Home
Jobs
Ventula Consulting
Information Security Operations Manager

Information Security Operations Manager

On site

London, United Kingdom

£ 65,000 / year

Full Time

24-04-2025

Share this job:

Score my CV

Job Specifications

Information Security Operations Manager

One of the UK’s leading providers of UK critical infrastructure for trade requires a SecOps Manager.

To lead the operations activities of the Information Security team, ensuring the highest quality protections are delivered to the business, whilst administering, prioritising, monitoring and conducting business as usual Computer Security, Information Security and Cyber Security activities in line with the technical and business strategy and with Information Security industry best practice.

Assisting the Information Security Lead, constantly reviewing and improving the business’ Cyber Security posture to meet compliance requirements with any appropriate standards or legislation. Reliably reporting defence and initiative performance and driving best practices. Contributing to the development of the business’ long-term Information Security strategy.

Responsibilieis include

Develop and support the Information Security team in the DevSecOps field.
Assist with the development and support of DevSecOp practices.
Manage the day-to-day relationship with incumbent security partners.
Participate in internal management and governance forums, promoting cyber security best practice across IT and the business.
Deputise for the Information Security Lead where required, including within the technical response to security incidents.
Maintain, review, test and implement security operations technologies, such as, antivirus, data encryption, identity, cloud and other security measures in place.
Maintain and improve procedures, documentation and relationships with other internal operations teams, ensuring effective means of communications and escalation.
Report overall security status and highlight individual systems as required.
Provide evidence required for internal and external security audits or to help determine root causes of security incidents.
Recommend appropriate tools and countermeasures.
Perform risk assessments and testing of systems identifying prime risks and limitations that may impact computer security.
Maintain security procedures with outside vendors.
Assist the other technology teams when reviewing and testing disaster recovery plans.
Keep computer security knowledge current to understand the latest threats and incidents and to maintain strong defences.
Ability to work well independently or with a team.
Capable of meeting deadlines and budgets.

Keys skills

Current industry recognised security qualification (e.g. appliable Microsoft certifications, CISMP, CEH etc).
Security operations experience.
IT technical background.
Good communication skills for both written and verbal reporting.
Ability to communicate and guide all levels of staff.
Able to work independently with a strong bias to getting things done. Understand the true value to the business of meeting objectives and timely delivery.
Willingness to travel around all ports and sites as required for specific projects and generally.
Possess a firm belief in the values of customer service and core values of openness and honesty, teamwork and respect, along with the ambition to make a difference and exceed expectations.
2 years or more experience of working in an infrastructure role with security tools.
Working knowledge of ISMS, NIS Regulations, GDPR and ITIL.
In depth experience of MS cloud technologies. In Tune, Defender suite, Azure, Entra.

This is a wonderful opportunity to work for one of the UK’s top companies in a highly visible role with great growth potential.

The salary is a basic up to £65K + bonus + corporate package.

The role can be based out of their Hull, Cardiff, London or Southampton offices.

About the Company

Ventula Consulting is a boutique recruitment firm determined to see our clients grow through hiring exceptional people. Ventula was formed in July 2013 to provide the next generation of recruitment services. We utilize the latest techniques in digital talent attraction and are experts at proactively promoting our clients brands and mission statements to help them attract the highest calibre candidates in an increasingly competitive market. The recruitment landscape has changed dramatically over recent years. Ventula’s evolu... Know more

Related Jobs

Company Name: Threatscape
Job Title: Inside Sales Executive - Cybersecurity services
Job Description: Inside Sales Executive! | Cybersecurity services Location: Sheffield (Hybrid) Competitive Base + generous OTE. Full time, permanent. Who we are: We are an award-winning cybersecurity consultancy, trusted by leading organisations and partnered at the highest level with top-tier vendors including Microsoft, Broadcom, Palo Alto Networks, Vectra, Wiz etc. Renowned for delivering services of exceptional quality, we pride ourselves on our technical and client-first approach. As part of our continued growth, we are looking to strengthen our sales team to continue expanding our reach cross the UK and internationally. Are you driven, tenacious, and confident with a track record of lead generation success? Have you already proven yourself and are now looking for your next step in a thriving, fast-paced industry where your impact truly counts? We’re looking for an Inside Sales Executive who knows how to qualify opportunities at C level, spark interest, and secure high-quality meetings that lead to business. What You’ll Do: Proactively engage and qualify inbound and outbound B2B leads using BANT criteria Understand client pain points and identify solution fit Build rapport fast and secure meetings for senior sales account managers Collaborate closely with sales and marketing to refine messaging and outreach Maintain accurate records in the CRM and track performance metrics This is the job for you if you are: Experienced in B2B sales, ideally in a lead qualification or SDR/BDR role. Experience in the tech industry a plus. Driven, ambitious, and looking to grow in a future-focused industry Confident, articulate, and excellent at asking the right questions Methodical in your approach and resilient under pressure Assertive, curious, and never afraid to follow up until you get an answer What We Offer: Competitive base salary + generous OTE Clear progression path and ongoing development A supportive, high-energy team culture The opportunity to be part of a growing, future-proof industry Sound like you? Apply now and let’s turn your ambition into real growth

Sheffield, United Kingdom

Hybrid

Full Time

07-05-2025

Company Name: BMW Group
Job Title: Information Security Manager
Job Description: AN IT SYSTEM IS ONLY AS GOOD AS ITS SECURITY. SHARE YOUR PASSION. Networking of ideas and skills is the prerequisite for redefining mobility. This is only possible with an IT infrastructure that meets the highest demands. Especially in the area of IT security. The more complex a system becomes, the greater the risk of cyber-attacks. In order to develop adequate protection measures, we need IT security experts who understand the requirements of demanding users as well as the various functionalities of innovative IT systems. They have to live and breathe all-embracing IT security to develop counter-measures using innovative solutions with passion, personal responsibility, team spirit and attention to detail. BMW Group Financial Services UK is looking for an Information Security Manager. This role is based at the Summit ONE Campus in Farnborough. What awaits you? Responsible to drive the maturity of existing security controls across multiple teams and in collaboration with others across business. Responsible to drive the maturity of existing security controls across multiple teams and in collaboration with others across business. Provide specialist advice and guidance to the business on information security issues. Analyse metrics, implement assurance reviews, and closely monitor the businesses information risk exposure. Advice and balance security risks against the other needs of the business and support IT colleagues in the removal and management of information security risks. Recommend appropriate technical designs and support the appraisal of technical solutions ensuring alignment to the principles of 'security by design'. Identifying, developing, implementing and maintaining processes to reduce risks across the organisation through awareness training and communications campaigns. Engage all areas of the business to ensure an end-to-end Information Security strategy. Advise on and, where required, manage the transformation and improvement of BMW Financial Services UK and BMW Financial Services Ireland Information Security programmes. What should you bring along? Bachelor’s Degree in Information Technology, Business Administration, Engineering or related field or suitable relevant experience. Hands-on experience of information security functions in a fast-paced global organisation, mitigating critical security risks and implementation of security technologies, education and policies. The role holder will have demonstrable project management experience preferably in an international environment. Proven stakeholder Management skills and an ability to influence individuals and teams in areas where knowledge and understanding may be minimal. Familiarity with Information Security industry standards/best practices and relevant regulations such as ISO27000, NIST and PCI. Demonstrated expertise in Information Security and Third-Party Risk. A broad understanding of the terminology, core principles, IT controls and best practices across key risk domains, including risk assessment methodology, identity and access management, network and infrastructure security, application security, data loss prevention, and incident management. Information security industry certification (e.g. CISSP or CISM) is desirable. Closing Date: 21st May 2025 At BMW Group, we are committed to offering our employees the right balance between work and personal life. We pride ourselves on being a flexible employer and for most roles, it could be possible to agree flexible hours, job share, compressed hours or part-time working hours and so please discuss your individual requirements as part of the application process so we can try to agree a suitable arrangement. [For this role, we also support a hybrid model which combines remote and office working.] . We also have several employee resource groups. If you’d like to speak confidentially to any of these groups before applying for a role, please email us directly at Recruitment.Farnborough@bmwgroup.com and we can arrange an informal discussion. In 2025 BMW Group Financial Services UK was recognised as a Top Employer. We invest in our employees and embrace a culture of flexible working as well as promoting a positive, supportive culture and working environment. We are based in prestigious offices in Farnborough that provide a great place to work with good people and an exciting, engaging, industry leading brand. Successful candidates will be required to complete background screening checks and the offer of employment will be subject to results which we consider are satisfactory. Checks will include references, right to work, IT system Compliance Integrity Check (COIN), CV and relevant qualifications. Checks may also include criminal records, adverse financial (credit), directorships, address, internet research and/or driving licence. If you have any queries on any of these checks, please discuss with us and we will be happy to go through with you in more detail. We are proud to be a part of the Disability Confident scheme. The scheme supports employers to make the most of the talents disabled people can bring to the workplace. Information Security Manager 20250507 Automotive Farnborough United Kingdom Legal Entity BMW Financial Services (GB) Ltd. Location: Farnborough Job Field IT Security Job ID 153013 Publication Date 07.05.2025 General FullTime Print Page

Farnborough, United Kingdom

Hybrid

Full Time

07-05-2025

Company Name: Thales
Job Title: Cyber Security Consultant
Job Description: Location: Remote UK, United Kingdom Thales people architect identity management and data protection solutions at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. More than 30,000 organizations already rely on us to verify the identities of people and things, grant access to digital services, analyze vast quantities of information and encrypt data to make the connected world more secure. Together we offer fantastic opportunities for committed employees to learn and develop their career with us. At Thales UK, we research, develop, and supply technology and services that impact the lives of millions of people each day to make life better, and keep us safer. We innovate across the major industries of Aerospace, Defence, Security and Space. Your health and well-being matters to us and that’s why we offer you the flexibility to do what’s important to you; whether that’s part time hours, job sharing, home working, or the ability to flex your start and finish times. Where possible, we support a working pattern that suits your lifestyle and helps you reach your ambitions. Thales Cybersecurity Products are at the heart of digital security. Business and governments rely on us to bring trust to the billons of digital interactions they have with people. Our technologies and services help banks exchange funds, people cross borders, energy become smarter and much more. Our Cyber Security Consultants are responsible for deploying and implementing our data security solutions in customer enterprise environments. You’ll be key in evaluating the security configuration assessment and measures and provides solutions on the management of cybersecurity and information risk to the clients. This is a highly hands-on and technical role with extensive customer facing responsibilities. The individual will work with cross functional teams at customer sites focusing mainly on IT security, encryption, and key management, to install and configure our data security products. Key responsibilities: Conduct audits and consulting services in the field of cybersecurity (architecture reviews and recommendations, compliance with best practices, etc.) Carry out risk assessments, define cybersecurity governance strategies, processes and security policies for our internal and external customers Provide advice and recommendations on improving the security level Implement security methods and processes to perform security risk analysis Assist in the integration of security standards and provide expertise in the implementation of cybersecurity projects Analyse the functional and technical needs of our clients to provide them with insight into the security solutions adapted to their needs Check compliance with applicable regulations, standards, policies and guidance on cybersecurity and information risk management (PCI DSS, NIST, ISO 27000, Privacy, etc) Support the development of appropriate and proportionate documentation to inform risk management decisions, ensuring these are expressed in terms meaningful to the business Check compliance with applicable regulations, standards, policies and guidance on cybersecurity and information risk management (PCI DSS, NIST, ISO 27000, Privacy, etc) Support the development of appropriate and proportionate documentation to inform risk management decisions, ensuring these are expressed in terms meaningful to the business Right for this role? Ideally you’ll be familiar with the main risk analysis methods (EBIOS, ISO 27005), regulatory constraints (LPM, NIS, RGPD, II 901, IGI 1300) and security standards (ISO 27000, NIST, ANSSI, etc) You are able to identify, analyse and evaluate cybersecurity and information risks Have knowledge of Authentication and Identity management solutions Experienced in database administration (mainly Oracle, MySQL and MS SQL) You can demonstrate knowledge in programming background and experience (Java, C++, .NET, SQL, XML) You have a good sense of IT security awareness You have basic knowledge and background in Cryptography and Security, including PKI, digital signature, encryption, certificates, HSM and cryptographic APIs (PKCS#11, OpenSSL,…) Knowledge of legacy products : EFT, payshield 9000, P3CM… YOUR CAREER AT THALES Future opportunities will allow you to discover other domains or sites. You will be able to evolve and grow your competences in different areas: Room and attention to personal development Build your talents in another domain of Thales Group, discovering new products, new customers, new country or go to a more complex Solution Choose between a technical expertise or a leadership path Build an international career within a leading Engineering Group In line with Thales' Baseline Security requirements, candidates will be asked to provide evidence of identity, eligibility to work in the UK and employment and/or education history for up to three years. Some vacancies may require full Security Clearance which can require further evidence to be provided. For further details of the evidence required to apply for Baseline and Security Clearance please refer to the Defence Business Services National Security Vetting (DBS NSV) Agency. At Thales we provide CAREERS and not only jobs. With Thales employing 80,000 employees in 68 countries our mobility policy enables thousands of employees each year to develop their careers at home and abroad, in their existing areas of expertise or by branching out into new fields. Together we believe that embracing flexibility is a smarter way of working. Thales UK is committed to providing an inclusive and barrier-free recruitment process. We will provide reasonable adjustments and support to ensure neuro-diverse applicants or those with a disability or long-term condition can be their best during the recruitment process. To request an adjustment, if you need this job advert in an alternative format or if you have any questions about the recruitment process, please contact Resourcing Ops for mid to senior roles, or the Early Careers Team for graduate and apprentice roles. Great journeys start here, apply now!

Crawley, United Kingdom

Hybrid

Full Time

07-05-2025

Company Name: GitLab
Job Title: Intermediate Fullstack Engineer, SSCS: Pipeline Security (Ruby)
Job Description: GitLab is an open core software company that develops the most comprehensive AI-powered DevSecOps Platform, used by more than 100,000 organizations. Our mission is to enable everyone to contribute to and co-create the software that powers our world. When everyone can contribute, consumers become contributors, significantly accelerating the rate of human progress. This mission is integral to our culture, influencing how we hire, build products, and lead our industry. We make this possible at GitLab by running our operations on our product and staying aligned with our values. Learn more about Life at GitLab. Thanks to products like Duo Enterprise, and Duo Workflow, customers get the benefit of AI at every stage of the SDLC. The same principles built into our products are reflected in how our team works: we embrace AI as a core productivity multiplier. All team members are encouraged and expected to incorporate AI into their daily workflows to drive efficiency, innovation, and impact across our global organisation. An Overview Of This Role As an Intermediate Fullstack Engineer on the Pipeline Security team, you'll be at the forefront of making CI pipelines more secure and trustworthy for GitLab users worldwide. You'll work on critical security features that directly impact how thousands of organizations handle sensitive information in their development workflows. Our team is currently focused on two major initiatives: developing GitLab's native secrets management system for CI pipelines and implementing SLSA L3 compliance features to enhance software supply chain security. Working with both Ruby on Rails and Vue.js, you'll help shape the security architecture of GitLab's CI/CD infrastructure. This role offers a unique opportunity to combine deep backend development expertise with security engineering, directly contributing to making GitLab's pipelines more secure for everyone. Secrets Manager SLSA L3 What You’ll Do Security Implementation: Contribute to the development of GitLab's native secrets management system for CI pipelines, ensuring secure handling of sensitive information Code Review: Review code contributions with a security-first mindset, ensuring all new features meet our high security standards Secure Development: Write secure, maintainable code primarily in Ruby on Rails and Vue.js Technical Collaboration: Apply security best practices and participate in code reviews with a security-focused mindset Cross-team Collaboration: Work closely with security experts and other engineering teams to ensure best practices in secure software development Documentation: Write and maintain technical documentation for security features, focusing on both implementation details and security considerations Problem Solving: Debug and resolve complex security-related issues in production environments Security Architecture: Participate in design discussions and technical reviews with a focus on security implications Required Skills What You’ll Bring 3+ years of fullstack development experience Strong proficiency in Ruby on Rails and JavaScript frontend frameworks Excellent problem-solving and debugging skills Strong communication skills and ability to explain complex security concepts Preferred Skills Understanding of CI/CD concepts and pipeline security Experience with secrets management and security best practices Strong knowledge of web application security principles Experience with Git and GitLab/GitHub workflows Experience with Golang development Experience with container security and Docker Familiarity with SLSA framework and software supply chain security Experience with HashiCorp Vault or similar secrets management systems About The Team The Pipeline Security team is responsible for making CI pipelines more secure and trustworthy for users. We're currently focused on two major initiatives that will significantly improve GitLab's security posture: developing a native secrets management system and implementing SLSA L3 compliance features. Our work directly impacts the security of thousands of organizations' software supply chains. How GitLab Will Support You Benefits to support your health, finances, and well-being All remote, asynchronous work environment Flexible Paid Time Off Team Member Resource Groups Equity Compensation & Employee Stock Purchase Plan Growth and Development Fund Parental leave Home office support Please note that we welcome interest from candidates with varying levels of experience; many successful candidates do not meet every single requirement. Additionally, studies have shown that people from underrepresented groups are less likely to apply to a job unless they meet every single qualification. If you're excited about this role, please apply and allow our recruiters to assess your application. Remote-Global Country Hiring Guidelines: GitLab hires new team members in countries around the world. All of our roles are remote, however some roles may carry specific location-based eligibility requirements. Our Talent Acquisition team can help answer any questions about location after starting the recruiting process. Privacy Policy: Please review our Recruitment Privacy Policy. Your privacy is important to us. GitLab is proud to be an equal opportunity workplace and is an affirmative action employer. GitLab’s policies and practices relating to recruitment, employment, career development and advancement, promotion, and retirement are based solely on merit, regardless of race, color, religion, ancestry, sex (including pregnancy, lactation, sexual orientation, gender identity, or gender expression), national origin, age, citizenship, marital status, mental or physical disability, genetic information (including family medical history), discharge status from the military, protected veteran status (which includes disabled veterans, recently separated veterans, active duty wartime or campaign badge veterans, and Armed Forces service medal veterans), or any other basis protected by law. GitLab will not tolerate discrimination or harassment based on any of these characteristics. See also GitLab’s EEO Policy and EEO is the Law. If you have a disability or special need that requires accommodation, please let us know during the recruiting process.