7 Specialist Security jobs in London
Product Cyber Security Specialist
New Malden, London
Northrop Grumman
Posted 24 days ago
Job Viewed
Job Description
UK CITIZENSHIP REQUIRED FOR THIS POSITION: Yes
RELOCATION ASSISTANCE: No relocation assistance available
CLEARANCE TYPE: UK-Security Check (SC)
TRAVEL: Yes, 10% of the Time
**Define Possible at Northrop Grumman UK**
At Northrop Grumman UK, our mission is to solve the most complex challenges by shaping the technology and solutions of tomorrow. We call it Defining Possible.
This mind-set goes beyond our customer solutions; it's the foundation for your career development and the impact we have within the community. So, what's your possible?
**Opportunity:**
Salary: £60,000 plus benefits
This is more than just a job; it's a mission.
As a Product Cyber Security (PCS) Specialist, you will be responsible for engineering lifecycle support, providing security subject matter expertise to platform delivery teams, and reviewing their functional activities. You will be instrumental in creating and automating specific cyber security artefacts of assurance. You will be reporting to the PCS Engineering Manager and acting as a linchpin in the PCS team. You will have the chance to work on utilising advanced technologies, particularly in automation, AI, and decision support, to enhance our product cyber security capabilities. You'll be at the forefront of helping to make our products as secure as they possibly can be.
Our UK Defence business is a Sovereign software and systems centre of excellence. In addition to developing and supporting UK wide and internationally deployed multi-domain command and control systems, our work is critical to the modern backbone of the Royal Navy. We pioneer - with fierce curiosity, dedication, and innovation, we seek to solve the world's most challenging problems.
**Responsibilities:**
+ Growing the automation of product cyber security risk and vulnerability assessment outputs, including the use of Artificial Intelligence and other applicable approaches.
+ Providing cyber security expertise throughout the project product systems engineering lifecycle.
+ Accountable for the integrity of platform product cyber security risk management artefacts and delivering timely, proportionate advice to project product delivery teams.
+ Planning Product Cyber Security activities and contributing towards the provision of task-hour estimates.
+ Supporting project and security leadership in the proportionate delivery of product cyber security.
+ Assisting leadership in implementing an efficient and cost-effective product cyber security delivery capability, including professional SQEP certifications.
**Benefits:**
We can offer you a range of flexible and hybrid working options to suit you, including optional compressed working schedule with every other Friday off. Our benefits including private health care, career development opportunities and performance bonuses. For a comprehensive list of benefits, speak to our recruitment team.
**We are looking for:**
+ A strong background in cyber security and/or engineering capability, with a degree in Engineering, Computer Science, Cyber Security, or an equivalent technician qualification.
+ A keen interest in cyber security for industrial control systems.
+ Experience with cyber and engineering design data processing.
+ Proficiency in Excel and analytics, coupled with tooling experience including Python and SQL.
+ Experience with Power BI or similar business intelligence tooling.
+ Industrial Control Systems (ICS) awareness.
+ Data science expertise.
+ Experience with AI, Generative AI, and LLM tooling.
+ Secure by Design to UK MOD standards, including DEFSTAN 05-139 and cyber security assessment DEFSTAN 05-138.
+ Knowledge of NIST CSF.
+ Familiarity with ISA 62443.
+ Threat modelling experience, including Mitre ATT&CK, DEF3ND, and EMB3D.
+ OT/ICS Certification and/or experience.
+ Cyber Security Risk Management.
+ Vulnerability / Patch / Update Management.
**Security clearance:**
You must be able to gain and maintain the level of UK Government security clearance in line with the job role (SC), noting that the nature of our products also requires that you are of sole UK nationality. Our requirement team is on hand to answer any questions and we will guide you through the process: .
**Why join us?**
+ **Be part of our global team of 100,000 colleagues** - The possibilities for your future career are only limited by your drive. Whether you're looking for a hands-on internship or your next leadership position, we have career opportunities across the world. Northrop Grumman continues to expand and broaden our presence in global markets and strengthen our partnerships with local industry.
+ **A mission to believe in -** Every day we contribute to building a more secure and connected world, expanding our reach from land, sea, and air to space and cyberspace. From engineering data and intelligence solutions, to developing maritime navigation and control systems and innovating command and control systems for the UK and NATO, what we do together matters.
+ **A place to belong and thrive -** Every voice matters at our table meaning you can bring your authentic self to work. From our Employee Resource Groups backed by thousands of employees, to sponsoring Cheltenham Pride and our partnerships with Association For Black and Minority Ethnic Engineers, Forces Transition Group, Mind, and Women in Defence - we are passionate about growing and supporting our inclusive community where everyone can belong
+ **Your career, your way** - Shape your career journey with diverse roles, mentorship, and development opportunities that fuel your curiosity, channel your expertise and nurture your passion. Looking for flexibility? Balance your professional career with your personal life, health and wellbeing benefits, discount schemes, pension benefits and investment in your future development. Speak to our team to find the balance that's right for you.
**Ready to apply?**
**Yes** - Submit your application online. Your application will be reviewed by our team and we will be in touch.
**Possibly, I'd like to find out more about this role** - Reach out to our team for more information and support: .
**No, I don't think this role is right for me** - Our extensive UK growth means we have exciting, new opportunities opening all the time. Speak to our team to discuss your career goals.
Northrop Grumman is committed to hiring and retaining a diverse workforce, and encourages individuals from all backgrounds and all abilities to apply and consider becoming a part of our diverse and inclusive workforce.
RELOCATION ASSISTANCE: No relocation assistance available
CLEARANCE TYPE: UK-Security Check (SC)
TRAVEL: Yes, 10% of the Time
**Define Possible at Northrop Grumman UK**
At Northrop Grumman UK, our mission is to solve the most complex challenges by shaping the technology and solutions of tomorrow. We call it Defining Possible.
This mind-set goes beyond our customer solutions; it's the foundation for your career development and the impact we have within the community. So, what's your possible?
**Opportunity:**
Salary: £60,000 plus benefits
This is more than just a job; it's a mission.
As a Product Cyber Security (PCS) Specialist, you will be responsible for engineering lifecycle support, providing security subject matter expertise to platform delivery teams, and reviewing their functional activities. You will be instrumental in creating and automating specific cyber security artefacts of assurance. You will be reporting to the PCS Engineering Manager and acting as a linchpin in the PCS team. You will have the chance to work on utilising advanced technologies, particularly in automation, AI, and decision support, to enhance our product cyber security capabilities. You'll be at the forefront of helping to make our products as secure as they possibly can be.
Our UK Defence business is a Sovereign software and systems centre of excellence. In addition to developing and supporting UK wide and internationally deployed multi-domain command and control systems, our work is critical to the modern backbone of the Royal Navy. We pioneer - with fierce curiosity, dedication, and innovation, we seek to solve the world's most challenging problems.
**Responsibilities:**
+ Growing the automation of product cyber security risk and vulnerability assessment outputs, including the use of Artificial Intelligence and other applicable approaches.
+ Providing cyber security expertise throughout the project product systems engineering lifecycle.
+ Accountable for the integrity of platform product cyber security risk management artefacts and delivering timely, proportionate advice to project product delivery teams.
+ Planning Product Cyber Security activities and contributing towards the provision of task-hour estimates.
+ Supporting project and security leadership in the proportionate delivery of product cyber security.
+ Assisting leadership in implementing an efficient and cost-effective product cyber security delivery capability, including professional SQEP certifications.
**Benefits:**
We can offer you a range of flexible and hybrid working options to suit you, including optional compressed working schedule with every other Friday off. Our benefits including private health care, career development opportunities and performance bonuses. For a comprehensive list of benefits, speak to our recruitment team.
**We are looking for:**
+ A strong background in cyber security and/or engineering capability, with a degree in Engineering, Computer Science, Cyber Security, or an equivalent technician qualification.
+ A keen interest in cyber security for industrial control systems.
+ Experience with cyber and engineering design data processing.
+ Proficiency in Excel and analytics, coupled with tooling experience including Python and SQL.
+ Experience with Power BI or similar business intelligence tooling.
+ Industrial Control Systems (ICS) awareness.
+ Data science expertise.
+ Experience with AI, Generative AI, and LLM tooling.
+ Secure by Design to UK MOD standards, including DEFSTAN 05-139 and cyber security assessment DEFSTAN 05-138.
+ Knowledge of NIST CSF.
+ Familiarity with ISA 62443.
+ Threat modelling experience, including Mitre ATT&CK, DEF3ND, and EMB3D.
+ OT/ICS Certification and/or experience.
+ Cyber Security Risk Management.
+ Vulnerability / Patch / Update Management.
**Security clearance:**
You must be able to gain and maintain the level of UK Government security clearance in line with the job role (SC), noting that the nature of our products also requires that you are of sole UK nationality. Our requirement team is on hand to answer any questions and we will guide you through the process: .
**Why join us?**
+ **Be part of our global team of 100,000 colleagues** - The possibilities for your future career are only limited by your drive. Whether you're looking for a hands-on internship or your next leadership position, we have career opportunities across the world. Northrop Grumman continues to expand and broaden our presence in global markets and strengthen our partnerships with local industry.
+ **A mission to believe in -** Every day we contribute to building a more secure and connected world, expanding our reach from land, sea, and air to space and cyberspace. From engineering data and intelligence solutions, to developing maritime navigation and control systems and innovating command and control systems for the UK and NATO, what we do together matters.
+ **A place to belong and thrive -** Every voice matters at our table meaning you can bring your authentic self to work. From our Employee Resource Groups backed by thousands of employees, to sponsoring Cheltenham Pride and our partnerships with Association For Black and Minority Ethnic Engineers, Forces Transition Group, Mind, and Women in Defence - we are passionate about growing and supporting our inclusive community where everyone can belong
+ **Your career, your way** - Shape your career journey with diverse roles, mentorship, and development opportunities that fuel your curiosity, channel your expertise and nurture your passion. Looking for flexibility? Balance your professional career with your personal life, health and wellbeing benefits, discount schemes, pension benefits and investment in your future development. Speak to our team to find the balance that's right for you.
**Ready to apply?**
**Yes** - Submit your application online. Your application will be reviewed by our team and we will be in touch.
**Possibly, I'd like to find out more about this role** - Reach out to our team for more information and support: .
**No, I don't think this role is right for me** - Our extensive UK growth means we have exciting, new opportunities opening all the time. Speak to our team to discuss your career goals.
Northrop Grumman is committed to hiring and retaining a diverse workforce, and encourages individuals from all backgrounds and all abilities to apply and consider becoming a part of our diverse and inclusive workforce.
This advertiser has chosen not to accept applicants from your region.
0
Security Vetting Specialist
London, London
Hays
Posted 3 days ago
Job Viewed
Job Description
About the role
As a Security Vetting Specialist supports the Senior Vetting Manager in delivering a global project to align local vetting processes with Client’s Global Vetting Policy and relevant regulations, including NIS2. This role involves managing vendor relationships, overseeing the onboarding of new markets, and serving as a subject matter expert to advise internal stakeholders on vetting-related matters.
Tell me more, tell me more…
Our client is currently looking for a recruit in joining their current team, below are the job details for your reference:
You can also ask our friendly recruitment team for any questions you may have about the role, between 09.00am till 17.00pm Monday to Friday.
Shifts: Monday to Friday (37.5 hours)
Roles and Responsibilities:
- Collaborate with local markets to review vetting operations, assess compliance with the Global Vetting Standard, and identify potential risks.
- Partner with HR, Legal, Compliance, and Security teams to ensure alignment of local processes with global standards and NIS2 regulatory requirements.
- Support the Senior Vetting Manager in preparing materials and insights for the Global Vetting Steering Committee.
- Coordinate the onboarding of new entities with the global vetting vendor, ensuring adherence to legal, regulatory, and corporate requirements.
- Manage due diligence requests with external service providers.
- Identify and escalate potential security risks or integrity concerns related to the vetting of prospective and current employees.
- Safeguard sensitive personal information, maintaining confidentiality throughout the vetting and due diligence process.
- Stay informed of evolving legislation, regulatory developments, and industry best practices concerning personnel security and data protection
Other stuff we’re potentially looking for:
- Minimum of 5 years of experience in security vetting or a related discipline.
- Proven track record in managing global projects and engaging with cross-functional stakeholders at various levels.
- Strong analytical and investigative capabilities.
- In-depth knowledge of security clearance processes, background checks, and relevant regulatory frameworks.
- Solid understanding of data privacy laws (e.g., GDPR, FCRA) and ethical vetting practices.
- Excellent verbal and written communication skills.
- High level of discretion and integrity in handling sensitive information.
What’s in it for you? –
Our client loves to reward their people for doing a great job.
- This is Until March 2026 contract.
- This role provides a remote working access with Occasional travel in Paddington
Next Steps
Once you’ve applied, one of our friendly recruitment consultants will give you a call and talk you through the screening process.
If your application is successful, you’ll be involved in a live virtual interview with one of our client’s hiring managers to get to know you better.
We look forward to speaking to you!
This advertiser has chosen not to accept applicants from your region.
1
Security Operations Specialist
London, London
Lawrence Harvey
Posted 3 days ago
Job Viewed
Job Description
Senior SecOps Specialist
Location – Fully Remote
Salary - £80-90k + Bonus + Benefits
Currently working with a UK HealthTech firm who are in the process of building out their Cyber Defence capability and looking to bring in a cloud-based Security Operations Specialist.
This is a wide ranging role where you’ll be responsible for both Engineering and Analysis; monitoring and responding to incidents whilst also developing new detection rules and enhancing their monitoring infrastructure and tooling.
This is an incredible opportunity for an experienced SecOps specialist with experience of both SecOps Analysis and Engineering to join a growing yet established firm at a crucial point as they completely build out their Information and Cyber Security capability. Whilst they have the fundamentals in place, this is a relatively greenfield SOC buildout, where you will work alongside the SOC Manager to shape their SOC monitoring, detection and response function.
Key Responsibilities:
- Act as a lead and technical escalation point on the most complex incidents and investigations.
- Develop and engineer new detection rules, automating monotonous tasks where possible.
- Proactively research emerging and potential threat actors as a way of developing rules to safeguard against potential future threats.
- Mentor and train junior team members through complex incident response investigations.
Key Requirements:
- Significant experience working in a SOC environment (5 years minimum) , dealing with and responding to escalated and most high profile incidents.
- Comprehensive knowledge and experience utilising/fine-tuning the Microsoft Security stack – Defender, Sentinel, KQL, etc.
- Experience working in hybrid-cloud SOC environments – Azure/AWS preferably.
- Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering and Automation.
If you’re an experienced SecOps Specialist, looking to shape how one of the most innovative HealthTech firms build out their cyber defence capability and leave a lasting impact on one of the most reputable organisations whilst working alongside a team of genuine Cyber Security SMEs, click the to apply or get in touch directly –
This advertiser has chosen not to accept applicants from your region.
2
AWS Security Assurance Services, Delivery Specialist, AWS Security Assurance Services
London, London
Amazon
Posted 5 days ago
Job Viewed
Job Description
Description
The Global Services, Security (GSS) team, a part of Amazon Web Services, leverages the expertise and ingenuity of our builders to establish scalable security solutions for both internal and external customers that drive business outcomes. Our goal of securing the world's workloads and building a brighter future for humanity requires us to focus on reliable delivery of bar raising security outcomes and investment in security mechanisms and automation on behalf of our customers.
The AWS Security Assurance Services (AWS SAS) team works with our largest enterprise customers to address their security and compliance requirements using cloud native technology, while adopting scalable security and risk control measures across their infrastructure. Are you excited by the possibility of using automation and event driven computing to achieve continuous compliance? Do you want to dive deeper into cloud technology, while redefining traditional security measures? Are you interested in applying your assessment and advisory skills to workloads that use emerging technologies in new and interesting ways?
At AWS SAS, we are hiring technical security experts with a background in security assessments to lead a variety of customer focused engagements that include architecture and compliance guidance. You will also work with industry and standards bodies to further the creation of security guidance that leverages the advantages of cloud technology. This role will specialize in assessments and advisory work for well-known security frameworks, standards and regulations as well as risk management methodologies.
This is a customer facing role where success is measured by developing a high performing team of consultants who help enable our customers in moving their workloads and regulated data into the cloud by addressing specific risk, regulatory, and compliance requirements. You will be expected to also work in a Business Development capacity, assisting our AWS sellers to position the value and applicability of your team into customer projects and long-term relationships.
We are looking for an innovative security and compliance leader who enjoys establishing strategy and then drives consensus across the team to achieve a vision.
Key job responsibilities
Expertise - Lead teams to help partners and customers understand the opportunities for cloud technology to handle security and compliance requirements in key market verticals and regulated industries, such as financial services, healthcare, life sciences, and energy.
Solutions - Scope and lead on-site engagements with partners and customers. This includes leading pre-sales on-site visits, understanding customer security and compliance requirements, and proposing and delivering packaged offerings or custom solution engagements.
Delivery - Engagements include short on-site projects leading to architecture or compliance roadmaps, architecture guidance, gap assessments, etc. Engagements will include assessments and reporting on various aspects of a customer's security and compliance posture.
Insights - Collaborate with AWS engineering, support and business teams to convey partner and customer feedback as input to AWS technology roadmaps.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS?
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Basic Qualifications
- 8+ years of experience in an internal or external IT security audit or compliance assessment role.
- Candidate must possess at least one of the following security certifications CISSP, CISM, PCI-QSA certifications, or Certified ISO27001 Lead Implementer
- 8+ years of experience assessing/auditing customers on meeting PCI DSS, ISO 27001, HIPAA, HITRUST, FedRAMP, GDPR, FISMA or NIST/DoD standards.
- Bachelor's degree in Computer Science, Information Systems Management, Information Security, Business or equivalent experience.
Preferred Qualifications
- Experience building common compliance framework controls as well as mapping between different compliance requirements
- Experience automating assessments in enterprise or cloud environments
- Experience assessing security controls for enterprise applications.
- Demonstrated breadth of security expertise in various sub domains such as encryption, identity, incident response, etc.
- Hands-on technical expertise in technology automation, implementation, integration, and/or deployment
- Demonstrated ability to think strategically about business, product, and technical challenges
- Experience with risk assessment methodologies and risk reporting for executive leadership
- Proven background in clearly writing complex technical documents that can be presented across a varied enterprise corporate audience
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
The Global Services, Security (GSS) team, a part of Amazon Web Services, leverages the expertise and ingenuity of our builders to establish scalable security solutions for both internal and external customers that drive business outcomes. Our goal of securing the world's workloads and building a brighter future for humanity requires us to focus on reliable delivery of bar raising security outcomes and investment in security mechanisms and automation on behalf of our customers.
The AWS Security Assurance Services (AWS SAS) team works with our largest enterprise customers to address their security and compliance requirements using cloud native technology, while adopting scalable security and risk control measures across their infrastructure. Are you excited by the possibility of using automation and event driven computing to achieve continuous compliance? Do you want to dive deeper into cloud technology, while redefining traditional security measures? Are you interested in applying your assessment and advisory skills to workloads that use emerging technologies in new and interesting ways?
At AWS SAS, we are hiring technical security experts with a background in security assessments to lead a variety of customer focused engagements that include architecture and compliance guidance. You will also work with industry and standards bodies to further the creation of security guidance that leverages the advantages of cloud technology. This role will specialize in assessments and advisory work for well-known security frameworks, standards and regulations as well as risk management methodologies.
This is a customer facing role where success is measured by developing a high performing team of consultants who help enable our customers in moving their workloads and regulated data into the cloud by addressing specific risk, regulatory, and compliance requirements. You will be expected to also work in a Business Development capacity, assisting our AWS sellers to position the value and applicability of your team into customer projects and long-term relationships.
We are looking for an innovative security and compliance leader who enjoys establishing strategy and then drives consensus across the team to achieve a vision.
Key job responsibilities
Expertise - Lead teams to help partners and customers understand the opportunities for cloud technology to handle security and compliance requirements in key market verticals and regulated industries, such as financial services, healthcare, life sciences, and energy.
Solutions - Scope and lead on-site engagements with partners and customers. This includes leading pre-sales on-site visits, understanding customer security and compliance requirements, and proposing and delivering packaged offerings or custom solution engagements.
Delivery - Engagements include short on-site projects leading to architecture or compliance roadmaps, architecture guidance, gap assessments, etc. Engagements will include assessments and reporting on various aspects of a customer's security and compliance posture.
Insights - Collaborate with AWS engineering, support and business teams to convey partner and customer feedback as input to AWS technology roadmaps.
About the team
Diverse Experiences
AWS values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn't followed a traditional path, or includes alternative experiences, don't let it stop you from applying.
Why AWS?
Amazon Web Services (AWS) is the world's most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating - that's why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses.
Inclusive Team Culture
AWS values curiosity and connection. Our employee-led and company-sponsored affinity groups promote inclusion and empower our people to take pride in what makes us unique. Our inclusion events foster stronger, more collaborative teams. Our continual innovation is fueled by the bold ideas, fresh perspectives, and passionate voices our teams bring to everything we do.
Mentorship & Career Growth
We're continuously raising our performance bar as we strive to become Earth's Best Employer. That's why you'll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional.
Work/Life Balance
We value work-life harmony. Achieving success at work should never come at the expense of sacrifices at home, which is why we strive for flexibility as part of our working culture. When we feel supported in the workplace and at home, there's nothing we can't achieve.
Basic Qualifications
- 8+ years of experience in an internal or external IT security audit or compliance assessment role.
- Candidate must possess at least one of the following security certifications CISSP, CISM, PCI-QSA certifications, or Certified ISO27001 Lead Implementer
- 8+ years of experience assessing/auditing customers on meeting PCI DSS, ISO 27001, HIPAA, HITRUST, FedRAMP, GDPR, FISMA or NIST/DoD standards.
- Bachelor's degree in Computer Science, Information Systems Management, Information Security, Business or equivalent experience.
Preferred Qualifications
- Experience building common compliance framework controls as well as mapping between different compliance requirements
- Experience automating assessments in enterprise or cloud environments
- Experience assessing security controls for enterprise applications.
- Demonstrated breadth of security expertise in various sub domains such as encryption, identity, incident response, etc.
- Hands-on technical expertise in technology automation, implementation, integration, and/or deployment
- Demonstrated ability to think strategically about business, product, and technical challenges
- Experience with risk assessment methodologies and risk reporting for executive leadership
- Proven background in clearly writing complex technical documents that can be presented across a varied enterprise corporate audience
Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice ( ) to know more about how we collect, use and transfer the personal data of our candidates.
Amazon is an equal opportunity employer and does not discriminate on the basis of protected veteran status, disability, or other legally protected status.
Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit for more information. If the country/region you're applying in isn't listed, please contact your Recruiting Partner.
This advertiser has chosen not to accept applicants from your region.
3
Senior Security Consultant (AI Specialist)
London, London
NTT America, Inc.
Posted 6 days ago
Job Viewed
Job Description
**The team you'll be working with:**
**Job Title: Senior Security Consultant (Architecture - AI Specialist)**
**Overview:**
We are seeking a highly skilled and experienced Security Architect with a strong specialisation in Artificial Intelligence (AI) security. The ideal candidate will be responsible for designing, implementing, and maintaining robust security architectures for AI-powered applications and infrastructure. You will play a critical role in identifying and mitigating security risks associated with AI, ensuring data privacy, and promoting ethical AI practices. This role requires a deep understanding of both traditional security principles and the unique challenges posed by AI technologies.
**What you'll be doing:**
**What you'll be doing:**
+ **AI Security Architecture:**
+ Design and implement secure architectures for AI/ML models, data pipelines, and related infrastructure.
+ Develop security policies and procedures specific to AI systems.
+ Evaluate and select security tools and technologies for AI environments.
+ **Risk Assessment and Management:**
+ Conduct thorough risk assessments to identify vulnerabilities and threats specific to AI systems.
+ Develop and implement risk mitigation strategies for AI-related security issues, including adversarial attacks, data poisoning, and model bias.
+ Monitor and report on AI security risks and compliance.
+ **Data Security and Privacy:**
+ Ensure the security and privacy of sensitive data used in AI applications.
+ Implement data security controls and encryption techniques for AI datasets.
+ Ensure compliance with relevant data privacy regulations (e.g., GDPR, CCPA).
+ **Ethical AI:**
+ Develop and implement policies and procedures for ethical AI development and deployment.
+ Promote awareness of ethical considerations related to AI, including bias, fairness, and transparency.
+ Assist in the development of AI governance frameworks.
+ **Security Best Practices:**
+ Provide expert advice and guidance on security best practices for AI development and deployment.
+ Stay up to date on the latest AI security threats and vulnerabilities.
+ Conduct security audits and penetration testing of AI systems.
+ **Collaboration:**
+ Collaborate with data scientists, AI engineers, and other stakeholders to ensure security is integrated throughout the AI lifecycle.
+ Communicate security risks and recommendations effectively to both technical and non-technical audiences.
**What experience you'll bring:**
**What you'll bring:**
+ 7+ Years experience in a Cyber/Information Security Role.
+ Hold a current and relevant Security Certifications (e.g., CISSP, CISM).
+ Extensive knowledge of security best practices, frameworks, and standards (e.g., NIST, ISO 27001).
+ Proven experience as a Security Architect, with a strong focus on AI security.
+ Deep understanding of AI/ML concepts, including model development, data pipelines, and deployment.
+ Strong understanding of ethical AI principles and practices.
+ Experience with AI security tools and technologies.
+ Knowledge of adversarial machine learning techniques.
+ Familiarity with AI governance frameworks.
+ Experience with data security and privacy regulations (e.g., GDPR, CCPA).
+ Experience with DevSecOps practices.
+ Strong analytical and problem-solving skills, with the ability to assess complex situations and develop effective solutions.
+ Excellent communication, collaboration, problem-solving and presentation skills, with the ability to influence and persuade stakeholders.
+ Experience in cloud security is highly desirable.
+ Ability to obtain UK government SC clearance.
**Who we are:**
We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.
Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.
For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA ( we'll offer you:**
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
You can find more information about NTT DATA UK & Ireland here: are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.
Back to search Email to a friend Apply now
**Job Title: Senior Security Consultant (Architecture - AI Specialist)**
**Overview:**
We are seeking a highly skilled and experienced Security Architect with a strong specialisation in Artificial Intelligence (AI) security. The ideal candidate will be responsible for designing, implementing, and maintaining robust security architectures for AI-powered applications and infrastructure. You will play a critical role in identifying and mitigating security risks associated with AI, ensuring data privacy, and promoting ethical AI practices. This role requires a deep understanding of both traditional security principles and the unique challenges posed by AI technologies.
**What you'll be doing:**
**What you'll be doing:**
+ **AI Security Architecture:**
+ Design and implement secure architectures for AI/ML models, data pipelines, and related infrastructure.
+ Develop security policies and procedures specific to AI systems.
+ Evaluate and select security tools and technologies for AI environments.
+ **Risk Assessment and Management:**
+ Conduct thorough risk assessments to identify vulnerabilities and threats specific to AI systems.
+ Develop and implement risk mitigation strategies for AI-related security issues, including adversarial attacks, data poisoning, and model bias.
+ Monitor and report on AI security risks and compliance.
+ **Data Security and Privacy:**
+ Ensure the security and privacy of sensitive data used in AI applications.
+ Implement data security controls and encryption techniques for AI datasets.
+ Ensure compliance with relevant data privacy regulations (e.g., GDPR, CCPA).
+ **Ethical AI:**
+ Develop and implement policies and procedures for ethical AI development and deployment.
+ Promote awareness of ethical considerations related to AI, including bias, fairness, and transparency.
+ Assist in the development of AI governance frameworks.
+ **Security Best Practices:**
+ Provide expert advice and guidance on security best practices for AI development and deployment.
+ Stay up to date on the latest AI security threats and vulnerabilities.
+ Conduct security audits and penetration testing of AI systems.
+ **Collaboration:**
+ Collaborate with data scientists, AI engineers, and other stakeholders to ensure security is integrated throughout the AI lifecycle.
+ Communicate security risks and recommendations effectively to both technical and non-technical audiences.
**What experience you'll bring:**
**What you'll bring:**
+ 7+ Years experience in a Cyber/Information Security Role.
+ Hold a current and relevant Security Certifications (e.g., CISSP, CISM).
+ Extensive knowledge of security best practices, frameworks, and standards (e.g., NIST, ISO 27001).
+ Proven experience as a Security Architect, with a strong focus on AI security.
+ Deep understanding of AI/ML concepts, including model development, data pipelines, and deployment.
+ Strong understanding of ethical AI principles and practices.
+ Experience with AI security tools and technologies.
+ Knowledge of adversarial machine learning techniques.
+ Familiarity with AI governance frameworks.
+ Experience with data security and privacy regulations (e.g., GDPR, CCPA).
+ Experience with DevSecOps practices.
+ Strong analytical and problem-solving skills, with the ability to assess complex situations and develop effective solutions.
+ Excellent communication, collaboration, problem-solving and presentation skills, with the ability to influence and persuade stakeholders.
+ Experience in cloud security is highly desirable.
+ Ability to obtain UK government SC clearance.
**Who we are:**
We're a business with a global reach that empowers local teams, and we undertake hugely exciting work that is genuinely changing the world. Our advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects.
Our inclusive work environment prioritises mutual respect, accountability, and continuous learning for all our people. This approach fosters collaboration, well-being, growth, and agility, leading to a more diverse, innovative, and competitive organisation. We are also proud to share that we have a range of Inclusion Networks such as: the Women's Business Network, Cultural and Ethnicity Network, LGBTQ+ & Allies Network, Neurodiversity Network and the Parent Network.
For more information on Diversity, Equity and Inclusion please click here: Creating Inclusion Together at NTT DATA UK | NTT DATA ( we'll offer you:**
We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing. Our Learning and Development team ensure that there are continuous growth and development opportunities for our people. We also offer the opportunity to have flexible work options.
You can find more information about NTT DATA UK & Ireland here: are an equal opportunities employer. We believe in the fair treatment of all our employees and commit to promoting equity and diversity in our employment practices. We are also a proud Disability Confident Committed Employer - we are committed to creating a diverse and inclusive workforce. We actively collaborate with individuals who have disabilities and long-term health conditions which have an effect on their ability to do normal daily activities, ensuring that barriers are eliminated when it comes to employment opportunities. In line with our commitment, we guarantee an interview to applicants who declare to us, during the application process, that they have a disability and meet the minimum requirements for the role. If you require any reasonable adjustments during the recruitment process, please let us know. Join us in building a truly diverse and empowered team.
Back to search Email to a friend Apply now
This advertiser has chosen not to accept applicants from your region.
4
Senior Security Consultant (Architecture – AI Specialist)
London, London
Anson McCade
Posted 3 days ago
Job Viewed
Job Description
Senior Security Consultant (Architecture – AI Specialist)
Up to £115,000 + £,000 car allowance + 15% bonus + benefits
Location: Hybrid (UK-based) | Security Clearance: Must be eligible for SC
Our client is a leading global consultancy, delivering large-scale digital transformation and cybersecurity programmes across government and enterprise. They’re now expanding their security architecture function to bring in a senior specialist focused on AI and machine learning security,someone capable of shaping the future of secure, ethical, and compliant AI adoption across critical environments.
What you’ll do
This is a senior, strategic consulting role — driving AI/ML security architecture, influencing C-suite direction, and ensuring security-by-design across complex AI systems and data pipelines. You’ll define and deliver AI security strategies, develop reference architectures, and provide expert guidance on risk management, data protection, and ethical AI governance.
You’ll also play a key role in client engagement, helping shape proposals, define solutions, and drive pre-sales activity. To justify the upper end of the band (£90–115K), ou’ll need strong consulting experience and commercial awareness alongside deep technical expertise.
Key areas of focus
- Define and implement enterprise-level AI/ML security strategies, policies, and architectures.
- Lead on AI risk assessment, threat modelling, and mitigation planning.
- Ensure compliance with GDPR, the EU AI Act, and international security frameworks (ISO 27001, NIST, TOGAF, SABSA).
- Build and maintain secure AI architectures for complex models and pipelines.
- Oversee ethical AI governance, driving policy alignment and responsible AI adoption.
- Advise clients on secure cloud AI (Azure, AWS, GCP) and DevSecOps best practice.
- Communicate complex risks clearly to senior stakeholders and boards.
What you’ll bring
- 7+ years’ strategic cybersecurity experience, ideally in consulting or advisory.
- Deep understanding of AI/ML security architecture, adversarial ML mitigation, and model governance.
- Current security certifications such as CISSP or CISM.
- Proven experience across cloud security, data privacy, and DevSecOps.
- Familiarity with frameworks including NIST, ISO 27001, TOGAF, SABSA.
- Excellent communication and stakeholder influence skills.
- Eligible for UK Security Clearance (SC).
If you’re an experienced security architect or consultant ready to shape how major organisations secure and govern AI systems, this is an opportunity to work at the forefront of an evolving space, combining deep technical challenge with enterprise-level influence.
Interested? Drop me a message or share your details for a confidential chat.
This advertiser has chosen not to accept applicants from your region.
5
Information Security Governance, Risk, and Compliance (GRC) Specialist
London, London
Janus Henderson Investors
Posted 20 days ago
Job Viewed
Job Description
Why work for us?
A career at Janus Henderson is more than a job, it's about investing in a brighter future together.
Our Mission at Janus Henderson is to help clients define and achieve superior financial outcomes through differentiated insights, disciplined investments, and world-class service. We will do this by protecting and growing our core business, amplifying our strengths and diversifying where we have the right.
Our Values are key to driving our success, and are at the heart of everything we do:
Clients Come First - Always | Execution Supersedes Intention | Together We Win | Diversity Improves Results | Truth Builds Trust
If our mission, values, and purpose align with your own, we would love to hear from you!
Your opportunity
Policy Development and Management :
+ Develop and maintain comprehensive cybersecurity policies and procedures.
+ Ensure these policies align with industry standards and regulatory requirements.
+ Assist in the integration of security practices and control across various technical and non-technical departments, enhancing workflow and operational processes.
Risk Management:
+ Conduct regular risk assessments to help identify vulnerabilities and threats.
+ Collaborate and oversee the implementation of risk mitigation strategies.
+ Monitor emerging threats and evolving technologies to continuously refine risk assessment protocols.
+ Ability to design and evaluate control metrics for assessing the effectiveness of cybersecurity measures.
+ Collaborate with Enterprise risk management to embed cyber risk into broader risk registers and board-level reporting.
Compliance Management:
+ Monitor and ensure compliance with internal policies, industry standards, and regulatory requirement.
+ Engage with required stakeholders in Technology, Legal, Compliance and Internal Audit as required
+ Compile and deliver detailed compliance reports to senior management
+ Monitor upcoming regulations and prepare compliance roadmaps.
Training and Awareness:
+ Support and enhance engaging cybersecurity awareness training programs.
+ Foster a company-wide culture of cybersecurity awareness.
+ Keep current with the latest cybersecurity trends and best practices to inform training content and security measures
+ Train and guide wider Tech team members on best practices in cybersecurity risk management.
Incident Management:
+ Actively participate in the response to security incidents.
+ Support post-incident evaluations and reporting.
+ Collaborate with relevant stakeholders to devise and enforce corrective measures aimed at bolstering defences against future incidents.
Stakeholder Engagement:
+ Maintain clear and effective communication with stakeholders at all levels.
+ Provide expert guidance on cybersecurity best practices.
+ Work collaboratively with Technology and other departments to achieve comprehensive security objective
Must have skills
+ Bachelor's Degree in Information Technology, Cybersecurity, or a related field; equivalent work experience also considered.
+ 3 to 5 years of professional experience in information security.
+ Certification such as Certified Information Systems Security Professional (CISSP) strongly preferred.
+ Deep understanding of cybersecurity principles, frameworks (such as NIST, ISO/IEC 27001), and compliance standards.
+ Experience with financial service regulations and regulations such as FCA, SEC, MAS, DORA.
+ Proficient knowledge of network security principles and controls such as Firewalls, IPS/IPD, TCP/IP, DHCP, and DNS
+ Extensive experience in securing Operating Systems such as Windows, UNIX/Linux and Mac systems. This includes security access rights, implementing configuration best practices
+ Knowledge of cloud service models (IaaS, PaaS, SaaS) and deployment models (public, private, hybrid, community) and experience in implementing and managing cloud security best practices.
+ In-depth knowledge of IAM principles and technologies to manage digital identities and control user access and experience with Single Sign-On (SSO), Multi-Factor Authentication (MFA), and role-based access control (RBAC) systems to enhance security and operational efficiency.
+ Understanding of Secure DevOps / CI/CD pipeline governance
Supervisory responsibilities
+ No
You will be expected to understand the regulatory obligations of the firm, and abide by the regulated entity requirements and JHI policies applicable for your role.
At Janus Henderson Investors we're committed to an inclusive and supportive environment. We believe diversity improves results and we welcome applications from candidates from all backgrounds. Don't worry if you don't think you tick every box, we still want to hear from you! We understand everyone has different commitments and while we can't accommodate every flexible working request we're happy to be asked about work flexibility and our hybrid working environment. If you need any reasonable accommodations during our recruitment process, please get in touch and let us know at
#LI-LN2 #LI-HYBRID
Janus Henderson (including its subsidiaries) will not maintain existing or sponsor new industry registrations or licenses where not supported by an employee's job functions (as determined by Janus Henderson at its sole discretion).
All applicants must be willing to comply with the provisions of Janus Henderson Investment Advisory Code of Ethics related to personal securities activities and other disclosure and certification requirements, including past political contributions and political activities. Applicants' past political contributions or activity may impact applicants' eligibility for this position. Janus Henderson is an equal opportunity /Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. All applications are subject to background checks.
A career at Janus Henderson is more than a job, it's about investing in a brighter future together.
Our Mission at Janus Henderson is to help clients define and achieve superior financial outcomes through differentiated insights, disciplined investments, and world-class service. We will do this by protecting and growing our core business, amplifying our strengths and diversifying where we have the right.
Our Values are key to driving our success, and are at the heart of everything we do:
Clients Come First - Always | Execution Supersedes Intention | Together We Win | Diversity Improves Results | Truth Builds Trust
If our mission, values, and purpose align with your own, we would love to hear from you!
Your opportunity
Policy Development and Management :
+ Develop and maintain comprehensive cybersecurity policies and procedures.
+ Ensure these policies align with industry standards and regulatory requirements.
+ Assist in the integration of security practices and control across various technical and non-technical departments, enhancing workflow and operational processes.
Risk Management:
+ Conduct regular risk assessments to help identify vulnerabilities and threats.
+ Collaborate and oversee the implementation of risk mitigation strategies.
+ Monitor emerging threats and evolving technologies to continuously refine risk assessment protocols.
+ Ability to design and evaluate control metrics for assessing the effectiveness of cybersecurity measures.
+ Collaborate with Enterprise risk management to embed cyber risk into broader risk registers and board-level reporting.
Compliance Management:
+ Monitor and ensure compliance with internal policies, industry standards, and regulatory requirement.
+ Engage with required stakeholders in Technology, Legal, Compliance and Internal Audit as required
+ Compile and deliver detailed compliance reports to senior management
+ Monitor upcoming regulations and prepare compliance roadmaps.
Training and Awareness:
+ Support and enhance engaging cybersecurity awareness training programs.
+ Foster a company-wide culture of cybersecurity awareness.
+ Keep current with the latest cybersecurity trends and best practices to inform training content and security measures
+ Train and guide wider Tech team members on best practices in cybersecurity risk management.
Incident Management:
+ Actively participate in the response to security incidents.
+ Support post-incident evaluations and reporting.
+ Collaborate with relevant stakeholders to devise and enforce corrective measures aimed at bolstering defences against future incidents.
Stakeholder Engagement:
+ Maintain clear and effective communication with stakeholders at all levels.
+ Provide expert guidance on cybersecurity best practices.
+ Work collaboratively with Technology and other departments to achieve comprehensive security objective
Must have skills
+ Bachelor's Degree in Information Technology, Cybersecurity, or a related field; equivalent work experience also considered.
+ 3 to 5 years of professional experience in information security.
+ Certification such as Certified Information Systems Security Professional (CISSP) strongly preferred.
+ Deep understanding of cybersecurity principles, frameworks (such as NIST, ISO/IEC 27001), and compliance standards.
+ Experience with financial service regulations and regulations such as FCA, SEC, MAS, DORA.
+ Proficient knowledge of network security principles and controls such as Firewalls, IPS/IPD, TCP/IP, DHCP, and DNS
+ Extensive experience in securing Operating Systems such as Windows, UNIX/Linux and Mac systems. This includes security access rights, implementing configuration best practices
+ Knowledge of cloud service models (IaaS, PaaS, SaaS) and deployment models (public, private, hybrid, community) and experience in implementing and managing cloud security best practices.
+ In-depth knowledge of IAM principles and technologies to manage digital identities and control user access and experience with Single Sign-On (SSO), Multi-Factor Authentication (MFA), and role-based access control (RBAC) systems to enhance security and operational efficiency.
+ Understanding of Secure DevOps / CI/CD pipeline governance
Supervisory responsibilities
+ No
You will be expected to understand the regulatory obligations of the firm, and abide by the regulated entity requirements and JHI policies applicable for your role.
At Janus Henderson Investors we're committed to an inclusive and supportive environment. We believe diversity improves results and we welcome applications from candidates from all backgrounds. Don't worry if you don't think you tick every box, we still want to hear from you! We understand everyone has different commitments and while we can't accommodate every flexible working request we're happy to be asked about work flexibility and our hybrid working environment. If you need any reasonable accommodations during our recruitment process, please get in touch and let us know at
#LI-LN2 #LI-HYBRID
Janus Henderson (including its subsidiaries) will not maintain existing or sponsor new industry registrations or licenses where not supported by an employee's job functions (as determined by Janus Henderson at its sole discretion).
All applicants must be willing to comply with the provisions of Janus Henderson Investment Advisory Code of Ethics related to personal securities activities and other disclosure and certification requirements, including past political contributions and political activities. Applicants' past political contributions or activity may impact applicants' eligibility for this position. Janus Henderson is an equal opportunity /Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. All applications are subject to background checks.
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Specialist security Jobs in London !
6