Home
Jobs
Cyber Nexus
Senior Information Security Consultant

Senior Information Security Consultant

Remote

United Kingdom

Full Time

04-03-2025

Share this job:

Score my CV Apply

Job Specifications

About the Company - This is a great opportunity to join an exciting start up cyber security company providing digital resilience, security assessments and standards. This is an exciting opportunity to be the first consultant to join the organisation and play a key role in the growth and help shape the offerings to their customers. They specialise in implementing ServiceNow’s IRM product to improve their clients security posture. With a particular focus on Policy & Compliance, Risk Management, Third-Party Risk Management, Privacy Management.

About the Role - Lead cybersecurity consultancy engagements, including risk assessments, compliance audits, and security architecture reviews. Provide expert guidance on frameworks such as ISO 27001, NIST, NIS2, DORA, Cyber Essentials, GDPR compliance and EU AI Act. Develop and implement tailored cybersecurity strategies. Conduct cybersecurity gap analyses, remediation planning, and security programme development. Serve as a trusted advisor to clients, understanding their security challenges and business objectives. Communicate cybersecurity risks, recommendations, and remediation strategies effectively to both technical and non-technical audiences. Assist with identifying opportunities for expanding cybersecurity services and contribute to business growth initiatives. Support the development of proposals, statements of work, and service offerings.

Responsibilities

-Proven experience in cybersecurity consulting, risk management, or compliance roles.

-Strong knowledge of security frameworks, regulations, and best practices (e.g., ISO 27001, NIST, NIS2, DORA, CIS, Cyber Essentials, GDPR, EU AI Act).

-Experience in conducting risk assessments, security audits, and implementing security controls.

-Excellent communication, and project management skills.

-Ability to translate complex cybersecurity concepts into business-relevant recommendations.

-Relevant cybersecurity certifications (CISSP, CISM, CISA) are desirable.

-Experience implementing a security / GRC platform / Tool. Such as ServiceNow IRM

About the Company

One of the longest-standing, ethical, and trusted cyber security recruiters globally. We have an exceptional delivery track record and a high service standard that our customers can trust. NEXUS: A Nexus is a central link or connection. If you are at the nexus of something, you are right in the middle of it. At Cyber Nexus we are proud to be that central link, connecting cyber security professionals with employers globally. Know more

Related Jobs

Company Name: IG Group
Job Title: Senior Security Operations Analyst
Job Description: Job Title Senior Security Operations Analyst Job Description As one of Europe's leading investment platforms, security at IG is a top priority and our Security Operations team is looking for a Senior Security Operations Analyst to help further enhance our security framework. Who Are We Hello, we’re IG Group. No, not Instagram – though we're a pretty big deal ourselves. We’re a global, FTSE 250-listed company made up of a collection of progressive fintech brands in the world of online trading and investing. The best part? We’ve snapped up many awards for our top-class platforms, forward-thinking products, and incredible employee experiences. We believe in financial freedom. And our purpose is to help ambitious people achieve it. Around 400,000 people use our groundbreaking technology and forward-thinking platforms to trade the financial products they know and love. Did we mention we have offices in 18 countries? Yes, when you join IG Group, you'll have the chance to work across multiple brands with people all over the world. We work in cross-functional teams, focused on delivering at pace to improve the experience of traders on our platforms. Your Position Within The Team IG’s Security Operations team (SOC) is responsible for managing security-related events within IG. The team's goals are to ensure that security incidents adversely affecting the business are quickly diagnosed, workarounds are determined, proper root cause analysis is performed, and actions are taken to prevent the issue from reoccurring. The Security Operations function is vital to the organisation. It ensures that company information and systems are protected from unauthorised access, disruption, modification, or destruction. This is accomplished using various operational security controls, processes, and policies. What You’ll Do Security Monitoring Drive the creation and refinement of security monitoring rules, techniques and processes. Proactively hunt for evidence of threats or compromise using all available tools. Incident Management Investigate and resolve escalated security incidents both independently and by leading a team of SOC colleagues. Ensure the defined playbooks are followed correctly, and accurate logs are made of all actions during incident response. Support and mentor colleagues with best-practice incident management techniques and behaviours. Perform root cause analysis, recommend process improvements, and write final post-incident reports. Project Delivery Take part in the team’s project delivery initiative, rotating between the following roles on a 1-3 monthly schedule: Vulnerability Management – maintain regular scans, interpret results, identify asset owners, track remediation activities and report on the agreed SLAs. Security Controls Administration – maintain availability and functionality of all security controls; implement new and advanced features where available; write technical documentation and manage changes. SIEM Maintenance & Content – maintain the availability of the underlying infrastructure, develop new alerts, field parsers, models and automated playbooks, and integrate new log sources where appropriate. Threat Intelligence & Threat Hunting – provide, develop and integrate external threat intelligence data into the team’s detection capabilities; perform proactive threat hunts based on working hypotheses, and implement subsequent SIEM alerts where required. Purple Team & Scenario Exercises – regularly test the team’s detection capabilities, develop scenario-based training, and organise purple team exercises, both in-house and with third-party providers. Insider Threat – maintain and develop the Data Loss Prevention policies in line with the company’s data classification requirements, and implement exceptions for business-approved procedures where required. Improve the detection and response capabilities of the remaining security controls with a focus on insider threats. Escalation Analyst – support analysts during incident response and take the lead in more complex investigations; validate true positive security incidents, ensuring all playbook actions have been completed reliably with an incident timeline populated, and provide training sessions for other analysts. Reporting & Documentation Assist with the preparation of regular reports and the collection of defined metrics. Take an active role in the creation and continual improvement of SOC process and procedures documentation, as well as the refinement of manual and automated workflows and playbooks. Other Responsibilities Aligned With a Senior Analyst Position Lead the training and development of other SOC team members, sharing knowledge and demonstrating best practices by example. Lead internal projects to improve the effective operation of the SOC, such as contrasting competing tools or technologies, re-designing existing security controls and assessing the impact of changes to IG’s IT environment. Take an active role in external projects as the security SME ensuring that operational security issues are considered and implemented appropriately. The Way We Work We also think hard about our ways of working as a company. At IG Group, we’ve set out five target behaviours that we expect everyone to strive to achieve in all that we do: Lead & Inspire: Leading teams in a way that drives trust, alignment, and enthusiasm; Think Big: We focus on the problems that most move the needle of commercial outcomes; Champion the client: We always keep the client's needs front of mind and deliver as much value for them in all that we do; Deliver at pace: We work to ensure nothing stands in the way of fast delivery of sustainable growth for our business; and Raise the bar: We raise the bar by taking ownership of outcomes and being accountable for making things better across IG. What You’ll Need This is an experienced role, and therefore candidates are expected to convincingly satisfy most of the listed requirements. Successful candidates will demonstrate an independent and self-motivated approach to continuing the development of their skills and knowledge. 4 - 10 years of experience within operational IT or security roles, with a minimum of 2 years SOC. Deep familiarity with one or more SIEM tools is. A strong understanding of technical IT concepts is required, including: Windows and Linux operating systems and system administration Networking, including TCP/IP and other common protocols Microsoft Active Directory Command line interfaces and scripting Understand the role, benefits/downsides, and standard use cases of technical security products, such as firewalls, anti-virus, web proxies, SIEM, IDS/IPS, DLP, and EDR. Familiarity with vulnerability scanning and penetration testing tools and techniques. Qualifications A university degree in one of the following fields is preferred (but not required): Cyber / Information Security, Digital Forensics, Ethical Hacking Computer Science, Software De...

London, United Kingdom

On site

Full Time

04-03-2025

Company Name: Amazon Web Services (AWS)
Job Title: Security Engineer Summer Internship – 2025 (UK)
Job Description: Description Amazon internships are full-time positions, and interns should expect to work Monday-Friday, up to 40 hours per week typically between 8am-5pm. Specific team norms around working hours will be communicated by your manager. Interns should not have conflicts such as classes or other employment during the Amazon work-day. Start dates for our internships in this posting include the following period: Summer (Starts May/June 2025) Would you like to assess risk and help deliver countermeasures that protect customer data and prevent attempts to infiltrate company systems? Are you passionate about solving problems in an online world where threats grow ever more sophisticated? You will have the opportunity to impact the evolution of Amazon technology as well as lead mission critical projects early in your career. If this describes you, consider joining us as an security engineer intern! Amazon interns have the opportunity to work alongside the industry’s brightest engineers who innovate every day on behalf of our customers. Key job responsibilities As a Security Engineer Intern, You Will/may Collaborate with experienced Amazonians to create and execute security controls, defenses, and countermeasures to intercept and prevent internal and/or external attacks Develop, test, review, debug, or deploy code that supports security protocols Work effectively with your team to identify security problems and improve the security aspects of their service(s) Assess risks that could affect the confidentiality, integrity, or availability of data, systems, or services Resolve security events, incidents, or conduct security assessments using penetration tests, ethical hacking tools, or risk mitigation methodologies to evaluate vulnerabilities Classify, store, and handle data in accordance with policy or best practices Troubleshoot, research the root cause of, and resolve security or risk issues with guidance A day in the life Our internship program provides hands-on learning and building experiences for students who are interested in a career in security engineering. In addition to working on an impactful project, you will have the opportunity to engage with Amazonians for both personal and professional development, expand your network, and participate in fun activities with other interns throughout the summer. No matter the location of your internship, we give you the tools to own your internship and learn in a real-world setting. Basic Qualifications Experience scripting with Python, Perl, Bash or PowerShell Experience with at least one modern language such as Java, Python, C++, or C# including object-oriented design Experience in one or more of the following domains: access- control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security Are 18 years of age or older Work 40 hours/week minimum and commit to 12 week internship maximum Currently working towards a Bachelor’s Degree in Computer Science, Computer Engineering, Cybersecurity, or other equivalent discipline, with an expected conferral date between October 2025 – December 2028. Preferred Qualifications Experience with tools such as Wireshark, encryption software, Snort, Sguil, Suricata, Kibana, Metasploit, Nmap, OpenSSL, or Setkey Experience with AWS Services including EC2, Lambda, S3, DynamoDB, SQS Previous technical internship(s) and/or co-op(s) in one or more of the following domains: access-control system and methodology, network security, application- and system-development security, security architecture and models, cryptography, and operations security. Enrolled in a Master’s Degree in Computer Science, Computer Engineering, Cybersecurity, or other equivalent discipline, with an expected conferral date between October 2025 – December 2028. Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates. Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner. Company - AWS EMEA SARL (UK Branch) - F93 Job ID: A2911815

London, United Kingdom

On site

Full Time

26-02-2025

Company Name: LMA Recruitment Formerly Ball & Hoolahan
Job Title: Information Security Manager
Job Description: Information Security Lead London | Full-time Salary circa 100k Perm or Freelance Do you have experience in information security within the energy, mining, chemicals or process manufacturing sectors? We are looking for someone with in-depth knowledge of cybersecurity frameworks to lead the creation, review and enforcement of information security policies, procedures and guidelines tailored to the production and chemical sectors. Key Responsibilities: Develop and implement information security strategy ensuring alignment with business objectives, regulatory requirements and industry best practice. Conduct regular risk assessments to identify and address potential security risks Oversee the security measures for IT infrastructure, individual control systems (ICS) and operational technology (OT) to meet security needs Administer security software solutions including Endpoint Detection and Response (EDR) to protect against cyber threats Ensure compliance with industry-specific regulations (eg GDPR, ISO 27001 industry standards) and company internal policies Ensure integration of security protocol across various departments including IT, HR, Finance and Operations promoting a unified and cohesive security strategy What We’re Looking For: Solid experience in Information Security, Cybersecurity, IT or related field In-depth knowledge of cybersecurity frameworks, risk management practices, and regulatory requirements (e.g., NIST, ISO 27001, GDPR). Experience managing Microsoft Office 365 security & compliance administration panels Fluent in English (Turkish preferred) and open to international travel. Certifications (PMP, PRINCE2, ITIL) and experience in Agile/Lean methodologies are a plus Relevant cybersecurity certifications (e.g., CISSP, CISM, CISA, CRISC, or GIAC). #energy #chemical #mining #sustainability #transformation #digital #automotive

London, United Kingdom

Hybrid

Full Time

04-03-2025

Company Name: Amazon Web Services (AWS)
Job Title: Principal Solutions Architect, National Security & Defence
Job Description: Description Amazon Web Services (AWS) is looking for a Principal Solutions Architect to join our thriving technical community and growing public sector business in the UK. You would be part of a friendly and supportive team, working together to bring the latest in disruptive, cutting-edge cloud computing technologies to organisations serving the public. As a Principal Solutions Architect in the National Security & Defence Team you will be supporting the UK’s most important National Security & Defence organisations to accelerate and scale innovation, reduce costs, drive efficiency and use cloud technology in support of their missions. In this role, your creativity and strategic experience will support customers at an executive level to solve business challenges and drive change, with the opportunity to define or invent cloud-native reference architectures with the worldwide AWS Solutions Architect community. You will lead in the creation and sharing of best practices, technical content and new reference architectures (e.g. white papers, code samples, blog posts) and evangelise and educate about AWS technology (e.g. through workshops, user groups, meetups, public speaking, online videos or conferences) If you can educate AWS customers about the art of the possible, while challenging what many think impossible, come build the future with us. Key job responsibilities As a Principal Solutions Architect, you are a technical leader and strategic influencer for customers and the organization. You combine strong business acumen with deep technical skills to architect solutions to significantly complex problems. You excel at decomposing complex issues into straightforward, elegant solutions. You operate in highly ambiguous environments where business objectives, opportunities, technology strategy, and solution design are undefined. You leverage your extensive experience, industry knowledge, and business context expertise to influence the long-term strategic direction of customers. You identify both immediate and future risks and constraints, and advise customers on the right trade-offs to meet their long-term goals. You are a trusted advisor to senior customer leadership, building consensus and alignment across diverse teams to deliver impactful solutions. Your work results in measurable, long-term benefits to the customer's business. You are a thought leader, curating and delivering strategic technical content that educates the broader community. Within the organization, you are a key influencer, contributing to strategic planning, identifying gaps and opportunities, and advocating for the development of critical future skills. You actively develop and mentor other Solutions Architects, ensuring the continued growth of the community. About The Team Diverse Experiences Amazon values diverse experiences. Even if you do not meet all of the preferred qualifications and skills listed in the job description, we encourage candidates to apply. If your career is just starting, hasn’t followed a traditional path, or includes alternative experiences, don’t let it stop you from applying. Why AWS Amazon Web Services (AWS) is the world’s most comprehensive and broadly adopted cloud platform. We pioneered cloud computing and never stopped innovating — that’s why customers from the most successful startups to Global 500 companies trust our robust suite of products and services to power their businesses. Inclusive Team Culture Here at AWS, it’s in our nature to learn and be curious. Our employee-led affinity groups foster a culture of inclusion that empower us to be proud of our differences. Ongoing events and learning experiences, including our Conversations on Race and Ethnicity (CORE) and AmazeCon (gender diversity) conferences, inspire us to never stop embracing our uniqueness. Mentorship and Career Growth We’re continuously raising our performance bar as we strive to become Earth’s Best Employer. That’s why you’ll find endless knowledge-sharing, mentorship and other career-advancing resources here to help you develop into a better-rounded professional. Basic Qualifications Experience developing technology solutions and evangelising end-to-end technology roadmaps that guide IT transformations toward cloud computing Experience in specific technology domain areas like software development, cloud computing, systems engineering, infrastructure, security, networking, data and analytics Experience communicating across technical and non-technical audiences and at C-level, including training, workshops, publications Already hold, or be willing to undergo, UK government security clearance and meet residency requirements. Preferred Qualifications Knowledge of distributed systems design and implementation or equivalent Knowledge of large scale automation and workflow management or equivalent Knowledge of database design and implementation or equivalent Knowledge of presentations and whiteboarding skills with a high degree of comfort speaking with internal and external executives, IT management, and developers Experience architecting, migrating, transforming or modernizing customer requirements to the cloud Amazon is an equal opportunities employer. We believe passionately that employing a diverse workforce is central to our success. We make recruiting decisions based on your experience and skills. We value your passion to discover, invent, simplify and build. Protecting your privacy and the security of your data is a longstanding top priority for Amazon. Please consult our Privacy Notice (https://www.amazon.jobs/en/privacy_page) to know more about how we collect, use and transfer the personal data of our candidates. Amazon is committed to a diverse and inclusive workplace. Amazon is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. Our inclusive culture empowers Amazonians to deliver the best results for our customers. If you have a disability and need a workplace accommodation or adjustment during the application and hiring process, including support for the interview or onboarding process, please visit https://amazon.jobs/content/en/how-we-hire/accommodations for more information. If the country/region you’re applying in isn’t listed, please contact your Recruiting Partner. Company - AWS EMEA SARL (UK Branch) Job ID: A2821024

London, United Kingdom

On site

Full Time

26-02-2025