.
About Amazon Security
Diverse Experiences
Amazon Security values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why Amazon Security?
At Amazon, security is central to maintaining customer trust and delivering delightful customer experiences. Our organization is responsible for creating and maintaining a high bar for security across all of Amazon's products and services. We offer talented security professionals the chance to accelerate their careers with opportunities to build experience in a wide variety of areas including cloud, devices, retail, entertainment, healthcare, operations, and physical stores.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Training & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, training, and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Basic Qualifications
Have a minimum of 5 years working in or with UK accredited secure facilities. Have a good understanding of the UK security vetting system and UK Government Classification System.
Experience in maintaining UK Government IPSA and FSC accreditations.
Experience with and knowledge of IT infrastructure (networking, servers, cabling). Building infrastructure/services. Experience in Risk Management - identifying and managing. Creation of policies, procedures and bringing to life. Logical and physical security of systems. Stakeholder management and ability to run meetings. Ability to create management reporting - monthly documents and six page business cases to justify future initiatives. Demonstrate delivery across complex stakeholder arrangements (multiple customers and internal stakeholders)
Preferred Qualifications
Previous Security Controller with minimum 5 years experience and has successfully maintained IPSA and FSC accreditation after audit.
Project Management experience delivering secure IT projects. Established relationships with UK government departments and industry partners. Basic certification in a hyperscale cloud vendors technology - ideally AWS.
Holds a current UK security clearance. 5 years experience working with account management teams, solution architects and professional services. Recognised security certifications
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
This advertiser has chosen not to accept applicants from your region.
7
Information Security Manager
London, London
£70000 - £75000 Annually
Context Recruitment
Posted 3 days ago
Job Viewed
Job Description
Information Security Manager
70,000- 75,000 PA
Central London
Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming years.
The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors and internal teams, drive ISO-related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements.
Responsibilities:
- Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the business
- Liaise with external ISO27001 assessors and internal teams to ensure smooth assessments
- Actively contribute to ISO processes, strategies and problem-solving
- Use prior ISO experience to support certification readiness
- Working closely with stakeholders across the business in relation to Information Security Strategy and the creation, delivery and maintenance of a robust Cyber Security roadmap
- Handle varied and complex security challenges, from system reviews to high-level risk assessments
- Work closely with third-party suppliers in relation to audits, forensic analysis and pen testing
Requirements:
- Experience with ISO 27001 is essential
- Strong background in cyber security management
- Proven experience in identifying and mitigating security risks#
- Ability to make actionable recommendations for security improvements
- Experience with GDPR and data protection, together with knowledge of IS standards
- Security assessment frameworks (threat modelling, controls assessment, risk assessment)
- Relevant qualifications; CISSP, CISM or similar would be beneficial.
Based in Central London, 4 days per week onsite initially dropping to 3 once passed probation.
This advertiser has chosen not to accept applicants from your region.
8
Information Security Manager
EC1 London, London
Context Recruitment
Posted 7 days ago
Job Viewed
Job Description
Information Security Manager
70,000- 75,000 PA
Central London
Well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a critical time where they are expanding their technical team with an ambitious growth plan with multiple acquisitions planned over the coming years.
The Information Security Manager will be a crucial component in ensuring the effective management of both the technical cyber security environment and wider information security management piece for the business. This role is responsible for ensuring robust cyber security controls with a strong emphasis on ISO 27001 readiness. You'll liaise with assessors and internal teams, drive ISO-related strategies and use prior experience to ensure certification plans stay on track. Working with external teams to align processes, you'll also oversee InfoSec/Cyber services, conduct risk assessments and recommend security improvements.
Responsibilities:
- Ownership and maintenance of all security related policies and procedures, implementing Security by Design and driving a culture of cyber security awareness in the business
- Liaise with external ISO27001 assessors and internal teams to ensure smooth assessments
- Actively contribute to ISO processes, strategies and problem-solving
- Use prior ISO experience to support certification readiness
- Working closely with stakeholders across the business in relation to Information Security Strategy and the creation, delivery and maintenance of a robust Cyber Security roadmap
- Handle varied and complex security challenges, from system reviews to high-level risk assessments
- Work closely with third-party suppliers in relation to audits, forensic analysis and pen testing
Requirements:
- Experience with ISO 27001 is essential
- Strong background in cyber security management
- Proven experience in identifying and mitigating security risks#
- Ability to make actionable recommendations for security improvements
- Experience with GDPR and data protection, together with knowledge of IS standards
- Security assessment frameworks (threat modelling, controls assessment, risk assessment)
- Relevant qualifications; CISSP, CISM or similar would be beneficial.
Based in Central London, 4 days per week onsite initially dropping to 3 once passed probation.
This advertiser has chosen not to accept applicants from your region.
9