Information Security Manager

Job Title: Cyber Security Assurance Specialist (Application Security) Client: Urenco Rate: £700 per day Location: Hybrid - Minimum 2 days per week in Paddington, London Clearance: Active SC Clearance required About the Client Urenco is a world leader in the enrichment of..., Job Description We're looking for a Cloud Security Engineer for our consultancy client supporting a large cyber security programme for a financial services organisation. This is an initial 6 month contract paying between £400 to £600 per day Outside IR35. The programme...

We are seeking a Cloud Security Specialist with hands-on experience across Azure, M365 and preferably Google Cloud Platform (GCP). The role focuses on assessing and improving cloud security configurations and advising on best practices across Azure IaaS and GCP environments. You will bring a strong engineering background in managing compute, network and storage resources in cloud and hybrid environments, along with extensive experience of Terraform, Azure Defender, Conditional Access and DevSecOps.Key responsibilities and deliverables Assess the security configuration of Azure IaaS and GCP environments (infrastructure, containers and DevOps pipelines) and provide recommendations based on industry best practice and emerging threats.Design, implement and manage secure Azure cloud infrastructure (e.g. virtual networks, VMs, storage, identity services) and provide cloud-security SME support to Cyber Incident Response when required.Administer and enhance Azure security across IaaS, containers (e.g. AKS) and DevOps pipelines; implement and review security controls for cloud-native applications and services.Review Terraform-based infrastructure-as-code to identify and mitigate security risks; advise on securing automated provisioning processes.Evaluate and optimise Azure Defender and other monitoring tools (including in GCP), assess and refine Conditional Access/IAM strategies, embed security into DevSecOps/CI-CD pipelines, and ensure cloud environments meet compliance and governance requirements.Collaborate with cloud, DevOps, Networks and development teams to align security with operational goals, and promote continuous improvement and innovation in cloud security.Key requirements 5+ years' experience in cloud security, with strong focus on Azure IaaS and exposure to (preferably) Google Cloud.Hands-on experience administering Azure security environments, including IaaS, containers (e.g. AKS) and DevOps pipelines.Strong background in administering compute, network and storage resources in cloud and hybrid environments.Proficiency with Terraform and infrastructure-as-code best practices, including the ability to review scripts for security issues.Extensive experience with Azure security services and tooling (e.g. Defender, Conditional Access), strong problem-solving skills, and the ability to communicate security issues clearly to technical and non-technical stakeholders.Relevant cloud/security certifications (e.g. Azure Security Engineer, Google Professional Cloud Security Engineer).Experience contributing cloud security expertise to incident response and investigations.Experience in complex or regulated enterprise environments with formal governance frameworks.Demonstrated ability to manage through change and drive improvements in security processes and tooling.Experience working in a consulting or advisory capacity, building strong relationships across cross-functional teams.Inclusion Freshfields is an equal opportunities employer and all applications received by the firm will be considered on the basis of their merit alone. We welcome applications from all suitably qualified individuals regardless of background. All offers of employment will be conditional on the candidate having/securing the right to work in the UK in the role in question and providing the firm with evidence of that right (as required by the Immigration, Asylum and Nationality Act 2006) prior to employment commencing.Freshfields is a Ban the Box employer. We ask applicants to disclose criminal convictions only if and when a conditional job offer is made. A conviction does not automatically lead to withdrawal of the offer: we make decisions on a case-by-case basis and take a number of relevant factors into account (e.g. the role you are applying for and the circumstances of the offence). You would have the opportunity to discuss the matter with us before we make a decision., A leading cloud infrastructure company is seeking a Head of Information Security to define enterprise security vision and protect data integrity. This role requires at least 10 years of experience in information security coupled with strong leadership skills. You will..., A leading UK bank is seeking an IT Security Leader to drive the organization's IT security strategy while ensuring compliance and managing security operations. The ideal candidate has senior leadership experience in a regulated environment, specifically with ISO/IEC 27001...

Job Description Enterprise HR Tech Architect & Engagement Lead Permanent | London-Hybrid | £80-90k | FTC + bonus & benefits This role will suit a HR architect who can occupy the "sweet spot" between specialist solution engineers and high-level programme directors-owning...