×
Register Here to Apply for Jobs or Post Jobs. X

Security Lead – DV Cleared-( Outside IR35

Job in Maidenhead, Berkshire, SL6, England, UK
Listing for: VE3
Contract position
Listed on 2026-06-27
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Security Manager
  • Security
    Cybersecurity, Information Security, Security Manager
Salary/Wage Range or Industry Benchmark: 80000 - 100000 GBP Yearly GBP 80000.00 100000.00 YEAR
Job Description & How to Apply Below
Position: Security Lead – DV Cleared-(Contract Outside IR35)

Security Lead – DV Cleared-(Contract Outside IR35)

Maidenhead, United Kingdom | Posted on 24/06/2026

VE3 is a technology and business consultancy focused on delivering end-to-end technology solutions and products. We have successfully serviced enterprises across multiple markets, including the public and private sectors. Our services span all aspects of business, providing a holistic approach to managing an organization. We are committed to providing technical innovations and tools that empower organizations with critical information to facilitate decision‑making that results in business transformation through cost savings and increased operational efficiency.

Our commitment to quality is adopted throughout the organization and sets the foundation for delivering our full suite of capabilities.

Job Description

Job title: Security Lead – DV Cleared-(Contract Outside IR35)

Location: UK only. Hybrid with attendance at client locations across the UK. Some client secure‑area work required

Experience: 5+ years

Security Clearance: DV (Developed Vetting) and UK Nationality — MANDATORY. Pre‑cleared candidates strongly preferred

The Security Lead is our accountable security owner for the managed service. The role leads on, and has day‑to‑day operational responsibility for, service security — working in collaboration with the client’s Information & Security function, the client Security Operations Centre (SOC), the internal delivery team, and the third‑party software vendor.

2. Context

The service processes HR, Finance and Project data including OFFICIAL‑SENSITIVE personal and financial data. The contractual security regime spans UK Government security policy, NCSC HMG IAS5, GDPR/DPA 2018, PCI‑DSS where applicable, and the client's Cyber Security Incident Response Plan.

Requirements 3.1 Day‑to‑day security leadership
  • Lead and own day‑to‑day operational responsibility for service security.
  • Advise the client on security status and matters; identify and address risks; continuously maintain and improve the security posture.
  • Act as the authoritative security voice in the client’s Design Authority and Enterprise Architecture forums for security‑impacting changes.
3.2 Security operations and SOC integration
  • Provide the required reports to the client SOC in agreed format and frequency.
  • Support the SOC in resolving security incidents; document security use cases with the SOC; implement, maintain and support those SOC infrastructure components hosted within the cloud infrastructure.
  • Co‑ordinate response to security incidents with the client’s Cyber Security Incident Response Plan and ensure the Incident Manager and Service Delivery Manager are informed and aligned.
3.3 Assurance, audit and compliance
  • Treat information security issues, weaknesses or deficiencies identified by the client as Security Incidents under the client’s Cyber Security Incident Response Plan.
  • Provide client auditors with access to security documentation, configurations of security‑enforcing technologies, standards and procedures.
  • Collaborate with the client to plan and conduct annual Pen Test and regular Disaster Recovery exercises.
  • Ensure GDPR / DPA 2018 obligations are met; oversee data retention, secure disposal, lawful processing, and Data Protection Impact Assessments where required.
3.4 Technical security controls
  • Define, document, agree and maintain Standard Operating Procedures for system administration and maintenance, with procedural controls per user role.
  • Ensure authorisation controls prevent extraction of information assets without legitimate need.
  • Ensure only client‑issued devices are used to connect to the service in delivery.
  • Maintain a data back‑up policy aligned to Business Impact Assessment and the client’s retention policy.
  • Enforce removable‑media scanning, network segregation, least‑privilege access, location‑based access controls, and unique user IDs.
  • Ensure all Supplier work on the service is conducted exclusively from within the UK from client‑approved secure areas.
3.5 Communications and notification
  • Maintain regular communication with the client throughout the contract.
  • Promptly notify the client of any changes to directors, key security…
Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary