Security Engineer Jobs in London

Make yourself visible and let companies apply to you.

Roles

Overview

Looking for top Security Engineer jobs in London? Discover the latest opportunities in cybersecurity on Haystack, your trusted IT job board. Whether you're a seasoned Security Engineer or just starting your career, find roles in leading London companies that match your skills and ambitions. Start securing your future today with Haystack!

IT Infrastructure Engineer

Location: King’s Cross, LondonSalary: £50,000 per annumReports To: IT DirectorIndustry: Scientific organisation

Are you an experienced IT professional with a passion for infrastructure, security, and systems reliability? A Scientific organisation based in King’s Cross is seeking an IT Infrastructure Engineer to join its growing technology team. This is an exciting opportunity to work with cutting-edge systems and play a key role in maintaining and securing a complex IT environment that supports operations worldwide.

About the Role

As an IT Infrastructure Engineer, you’ll take responsibility for maintaining and improving the company’s physical and virtual IT systems. You’ll work closely with colleagues in the infrastructure team to ensure systems remain secure, patched, and optimised, while supporting the organisation’s digital transformation and cloud initiatives.

Key Responsibilities

Maintain and patch the Windows Server and PC estate (Windows 7-11 and Server ).
Manage antivirus and malware systems, investigating and resolving security alerts.
Ensure data integrity through reliable backup configuration, testing, and disaster recovery processes.
Administer and monitor Active Directory, Azure Entra, and Intune environments.
Manage compliance policies, conditional access, and mobile device management.
Work with third-party providers supporting SIEM and threat analytics systems.
Lead on implementing IT security best practices, standards, and access controls.
Support infrastructure and security projects, including system upgrades and migrations.
Create and maintain technical documentation and standard operating procedures.
Provide timely response to incidents, escalating where appropriate.

About You

You’re an analytical, proactive IT professional with a strong grasp of infrastructure, networking, and cybersecurity principles. You enjoy problem-solving, working collaboratively, and ensuring that systems run efficiently and securely.

Essential Skills & Experience

Proven 10 years experience in IT infrastructure, desktop, or systems support.
Strong technical knowledge of Microsoft operating systems (Windows client and server).
Hands-on experience with Active Directory, Intune, and Azure Entra.
Familiarity with antivirus, backup, and monitoring solutions.
Excellent written and verbal communication skills.
Highly organised, methodical, and capable of managing multiple priorities.

Desirable

Relevant IT or security certifications (e.g. Microsoft, CompTIA, Cisco).
Experience managing hybrid or cloud-based environments.

What’s on Offer

Salary of £50,000 per annum plus competitive benefits
Flexible working arrangements.
Opportunities for ongoing professional development and certification.
A collaborative, forward-thinking environment within a global consultancy.
The chance to work with advanced technology in a role that truly makes an impact.

If you’re ready to take the next step in your IT career and play a key role in securing and optimising infrastructure for a leading global consultancy, apply now.

Security Lead UK & Northern Europe

Entity:

Technology

Job Family Group:

HSSE Group

Job Description:

Job Description

Our purpose is to bring together people, energy and markets to power and navigate a changing world. In a time of constant change and possibility we need new talent to pursue commercial opportunities, fuelled by world-class insight and expertise. Were always striving for more innovative digital solutions, sustainable outcomes and closer collaboration across our company and beyond, and you could be part of that too.

About the Role:

Sitting within Technology, Intelligence, Security and Crisis Management (ISC) is the overarching function which delivers geo-political insight, emergency management support and security protection to all bp businesses. The security function works to risk assess identified security threats and manage security barriers to ensure bps business activity can be conducted securely, wherever the opportunities arise.

The Security Lead UK & Northern Europe sits within the Technology, Intelligence, Security and Crisis Management (ISC) function which delivers geopolitical insight, crisis management capability and security risk management support across bps global operations.

The role provides specialist security expertise and risk management capability to bp businesses operating across the United Kingdom and Northern Europe. The position ensures that threats to personnel, assets and operations are properly identified, assessed and managed in accordance with bp security requirements so that business activity can be conducted safely and securely wherever bp operates.

The role represents the first level of leadership within the regional security structure and operates under the direction of the Country Security Manager (CSM) UK & Northern Europe. The role is responsible for translating bps Security Risk Management framework into effective delivery across the area of responsibility and ensuring that security risks are managed in a timely, proportionate and risk informed manner.

Key Accountabilities

Act as the Security Lead across bp businesses in the UK & Northern Europe, delivering the security risk management framework across the area of responsibility.
Provide security expertise, risk management oversight and support to safeguard our people, assets and operations.
Provide specialist security input to business leadership on emerging threats, security risks and the mitigation measures required to support safe and secure operations.
Identify, assess and monitor security threats affecting company personnel, facilities, assets and activities, ensuring that appropriate mitigation strategies are developed and implemented.
Maintain oversight of the regional security risk profile and ensure that security risk registers, mitigation plans and related governance processes are maintained in accordance with company requirements.
Provide security input to business activities, projects and operational planning to ensure that security considerations are appropriately incorporated into business decision making.
Support business leadership through the provision of security briefings, threat updates and risk assessments relating to geopolitical developments, security trends and operational risks.
Maintain strong relationships with internal partners across bp businesses to ensure security risks are understood and managed effectively within the operating environment.
Lead and coordinate the activities of Business Security Representatives across the region to ensure consistent implementation of bp security standards.
Act as a focal point for security support to bp activities in locations where no dedicated security presence exists.
Oversee the development and implementation of appropriate physical, procedural and technical security measures aligned to identified risk.
Conduct security reviews and assurance activities across bp operations to ensure that security controls remain effective and aligned to assessed risk.
Facilitate the exchange of threat and risk information with ISC intelligence teams and other relevant internal partners to ensure security assessments reflect the current threat environment.
Maintain effective relationships with government authorities, law enforcement agencies and relevant external collaborators to support situational awareness and coordination where required.
Contribute to incident management and crisis response structures when activated, providing security domain expertise as required.
Ensure that security activities remain aligned with the Voluntary Principles on Security and Human Rights and relevant bp Ethics and Compliance requirements.
Ensure that contractor and third party activities involving security considerations align with bp security standards and contractual obligations.
Conduct site visits across the area of responsibility to maintain visibility and assurance of security arrangements.

Essential Education:

University degree in a relevant subject, professional qualifications comparable or professional experience.
The role holder must be able to speak and write English to a native standard with an emphasis on persuasive writing.

Essential Experience and Job Requirements:

The candidate must:

Have demonstrable experience in a security role with responsibility for managing security.
Possess strong expertise in threat assessment, security risk assessment and the practical application of security risk management frameworks.
Be comfortable engaging with senior business leadership and participating in leadership meetings.
Be able to clearly articulate security risks and mitigation strategies within a corporate environment.
Have a solid understanding of physical and technical security systems.
Have experience developing security policies, procedures and security risk management processes.
Demonstrate the ability to influence partners and support business decision making where security risk considerations are involved.
Have experience supporting budgets, preparing cases and contributing to security related projects or programmes.

Desirable criteria

Membership of an appropriate professional security body (e.g. The Security Institute or ASIS).

Why join us?At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous learning and development opportunities to craft your career path, life and health insurance, medical care package and many others.We support our people to learn and grow in a diverse and exciting environment. We believe that our team is strengthened by diversity. We are committed to crafting an inclusive environment in which everyone is respected and treated fairly.There are many aspects of our employees lives that are significant, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, collaboration spaces in a modern office environment, and others benefits.Reinvent your career as you help our business meet the challenges of the future. Apply now!*

Travel Requirement

Up to 50% travel should be expected with this role

Relocation Assistance:

This role is not eligible for relocation

Remote Type:

This position is a hybrid of office/remote working

Skills:

Accounting for people, Accounting for people, Agility core practices, Close security protection, Communication, Crisis and emergency response management, Digital Fluency, Extortion prevention and response, Information Security, Insider Risk, Intelligence for business, Investigations, Kidnap prevention and response, Large scale evacuation, Maritime Security, OMS and bp requirements, Personal security awareness, Physical security systems and surveillance, Project and programme management, Regulatory Compliance, Risk Management, Security in high risk environments, Security policies and practices, Security risk assessment and planning, Stakeholder Engagement {+ 2 more}

Legal Disclaimer:

We are an equal opportunity employer. We do not discriminate on the basis of protected characteristics like race, religion, color, sex, national origin, sexual orientation, veteran status or disability status.Individuals with an accessibility need may request an adjustment/accommodation related to bps recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process,pleasecontact us.

If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.

Software Cyber Engineer - Python - Remote UK

Software Cyber Engineer - Python - Remote (UK)
Salary: Up to £75,000 DOE
Location: Fully remote (UK)

A growing technology-focused cyber security organisation is seeking a motivated Software Engineer with strong Python skills to contribute to the development of internal data-driven platforms. This role involves building and improving systems that gather, process, and analyse large datasets to support research and operational decision-making.

Key Responsibilities

Develop and enhance a Python-based Cyber Security platform, ensuring it remains scalable, stable, and capable of handling high data volumes
Build and maintain automated cyber event data pipelines to ingest and process information from multiple internal and external sources
Refine existing systems and workflows to improve performance, reliability, and efficiency
Support system availability through monitoring, logging, and general platform maintenance

Core Requirements

3+ years of experience in software engineering
Strong proficiency in Python, including experience with web frameworks (e.g. Django) and automation pipelines
Experience designing scalable systems, working with containerised environments, and building automation workflows
Familiarity with modern AI tools/LLM to enhance productivity or automate processes
Experience handling large-scale data ingestion and processing, with exposure to search or analytics technologies
Understanding of cloud environments (AWS, Azure, or GCP), infrastructure-as-code, and CI/CD practices
Experience developing internal tools, automation frameworks, or contributing to technical projects
Exposure to fast-paced or scaling environments, with the ability to adapt to changing priorities
A background in cybersecurity / understanding of the principles of attacks (desirable)
Proactive mindset with a focus on continuous improvement
Ability to quickly learn and apply new technologies

If you are an experienced Software Engineer with significant python experience, please click ‘Apply Now’ or send your CV to faye . landells @ circlerecruitment . com

You must be based in and have full unrestricted right to work in the UK. Unfortunately our client is not able to consider applicants who require sponsorship and / or relocation.

Keywords: Software Engineer / Cyber Security Engineer / Python / AI / LLM / Cloud / Remote / UK

Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter - @Circle_Rec and LinkedIn - Circle Recruitment.

Network Security Engineer

Title: Network Security Engineer (Contact)
Details: 6-12 months | Inside IR35 | Up to £500 per day

iO Associates is working with a client who is looking for a Network Security Engineer to join them on an initial 6-12 month contract. Our client is based in London and wanting someone who can go into office 3 days per week!

This role will sit within the Network Operations team and will focus on a mix of project delivery and support activity. You will be working across Firewalls, web proxies, load balancers and wider network security technologies, while also taking ownership of troubleshooting tickets and helping to maintain operational stability.

The client is looking for someone who is comfortable working independently, can pick up and resolve tickets without too much hand holding, and knows when to escalate where needed.

Deliver a range of projects across Firewalls, Proxy technologies, web security and load balancers
Manage and resolve tickets through the ITSM system in line with SLAs
Troubleshoot routing issues, Firewall connectivity problems, web Proxy issues and Firewall policy clean-up tasks
Implement and maintain Firewall rules across Palo Alto, Fortinet and Check Point
Carry out Firewall upgrades, configuration backups and post-upgrade validation
Support BAU operations and take part in a tier 3 support rota
Work closely with internal teams to investigate and resolve network access and connectivity issues
Maintain accurate documentation across network changes and configurations

Key experience required:

Strong hands-on experience with enterprise Firewalls
Experience with Palo Alto and Fortinet Firewalls
Strong troubleshooting skills across routing, switching and network security
Experience working in an ITSM/ticketing environment
Experience with web proxies and L7 traffic inspection
Familiarity with TACACS and Cisco ISE
Good understanding of Layer 2/Layer 3 networking, VLANs and routing protocols
Strong communication and documentation skills

Desirable:

Experience with Blue Coat, Zscaler or other Proxy technologies
ClearPass Policy Manager experience
CCNP or vendor certifications across Palo Alto, Fortinet or Check Point
Scripting or automation experience with Python

Our client has a swift process and for the right candidate they will interview next week!

If you’re interested in this role, or know someone who would be, then please apply to this advert and contact.

Security Lead UK & Northern Europe

Entity:

Technology

Job Family Group:

HSSE Group

Job Description:

Job Description

Our purpose is to bring together people, energy and markets to power and navigate a changing world. In a time of constant change and possibility we need new talent to pursue commercial opportunities, fuelled by world-class insight and expertise. We’re always striving for more innovative digital solutions, sustainable outcomes and closer collaboration across our company and beyond, and you could be part of that too.

About the Role:

Sitting within Technology, Intelligence, Security and Crisis Management (ISC) is the overarching function which delivers geo-political insight, emergency management support and security protection to all bp businesses. The security function works to risk assess identified security threats and manage security barriers to ensure bp’s business activity can be conducted securely, wherever the opportunities arise.

The role represents the first level of leadership within the regional security structure and operates under the direction of the Country Security Manager (CSM) UK & Northern Europe. The role is responsible for translating bp’s Security Risk Management framework into effective delivery across the area of responsibility and ensuring that security risks are managed in a timely, proportionate and risk informed manner.

Key Accountabilities

Act as the Security Lead across bp businesses in the UK & Northern Europe, delivering the security risk management framework across the area of responsibility.
Provide security expertise, risk management oversight and support to safeguard our people, assets and operations.
Provide specialist security input to business leadership on emerging threats, security risks and the mitigation measures required to support safe and secure operations.
Identify, assess and monitor security threats affecting company personnel, facilities, assets and activities, ensuring that appropriate mitigation strategies are developed and implemented.
Maintain oversight of the regional security risk profile and ensure that security risk registers, mitigation plans and related governance processes are maintained in accordance with company requirements.
Provide security input to business activities, projects and operational planning to ensure that security considerations are appropriately incorporated into business decision making.
Support business leadership through the provision of security briefings, threat updates and risk assessments relating to geopolitical developments, security trends and operational risks.
Maintain strong relationships with internal partners across bp businesses to ensure security risks are understood and managed effectively within the operating environment.
Lead and coordinate the activities of Business Security Representatives across the region to ensure consistent implementation of bp security standards.
Act as a focal point for security support to bp activities in locations where no dedicated security presence exists.
Oversee the development and implementation of appropriate physical, procedural and technical security measures aligned to identified risk.
Conduct security reviews and assurance activities across bp operations to ensure that security controls remain effective and aligned to assessed risk.
Facilitate the exchange of threat and risk information with ISC intelligence teams and other relevant internal partners to ensure security assessments reflect the current threat environment.
Maintain effective relationships with government authorities, law enforcement agencies and relevant external collaborators to support situational awareness and coordination where required.
Contribute to incident management and crisis response structures when activated, providing security domain expertise as required.
Ensure that security activities remain aligned with the Voluntary Principles on Security and Human Rights and relevant bp Ethics and Compliance requirements.
Ensure that contractor and third party activities involving security considerations align with bp security standards and contractual obligations.
Conduct site visits across the area of responsibility to maintain visibility and assurance of security arrangements.

Essential Education:

University degree in a relevant subject, professional qualifications comparable or professional experience.
The role holder must be able to speak and write English to a native standard with an emphasis on persuasive writing.

Essential Experience and Job Requirements:

The candidate must:

Have demonstrable experience in a security role with responsibility for managing security.
Possess strong expertise in threat assessment, security risk assessment and the practical application of security risk management frameworks.
Be comfortable engaging with senior business leadership and participating in leadership meetings.
Be able to clearly articulate security risks and mitigation strategies within a corporate environment.
Have a solid understanding of physical and technical security systems.
Have experience developing security policies, procedures and security risk management processes.
Demonstrate the ability to influence partners and support business decision making where security risk considerations are involved.
Have experience supporting budgets, preparing cases and contributing to security related projects or programmes.

Desirable criteria

Membership of an appropriate professional security body (e.g. The Security Institute or ASIS).

Why join us?

At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous learning and development opportunities to craft your career path, life and health insurance, medical care package and many others.

We support our people to learn and grow in a diverse and exciting environment. We believe that our team is strengthened by diversity. We are committed to crafting an inclusive environment in which everyone is respected and treated fairly.

There are many aspects of our employees’ lives that are significant, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, collaboration spaces in a modern office environment, and others benefits.

Reinvent your career as you help our business meet the challenges of the future. Apply now!

Travel Requirement

Up to 50% travel should be expected with this roleThis role is not eligible for relocationThis position is a hybrid of office/remote workingAccounting for people, Accounting for people, Agility core practices, Close security protection, Communication, Crisis and emergency response management, Digital Fluency, Extortion prevention and response, Information Security, Insider Risk, Intelligence for business, Investigations, Kidnap prevention and response, Large scale evacuation, Maritime Security, OMS and bp requirements, Personal security awareness, Physical security systems and surveillance, Project and programme management, Regulatory Compliance, Risk Management, Security in high risk environments, Security policies and practices, Security risk assessment and planning, Stakeholder Engagement {+ 2 more}

Legal Disclaimer:

We are an equal opportunity employer. We do not discriminate on the basis of protected characteristics like race, religion, color, sex, national origin, sexual orientation, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.

Installations and Commissioning Engineer

DCS Recruitment Limited

Installations & Commissioning Engineer - Security Systems

Location: London (City & West End - Site Based)
Salary: £40,000 - £45,000 + Bonus + Benefits
Contract: Permanent, Full-Time
Hours: 9:00 - 17:00 (flexible depending on site)

Additional Benefits

Zone 1 & 2 Travel Card provided (No company vehicle required)
Call-out rota: £200 standby payment per week + overtime if called out
Travel expenses covered

Please note: This is not an IT role.

Role Overview

We are looking for an experienced Installations & Commissioning Engineer to work on commercial security projects across Central London.

This is a hands-on role, focused on delivering high-quality CCTV, access control, and fire/security system installations in commercial buildings. You will be responsible for installing, servicing, fault-finding, commissioning, and handing over systems to a professional standard.

This role is ideal for engineers who take pride in their work, understand compliance and British Standards, and want to focus on engineering rather than project management or constant firefighting.

Key Responsibilities

Install, service, fault-find, and commission CCTV and access control systems
Deliver first fix and second fix installation works to high standards
Test, commission, and hand over systems professionally
Work safely on live commercial sites
Represent the company professionally with clients, consultants, and site teams

Essential Requirements

5-7+ years experience installing CCTV / security systems
Hands-on experience with access control systems (e.g., Gallagher, Paxton)
Hands-on experience with CCTV systems (e.g., Hikvision, Avigilon)
Valid ECS Card
Strong understanding of UK compliance and British Standards
Based within the M25
Valid driving licence
Willing to undergo background checks

Desirable Qualifications

SSSTS
IPAF
PASMA

Additional Information

Candidates must have security installation experience
Visa sponsorship is not available
Role is site-based across Central London, travel costs covered

Please contact Coral at DCS Engineering to apply.

DCS Recruitment and all associated companies are committed to creating a working environment where diversity is celebrated and everyone is treated fairly, regardless of gender, gender identity, disability, ethnic origin, religion or belief, sexual orientation, marital or transgender status, age, or nationality

Entity:

Technology

Job Family Group:

HSSE Group

Job Description:

Our purpose is to deliver energy to the world, today and tomorrow. For over 100 years, bp has focused on discovering, developing, and producing oil and gas in the nations where we operate. We are one of the few companies globally that can provide governments and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner!

About the role

Bp’s intelligence, security & crisis management (ISC) team delivers intelligence, security, crisis management and geopolitical insights across bps businesses. Bp’s intelligence & international advisory team (I&IA) forms a critical component of ISC, helping the company to assess threat, find opportunity and reduce risk through delivery of strategic intelligence. The Insider Risk team serves as I&IAs authority resource for end-to-end investigation, analysis and mitigation of insider threats.

The Insider Risk Analyst will demonstrate their knowledge of insider risk, as well as their expertise in investigations and intelligence tradecraft, to research, investigate and prepare cases for leadership review on a wide range of critical insider risks, ranging from nation-state threats through to Intellectual Property theft, across the global Insider Risk Programme. They will also help drive awareness and behavioural change amongst the bp workforce, serving as a key POC on insider issues, supporting training and awareness initiatives and building strong relationships with participants.

Key Accountabilities

Working to support the Insider Risk Senior Manager across all three pillars of the Insider Risk Programme: prevention, detection and mitigation. To include delivery of training, defensive briefings, intelligence collection and analysis, and effective investigation in support of tangible outcomes to make bp safer.
Relationship building and collaboration with key insider risk partners, including Security, Digital Security, Human Resources, Legal and Ethics and Compliance. Work closely with these critical partners to investigate and illuminate concerns related to workplace violence, sabotage, theft of intellectual property or other unauthorized use of corporate data or resources.
Maintenance of a regular cycle of thematic reports to monitor and communicate current insider risk trends and issues and to support long-term security policy and business objectives.
Effective management of an information collection network and information databases to ensure long-term trends are effectively monitored and presented.

Essential Experience

Fluency in English required.
Experience of sensitive personnel or counter-intelligence investigations in public or private sector, requiring meticulous research, attention to detail and ability to present findings for leadership review clearly and concisely.
Ability to triage and prioritise a large volume of leads, assessing each for potential risks and focusing on the most impactful.
Excellent written and analytical skills.
Experience with open-source intelligence tools and techniques.
Briefs effectively and confidently. Ability to draft detailed and accurate reports using data to support analysis.
Experience working with collaborators to quickly forge productive relationships and build networks.
Ability to demonstrate a high level of discretion, diligence and initiative.
Experience assessing threats and/or advising on intelligence matters.
An understanding of the intelligence cycle and its application in a commercial environment.

Desirable experience

Experience of interviewing and/or debriefing.
Experience utilising AI to deliver efficiencies, safely.
Formal certifications in intelligence collection, collection management, intelligence analysis, or other intelligence fields from a government agency.

Other Relevant information

This position requires a highly motivated, discrete, self-starter. Strong interpersonal skills, excellent communication skills, deep curiosity and focused attention to detail are key attributes required for success.

Why join us?

At bp, we support our people to grow in a diverse and exciting environment. We believe that our team is strengthened by diversity.

There are many aspects of our employees lives that are meaningful, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, a generous paid parental leave policy, excellent retirement benefits, among others!

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Reinvent your career as you help our business meet the challenges of the future.Apply now!

Travel Requirement

Up to 10% travel should be expected with this role

Relocation Assistance:

This role is not eligible for relocation

Remote Type:

This position is a hybrid of office/remote working

Skills:

Information Security Risk, Insider Risk, Intelligence for business, Investigations, Stakeholder Management

Legal Disclaimer:

Governance risk & compliance Lead

Entity:

Technology

Job Family Group:

IT&S Group

Job Description:

Our purpose is to deliver energy to the world, today and tomorrow. For over 100 years, BP has focused on discovering, developing, and producing oil and gas in the nations where we operate. We are one of the few companies globally that can provide governments and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner.

Role overview

As part of the bps Digital Compliance leadership team you will have responsibility for leading bps global compliance program for cyber security and digital resilience. Being the leading authority of cyber compliance for bps global business.

The Digital Governance Risk and Compliance organization fosters a culture of transparency, accountability, and trust by promoting good governance, effective risk management, and regulatory compliance. These capabilities help bp balance security with usability, optimize technology investments, and enable bps business to meet its compliance obligations in all jurisdictions in which it operates globally.

Let me tell you about the role

You will lead the Global Cyber Security and Digital Resilience compliance program, ensuring bp meets its compliance obligations around cyber security and digital resilience. Your role is responsible for delivering a global compliance program, leading the assessment of new regulations, delivering readiness programs to ensure bp continues to meet new laws and regulations, attainment and maintenance of industry certifications, delivering audit programs and leading compliance governance, risk management and reporting for your area.

What you will deliver

You will:

Lead the delivery of the global cyber and digital resilience compliance program and roadmap for bps critical national infrastructure security compliance.

Lead the design of the compliance strategy for global regulations and industry certifications, including maintenance of applicable risk and control frameworks.

Manage the global audit and regulatory reporting schedule for cyber and digital resilience including but not limited to NISR, NIS2, TSA, MTSA, SOCI and DORA.

Lead applicable governance, stakeholder working groups, progress tracking and risk reporting for cyber security compliance.

Lead continuous improvement initiatives to improve effectiveness and efficiency of the compliance program and applicable policies and controls.

Manage relationship with in-region stakeholders and external audit teams.

Lead, coach, develop and build a resilient and high-performing team fostering a culture of continuous improvement and career progression.

What you will need to be successful (experience and qualifications)

Education

Youll have a tertiary level education and/or equivalent relevant work experience.

Experience

Significant experience in a similar cyber security compliance, audit or governance, risk and compliance role for a large multi-national organization

Experience leading complex compliance or audit programs

In depth knowledge and understanding of cyber security laws, regulations and industry standards as well as the broader legal & regulatory landscape

This role will include cyber security of bps operational assets in scope of critical national infrastructure so experience of automation systems and operational technology is desirable.

Proven track record in leadership of teams and in establishing and maintaining effective and collaborative partnerships

Leadership and EQ:

Foster positive team morale and empower team members

Create an environment where people listen and can speak openly

Demonstrate strong leadership, uphold bp’s code of conduct and values

Promote a culture of change, agility, and open communication

Self-aware and able to recognize and manage your impact on others.

Cultural fluency you operate across cultural boundaries with sensitivity.

Why join us?

At bp, we support our people to grow in a diverse and exciting environment. We believe that our team is strengthened by diversity.

There are many aspects of our employees lives that are meaningful, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, a generous paid parental leave policy, excellent retirement benefits, among others!

Apply!

Travel Requirement

Up to 10% travel should be expected with this role

Relocation Assistance:

This role is not eligible for relocation

Remote Type:

This position is not available for remote working

Skills:

Consulting, incident investigation and response, Incident Management, Information Assurance, Information Security, Information security behaviour change, Risk Management, Stakeholder Management, Supplier Relationship Management, Supplier security management

Legal Disclaimer:

OT Security Consultant

OT Cyber Security Specialist

£430 - £470/day Outside IR35

6 month contract

Oxford - 2x days per week on-site

We have an exciting opportunity to join a leading UK organisation operating in the critical infrastructure sector. As part of a greenfield initiative, they are building out their OT security capability and require an experienced Information Security Consultant to lead and shape this journey.

This role is pivotal in defining and implementing the OT Security Strategy, developing governance frameworks, and introducing robust security controls across OT environments. You’ll be working closely with engineering teams and third-party providers to ensure alignment with industry standards and enterprise cyber objectives.

You’ll be involved in both strategic and hands-on activities, including policy creation, risk assessments, and technical oversight. The organisation operates in a highly regulated environment, so experience with frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001 is essential.

Experience required:

Proven expertise in Operational Technology (OT) security within ICS or critical infrastructure environments
Ability to define and implement OT security strategies, policies, and standards
Strong knowledge of OT security frameworks - IEC 62443, NIST CSF, CAF, ISO 27001
Experience conducting OT risk assessments, gap analysis, and remediation planning
Familiarity with OT networks, segmentation, and industrial protocols
Experience working with engineering teams and MSPs
Must be SC Cleared

Please apply directly with a CV and if suitable we will be in touch to provide more information.

Information security Engineering specialist

Entity:

Technology

Job Family Group:

IT&S Group

Job Description:

About the Role:

As an Information Security Engineering Specialist at BP PLC, you will play a critical role in safeguarding our digital assets and ensuring the resilience of our information systems. You will contribute to a secure environment by applying your expertise in incident response, risk management, and security guidelines.

Key Accountabilities:

Vulnerability & Exposure Management

Leading efforts to identify, prioritise, and track vulnerabilities across cloud and on-prem environments
Advising system owners, developers, and platform teams on remediation and configuration hardening and risk reduction
Providing hands-on support to reduce risk and improve security outcomes

Security Advisory & Support

Assisting technology teams in resolving exposure issues related to identity, network security, posture management, and secure configurations
Acting as a security advocate, delivering clear written and verbal communication to technical and non-technical stakeholders
Creating and delivering training, awareness materials, and briefings to enhance security maturity
Offering excellent customer service by supporting various business units through best-practice guidance and responsive problem-solving

Incident Response & Assurance

Leading and participating in incident investigations to identify root causes and implement effective solutions
Providing expert consulting on secure design, implementation, and operations
Contributing to the development and continuous improvement of information assurance frameworks and policies

Platform Ownership

Serving as a key contact for our vulnerability management platform supporting users in effective adoption and day-to-day usage
Ensuring the platform is well-configured, reliable, and used effectively across the organisation
Championing new features and capabilities to continuously improve vulnerability visibility, prioritisation, and remediation outcomes.

Essential Experience and Job Requirements:

Proven experience in information security, especially in vulnerability or exposure remediation
Hands-on experience with incident management, SIEM tools, and incident response platforms
Experience working with vulnerability management or cloud-native security tools (e.g., Qualys, Wiz, Microsoft Defender for Cloud)
Solid understanding of information assurance frameworks and compliance (ISO 27001, NIST, etc.)
Knowledge of risk management principles, including assessment and mitigation
Exceptional communication skills with the ability to translate complex topics into business-friendly language
Customer service experienceshowing empathy, active listening, and a solutions-focused approach when supporting partners
Strong analytical and problem-solving skills, especially during incident investigations
Effective stakeholder management and relationship-building abilities
Cloud certifications (AWS, Azure) or security certifications (CISSP, CISM, GCIH, CCSP) are highly desirable
A degree in Computer Science, IT, Cybersecurity, or equivalent practical experience

Why join us?

At bp, we provide an excellent working environment and employee benefits such as an open and inclusive culture, a great work-life balance, tremendous learning and development opportunities to craft your career path, life and health insurance, medical care package and many others.

We support our people to learn and grow in a diverse and exciting environment. We believe that our team is strengthened by diversity. We are committed to crafting an inclusive environment in which everyone is respected and treated fairly.

There are many aspects of our employees lives that are significant, so we offer benefits to enable your work to fit with your life. These benefits can include flexible working options, collaboration spaces in a modern office environment, and others benefits.

Reinvent your career as you help our business meet the challenges of the future. Apply now!

Travel Requirement

Negligible travel should be expected with this role

Relocation Assistance:

This role is not eligible for relocation

Remote Type:

This position is a hybrid of office/remote working

Skills:

Legal Disclaimer:

Head of InfoSec GRC & Awareness

Location: London (onsite 3 days per week) Basis: Permanent

Package: TBD, generous salary and benefits

Are you an experienced leader in Information Security Governance, Risk and Compliance looking for your next opportunity to make an impact within an evolving and fast-paced environment? Do you have strong experience of leading internal and 3rd party risk management due diligence processes? If so, apply now.

We are seeking an experienced Head of InfoSec GRC & Awareness to lead governance, risk, compliance, and security awareness initiatives across an organisation at a time of significant modernisation. This pivotal role ensures a robust security posture by developing and enforcing policies, standards, and training programmes aligned with business objectives and regulatory requirements.

The key responsibilities of the Head of Information Security GRC & Awareness are:

Lead the development and enforcement of enterprise-wide information security policies and standards
Drive security governance and cyber maturity through compliance, assurance reviews, and gap analysis
Oversight and improvement of the Information Security Risk Management frameworks and process
Conducting in depth supplier due diligence / third party assurance processes
Manage audit readiness and support internal/external audit activities
Own and deliver the organisation’s security awareness programme, including campaigns and tailored training
Depending on the candidate, you would also be involved in developing and implementing an Operational Technology (OT) Security Assurance Framework

The successful candidate will have the following skills, experience and qualifications:

Professional certifications such as CISSP, CISM, ISO27001 Lead Auditor, CLAS etc
Extensive experience in information security or IT governance within large, complex environments
Strong knowledge of security frameworks (ISO/IEC 27001, NIST CSF, CIS Controls, Cyber Essentials)
Proven track record in risk management, policy development, and security awareness initiatives
Excellent communication, leadership, and influencing skills
Very strong experience of driving 3rd party due diligence
Pro-active, pragmatic self-starter with the ability to effectively lead a small team, including those with potentially differing skill sets to their own
Any experience of driving Technical Assurance, Operational Technology (OT) Security Assurance and Penetration Testing would be a bonus

This is an excellent opportunity to lead a critical function within a dynamic organisation, ensuring security resilience and cultural change across the enterprise.

The salary is competitive and we can discuss this directly. For further information, please apply and I will be in touch.

Head of InfoSec GRC & Awareness

Head of Information Security Governance, Risk and Compliance

IAM Engineer

Proactive Appointments

London | Hybrid - 3 days per week on-site | Permanent | Up to £75k + Bonus

Our client, a global organisation with a fantastic reputation in their field, is seeking an IAM Engineer to join them on a permanent basis. This role will sit within the IT Security team and will be responsible for implementing, maintaining, and optimising the organisation’s identity governance and access management capabilities.

Key Responsibilities

Implement and configure Identity Governance capabilities using Saviynt EIC to ensure secure and efficient access to enterprise systems.
Assess identity and access environments, identify security gaps, and recommend improvements.
Design and implement integrations for Single Sign-On (SSO), Multi-Factor Authentication (MFA), and identity life cycle management.
Design and implement Privileged Access Management (PAM) capabilities.
Support Just-in-Time (JIT) and Just-Enough-Access (JEA) access models.
Create and maintain IAM technical documentation.
Troubleshoot complex IAM-related issues.
Develop and maintain scripted identity management solutions.
Support audits and implement remediation actions.
Assist with the implementation of IAM security policies and standards.
Collaborate with IT, Security, and Application teams to improve IAM solutions.

Qualifications

Degree in Information Security, Computer Science, Engineering, or a related field (preferred).
Relevant IAM or security certifications are advantageous (eg Saviynt, SailPoint, ISC2, CompTIA Security+).

Experience & Skills

5+ years’ experience in Identity Governance/IAM within an enterprise environment.
Hands-on experience with Saviynt EIC, SailPoint, or Okta (Saviynt preferred).
Experience with Privileged Access Management tools (eg CyberArk).
Experience with Microsoft Entra ID.
Scripting experience (PowerShell).
Experience integrating IAM solutions via APIs.
Working knowledge of SAML, OAuth, and OpenID Connect.
Understanding of IAM best practices, security frameworks, and regulatory requirements.
Experience with identity life cycle automation.
Exposure to IAM in OT/ICS environments is desirable.

Technical Competencies

Strong analytical and problem-solving skills.
Clear technical communication skills.
Proactive and willing to learn new technologies.
Strong team player with the ability to work independently when required.
Passion for cybersecurity and identity technologies.

Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted.

Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation

We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website

Japanese Speaking IT Compliance Support Engineer

London (Hybrid - 3 days onsite)
Contract - 6 months initially
£415 per day (paid via Umbrella Company)

We are looking for a Japanese-speaking IT Compliance Support Engineer to join a dynamic technology team in a regulated environment. This is an exciting role for a technically capable professional with Japanese language skills to work at the intersection of IT, audit, and compliance.

Candidates with experience in IT Audit, IT Security, IT Support, IT Development, or Project/Change Management are encouraged to apply, provided they have strong Japanese communication skills.

The Role

You will act as the primary liaison between IT, audit, and compliance teams-supporting audits, evidencing IT controls, and ensuring systems and processes meet governance standards. This role combines hands-on technical work with compliance oversight and stakeholder engagement.

Key Responsibilities

Audit & Compliance

Act as the main point of contact for audit, compliance, and IT security
Support audit requests, walkthroughs, and evidence gathering
Maintain audit-ready documentation and artefacts

Technical Interpretation

Review and interpret C# code and SQL scripts
Explain technical configurations (Windows, Azure AD, DevOps) to non-technical stakeholders
Translate technical processes into auditor-friendly narratives

IT Controls & Governance

Support and improve IT general controls (GITC)
Ensure robust change management, access control, and SDLC practices
Work with DevOps pipelines to embed governance controls

Risk & Remediation

Assist with risk assessments and compliance reviews
Track audit findings and coordinate remediation
Provide regular updates to stakeholders

Stakeholder Engagement

Work closely with developers, infrastructure teams, and business stakeholders
Support operational activities from a compliance and audit perspective

Key Requirements

Essential:

Japanese language proficiency (written and spoken) - must be fluent
Strong understanding of IT systems, infrastructure, or development environments
Ability to read/interpret C# and SQL
Experience supporting audits, compliance, or IT controls
Knowledge of change management and ITIL principles
Familiarity with tools such as Azure DevOps, ServiceNow, and Jira
Excellent communication skills

Desirable:

Experience in regulated industries (eg, financial services)
Exposure to IT security best practices
Experience with CI/CD pipelines and version control (Git)
Interest in DevOps, automation, or cybersecurity

Candidate Profile

We are seeking someone who is:

Detail-oriented and methodical
Proactive and solutions-focused
Comfortable managing multiple priorities
Strong in stakeholder communication across technical and non-technical teams

Additional Information

Rate: £415 per day
Payment: via Umbrella Company
Office presence: 3 days per week in London

This is a unique opportunity to leverage Japanese language skills in a niche IT compliance role while working on meaningful audit and governance projects.

Information Security Manager

Context Recruitment Limited

Information Security Manager £70,000 - £80,000 London - hybrid working

A well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You’ll be joining at a key time as the organisation expands its technical capability, with ambitious growth plans and multiple mergers and acquisitions planned. The business is looking for a hands-on InfoSec professional who can manage how data is handled, accessed, secured and maintained across its lifecycle.

Responsibilities:

Own and manage data lifecycle processes, ensuring data is secure, accessible and properly maintained from creation through to deletion
Oversee third-party and supplier security, ensuring appropriate controls and risk management are in place
Manage and process Data Subject Access Requests (DSARs) and related data handling activities
Support patch management and vulnerability remediation across systems and applications
Utilise tools such as Microsoft Purview to manage data visibility, classification and control
Identify and mitigate information security risks across systems, suppliers and processes
Collaborate with IT, Legal, HR and wider business teams to embed strong security practices
Develop reporting and insights on security and data activities, ideally using Power BI
Support ongoing security improvements in line with business growth and M&A activity

Requirements:

Strong experience in Information Security, with a focus on data handling and lifecycle management
Practical experience managing third-party/supplier risk
Good understanding of GDPR and data protection, particularly in real-world application (e.g. DSARs)
Experience with Microsoft Purview (Varonis beneficial but not essential)
Knowledge of patching and vulnerability management
Ability to operate in a hands-on, delivery-focused environment rather than pure governance
Strong stakeholder engagement and communication skills
Power BI experience for reporting is highly desirable

Based in Central London, with 4 days per week onsite initially, dropping to 3 after circa 3 months.

IRM developer-6months-London

Kirtana consulting is looking for IRM developer for 6months rolling contract in London. Job description: Role Title: Enterprise Technology Engineer (GRC) - ServiceNow Developer 1. Role Summary We are seeking an experienced Enterprise Technology Engineer (GRC) with strong expertise in ServiceNow (SNOW) development, specifically within the Operational Risk Controls domain. The engineer will provide end-to-end support for the client's trading organization, spanning analysis, requirements gathering, design, configuration, deployment, and operational support of ServiceNow-based solutions. This role requires deep technical competence, strong understanding of modern software delivery principles, and proven experience working in Agile and DevOps environments. 2. Key Responsibilities: Service Delivery & Engineering Deliver end-to-end services in the Operational Risk Controls landscape for BP's trading organization. Analyze business requirements and convert them into technical ServiceNow configurations. Design, build, and maintain ServiceNow GRC functionality with high quality and reliability. Ensure all delivered features meet operational and regulatory expectations. Stakeholder Collaboration Work closely with cross-functional stakeholders to ensure solutions deliver the intended value. Coordinate with business, compliance, and audit teams on integration and process alignment. Documentation & Operations Maintain technical documentation to support both new enhancements and ongoing operations. Contribute to best practices for operational risk management processes and system configurations. 3. Essential Qualifications & Experience: 8+ years designing, building, and supporting complex enterprise software systems. Expert-level proficiency in ServiceNow Back End development, including: Business rules Script includes Client scripts ACLs Expert knowledge in ServiceNow Workspace design and configuration. Good understanding of Risk Management module configuration, master data structures, and integration points. Strong process knowledge in: Risk assessment Reporting Compliance integrations Audit processes Ability to translate business requirements into high-quality technical implementation. 4. Desirable Skills: Experience working in an Oil & Gas industry environment. Additional hands-on knowledge in ServiceNow (generalist capabilities). Experience with Agile project management methodologies. Highly responsible, self-driven, and able to operate in fast-paced, high-growth environments. Excellent interpersonal skills to work across cultures and organizational levels. Strong organizational skills with ability to adapt to evolving technical environments. 5. Core Competency Expectations Information Security Ability to design, implement, and manage controls ensuring confidentiality, security, and regulatory compliance of information systems. Service Operations & Resilience Ability to build and operate scalable, resilient services including: Infrastructure sizing Monitoring & service health metrics Alarming and automated remediation High availability via automation and DevOps tooling Source Control & Code Management Expertise in: Git-based workflows Pull requests Trunk-based development Automated testing/static analysis CI/CD pipelines Testing & Quality Assurance Hands-on experience with: Unit, functional, UI, load, and chaos testing Maintaining code quality across the agile life cycle Automation-first QA mindset

Build the future of cyber defence, before threats even exist. The Opportunity What if the code you wrote did not just power applications, but actively protected critical infrastructure across the world? This is an opportunity to work on a platform where performance, resilience, and security are not optional. They are essential. The Role We are looking for a Mid-Level Golang Backend Developer to join a team building a next-generation cyber security platform designed to safeguard industrial control systems. This role is ideal for someone who enjoys solving complex problems, cares deeply about secure software development, and wants their work to have real-world impact. What You Will Be Doing In this position, you will take ownership of developing and maintaining backend services written in Go. You will be working within a modern microservices architecture, designing systems that are scalable, reliable, and secure by design. Collaboration is key. You will work closely with engineers across disciplines to shape the platform's architecture and ensure everything integrates seamlessly. Security at the Core Security is at the core of everything you will do. You will embed DevSecOps principles into the development lifecycle, ensuring that security is not an afterthought but a built-in feature. From implementing automated checks in CI/CD pipelines to identifying vulnerabilities through testing and analysis, your work will directly contribute to strengthening the platform. You will apply secure coding practices, enforce access controls, and ensure data is protected both at rest and in transit, all while aligning with recognised industry standards. Quality and Reliability Beyond development, you will play an active role in maintaining quality and reliability. Writing tests, debugging issues, and working alongside QA teams will be part of your day-to-day work. You will also contribute to documentation, helping ensure that both technical and security requirements are clearly defined and understood. What You Bring This role suits someone with solid experience in Golang and a strong understanding of backend development within a microservices environment. You should be comfortable working with Docker, familiar with both relational and NoSQL databases, and confident tackling challenges in distributed systems. Just as important is your mindset. You should be curious, collaborative, and always thinking about how to build systems more securely and efficiently. Nice to Have Experience in cyber security or DevSecOps would be a strong advantage, as would contributions to open-source projects or familiarity with frameworks such as OWASP, CIS Benchmarks, or ISO standards. However, what matters most is your willingness to learn and your drive to build secure, high-quality software. What You Get In return, you will be part of a team working on genuinely cutting-edge technology, in an environment that values innovation, collaboration, and continuous improvement. The role offers a competitive salary of £55,000 to £70,000, along with performance-based bonuses and opportunities for professional growth. Location and Requirements The position is based in South West London on site 5 days per week, non negotiable, and you will need to be able to commute or relocate before starting. Applicants must also have the right to work in the UK and be able to share examples of previous work, such as a GitHub portfolio. Why Apply If you are looking for a role where your work has real impact, where security and engineering meet, and where you can continue to grow as a developer, this is an opportunity worth exploring.

Workspace ONE Engineer - Security cleared

We are currently recruiting for an experienced Workspace ONE Engineer to work a contract until the end of the year in either London, Manchester, Bristol, Newcastle, Glasgow, York, or Norwich, working 2-3 days per week on-site.

Description

Working alongside Technical Architects and Principal Engineers, you’ll design, maintain and upgrade our client’s infrastructure, tackling challenges head on and ensuring seamless service delivery.
Support existing Workspace ONE customers with troubleshooting, upgrades and general questions.
Research, evaluate, and recommend new or upgraded hardware/software to ensure proper operation and performance for customers.
Work with vendors for product enhancement announcements and other issues.
Utilize basic network skills to help in solving customer UEM issues.
Be able to identify, access, and use resources for troubleshooting (Internet, webinars, etc.).
Estimate appropriate project deliverables as requested.
Accurately determine resource requirements for a particular project/task.
Test, validate, and deploy policies and configurations to endpoints
Maintain documentation, knowledge articles, and operating procedures
Manage ticket escalations supporting our endpoint technology stack
Creating and following device and software life cycle policies
Minimize system policies and agent-based footprint on a corporate device
Maintaining a software service catalog (enterprise App store)
Provide input and manage a corporate patching policy

Skills and experience

Minimum 4 years of experience managing an MDM/EMM solution and SaaS based platforms
Strong understanding of security and device hardening, especially with mobile devices such as phones and tablets
Strong experience managing and administering of Android and iOS devices with Workspace ONE
Highly developed written and verbal communication.
Strong attention to detail, goal-oriented.
Versatility, flexibility, and a willingness to work within changing priorities.
Ability to work independently.
Experience implementing planned changes to infrastructure
Understanding of Windows 11 and macOS device management
Experience of supporting infrastructure services for 10000+ users
Experience in IaaS/PaaS Compute such as AWS, GCP or Azure

If you feel you have the skills and experience needed for this role; please do apply now.

By applying for this job and submitting your CV to Parker Shaw, you acknowledge and give permission for us to pass it to an associate company for resourcing purposes. We outsource some of our resourcing calls to a trusted third-party company and they may call you to discuss this opportunity with you. They will then report back to us with the outcome of their conversation with you, where upon we will decide whether to submit your CV to the end client. Please be assured that the third-party company do not store or control any of your data, this is all done by ourselves (Parker Shaw).

IOT Engineer

LA International Computer Consultants Ltd

Design, implement and troubleshoot Internet of Things (IoT) solutions.
Collaborate with cross-functional teams to define IoT project requirements and specifications.
Integrate and onboard IoT devices onto the Network using DNA Center for seamless connectivity and ensuring optimal functionality.
Integrate sensors, actuators, and communication modules into IoT systems.
Implement security measures to safeguard IoT devices and data. Strong working experience with Cisco SD Access, DNA and VxLAN is must.
Troubleshoot and resolve issues related to IoT hardware and software components.
Conduct feasibility studies and evaluate the performance of various IoT solutions.
Collaborate with stakeholders to gather and analyze requirements for the projects.
Develop and execute network strategies using DNAC to isolate and secure IoT traffic.
Knowledge of designing networks that can efficiently scale to accommodate a future growth of IoT devices.
Document design specifications, system architecture, and troubleshooting procedures.

Requirements:

Bachelor’s or higher degree in Computer Engineering, Electrical Engineering, or a related field.
Proven experience in IoT development, including firmware and software development.
Proficiency in programming languages such as C, C++, Python, and Java.
Strong understanding of various communication protocols used in IoT, such as MQTT, CoAP. Thread, etc.
Familiarity with cloud platforms for IoT, such as AWS IoT or Azure IoT.
Knowledge of security best practices for IoT devices and networks.
Experience with hardware design and integration of sensors and actuators.
Excellent problem-solving and debugging skills.
Effective communication and collaboration skills.
Ability to work in a dynamic and fast-paced environment.
7 + years of relevant experience

LA International is an award-winning partner of choice for many of the world’s most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance.

A multiple award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over consecutive years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience.

Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.

Cyber Assurance Lead - Active SC Required

Hybrid: 2 days per week into the office

We are looking for a Cyber Assurance Lead to provide pragmatic, architecture-led security assurance across a complex and business-critical telecommunications environment.

This role will sit across technical delivery, supplier assurance, and governance activity, providing independent cyber assurance input to ensure services, solutions, and supplier submissions meet required security, risk, and control expectations.

Experience across telecoms, 5G, device security, or handheld/mobile delivery environments would be highly beneficial.

Key Responsibilities

Lead cyber assurance activity across relevant workstreams, suppliers, and technical deliveries
Provide independent assurance over solution designs, technical architectures, and delivery artefacts
Review supplier proposals, technical submissions, and bid responses to assess security suitability, risk, and compliance
Support the evaluation of contractual documentation and assurance obligations from a cyber security perspective
Work closely with internal stakeholders and 3rd party suppliers to ensure security expectations are understood and met
Assess architectures and delivery approaches against applicable security standards, policies, and assurance requirements
Provide clear, pragmatic advice on security risks, control effectiveness, and assurance outcomes
Translate technical security and architecture issues into language suitable for both technical and non-technical stakeholders
Support governance and decision-making through well-reasoned, defensible assurance positions
Track assurance risks, issues, dependencies, and actions through to resolution
Contribute to the development and improvement of assurance processes, templates, and ways of working

Essential Skills & Experience

Proven experience in a Cyber Assurance, Security Assurance, or similar security governance role
Strong background in architecture, with the ability to review, challenge, and assure complex technical designs
Good working knowledge of ISO 27000 / ISO 27001 and their practical application in delivery and supplier environments
Experience working with and assuring 3rd party suppliers and external delivery partners
Understanding of contractual security requirements, including reviewing contracts or assessing supplier/bid submissions from a cyber/security perspective
Ability to assess technical and written submissions for security robustness, control coverage, and risk implications
Strong stakeholder communication skills, with the ability to bridge technical, commercial, and delivery audiences
Pragmatic approach to assurance, balancing governance requirements with delivery reality
Confident operating in fast-moving, high-visibility environments where assurance is business-critical

Desirable Experience

Experience in telecommunications environments
Knowledge of 5G, mobile technologies, or connectivity/security considerations within telecoms delivery
Exposure to device security, including handheld/mobile device delivery
Experience working in regulated, high-assurance, or critical infrastructure settings
Familiarity with supplier bid evaluation, procurement support, or commercial assessment processes

Cyber Security Specialist

Mane Contract Services

Our client, a leading organisation within the defence and advanced technology sector, is seeking a Product Cyber Security Specialist to support the delivery of secure, mission-critical systems. This role offers the opportunity to work across complex engineering programmes, contributing to the protection and resilience of advanced defence platforms.

The Role
As a Product Cyber Security Specialist, you will provide cyber security expertise across the full systems engineering lifecycle. Working closely with engineering and delivery teams, you will support the identification, assessment and management of cyber risks, ensuring security is embedded throughout product development.

You will also contribute to the ongoing development of product cyber security capabilities, including the use of automation and emerging technologies to enhance assurance processes.

Key Responsibilities

Support and enhance automation of cyber security risk and vulnerability assessment activities, including the use of advanced technologies
Provide cyber security expertise across the product systems engineering lifecycle
Maintain and manage cyber security risk artefacts, ensuring accuracy and consistency
Provide timely technical guidance to engineering and delivery teams
Plan cyber security activities and contribute to project estimates and planning
Support delivery of proportionate and effective cyber security approaches across programmes
Contribute to the development and continuous improvement of cyber security capability

Essential Requirements

Degree in Engineering, Computer Science, Cyber Security, or equivalent experience
Strong background in cyber security and/or engineering environments
Interest in cyber security within industrial control systems or operational technology
Experience working with engineering or cyber design data
Awareness of industrial control systems environments
Knowledge of cyber security frameworks such as NIST CSF
Experience in threat modelling using frameworks such as MITRE ATT&CK, DEF3ND or EMB3D
Experience in cyber security risk management
Familiarity with vulnerability, patch and update management processes

Desirable Skills

Understanding of Secure by Design principles aligned to UK MOD standards (e.g. DEFSTAN 05-139, DEFSTAN 05-138)
Familiarity with ISA/IEC 62443
Experience or certifications relating to operational technology or industrial control systems

This is an opportunity to join a well-established organisation delivering advanced solutions within the defence sector. The role offers strong potential for professional development and involvement in high-impact, technically challenging programmes.

Cyber Security Engineer

Day Rate: 500 - 550 per Day (Outside IR35)

Duration: 3 Months + Likely Extension

Location: London (hybrid working)

My client is a rapidly growing global organisation offering a range of services to the Professional Services sector globally.

They are recruiting for an experienced hands-on Cyber Security Contractor to support their security operations and compliance initiatives, working closely with their internal Security team to strengthen their cyber resilience and ensure adherence to UK standards.

Key Duties:

Implement, manage and actively monitor security controls across e-mail, endpoint, and cloud environments
Monitor and respond to security incidents using advanced threat detection tools
Assist with compliance activities and audits for ISO27001, Cyber Essentials & Cyber Essentials Plus certification
Provide technical expertise on security best practices and risk mitigation
Collaborate with IT and business teams to ensure secure configuration and data protection
Respond to security related DDQs
Mimecast, Netskope and CyberArk configuration and administration

The Person:

Experience of running tech projects end-to-end
Proven experience of complete start-to-finish implementation and certification for Cyber Essentials and Cyber Essential Plus
Hands-on experience of CyberArk spanning deployment, config, and on-going administration
Experience of Netskope as the appointed person will lead the roll-out across their global office network
Solid working knowledge and experience of Mimecast required
Exposure to Microsoft Purview
An appreciation of ISO 27001 and its requirements
Strong understanding of UK cyber security regulations and frameworks

The role is based at their London HQ, offering hybrid working with 2-3 days in the office per week.

Due to the high volume of applications we receive, we are unable to contact every candidate individually. If you do not hear from us within 7 days of submitting your application, please assume that you have not been shortlisted on this occasion.

We are committed to fair, consistent, and inclusive recruitment practices, and all applications are reviewed in line with relevant employment legislation and our equal opportunities principles.

GEM Partnership is acting as an employment agency on this vacancy.

Page 1 of 7

Frequently asked questions

London offers a wide range of Security Engineer roles including network security, application security, penetration testing, security architecture, and incident response positions across various industries such as finance, tech, and healthcare.

Typically, employers look for candidates with a degree in computer science, information security, or related fields, alongside certifications like CISSP, CEH, or CISM. Practical experience with security tools and frameworks is also highly valued.

You can search for Security Engineer roles in London using keywords and location filters on Haystack. Once you find suitable jobs, you can apply directly through our platform by submitting your CV and cover letter.

Salaries for Security Engineers in London vary depending on experience and specialization but typically range between £50,000 and £90,000 per year, with senior roles potentially earning more.

Yes, many employers based in London offer remote or hybrid Security Engineer positions. You can filter job listings on Haystack to find remote or flexible working opportunities.