CrawlJobs Logo
Vodafone Logo Vodafone · IT - Administration

Security Assurance Lead

United Kingdom, Newbury · Job Posted June 15, 2026
Apply Position
Job Link Share

Job Description

We’re here to build a network the UK can count on – one that connects people, places and potential. Because no matter where you live, what your background is, or how you get online – we think everyone deserves the same chance to stay connected, and with VodafoneThree, that future’s being built – today. We’re creating more than the UK’s best network. We’re helping close the digital divide, empower communities and drive meaningful progress. We believe that everyone should feel they belong. Whoever you are and whatever your story, there’s space for you here. We’re building a workplace where different perspectives are welcomed, voices are heard, and everyone feels safe to show up as themselves. You’ll join a team that genuinely cares – about each other, about our customers, and about the future we’re building. From day one, you’ll be welcomed, valued and encouraged to bring your whole self to work.

Job Responsibility

  • Work closely with teams across the business to build strong relationships and make sure everyone is accountable for security controls
  • Help support both internal and external security audits and testing
  • Clearly report on how our security controls are performing based on audit and testing results
  • Keep track of remediation activity and follow up with control owners to ensure security issues are addressed
  • Analyse security risks so gaps are properly recorded, owned, and actively managed
  • Assess the impact of changes to customer security frameworks, legal requirements, or industry standards
  • Respond to internal questions and requests related to security assurance
  • Encourage teams to adopt security best practices and continuously improve our overall security posture
  • Work with teams to strengthen security controls as new threats emerge and evolve
  • Build and maintain strong working relationships with internal stakeholders
  • Maintain a clear RACI for security control ownership
  • Produce and share security compliance KPIs and KRIs with key stakeholders
  • Make sure security certifications stay up to date and that external security milestones and deadlines are met
  • Support or carry out security audits and testing to demonstrate compliance with mandatory security controls

Requirements

  • Comfortable using Governance, Risk and Compliance (GRC) tools to manage and track security activities
  • Strong background in risk management, balancing business priorities with security requirements
  • Experience conducting or supporting security audits and testing activities
  • Actively working towards (or keen to achieve) a recognised security qualification such as ISO 27001 / 42001 / 27017 / 27701 auditor, CISM, CISSP, COBIT, CISA, CGEIT, or an equivalent

What we offer

  • Excellent basic salary plus bonus and Vodafone benefits
  • great pay
  • bonuses
  • up to 28 days off plus bank holidays
  • paid time for charity work
  • discounts
  • vouchers
  • pension plan
  • learning tools
  • top-notch parental leave policies
Vodafone - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Security Assurance Lead

8 matching positions

Cyber Security Assurance Tech Lead

We are looking for a Cyber Security Assurance Tech Lead to join our team and pla...
Location
Location
Egypt , Giza
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong knowledge of security frameworks and methodologies such as MITRE ATT&CK, NIST, OWASP, and CIS Controls
  • Hands-on understanding of penetration testing methodologies for web, mobile, network, API, and cloud environments
  • Familiarity with hardening and secure configuration practices for servers, databases, operating systems, and applications
  • Experience in vulnerability assessment, risk analysis, and providing security recommendations aligned with business requirements
  • Ability to work collaboratively with cross-functional teams to identify, prioritize, and remediate security vulnerabilities
  • Strong analytical, troubleshooting, and problem-solving skills with the ability to communicate technical findings to both technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Perform penetration testing activities on web applications, mobile applications, networks, APIs, and cloud environments to identify security vulnerabilities and weaknesses
  • Support penetration testing activities conducted internally or through third-party vendors, ensuring proper execution and reporting
  • Conduct vulnerability assessments and security analysis, providing remediation recommendations to improve the overall security posture
  • Validate secure implementation and acceptance of new technologies, systems, and infrastructure in alignment with Vodafone security policies and standards
  • Perform regular security assurance activities on existing applications and environments to ensure continuous compliance and protection against emerging threats
  • Participate in security risk assessments for new projects and initiatives, ensuring security risks are identified and mitigated during early project phases
  • Collaborate with technical teams and business stakeholders to track and remediate penetration testing findings in a timely manner
  • Review and validate penetration testing reports, ensuring findings are properly documented with clear remediation guidance
  • Stay up to date with emerging cyber threats, vulnerabilities, attack techniques, and industry best practices to continuously improve penetration testing and security assurance capabilities
  • Fulltime
Read More
Arrow Right
New

Risk Engineer (Security Assurance)

Hybrid Global Automotive Tech International Environment
Location
Location
Japan , 東京23区
Salary
Salary:
8000000.00 - 12000000.00 JPY / Year
https://www.randstad.com Logo
Randstad
Expiration Date
September 29, 2026
Flip Icon
Requirements
Requirements
  • 6+ years’ experience in Information Security
  • Experience in technical security, securing products incorporating emerging technologies like IoT, AI, Automotive operating systems
  • Experience with risk management, risk assessments and risk assessment methodologies/standards (NIST SP800-30, CIS RAM, etc)
  • Experience with regulatory compliance and information security management frameworks (e.g., ISO27001/ISO27002, NIST CSF, CMMC)
  • Technical expertise in the security field and experience with security architecture and ability to challenge risk assessments on the technical side
  • Experience with multiple risk assessment methods including threat modeling (STRIDE, etc)
  • High level of independence and autonomy in leading and performing engagements, including conducting interviews, with a complex set of corporate stakeholders
  • Experience in technical assessments of networks, operating systems, cloud environments, etc Excellent written and verbal communication skill
What we offer
What we offer
  • 健康保険
  • 厚生年金保険
  • 雇用保険
  • 土曜日
  • 日曜日
  • 祝日
  • Fulltime
Read More
Arrow Right

Lead Security Architect

JET's Information Security organisation protects a technology-led, cloud-native ...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
justeattakeaway.com Logo
Just Eat Takeaway.com
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strategic risk management expertise, with the ability to assess enterprise-wide threats and translate them into architectural roadmaps
  • Exceptional communication skills to engage C-Suite stakeholders, presenting complex security topics with clarity and business context
  • Deep technical knowledge across Cloud Security, Network Security, and Identity and Access Management (IAM) architectures
  • Proven ability to influence across organizational boundaries, building trusted partnerships with engineering, IT, product, and business leaders
  • Industry thought leadership mindset, staying ahead of emerging threats and contributing to the broader security community
  • Certified Information Systems Security Professional (CISSP) certification
  • Additional certifications such as Certified Information Security Manager (CISM) highly valued
  • Demonstrated experience designing and implementing enterprise-scale security frameworks that balance protection with business enablement
  • Strong ethical foundation and integrity, understanding the responsibility of handling sensitive information and setting team standards
  • Collaborative approach to security governance, with a track record of embedding security seamlessly into development and operations workflows
Job Responsibility
Job Responsibility
  • Define and evolve the enterprise security architecture, establishing the 12 to 18 month strategic vision and technical standards that guide the entire organization's security posture
  • Steer the creation of 'Golden Path' security patterns, approved, reusable frameworks that align with engineering excellence and reduce friction across teams
  • Influence decision-making by translating threat landscapes into actionable business risk assessments and investment priorities
  • Direct security governance programs, including oversight of vulnerability management, penetration testing strategies, and compliance assurance initiatives
  • Transform how security integrates with business operations by acting as the liaison between security, engineering, and IT departments
  • Champion budget planning and resource allocation for security improvement projects, ensuring strategic alignment with enterprise risk management
  • Drive the development of security policies and standards that balance robust protection with business agility and innovation
  • Establish thought leadership across the organization, setting the tone for security culture and embedding security-by-design principles company-wide
  • Collaborate with regulatory and legal teams to ensure all architectural decisions meet compliance requirements across jurisdictions
  • Mentor and guide security teams, fostering an environment of continuous learning and shared accountability for organizational resilience
  • Fulltime
Read More
Arrow Right

Cyber Delivery Assurance Lead

As Cyber Delivery Assurance Lead, you'll act as the British Airways cyber repres...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
britishairways.com Logo
British Airways
Expiration Date
June 18, 2026
Flip Icon
Requirements
Requirements
  • Strong hands-on cyber security experience, with the ability to assess real systems and influence secure design and delivery decisions
  • Broad technical understanding of cyber security controls across multiple technology domains
  • Confidence working directly with engineers, architects and delivery teams to resolve security issues pragmatically
  • Ability to balance standards compliance with practical delivery constraints
  • Excellent stakeholder management skills, with experience influencing at senior levels
  • Calm, resilient approach in fast-paced and changing environments
  • Clear, positive communicator who can explain cyber risk and controls effectively
  • Proven experience providing cyber security assurance or secure delivery support in complex environments
  • Demonstrable experience performing threat and risk assessments and defining mitigating controls
  • Experience working in regulated environments with strong cyber and compliance requirements
Job Responsibility
Job Responsibility
  • Provide delivery assurance to ensure programmes and products operate within BA's cyber risk appetite
  • Work hands-on with delivery teams to embed security by design and ensure appropriate cyber controls are implemented and operating effectively
  • Interpret and apply cyber security policies, standards and guidelines across product releases and ongoing maintenance
  • Conduct threat and risk assessments across varied technology stacks and define proportionate mitigating controls
  • Provide authoritative advice on the practical application of security controls, legislation and regulatory requirements
  • Act as the cyber point of contact for programmes and products, supporting secure delivery end-to-end
  • Engage proactively with the IAG Cyber Security Office assurance and architecture functions to ensure consistency and best practice
  • Identify, manage and report cyber risks and exceptions throughout the product lifecycle
  • Support cyber governance forums and provide clear, accurate updates on security deliverables
  • Promote cyber risk awareness and support security awareness initiatives across the organisation
What we offer
What we offer
  • Brilliant staff travel benefits including unlimited basic and premium standby tickets on British Airways flights
  • Up to 30 discounted 'Hotline' airfares per year for yourself, friends, and family
  • Market-leading defined contribution (DC) pension with up to 7% employer contributions
  • Flexible benefits including critical illness cover, childcare vouchers, cycle to work, additional life insurance cover, private medical insurance, dental plan, and healthcare cash plan
  • Electric car scheme
  • Gymflex
  • Heathrow Express tickets with 75% discount
  • Fulltime
Read More
Arrow Right

Application Security Lead

As the Manager, Application Security Lead at Vocalink Limited, you will play a c...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Proven experience in application security, including hands-on experience with secure coding practices, code review, and vulnerability assessment tools
  • Strong understanding of software development methodologies, programming languages, and web technologies
  • Experience leading or managing a team of security professionals
  • Excellent communication skills, with the ability to effectively communicate technical concepts to non-technical stakeholders
  • Strong analytical and problem-solving skills, with the ability to think critically and creatively to identify and mitigate security risks
  • Ability to work independently and collaboratively in a fast-paced environment
  • Experience initiating and managing improvement in areas of security by leveraging process metrics
  • Strong understanding of the payments industry regulatory landscape and compliance requirements
  • Ability to articulate themselves clearly and concisely to a broad range of senior and junior stakeholders, acting as a bridge as well as guide for the implementation of new capabilities
  • Excellent communication and leadership skills with the ability to collaborate effectively across departments
Job Responsibility
Job Responsibility
  • Develop and implement strategies for integrating security assurance into the software development process
  • Establish and execute on forward looking application security strategies that enables proactive secure application development
  • Collaborate with development teams in conducting security reviews, threat modelling, and code analysis to identify and mitigate security vulnerabilities
  • Provide guidance and training to developers on secure coding practices, security best practices, and common vulnerabilities
  • Advise on the development and maintenance of security standards, policies, and guidelines for application development
  • Lead the Penetration Testing tower of Vulnerability Management
  • ensuring that taxonomies and methodologies reflect the needs of Vocalink and that appropriate testing is carried out
  • Stay updated on emerging threats, vulnerabilities, and industry trends in application security, and ensure that security measures are continuously improved and updated
  • Collaborate during regular security assessments and penetration testing of applications to help resolver groups address security weaknesses
  • Serve as a subject matter expert on application security, providing guidance and recommendations to stakeholders across the organization
  • Fulltime
Read More
Arrow Right

Principal Security Assurance Engineering Manager

Microsoft’s Specialized Cloud Team in the national security, classified, and hig...
Location
Location
United States , Reston
Salary
Salary:
139900.00 - 274800.00 USD / Year
https://www.microsoft.com/ Logo
Microsoft Corporation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 4+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection OR Bachelor's Degree in Statistics, Mathematics, Computer Science, Risk Management, Cyber Security, or related field AND 6+ years experience in software development lifecycle, large scale computing, threat modeling, cyber security, or anomaly detection OR equivalent experience
  • 1+ year(s) people management
  • Active U.S. Government Top Secret Clearance with access to Sensitive Compartmented Information (SCI) based on a Single Scope Background Investigation (SSBI) with Polygraph
  • Verification of U.S. citizenship
Job Responsibility
Job Responsibility
  • Enterprise Industrial Security Leadership: Interpret, operationalize, and govern requirements under NISPOM (32 CFR Part 117), SEADs, DoD Instructions, DFARS clauses, and customer specific security directives
  • Anticipate and mitigate enterprise level risks that could jeopardize Facility Clearances (FCLs), classified contracts, or customer trust
  • Cross Organizational Governance & Influence: Drive alignment across Engineering, Operations, Datacenters, Legal (CELA), HR, Physical Security, and secure/sovereign cloud teams
  • Establish clear governance models, accountability mechanisms, and escalation paths
  • Lead high risk decision making involving regulatory exposure, personnel adjudication, insider threat concerns, and facility accreditation
  • Facility Clearance & Classified Environment Management: Provide governance and oversight for the full lifecycle of classified facilities, including SCIFs and SAPF environments
  • Ensure accreditation readiness, material change management, and sustained compliance across facilities and business units
  • Protect Microsoft’s corporate and subordinate FCL posture through proactive risk management
  • Fulltime
Read More
Arrow Right

Data Analyst Quality Assurance Lead

The Data Analyst/Quality Assurance Lead performs data collection and analysis fo...
Location
Location
United States , Las Vegas
Salary
Salary:
95000.00 - 105000.00 USD / Year
Arcata Associates, Inc
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's Degree in a Quality Assurance, Technical discipline, Business Administration, Management or related discipline
  • At least four years of related experience
  • In lieu of a bachelor's degree, a combination of formal education and technical experience is acceptable
  • Experience with quality methodology, analytical concepts and applications are preferred
  • American Society of Quality (ASQ) Auditor Certification preferred
  • must be obtained within the 6-month probationary period if selected candidate does not possess certification
  • Excellent interpersonal skills and proven ability to communicate effectively in both oral and written form
  • Highly skilled in the use of a PC and PC-based business applications software such as Microsoft Office, specifically Word, PowerPoint and Excel
  • Strong planning, organization, data analysis, data management and problem-solving skills are required
  • Demonstrated skill, knowledge, and technical competence in the reading and interpretation of schematics, plans, manufacturer's manuals, Government procedural documents, management reports, and other similar documents
Job Responsibility
Job Responsibility
  • Creates and distributes Quality Metrics (i.e. report cards) to be used in tracking Annex 2 trends for major departments
  • Acts as the Critical Spares Program Administrator, coordinating and compiling departmental inputs on behalf of the Critical Spares Program
  • Provides oversight to the QA staff assigned to the Business Operations department as directed by the DM/QA Supervisor
  • Provides oversight of the Technical Order Distribution Office (TODO) duties performed by the QA department for Technical Orders (TOs), Time Compliance Technical Orders (TCTOs), and Computer Program Identification Numbers (CPINs)
  • Provide oversight of the ETool Program in conjunction with the IT department and the QA Lead TODO
  • Continually review the processes governing all aspects of the J-Tech II Annex 2 Quality Management System providing recommendations to management on opportunities to improve the current business model
  • Reviews the applicable sections of the J-Tech II contract, contract modifications, and external related documents to ensure new requirements are identified and included in the Quality Management System
  • Performs inspections of equipment, systems, and services required of the QA Department
  • Performs audits required of the J-Tech contract and perform JT4 Corporate Management audits as assigned
  • Maintains audit/inspection documentation and records IAW with JT4/Annex 2 practices
What we offer
What we offer
  • Medical, Dental, Vision, and much more
  • Fulltime
Read More
Arrow Right

Cloud Security Assurance Architect

The Cloud Security Assurance Architect will lead security assessments and archit...
Location
Location
United Kingdom , London
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Computer Science, Information Security, or Cybersecurity
  • 6+ years in information security with cloud security focus
  • 3+ years conducting cloud security assessments and architecture reviews
  • Proven multi-cloud experience (AWS, Azure, GCP) in production environments
  • Technical Skills: AWS: Security Hub, GuardDuty, IAM Access Analyzer, KMS, CloudTrail
  • Azure: Defender for Cloud, Sentinel, Azure Policy, Key Vault
  • GCP: Security Command Center, Cloud Armor, IAM, Cloud KMS
  • Tools: Prisma Cloud, Wiz, Pacu, ScoutSuite, Prowler, Terraform
  • Cloud penetration testing and threat modeling
  • Mandatory Certifications: CISSP or CCSP
Job Responsibility
Job Responsibility
  • Lead cloud security assessments and architecture reviews across AWS, Azure, and GCP
  • Validate security implementations, provide expert guidance on cloud security posture, and support enterprise cloud transformation initiatives
  • Lead security architecture reviews for cloud-native and hybrid solutions
  • Execute cloud security assessments across AWS, Azure, and GCP environments
  • Validate designs against NIST CSF, CIS Benchmarks, and CSA CCM
  • Conduct cloud penetration testing following (CREST/CHECK methodologies)
  • Assess container/Kubernetes security, serverless and microservices implementations
  • Validate IaC security controls and CI/CD pipeline security
  • Lead compliance assessments: ISO 27017/27018, SOC 2, GDPR, NIS2, DORA
  • Assess cloud governance frameworks and CSPM implementations
What we offer
What we offer
  • We offer a range of tailored benefits that support your physical, emotional, and financial wellbeing
  • Our Learning and Development team ensure that there are continuous growth and development opportunities for our people
  • We also offer the opportunity to have flexible work options
Read More
Arrow Right