156 Security Specialist jobs in the United Kingdom

Information Security Specialist (Cyber)
Hybrid - Southampton - 60% Time onsite

42,848 - 55,000

Please note for to apply for this role you must use the link included below.

Job summary

Can you assess cyber threats, communicate risk clearly to stakeholders, and support effective protective measures?

Do you bring the perfect balance of technical security expertise and collaborative influence to help shape secure, standards-aligned systems in a high-stakes environment?

Would you like to play a key role in protecting national infrastructure and influencing how security is embedded at a blue light organisation?

Job description

We're looking for a Cyber Security Specialist to help shape and deliver our Information Security strategy across a fast-paced, high-impact organisation.

The Maritime and Coastguard Agency (MCA) is recruiting a Cyber Security Specialist to join our Information Security team and help ensure the security, confidentiality, integrity and availability of information, assets, systems and services across the MCA and its suppliers.

This is an exciting opportunity to play a key role in supporting the delivery of secure services that protect lives, the environment, and the UK's maritime interests.

As a Cyber Security Specialist, you will:

• Embed Secure by Design principles into projects and operational processes, working closely with internal teams and external partners.
• Identify and assess cyber risks , providing clear, contextualised advice to support informed decision-making and build cyber resilience.
• Provide pragmatic and proportionate security guidance across a range of technical and strategic issues, aligning with organisational and national priorities.
• Develop and deliver cyber security training to raise awareness and support a positive security culture across the agency.

You will be an effective communicator, able to build trusted relationships and influence a wide range of stakeholders. You'll combine strong technical knowledge with a collaborative approach, contributing to a secure, resilient operating environment.

This role offers the opportunity to help embed security in an innovative emergency services organisation where your work helps secure critical systems.

Your responsibilities include but are not limited to:

• Providing security consultation on projects, strategic programs, and procurement activities, defining cyber and technical controls inline with MCA policy, and ensuring Secure by Design principles are embedded.
• Providing cyber security consultation within the MCA Change Management process, assessing the potential security impact of proposed changes to digital services and infrastructure to ensure risks are identified, documented, and appropriately mitigated.
• Leading the security assessment and risk evaluation of SaaS and desktop applications requested by the Business, ensuring alignment with MCA's organisational security standards, ISMS suite, risk appetite and data protection regulations.
• Work collaboratively with Technical Architecture colleagues, and third parties, to scope security testing for MCA applications and environments.

About You

You are someone who combines strong technical security expertise with the ability to engage and influence a wide range of stakeholders, both inside and outside government. You understand that good security isn't just about controls-it's about context.

You can assess cyber risks not just technically, but in terms of the real-world consequences and organisational impacts they present. You excel at communicating those risks in clear, non-technical language, helping others understand the implications of their decisions and the level of risk they may be accepting.

You bring experience in evaluating technical designs, applying protective security principles aligned with government standards, and advising on solutions that are both secure and practical. You support the design and implementation of proportionate controls and contribute to a strong, resilient security posture.

With a natural curiosity and a drive to improve, you stay alert to evolving threats and opportunities-drawing on insight from other government departments, industry forums and wider best practice. You're motivated to share knowledge, identify better ways of working, and help shape the future of cyber resilience at the MCA.

You are someone who builds trusted relationships and collaborates effectively, whether you're working with internal delivery teams, external suppliers, or cross-government security communities. You understand the importance of inclusive, clear communication and are confident in your ability to influence at all levels.

Please note for full information on this role, including the Job description, follow this link to the Civil Service Jobs Site - (url removed)>

Contact point for applicants

Email:

Help us to make a world of difference

Urenco UK is looking for a Contract Security Specialist. This job is grade Hay 16.

Based at Capenhurst, The Contract Security Specialist (CSS) is to be a security Subject Matter Expert (SME) for the Capenhurst Site, which is a specialist role. Accountable to the Information and Physical Security Manager (IPSM) for the development and implementation of third party contract security arrangements to support all of the Capenhurst Site business units. The IPSM is accountable to the Security and Safeguards Manager (SSM), who in turn is accountable to the Chief Nuclear Officer (CNO). The primary job responsibility of the CSS is to ensure the regulatory and business security requirements are implemented and maintained for the Capenhurst supply chain; with an emphasis on classified contracts. The job requires an in-depth knowledge of other security disciplines, especially information, physical and personnel security and will require the input into these disciplines in support of the procurement and project teams in the delivery of contract security. The CSS will demonstrate compliance with national and international regulatory requirements, and Urenco processes and procedures. The job holder will work closely with, and provide, specialist advice to support the IPSM to ensure that robust, integrated and consistent contract security measures are applied across the Capenhurst site supply chain. The supply chain includes European companies contracted to Urenco.

What you’ll do:

• The CSS will ensure that Urenco Capenhurst and the supply chain remain compliant with NISR 2003 and meet the Government Functional Standard GovS 007: Security and the ONR Security Assessment Principles (SyAPs).
  • Provide contract security advice to projects teams and Procurement who are undertaking work with the supply chain. To review and provide advice on Information Security clauses within Commercial contracts, ensuring that there is alignment between policy and practice.
  • Responsible for carrying out assurance checks of third party companies who are holding or producing Sensitive Nuclear Information (List ‘N’).
  • To produce and maintain all Contract Security processes, procedures and forms.

What do you need to thrive in this role? (4-6 bullet pointed list covering skills, experience and qualifications)

• A levels or equivalent in a technical or mathematical subject and/or  degree or equivalent in Security. (Essential)
• Possess recognised Information Security qualifications in auditing, understanding of ISO 27001 and the full completion of NPSA training courses. (Essential)
• ISO 27001 or ISO 9001 Auditor (or desire to obtain)
• Detailed understanding of the Contract Security processes and the ability to apply this knowledge when dealing with complex issues.
• Up to date and in-depth understanding of regulatory requirements and an ability to interpret these and produce written guidance.
• ·    Good understanding on how Commercial engage with the supply chain during the tender and award of contract process.

What can you expect from us?

More than just a job, we offer a future. More than just a place to work, we provide an opportunity to prosper.  You will receive:

• Annual leave starting at 25 days, which increases by one day for every two years of service up to a maximum of 30 days. In addition, you will accrue 13 additional days off to be used flexibly. There’s also a newly added scheme for buying and selling holiday, up to 5 days. 
• A diverse range of family friendly policies.
• A generous bonus scheme. 
• A defined contribution pension scheme; with up to 16% employer’s contribution.
• Single private medical and dental cover.
• Flexible benefits package; including life assurance and income protection. In addition, you’ll have an opportunity to purchase additional benefits that suit your lifestyle and take advantage of tax and NI savings.
• Education and training; we take pride in helping people learn and develop by supporting, accelerating and directing your learning. As well as the completion of mandatory health and safety courses, training packages will be offered to meet your specific needs.

We welcome your application before the closing date of 11th July 2025.

Creating a diverse and inclusive workforce

As a truly global company with a presence in the UK, USA, Germany, and the Netherlands, we know that our individual differences make us stronger. Putting people at the heart of our business, we strive to create an open and inclusive workplace that allows every voice to be heard and diversity to thrive. If you require any reasonable adjustments to the recruitment process, please let our talent acquisition team know.

Because together, we are one Urenco. We are enriching the world. And enriching your future.

Information Security Specialist (Cyber)
Hybrid - Southampton - 60% Time onsite

42,848 - 55,000

Please note for to apply for this role you must use the link included below.

Job summary

Can you assess cyber threats, communicate risk clearly to stakeholders, and support effective protective measures?

Do you bring the perfect balance of technical security expertise and collaborative influence to help shape secure, standards-aligned systems in a high-stakes environment?

Would you like to play a key role in protecting national infrastructure and influencing how security is embedded at a blue light organisation?

Job description

We're looking for a Cyber Security Specialist to help shape and deliver our Information Security strategy across a fast-paced, high-impact organisation.

The Maritime and Coastguard Agency (MCA) is recruiting a Cyber Security Specialist to join our Information Security team and help ensure the security, confidentiality, integrity and availability of information, assets, systems and services across the MCA and its suppliers.

This is an exciting opportunity to play a key role in supporting the delivery of secure services that protect lives, the environment, and the UK's maritime interests.

As a Cyber Security Specialist, you will:

• Embed Secure by Design principles into projects and operational processes, working closely with internal teams and external partners.
• Identify and assess cyber risks , providing clear, contextualised advice to support informed decision-making and build cyber resilience.
• Provide pragmatic and proportionate security guidance across a range of technical and strategic issues, aligning with organisational and national priorities.
• Develop and deliver cyber security training to raise awareness and support a positive security culture across the agency.

You will be an effective communicator, able to build trusted relationships and influence a wide range of stakeholders. You'll combine strong technical knowledge with a collaborative approach, contributing to a secure, resilient operating environment.

This role offers the opportunity to help embed security in an innovative emergency services organisation where your work helps secure critical systems.

Your responsibilities include but are not limited to:

• Providing security consultation on projects, strategic programs, and procurement activities, defining cyber and technical controls inline with MCA policy, and ensuring Secure by Design principles are embedded.
• Providing cyber security consultation within the MCA Change Management process, assessing the potential security impact of proposed changes to digital services and infrastructure to ensure risks are identified, documented, and appropriately mitigated.
• Leading the security assessment and risk evaluation of SaaS and desktop applications requested by the Business, ensuring alignment with MCA's organisational security standards, ISMS suite, risk appetite and data protection regulations.
• Work collaboratively with Technical Architecture colleagues, and third parties, to scope security testing for MCA applications and environments.

About You

You are someone who combines strong technical security expertise with the ability to engage and influence a wide range of stakeholders, both inside and outside government. You understand that good security isn't just about controls-it's about context.

You can assess cyber risks not just technically, but in terms of the real-world consequences and organisational impacts they present. You excel at communicating those risks in clear, non-technical language, helping others understand the implications of their decisions and the level of risk they may be accepting.

You bring experience in evaluating technical designs, applying protective security principles aligned with government standards, and advising on solutions that are both secure and practical. You support the design and implementation of proportionate controls and contribute to a strong, resilient security posture.

With a natural curiosity and a drive to improve, you stay alert to evolving threats and opportunities-drawing on insight from other government departments, industry forums and wider best practice. You're motivated to share knowledge, identify better ways of working, and help shape the future of cyber resilience at the MCA.

You are someone who builds trusted relationships and collaborates effectively, whether you're working with internal delivery teams, external suppliers, or cross-government security communities. You understand the importance of inclusive, clear communication and are confident in your ability to influence at all levels.

Please note for full information on this role, including the Job description, follow this link to the Civil Service Jobs Site - (url removed)>

Contact point for applicants

Email:

Information Security Specialist (Cyber)
Hybrid - Southampton - 60% Time onsite

42,848 - 55,000

Please note for to apply for this role you must use the link included below.

Job summary

Can you assess cyber threats, communicate risk clearly to stakeholders, and support effective protective measures?

Do you bring the perfect balance of technical security expertise and collaborative influence to help shape secure, standards-aligned systems in a high-stakes environment?

Would you like to play a key role in protecting national infrastructure and influencing how security is embedded at a blue light organisation?

Job description

We're looking for a Cyber Security Specialist to help shape and deliver our Information Security strategy across a fast-paced, high-impact organisation.

The Maritime and Coastguard Agency (MCA) is recruiting a Cyber Security Specialist to join our Information Security team and help ensure the security, confidentiality, integrity and availability of information, assets, systems and services across the MCA and its suppliers.

This is an exciting opportunity to play a key role in supporting the delivery of secure services that protect lives, the environment, and the UK's maritime interests.

As a Cyber Security Specialist, you will:

• Embed Secure by Design principles into projects and operational processes, working closely with internal teams and external partners.
• Identify and assess cyber risks , providing clear, contextualised advice to support informed decision-making and build cyber resilience.
• Provide pragmatic and proportionate security guidance across a range of technical and strategic issues, aligning with organisational and national priorities.
• Develop and deliver cyber security training to raise awareness and support a positive security culture across the agency.

You will be an effective communicator, able to build trusted relationships and influence a wide range of stakeholders. You'll combine strong technical knowledge with a collaborative approach, contributing to a secure, resilient operating environment.

This role offers the opportunity to help embed security in an innovative emergency services organisation where your work helps secure critical systems.

Your responsibilities include but are not limited to:

• Providing security consultation on projects, strategic programs, and procurement activities, defining cyber and technical controls inline with MCA policy, and ensuring Secure by Design principles are embedded.
• Providing cyber security consultation within the MCA Change Management process, assessing the potential security impact of proposed changes to digital services and infrastructure to ensure risks are identified, documented, and appropriately mitigated.
• Leading the security assessment and risk evaluation of SaaS and desktop applications requested by the Business, ensuring alignment with MCA's organisational security standards, ISMS suite, risk appetite and data protection regulations.
• Work collaboratively with Technical Architecture colleagues, and third parties, to scope security testing for MCA applications and environments.

About You

You are someone who combines strong technical security expertise with the ability to engage and influence a wide range of stakeholders, both inside and outside government. You understand that good security isn't just about controls-it's about context.

You can assess cyber risks not just technically, but in terms of the real-world consequences and organisational impacts they present. You excel at communicating those risks in clear, non-technical language, helping others understand the implications of their decisions and the level of risk they may be accepting.

You bring experience in evaluating technical designs, applying protective security principles aligned with government standards, and advising on solutions that are both secure and practical. You support the design and implementation of proportionate controls and contribute to a strong, resilient security posture.

With a natural curiosity and a drive to improve, you stay alert to evolving threats and opportunities-drawing on insight from other government departments, industry forums and wider best practice. You're motivated to share knowledge, identify better ways of working, and help shape the future of cyber resilience at the MCA.

You are someone who builds trusted relationships and collaborates effectively, whether you're working with internal delivery teams, external suppliers, or cross-government security communities. You understand the importance of inclusive, clear communication and are confident in your ability to influence at all levels.

Please note for full information on this role, including the Job description, follow this link to the Civil Service Jobs Site - (url removed)>

Contact point for applicants

Email:

Help us to make a world of difference

Urenco UK is looking for a Contract Security Specialist. This job is grade Hay 16.

Based at Capenhurst, The Contract Security Specialist (CSS) is to be a security Subject Matter Expert (SME) for the Capenhurst Site, which is a specialist role. Accountable to the Information and Physical Security Manager (IPSM) for the development and implementation of third part.

WHJS1_UKTJ

We utilise our Preferred Agency Supplier Partners as and when we require additional support

At Weetabix, we believe that diverse teams drive better ideas, stronger decisions, and a more inclusive workplace for everyone . Were committed to building an organisation where people from all walks of life feel they belongwhere different voices, experiences, and backgrounds are valued and respected.

We're al.

WHJS1_UKTJ

Make The Connection.

Vix Technology, a global leader in automatic fare collection, transit information, and transit analytics solutions, is seeking a highly skilled and experienced Cloud Engineer. With a presence in over 200 city and regional transport authorities worldwide, Vix has been at the forefront of transforming fare collection for more than 35 years. At Vix, we are committed to solving problems and delivering innovative solutions that are revolutionizing the world of public transit.

We're on the hunt for a motivated, engaged Cyber Security Specialist to support, maintain and improve/contribute to the management of real time security operations, including real time analysis and ongoing security management across Vix’s application suite. This opportunity will suit someone with similarly aligned experience, working closely with our Platforms and Engineering streams, with excellent collaboration and communications skills. This role is based in our Manchester office, where we prioritise in-person collaboration and teamwork. The role is on-site, Monday to Friday.

We regret that this position is only available for UK citizens/Residents with indefinite leave to remain in the UK, with current full time work rights for the United Kingdom, currently residing in the UK. This position will be located in Manchester, UK.

Requirements

What will you be responsible for?

• Management of vulnerabilities
• Analysis and development of security requirements, including their design and implementation
• Conduct forensic analysis and post-mortem reviews of security incidents
• Assist in the security certification and accreditation processes
• Engagements in engineering activities
• Enhance consistency and transparency in IT Security risk management efforts
• Respond to inquiries from internal and external audits and assessments
• Raise awareness regarding relevant regulatory standards, upstream risks, and industry best practices
• Inform our security engineers about emerging vulnerabilities and threats that need attention in our environments, advising on the appropriate prioritization for remediation.
• Facilitate and execute scanning procedures and utilize various tools
• Continuously analyze CI vulnerability data
• Forge strong partnerships with engineers to ensure a supportive platform for achieving our security objectives
• Engage with Vix Customers to provide guidance on security-related issues

What does our ideal candidate look like?

• Willing and available to work on-site in our Manchester offices, Monday to Friday, full time.

• Relevant certifications/qualifications and/or significant commercial experience within the cybersecurity discipline
• In-depth knowledge and technical proficiency in operational delivery within complex, dispersed on and off-prem infrastructure, including cloud and embedded systems
• Interest and ability to impart knowledge, support and mentor the whole business in the cybersecurity space, including knowledge transfer, best practice and ongoing training and support
• Pragmatic and personable, with great communication skills and ability to build rapport quickly.

Benefits

What’s in it for you?

Besides the opportunity to work for a global company that is customer and people focused, we offer:

• A focus on learning and development
• A great team of like-minded professionals
• Private Healthcare
• Income Protection Scheme
• Pension
• Group Life Assurance
• Cycle to Work Scheme
• Electric Car Benefit Scheme
• Employee Assistance Programme
• Eyecare and Spectacle Vouchers

Sounds good? Then apply now. Get on board today!

Add your resume and anything else to showcase why you would be a great addition to our team. We regret that this position is only available for UK&I citizens/Residents with indefinite leave to remain in the UK&I, with current full time work rights for the United Kingdom, currently residing in the UK.

No recruitment agencies, please! We won’t accept any introductions.

Vix Technology is an Equal Opportunity Employer and prohibits discrimination and harassment of any kind. We are committed to the principle of equal employment opportunity for all people and want to build a workforce as diverse as the community we serve. We aim to have a work environment where everyone feels included and everyone can realise their full potential.

Information Security Third-Party Risk Specialist

Hybrid - Southampton - 60% Time on site

42,848 - 55,000

Job summary

Are you passionate about information security and confident assessing and managing supply chain risks?

Do you have experience working with third-party suppliers to embed secure-by-design principles and improve an organisation's security posture?

Would you like to play a key role in protecting national infrastructure and influencing how security is embedded across critical digital services?

Job description

As a Third-Party Information Security Specialist, you will play a vital role within the Maritime and Coastguard Agency's Information Security team, helping to protect our people, systems, and data across both internal operations and external suppliers.

Your work will directly support MCA's broader Information Security strategy, helping to embed best practices and risk awareness throughout the organisation and its supply chain. You'll influence how security requirements are considered from the earliest design stages of projects through to operational delivery and the continued lifecycle of a service.

You'll be responsible for ensuring that third-party suppliers-both current and prospective-are assessed against our Secure by Design principles and meet our security expectations. Acting as a trusted advisor, you'll proactively identify and manage supply chain risks, contribute to strategic security planning, and embed information security into the design of projects and operational processes from the outset. Your work will help strengthen MCA's resilience, balancing practical delivery needs with long-term national security priorities.

This role offers the opportunity to support the UK's maritime and emergency services by ensuring new and innovative technology is delivered in-line with Secure by Design principles.

Your responsibilities include but are not limited to:

Providing security consultation on projects, strategic programs, and procurement activities, ensuring suppliers security posture is compliant with MCA policy and Secure by Design principles.

Supporting contract management by advising on appropriate Government Security Schedules, reviewing supplier Security Management Plans (SMPs), and conducting annual security reviews to maintain compliance with MCA requirements.

Leading the onboarding and risk assessment of existing MCA suppliers into the organisation's chosen Third-Party Risk Management platform, with prioritisation based on supplier criticality and risk exposure.

Attendance at supplier review boards and governance forums to ensure security recommendations are tracked, addressed, and implemented, and to provide subject matter expertise on supplier security posture and ongoing risk mitigation.

For further information about the role and responsibilities, please see the attached role profile.

About You

You'll have a strong grounding in information security, ideally supported by certifications such as CISM, CISSP, CISA, or equivalent experience. You're someone who can apply core security principles to support the delivery of secure systems and services, and who brings a practical, risk-based mindset to identifying and mitigating third-party and organisational security risks.

You'll have experience assessing supplier security, applying government protective security standards across digital and physical environments, and supporting the design of proportionate controls. You're comfortable analysing threat intelligence and using those insights to inform decision-making, incident response, and ongoing risk management activities.

You're confident engaging with a wide range of stakeholders-from technical teams to senior leaders-and are able to clearly communicate evidence-based risk decisions in a way that supports understanding and action. You bring strong attention to detail, a calm and assertive approach to managing difficult conversations, and a collaborative mindset that helps build trust and shared purpose.

You have a broad understanding of security frameworks and governance, and while you may not specialise in every technical detail, you take a holistic view-balancing operational needs with strategic objectives to help deliver secure, resilient outcomes.

Please note for full information on this role, including the Job description, follow this link to the Civil Service Jobs Site - (url removed)>

Contact point for applicants

Greg Swayne

Email: