IT Security Lead - SOC

Job Specifications

IT Security Lead - SOC
Location: Remote/London
Salary: up to £75,000 DOE

This role serves as the central point for security, setting the strategic direction for IT security across the organization. The ideal candidate will safeguard customers and employees, ensure smooth daily operations, and influence the internal IT landscape.

Key Responsibilities:
Develop and implement IT security policies, procedures, and standards.
Foster a strong security culture across IT and the broader business.
Manage IT security risks and make pragmatic, risk-based decisions.
Oversee IT security incidents, including investigation, response, and reporting.
Monitor compliance and evaluate performance against KPIs.
Respond to RFPs and advise on IT Security and Data Management.
Stay updated on cybersecurity requirements and embed them into policies and processes.
Conduct security compliance monitoring and audits.

Essential Qualifications:
Proven experience leading security strategy and operations.
Experience leading and managing Security Operations Centres
Familiarity with ISO27001 certification standards.
Knowledge of ITSM and SIEM tools.
Expertise in the Microsoft technology stack and licensing.
Ability to obtain Security Clearance.
Strong leadership, troubleshooting, and problem-solving skills.
Effective prioritization, time management, and adaptability to new technologies.
Experience in multiple similar roles with demonstrated competency.

Desirable Qualifications:
Knowledge of Cyber Essentials and NCSC guidelines.
Familiarity with certifications such as ISO22301, ISO27017, or SOC2.

About the Company

We match the right talent to the right jobs. Over the past two decades, our expert consultants have enabled countless organisations to drive their business forward, both in the UK and internationally. We've also had the opportunity to work with some of the UK's biggest projects! Interested? Get in touch to find out more. We specialise in the following sectors: Automotive | Cyber Security | Defence & Aerospace | Energy | Facilities Management | IT | Life Sciences | Maritime | Professional Services | Transportation & Infr... Know more

Related Jobs

Company Name

Paragon Alpha - Hedge Fund Talent Business

Job Title

Senior Product Security Engineer - Systematic Hedge Fund - £250k

Job Description

I'm working with a tech driven hedge fund famous for their investment in technology, culture and collaboration. They hire people from tech as commonly as from within finance, and they need a Senior Product Security Engineer to join their growing London office. The company is running a plethora of applications ranging from AWS platforms, C++ low latency systems, and data heavy systems in Python. They need a Security Engineer to join and help automate security processes, influence the architecture, and partner with Cloud and Data teams. They need someone with 6+ years experience, who has diverse experience across threat modelling, product security and system architecture. Stack: Python, AWS, Linux, SAST This company has a modern culture with evangelizes collaboration and research, and as an engineer you are the driving force of the company and not an afterthought. This culture is coupled with market leading salaries and also two days a week remote. If this sounds of interest, please do apply.

London, United Kingdom

Hybrid

Full Time

11-03-2025

Company Name

T-Systems UK

Job Title

Sales Specialist - Cyber Security

Job Description

About the Company - At T-Systems, we recognise the imperative for companies to accelerate their digital transformation to remain competitive. We specialise in guiding our customers through this journey, translating challenges into digital solutions that deliver tangible business value. Our integrated solutions cater to various industries and sectors, including security services. We provide a comprehensive portfolio of services, from IT transformation services to the implementation of innovative projects. With a global network of resources, cutting-edge data centres, and stringent security measures, we ensure our clients are equipped to navigate the digital landscape securely. About the Role - The Security Services at T-Systems focuses on delivering cutting-edge security solutions to clients across industries. We enable organisations to fortify their digital infrastructure, safeguarding against cyber threats and ensuring data integrity. Our solutions empower businesses to navigate the complexities of digital security with confidence and resilience. T-Systems continues to innovate in security services by integrating advanced technologies, adopting best practices, and staying abreast of evolving cyber threats and regulatory requirements. Responsibilities Provide in-depth knowledge of our security solutions and portfolio to clients, addressing their specific needs and concerns. Supports business development strategy implementation and vision based on the company's best interest and portfolio. Stay abreast of market trends and competitor activities, adjusting sales strategies accordingly. Identify and pursue new business opportunities within the security services sector. Owns all client proposals for security-related solutions. Responsible for interfacing between technical and sales teams to support client existing and future engagement. Identifies technical scope and initiates sales and technical resource allocation per the sales strategy and management directions. Manages technical and sales teams' coordination for tender preparation. Manages solution portfolio knowledge within the sales team. Cooperates with other T-Systems teams to identify strategic partners and products to complement existing T-Systems solutions. Build and maintain a robust sales pipeline by leveraging market insights and prospect segmentation. Develop and execute strategic sales plans to meet or exceed annual revenue targets. Collaborate with internal stakeholders, including business development managers, account managers and client success managers, to ensure seamless execution of sales initiatives. Preferred Experience Good understanding of security services industry dynamics and trends. Extensive enterprise cyber security services sales experience, with a proven track record of exceeding targets. Experience in digital transformation projects and familiarity with IT industry landscapes. Demonstrated ability to cultivate relationships with key decision-makers, including C-suite executives. Proactive mindset with a willingness to take calculated risks to drive results. Exceptional communication and presentation skills, both verbal and written. Problem-solving abilities. Collaborative team player with excellent organisational skills.

London, United Kingdom

Hybrid

Full Time

11-03-2025

Company Name

The Very Group

Job Title

Application Security Engineer

Job Description

Internal use only - Grade E About Us We are The Very Group, and we're here to help families on a budget get more out of life. We know that our customers work hard for their families and have a lot to balance in their busy lives. That's why we combine amazing brands and products with flexible payment options on Very.co.uk to help them say yes to the things they love when they need them most. Role Purpose Here at The Very Group we are looking for an individual experienced in applications and cloud services to join the Information Security Consulting team. The role will be ensuring the delivery of technical solutions & associated operating models meet The Very Group's security standards and polices. The successful candidate will need to have experience of AWS including serverless deployments along with Agile delivery methodologies and possess excellent stakeholder communication skills. Some of the initiatives you will be working across are outlined below. Application Security Reviews Production of Security Threat Models Technical Assurance Review Defining & delivering security testing capabilities Scoping & facilitation of Security Penetration testing Production of security process & training media. Key Responsibilities Experience of securing web application services in cloud platforms Deep understanding of AWS Services and experience of Serverless deployments Thorough understanding of OWASP Top 10 Experience of programming languages such as Java, Python Kotlin Swift Securing API services including a good working knowledge of OAuth 2, Application security lifecycle, including secure by design process Experience in securing CI/CD pipelines Security testing tools knowledge Experience of agile methods of working Good understanding and experience of threat and risk modelling (STRIDE, DREAD) Good understanding and experience of the Secure Software Development Lifecycle Some Of Our Benefits Flexible, hybrid working model Inclusive culture and environment, check out our Glassdoor reviews £1,000 flexible benefits allowance to suit your needs 30 days holiday + bank holidays Udemy learning access Up to 25% discount on Very.co.uk Matched pension up to 6% More benefits can be found on our career site How To Apply Please note that the talent acquisition team are managing this vacancy directly, and if successful in securing this role, you will be required to undertake a credit, CIFAS, Right to Work checks and if a specific requirement of your role a DBS (criminal records) check. Should your application progress we require you to let the team know if there is anything you need to disclose in relation to any of these checks prior to them being undertaken, including any unspent criminal convictions. What happens next? Our Talent Acquisition team will be in touch if you're successful so keep an eye on your emails! We'll arrange a short call to learn more about you, as well as answer any questions you have. If it feels like we're a good match, we'll share your CV with the hiring manager to review, and then be in touch to move to the interview process. For this role after meeting our Talent Acquisition Team you can expect a 2 stage process. First Stage - Opportunity to meet the Team to find out more about the role and life working at Very. Second Stage - A more detailed, technical interview which will likely include a task for you to present as part of the session. If you'd like to know more about our interviews, you can find out here. Equal opportunities We're an equal opportunity employer and value diversity at our company. We do not discriminate based on race, religion, colour, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status, or disability status. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Liverpool, United Kingdom

Hybrid

Full Time

11-03-2025

Company Name

Osborne Clarke

Job Title

Information Security Analyst

Job Description

Role profile Award winning law firm Osborne Clarke are looking for an Information Security Analyst to join their growing Information Security team in in our London office. This is a permanent role offering hybrid working. The role of the Information Security Analyst is committed to maintaining the highest level of data security and protecting our systems from threats. As part of our ongoing efforts to enhance our information security posture, we are seeking a skilled and motivated Information Security Analyst to join our team. Job Description As an Information Security Analyst, you will play a crucial role in safeguarding our organisation's assets from potential threats. You will be responsible for raising awareness with colleagues, assessing risks, implementing controls, and ensuring compliance with industry standards and best practices. Key Responsibilities Include Developing, maintaining and publishing ISMS documentation (processes, procedures and guidelines), ensuring overall governance and continual improvement of information security controls. Maintaining conformance with ISO 27001:2022, and other applicable standards. Helping expand the scope of ISO 27001 certification to include other international entities of the firm, especially with local processes, risks, controls, internal and external audits and management review Stay up to date with the latest trends, technologies, and regulatory requirements. Maintain and share awareness of security industry trends including evaluation of new and emerging security technologies and make recommendations to stakeholders Continuing to enhance the firms security culture through awareness programmes and training Working with departments and systems across the business to conduct security risk assessments and carry out treatment plans. Planning and performing periodic internal audits and compliance activities, supporting internal or external security audit processes, defining and implementing any required remediation activities. Assisting with investigation and triage of any security incidents or issues reported, including use of monitoring activities, scanning/test tools and results to determine potential weaknesses, threat patterns, and trends. Ensuring resolution, root cause analysis and coordination of remediation activities to ensure effective tracking to closure of potential security breaches, attacks or policy violations. Help respond to customer requests for information security compliance, controls and contractual measures. Prepare and present reports on security incidents, risks, and mitigation strategies to management and stakeholders. Carry out supplier due diligence, monitoring and regular review of performance, including supplier audits. What We're Looking For The successful candidate will need to have proven experience in a similar role and/or professional certification in Information Security (e.g. CISSP, CISMP, Lead ISMS Implementer or Auditor). You'll also need to demonstrate the following: General Strong interpersonal, communication and collaboration skills (spoken, written and presentation) able to work with, influence and educate people at all levels Broad ranging consultancy skills (problem solving, change management, influencing, communication, research and data collection and analysis, process mapping, creative thinking, negotiation) Credible and effective thinker and planner, with good understanding of the firm’s goals and objectives Excellent attention to detail in terms of task planning, execution and communication Ability to present ideas in business-friendly and user-friendly language across multiple geographies Highly organised and outcome focussed Proactive in the face of challenges, keen to enjoy work and make an effective contribution Able to effectively prioritise and execute tasks within a fast-paced environment Excellent analytical and problem solving skills. Strong collaboration abilities. Technical Trained as an auditor in ISO management systems, ideally ISO 27001 but relevant others also considered. Strong knowledge of certifications and standards such as ISO 27001, Cyber Essentials (plus), ISO 22301 and/or NIST controls Good awareness of IT security measures, best practices and industry standards. Experience with incident response procedures and tools. Good understanding of cyber security and technology Knowledge of cloud security or services, especially Azure Knowledge of Office 365 Practical and/or theoretical knowledge of security protocols and tools such as ZScaler Salary And Benefits We offer competitive salaries and generous benefits. We value the health and wellbeing of our people and our wide range of initiatives and benefits support this. Our recruitment process We welcome direct applications for our opportunities - if you would like any further information about this role or the firm, we would be delighted to hear from you. Please contact, in complete confidence, Dan Jones (Recruitment Manager) at dan.jones@osborneclarke.com. Please note that although we include closing dates for our roles as a guide, we review and progress applications on a rolling basis. At Osborne Clarke we do not make any recruitment decisions using automated decision-making. We are committed to providing an environment where you can perform to the best of your abilities at every stage of your recruitment experience and beyond. If you require any adjustments to be made during the application stage, interview process, or when working with us, please let us know in confidence. About Us Osborne Clarke is an international legal practice with over 330 Partners and more than 1,260 talented lawyers in 26 locations*. Our sector-based approach enables us to help our clients tackle the issues they are facing today, and prepare for the ones that they will face tomorrow. Advising them both comprehensively and commercially. We love working closely with our clients on new deals, products and solutions which will transform their businesses, markets and even sectors. And our unique approachable culture is not an added extra, it's fundamental to our success. At Osborne Clarke we value difference and encourage applicants from all backgrounds. We want everyone to feel that OC is a place where you can be yourself and belong, and our range of interest groups and diversity networks - not to mention our great teams - are a part of making that a reality. Services in India are provided by a relationship firm

London, United Kingdom

Hybrid

Full Time

11-03-2025

Job Description

IT Security Lead - SOC

London, United Kingdom

£ 75,000 / year

On site

Your Application

Kindly fill out the following fields. Please remember that all fields marked with an asterisk (*) are mandatory.

First name

Last name

Email

Phone

Expected Salary

Message Brief message up-to 300 words.

Resume

Upload a resume

or drag and drop

Only PDF files up to 5 MB are accepted

Close Quick Application