1,492 Information Security jobs in the United Kingdom

• Maintaining the lawfully required Central Record of Authorities.
• Managing workflow processes.
• Influencing senior managers.
• Liaising with other Law Enforcement Agencies and the Investigatory Powers Commissioners Office.
• Representing FIS CODE at meetings with other agencies.
• Taking minutes at meetings.

• Strong written and oral communication skills.
• Demonstrates a high level of attention to detail, ensuring accuracy and consistency in all aspects of work, including documentation, data handling, and task execution.
• Proven ability to interpret and analyse complex regulatory frameworks and legal documentation, applying sound judgment to ensure compliance and inform decision-making.
• Good working knowledge of Office 365 platforms (Excel, O365 / Teams / SharePoint).
• Evidence of being able to prioritise effectively, in a changing environment against competing workflow priorities and demands to deliver to strict deadlines.
• Evidence of working collaboratively within an internal team, both in the office and remotely.
• Ability to develop effective working relationships with a range of external stakeholders to support delivery of business outcomes.

• Managing a Quality Service
• Communicating and Influencing

• Pension - We make contributions to our colleagues' Alpha pension equal to at least 28.97% of their salary.
• Family friendly policies.
• Personal support.
• Coaching and development.

• Work with the Incident Response coordinators to investigate and respond to complex incidents coordinating the actions of analysts and other stakeholders.
• Subject matter experts in host and network digital forensics, malware analysis and programming, along with secure service and infrastructure design.
• In-depth knowledge of technical security controls such as SIEMs, EDR, firewalls, WAFs, proxies, IDS and zero trust.
• Ensure the prompt analysis of anomaly detection tools to help identify security breaches, cyberattacks, and reporting activity.
• Maintain and develop use case detections and response tasks using Mitre Att&ck Framework.
• Exercise, tune and innovate security incident playbooks/standard operating procedures.
• Maintain and improve in team workflows and procedures.
• Taking ownership of CST's cases and following CST tickets to full resolution state - in line with CST procedures.
• Collaborative working with external suppliers.
• Perform analysis and forensics on computer/network artefacts and malware samples to assess the impact of an incident, document attack capabilities, understand propagation characteristics and define signatures for detecting its presence.
• Line management of analysts: Direct and coordinate their work and provide expert technical support.
• Manage the performance and development of cyber security staff.
• Deputise as Incident Response Coordinator.

• Experience of using a variety of analytical tools to identify security compromises within large amounts of complex data.
• Experience of analysing large datasets to find unusual system and user behaviours.
• Knowledge of multiple technical environments, including but not limited to, cloud, networking, operating systems, databases.
• Exposure to the cyber security, including knowledge and experience of the breadth of threat actors and depth of threat vectors available.
• Knowledge of using digital forensic and malware analysis tools, whether that be commercial products or open source.
• An understanding of the structures underpinning corporate IT systems and how these structures can be compromised and exploited.
• Proven understanding of security monitoring, intrusion detection, prevention and control systems including firewalls, anti-virus, web proxies.
• Experience or understanding of security incident management frameworks and their practical application during an incident.

• Degree majoring or including Cyber Security / Digital Forensics.
• Incident Response (DFIR)/Malware Analysis.
• Recent working experience of working in a SOC (Security Operations Centre).
• Technical Certifications such as SANS, CompTIA and ISC2

• Telford Plaza, Telford - moving to Parkside Court, Telford

Sizewell C. The power of good for Britain.

Security Risk Manager

Location: Sizewell C, Leiston, Suffolk (site-based with travel as required).

Security clearance is essential for this role, the candidate must be able to pass the SC check.

Contract: Permanent, full-time.

Salary: circa £ 70,000 per annum, depending on experience, plus benefits.

Benefits:

5% CIP bonus

28 days holiday, plus

• Putting the customer at the heart of your work, meeting with customers/stakeholders and taking ownership of their concerns through to swift resolution.
• Providing technical expertise and raising the required repair and/or maintenance work, with the support of our Field Operations Specialists.
• Understanding and working in accordance with both internal and external processes and procedures, such as asset management standards, health and safety legislation and environmental regulations.
• Attending reactive emergencies (e.g. sewer flooding/pollution), supporting our customers and prioritising work to mitigate and resolve defects as quickly as is safely possible.
• Supervising the work of our repair and maintenance contractors.
• Completing ancillary inspections on a range of assets, including access covers, balancing ponds, outfalls, vent pipes, and valves.
• Working with our Asset Damage Investigator to collate evidence of third-party damage to our network.
• Attending meetings with external stakeholders, proactively explaining our work with a view to resolving any potential concerns before they are raised.

• Act as a Subject Matter Expert (SME) on network routing, switching, and associated OT network infrastructure.
• Support the operational reliability of OT network systems to ensure 99.98% availability of critical assets.
• Lead and support the delivery of network changes in line with change management and risk assessment procedures to minimise operational impact.
• Maintain OT network standards, configurations, and firmware in accordance with defined policies and procedures.
• Provide technical support across the design, build, and delivery of both high-level and low-level network solutions.
• Deliver updates and upgrades to routers, switches, firewalls, and other network components at agreed intervals.
• Manage and monitor OT network system security, including compliance audits, licence reviews, and obsolescence tracking.
• Configure and support a wide range of technologies including Fortinet, CheckPoint, Cisco security appliances, Hirschmann HiVision, VPNs, Radius, Active Directory, SolarWinds, and Pulse Secure.
• Manage routing and switching protocols including OSPF, RIP, BGP, MPLS, NAT, VLAN, STP, and policy-based routing.
• Apply principles of cloud IaaS networking and assist in secure connectivity between cloud and on-prem systems.
• Identify, assess, and implement security improvements in line with cyber and operational risk requirements.
• Respond to incidents and provide 24/7 out-of-hours support for the OT network, as part of a shared on-call rota.
• Collaborate with internal stakeholders across OT and operational teams to deliver network improvements and project support.
• Support internal and capital delivery projects by providing network design, implementation, and technical oversight.
• Engage in continuous improvement initiatives through lessons learned, internal feedback, and proactive issue resolution.
• Maintain accurate records of preventative and reactive maintenance, and complete relevant documentation as required.
• Identify skill gaps and contribute to personal development planning (PDP) to ensure continuous growth and learning.

• Higher education qualification (HNC or equivalent experience) in an engineering or IT discipline.
• Security clearance to SC level or the ability to obtain it.
• Proven experience in maintaining and supporting enterprise network infrastructure within a large organisation.
• Industry-recognised networking certifications (e.g. CCNP, CCNA minimum, CheckPoint CCSE/CCSA).
• Strong understanding of IP networking, including LAN, WAN, and routing protocols (OSPF, BGP, RIP, MPLS).
• Experience managing network security technologies (e.g., firewalls, VPNs, anomaly detection).
• Proficiency in network monitoring and management tools such as SolarWinds, Tufin, and Hirschmann HiVision.
• Confident decision-making skills with the ability to balance operational, technical, and customer priorities.
• Excellent communication and interpersonal skills, capable of working with technical and non-technical stakeholders.
• Valid UK driving licence and ability to participate in an on-call support rota.
• Strong documentation, report writing, and root cause analysis skills.
• Proficient in MS Office, including Visio for network diagramming.
• Understanding of IT and OT service delivery approaches (ITIL, Agile, Lean).

• Experience working in the utilities or water industry.
• Familiarity with SCADA and telemetry systems or willingness to learn.
• Knowledge of mobile communications, remote access technologies, and cloud networking principles.
• Understanding of virtualisation platforms (e.g., VMware, Hyper-V) and basic scripting (e.g., PowerShell, cmd).
• Experience managing conflicting priorities and stakeholder demands in a high-pressure environment.
• Exposure to OT cyber-physical systems and IT/OT convergence projects.

• Competitive salary up to £65,000 per annum, depending on experience.
• Annual Leave - 26 days holiday per year, increasing to 30 with the length of service. (plus

• Lead and oversee Thames Water’s Data Subject Rights and EIR request processes , ensuring compliance with statutory obligations.
• Review, manage and maintain procedures to respond to requests for Data Subject Rights Requests, including Subject Access Requests for both customers and employees.
• Conduct internal reviews for data rights and EIR complaints, identifying risks and developing mitigation strategies.
• Engage with internal and external stakeholders to embed best practice and promote transparency .
• Deliver training, awareness sessions, and guidance across the business.
• Drive continual improvement in data rights and EIR processes, including the adoption of new technologies.
• Manage, develop, and motivate a team of Data Protection Advisors , setting clear objectives and supporting their growth.

• Data Protection qualification - Practitioner’s Certificate (or equivalent).
• Hands-on experience managing EIR requests , and exceptions.
• In-depth knowledge of UK GDPR, DPA 2018 , and data subject rights.
• Proven experience of information compliance and managing requests for information.
• Strong communication skills, with the ability to explain complex issues clearly.
• Evidenced/demonstrated ability to manage and develop a team .
• Excellent organisation, attention to detail, and administrative skills.

• Degree-level qualification in a relevant subject.
• Previous experience in stakeholder engagement and team leadership.
• Experience with policy development and embedding change across a large organisation.

• Competitive salary up to £60,000 per annum, depending on experience.
• Annual Leave: 26 days holiday per year increasing to 30 with the length of service (plus

• Base Location: Reading (STW) - RG2 0RP, Swindon - SN2 2DJ or Banbury - OX16 4RZ, Depending on your location.
• Working Pattern or hours: 38 Hours per week, plus the inclusion on an on-standby Rota for which you will receive additional