Schroders UK
City, London
Global Head of Third Party Risk Management London, United Kingdom Job Description Who we're looking for The Global Head of Third-Party Risk Management (TPRM) is responsible for designing, implementing, and overseeing a global framework to assess, monitor, and manage risks associated with Schroders' third-party relationships. This includes vendors, outsourcing partners, service providers, and other external entities critical to the firm's operations. The role ensures that third-party risk is embedded in business decision-making, aligned with regulatory expectations (e.g., FCA, PRA, EBA, SEC), and integrated within the wider enterprise risk management framework. The role requires cross-functional working with Risk, Compliance, Legal, and Technology to embed effective risk controls, due diligence, and supplier assurance within all stages of the procurement lifecycle. The role will bring a continuous improvement mindset, staying abreast of the evolving regulatory landscape to ensure Schroders' third party risk practices remain forward looking and fit for purpose. Based in London, the role reports to the Chief Procurement Officer, who is responsible for all Procurement activity across the organisation. About Schroders We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future. We have around 6,000 people on six continents. And we've been around for over 200 years but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper. The team Group Procurement is the centre of excellence for active commercial management of all of Schroders' supply chain, enabled by great people, disciplined cost management and seamless risk and compliance. Group Procurement sits within the COO Corporate Functions, supporting the wider business on all its third party commercial activity. The team are made up of multiple disciplines across Market Data & Operations, Technology, Corporate Services, Third Party Risk and Procurement Operations. Located across London, Horsham, Singapore, and New York. The base We moved into our new HQ in the City of London in 2018. We're close to our clients, in the heart of the UK's financial centre and we have everything we need to work flexibly. What you'll do Lead the development and continuous enhancement of Schroders' Third Party Risk Management strategy and policy. Establish governance structures, including steering committees, reporting lines, and escalation protocols. Ensure alignment with regulatory standards (e.g., DORA, EBA Guidelines, UK PRA SS2/21) and Schroders' risk appetite. Develop and maintain a robust TPRM framework, including risk segmentation, due diligence, onboarding, monitoring, and exit processes. Define risk taxonomy and criticality tiers for third party services. Oversee enterprise wide risk assessments and due diligence of vendors, including financial stability, cyber resilience, and ESG risk. Establish ongoing monitoring mechanisms, including performance reviews, SLA adherence, and control testing. Implement early warning indicators and risk dashboards to track third party exposure and performance. Act as the key control point to prevent the onboarding of supplier risk through data capture, review and assessment. Coordinate the de centralised supplier oversight framework, supporting, advising and collaborating with Business Owners globally, maintaining oversight of supplier reviews and ensuring policy compliance. Work closely with 2nd line risk functions (e.g. Financial Crime, Credit Risk, Business Continuity) to ensure supplier due diligence information is made available for SME review. Design and embed supplier oversight reporting capabilities and continuously improve performance and risk assessment governance and metrics. Continually monitor the global regulatory landscape to ensure policies and procedures remain compliant and fit for purpose. Provide guidance on all areas of the supplier lifecycle and business areas to direct reports and the wider team as required. Own the supplier contract management and oversight platform, ensuring supplier information is recorded, maintained and regularly reviewed. Maintain the Outsourcing Register, including the record of Business Owners, contracts, criticality and associated due diligence activities. Partner with Legal, Risk, Compliance, Procurement, IT, and Information Security to embed third party risk management practices. Engage with regulators, internal audit, and external assurance providers on third party risk matters. Communicate third party risk exposures and mitigation strategies to senior management and the board. Lead or support implementation of TPRM systems and tools to automate workflows and reporting. Maintain a centralised third party inventory and ensure quality, consistency, and completeness of vendor data. Support incident response and contingency planning related to third party failures or disruptions. Coordinate with business continuity and resilience teams to ensure robust third party crisis management. The knowledge, experience and qualifications you need Experience in operational risk, third party risk management, enterprise risk within financial services. Deep knowledge of regulatory requirements for outsourcing and third party risk (FCA, PRA, EBA, DORA, etc.). Strong knowledge of contract risk clauses, exit terms, business continuity, and supplier classification models. Proven senior leadership experience managing cross functional teams and risk frameworks in a complex global environment. Experience working closely with 2nd Line Risk and Assurance functions to ensure supplier due diligence is performed, monitored, and aligned to policy. Experience designing, owning and implementing supplier management and oversight frameworks, including contract database or supplier management systems, strong understanding of information security, data privacy, business continuity, and legal/vendor contracting principles. Experience with third party risk platforms (e.g., Archer, ServiceNow VRM, Aravo, Coupa, etc.) is a plus. Adept at leading cross functional engagements with second line and audit teams. Excellent communication, influencing, and presentation skills; experience engaging with senior stakeholders and regulators. Strategic Thinking Supplier & Third Party Governance Expertise Risk and Control Mindset Regulatory Acumen Leadership & People Management Stakeholder Influence & Communication Analytical & Problem Solving The knowledge, experience and qualifications that'll help Degree in Risk Management, Business, Law, Finance, or related field Master's degree or MBA advantageous Professional certifications in risk or third party management We recognise potential, whoever you are Our purpose is to provide excellent investment performance to clients through active management. Diversity of thought, facilitated by an inclusive culture, will allow us to make better decisions and better achieve our purpose. This is why inclusion and diversity are a strategic priority for us and why we are an equal opportunities employer. You are welcome here, regardless of your age, disability, gender identity, religious beliefs, sexual orientation, socio economic background, or any other protected characteristic.
Global Head of Third Party Risk Management London, United Kingdom Job Description Who we're looking for The Global Head of Third-Party Risk Management (TPRM) is responsible for designing, implementing, and overseeing a global framework to assess, monitor, and manage risks associated with Schroders' third-party relationships. This includes vendors, outsourcing partners, service providers, and other external entities critical to the firm's operations. The role ensures that third-party risk is embedded in business decision-making, aligned with regulatory expectations (e.g., FCA, PRA, EBA, SEC), and integrated within the wider enterprise risk management framework. The role requires cross-functional working with Risk, Compliance, Legal, and Technology to embed effective risk controls, due diligence, and supplier assurance within all stages of the procurement lifecycle. The role will bring a continuous improvement mindset, staying abreast of the evolving regulatory landscape to ensure Schroders' third party risk practices remain forward looking and fit for purpose. Based in London, the role reports to the Chief Procurement Officer, who is responsible for all Procurement activity across the organisation. About Schroders We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future. We have around 6,000 people on six continents. And we've been around for over 200 years but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper. The team Group Procurement is the centre of excellence for active commercial management of all of Schroders' supply chain, enabled by great people, disciplined cost management and seamless risk and compliance. Group Procurement sits within the COO Corporate Functions, supporting the wider business on all its third party commercial activity. The team are made up of multiple disciplines across Market Data & Operations, Technology, Corporate Services, Third Party Risk and Procurement Operations. Located across London, Horsham, Singapore, and New York. The base We moved into our new HQ in the City of London in 2018. We're close to our clients, in the heart of the UK's financial centre and we have everything we need to work flexibly. What you'll do Lead the development and continuous enhancement of Schroders' Third Party Risk Management strategy and policy. Establish governance structures, including steering committees, reporting lines, and escalation protocols. Ensure alignment with regulatory standards (e.g., DORA, EBA Guidelines, UK PRA SS2/21) and Schroders' risk appetite. Develop and maintain a robust TPRM framework, including risk segmentation, due diligence, onboarding, monitoring, and exit processes. Define risk taxonomy and criticality tiers for third party services. Oversee enterprise wide risk assessments and due diligence of vendors, including financial stability, cyber resilience, and ESG risk. Establish ongoing monitoring mechanisms, including performance reviews, SLA adherence, and control testing. Implement early warning indicators and risk dashboards to track third party exposure and performance. Act as the key control point to prevent the onboarding of supplier risk through data capture, review and assessment. Coordinate the de centralised supplier oversight framework, supporting, advising and collaborating with Business Owners globally, maintaining oversight of supplier reviews and ensuring policy compliance. Work closely with 2nd line risk functions (e.g. Financial Crime, Credit Risk, Business Continuity) to ensure supplier due diligence information is made available for SME review. Design and embed supplier oversight reporting capabilities and continuously improve performance and risk assessment governance and metrics. Continually monitor the global regulatory landscape to ensure policies and procedures remain compliant and fit for purpose. Provide guidance on all areas of the supplier lifecycle and business areas to direct reports and the wider team as required. Own the supplier contract management and oversight platform, ensuring supplier information is recorded, maintained and regularly reviewed. Maintain the Outsourcing Register, including the record of Business Owners, contracts, criticality and associated due diligence activities. Partner with Legal, Risk, Compliance, Procurement, IT, and Information Security to embed third party risk management practices. Engage with regulators, internal audit, and external assurance providers on third party risk matters. Communicate third party risk exposures and mitigation strategies to senior management and the board. Lead or support implementation of TPRM systems and tools to automate workflows and reporting. Maintain a centralised third party inventory and ensure quality, consistency, and completeness of vendor data. Support incident response and contingency planning related to third party failures or disruptions. Coordinate with business continuity and resilience teams to ensure robust third party crisis management. The knowledge, experience and qualifications you need Experience in operational risk, third party risk management, enterprise risk within financial services. Deep knowledge of regulatory requirements for outsourcing and third party risk (FCA, PRA, EBA, DORA, etc.). Strong knowledge of contract risk clauses, exit terms, business continuity, and supplier classification models. Proven senior leadership experience managing cross functional teams and risk frameworks in a complex global environment. Experience working closely with 2nd Line Risk and Assurance functions to ensure supplier due diligence is performed, monitored, and aligned to policy. Experience designing, owning and implementing supplier management and oversight frameworks, including contract database or supplier management systems, strong understanding of information security, data privacy, business continuity, and legal/vendor contracting principles. Experience with third party risk platforms (e.g., Archer, ServiceNow VRM, Aravo, Coupa, etc.) is a plus. Adept at leading cross functional engagements with second line and audit teams. Excellent communication, influencing, and presentation skills; experience engaging with senior stakeholders and regulators. Strategic Thinking Supplier & Third Party Governance Expertise Risk and Control Mindset Regulatory Acumen Leadership & People Management Stakeholder Influence & Communication Analytical & Problem Solving The knowledge, experience and qualifications that'll help Degree in Risk Management, Business, Law, Finance, or related field Master's degree or MBA advantageous Professional certifications in risk or third party management We recognise potential, whoever you are Our purpose is to provide excellent investment performance to clients through active management. Diversity of thought, facilitated by an inclusive culture, will allow us to make better decisions and better achieve our purpose. This is why inclusion and diversity are a strategic priority for us and why we are an equal opportunities employer. You are welcome here, regardless of your age, disability, gender identity, religious beliefs, sexual orientation, socio economic background, or any other protected characteristic.
Schroders UK
Who we're looking for We are looking for an experienced cyber and technology risk professional with strong technical skills combined with the ability to communicate with and influence both technical and non-technical senior management. About Schroders We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future. We have around 6,000 people on six continents. And we've been around for over 200 years but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper. The base We moved into our new HQ in the City of London in 2018. We're close to our clients, in the heart of the UK's financial centre and we have everything we need to work flexibly. Team Overview The Non Financial Risk function is comprised of several key teams: Operational Risk Cyber, Technology & Resilience Risk Compliance Assurance Risk & Compliance Frameworks, Governance & Reporting Physical Security The Cyber, Technology & Resilience Risk team operates as part of the second line of defence, providing oversight across Schroders. This team develops and maintains the tools and frameworks necessary for overseeing cyber, technology, and resilience risks. It collaborates closely with Global Technology, Information Security, and first line business units to ensure such risks are clearly defined, assessed, managed, and reported. Key responsibilities Overseeing cyber risks via the Information Security Risk Oversight Committee and through review of KRIs and KCIs. Collaborating with information security teams to ensure effective articulation, assessment, and management of cyber risks. Providing oversight of technology risk through risk control assessments and engagement on strategic technology initiatives. Monitoring cyber and technology related risk events to ensure thorough root cause analysis and appropriate remediation. Programme management of the annual operational resilience self assessment cycle, ensuring all in scope entities self assessments are board approved. Programme management of the annual Business Continuity programme. Undertaking due diligence on critical third party continuity and resilience capabilities. Maintaining and regularly testing crisis and incident management frameworks. Responding to client due diligence requests regarding Business Continuity and Operational Resilience. What you'll do This position is responsible for managing this team and ensuring its effective delivery of its responsibilities. Primary responsibilities Provide technical 2nd line oversight of Cyber and Technology, ensuring risks are identified and escalated to appropriate senior stakeholders. Work with the 1st line to improve their controls and improve risk management. Facilitate the ongoing effectiveness of the Information Security Risk Oversight Committee (ISROC) as the primary governance forum for overseeing the management of Cyber Risk across the Group by: Using a risk based approach to identify appropriate topics for inclusion on the agenda; Ensuring high quality submissions are provided as requested; Ensuring senior stakeholders are fully briefed on key topics prior to the committee; and Providing direct challenge to first line senior management at the committee when required. Line manage this specialist capability (3 full time staff) to provide challenge and oversight to Information Security and Technology whilst also supporting broader responsibilities for maintaining and enhancing the firm's business continuity and resilience frameworks. In response to requests from senior management or governance committees (including the Group Risk Committee and ISROC) undertake risk based reviews of key cyber security and technology processes and controls. Ensuring that findings are appropriately risk assessed and management identify appropriate plans to mitigate the risk. Develop strong and effective working relationships across all 3 lines of defence to facilitate effective identification, management and remediation of cyber and technology risks. Review and interpret Red/ Purple Team test results identifying key messages and being able to articulate them to non technical audiences via briefings. Demonstrate strong understanding of what are effective response and recovery strategies for cyber incidents. Apply insights from experience within leading financial services firms to drive enhancements across cyber and technology risk. Draft entity board level reports for senior leadership and governing bodies. Present confidently at governance committee meetings, when required. The knowledge, experience and qualifications you need Degree level education. At least 10 years of relevant experience in Technology and Cyber Risk, gained in a Control/ Risk function, such as Internal Audit, First or Second Line Risk or Control functions. Strong technical skillset in Cyber Risk. Financial Services experience, preferably in Asset or Wealth Management. Proactive approach with strong written communication skills and attention to detail; ability to produce clear, accurate reports tailored to the audience. Strong analytical, logical, and problem solving abilities. Effective interpersonal and influencing skills with a collaborative, team oriented mindset. The knowledge, experience and qualifications that'll help Relevant technical qualifications in Information Security or Technology Risk for example CISA, CISM or CISSP. Working knowledge of Asset or Wealth Management. Consulting or Big Four experience. Experience in working in a first line Technology or Cyber Security Function Experience in Investment Banking or Retail Banking within a first line or second line risk capacity. We recognise potential, whoever you are Our purpose is to provide excellent investment performance to clients through active management. Diversity of thought, facilitated by an inclusive culture, will allow us to make better decisions and better achieve our purpose. This is why inclusion and diversity are a strategic priority for us and why we are an equal opportunities employer. You are welcome here, regardless of your age, disability, gender identity, religious beliefs, sexual orientation, socio economic background, or any other protected characteristic. Job Info Job Identification 815 Job Category Risk Compliance & Audit Posting Date 12/05/2025, 09:03 AM Locations 1 London Wall Place, London, EC2Y 5AU, GB
Who we're looking for We are looking for an experienced cyber and technology risk professional with strong technical skills combined with the ability to communicate with and influence both technical and non-technical senior management. About Schroders We're a global investment manager. We help institutions, intermediaries and individuals around the world invest money to meet their goals, fulfil their ambitions, and prepare for the future. We have around 6,000 people on six continents. And we've been around for over 200 years but keep adapting as society and technology changes. What doesn't change is our commitment to helping our clients, and society, prosper. The base We moved into our new HQ in the City of London in 2018. We're close to our clients, in the heart of the UK's financial centre and we have everything we need to work flexibly. Team Overview The Non Financial Risk function is comprised of several key teams: Operational Risk Cyber, Technology & Resilience Risk Compliance Assurance Risk & Compliance Frameworks, Governance & Reporting Physical Security The Cyber, Technology & Resilience Risk team operates as part of the second line of defence, providing oversight across Schroders. This team develops and maintains the tools and frameworks necessary for overseeing cyber, technology, and resilience risks. It collaborates closely with Global Technology, Information Security, and first line business units to ensure such risks are clearly defined, assessed, managed, and reported. Key responsibilities Overseeing cyber risks via the Information Security Risk Oversight Committee and through review of KRIs and KCIs. Collaborating with information security teams to ensure effective articulation, assessment, and management of cyber risks. Providing oversight of technology risk through risk control assessments and engagement on strategic technology initiatives. Monitoring cyber and technology related risk events to ensure thorough root cause analysis and appropriate remediation. Programme management of the annual operational resilience self assessment cycle, ensuring all in scope entities self assessments are board approved. Programme management of the annual Business Continuity programme. Undertaking due diligence on critical third party continuity and resilience capabilities. Maintaining and regularly testing crisis and incident management frameworks. Responding to client due diligence requests regarding Business Continuity and Operational Resilience. What you'll do This position is responsible for managing this team and ensuring its effective delivery of its responsibilities. Primary responsibilities Provide technical 2nd line oversight of Cyber and Technology, ensuring risks are identified and escalated to appropriate senior stakeholders. Work with the 1st line to improve their controls and improve risk management. Facilitate the ongoing effectiveness of the Information Security Risk Oversight Committee (ISROC) as the primary governance forum for overseeing the management of Cyber Risk across the Group by: Using a risk based approach to identify appropriate topics for inclusion on the agenda; Ensuring high quality submissions are provided as requested; Ensuring senior stakeholders are fully briefed on key topics prior to the committee; and Providing direct challenge to first line senior management at the committee when required. Line manage this specialist capability (3 full time staff) to provide challenge and oversight to Information Security and Technology whilst also supporting broader responsibilities for maintaining and enhancing the firm's business continuity and resilience frameworks. In response to requests from senior management or governance committees (including the Group Risk Committee and ISROC) undertake risk based reviews of key cyber security and technology processes and controls. Ensuring that findings are appropriately risk assessed and management identify appropriate plans to mitigate the risk. Develop strong and effective working relationships across all 3 lines of defence to facilitate effective identification, management and remediation of cyber and technology risks. Review and interpret Red/ Purple Team test results identifying key messages and being able to articulate them to non technical audiences via briefings. Demonstrate strong understanding of what are effective response and recovery strategies for cyber incidents. Apply insights from experience within leading financial services firms to drive enhancements across cyber and technology risk. Draft entity board level reports for senior leadership and governing bodies. Present confidently at governance committee meetings, when required. The knowledge, experience and qualifications you need Degree level education. At least 10 years of relevant experience in Technology and Cyber Risk, gained in a Control/ Risk function, such as Internal Audit, First or Second Line Risk or Control functions. Strong technical skillset in Cyber Risk. Financial Services experience, preferably in Asset or Wealth Management. Proactive approach with strong written communication skills and attention to detail; ability to produce clear, accurate reports tailored to the audience. Strong analytical, logical, and problem solving abilities. Effective interpersonal and influencing skills with a collaborative, team oriented mindset. The knowledge, experience and qualifications that'll help Relevant technical qualifications in Information Security or Technology Risk for example CISA, CISM or CISSP. Working knowledge of Asset or Wealth Management. Consulting or Big Four experience. Experience in working in a first line Technology or Cyber Security Function Experience in Investment Banking or Retail Banking within a first line or second line risk capacity. We recognise potential, whoever you are Our purpose is to provide excellent investment performance to clients through active management. Diversity of thought, facilitated by an inclusive culture, will allow us to make better decisions and better achieve our purpose. This is why inclusion and diversity are a strategic priority for us and why we are an equal opportunities employer. You are welcome here, regardless of your age, disability, gender identity, religious beliefs, sexual orientation, socio economic background, or any other protected characteristic. Job Info Job Identification 815 Job Category Risk Compliance & Audit Posting Date 12/05/2025, 09:03 AM Locations 1 London Wall Place, London, EC2Y 5AU, GB
Live Nation
City, London
Lead Detection and Response Analyst page is loaded Lead Detection and Response Analystlocations: Farringdon, London, United Kingdomtime type: Full timeposted on: Posted Todayjob requisition id: JR-82178Job Summary:Live Nation Entertainment is the world's leading live entertainment and eCommerce company, comprised of four market leaders: Live Nation Concerts, Front Line Management Group and Live Nation Network. is the global event ticketing leader and one of the world's top five eCommerce sites, with over 26 million monthly unique visitors. Live Nation Concerts produces over 20,000 shows annually for more than 2,000 artists globally. Front Line is the world's top artist management company, representing over 250 artists. These businesses power Live Nation Network, the leading provider of entertainment marketing solutions, enabling over 800 advertisers to tap into the 200 million consumers Live Nation delivers annually through its live event and digital platforms. For additional information, visit .Passionate and motivated. Driven, with an entrepreneurial spirit. Resourceful, innovative, forward thinking and committed. At Live Nation Entertainment, our people embrace these qualities, so if this sounds like you then please read on!As a UK/EMEA Lead DART Analyst, you will serve as the bridge between frontline analysts and DART management, helping guide real-time incident response, providing mentorship and quality assurance across shifts, and contributing to process development and strategic improvement. You will lead shift operations, act as an escalation point for complex investigations, and ensure consistent application of incident response processes across global teams. Key Responsibilities Operational Leadership Coordinate daily DART shift activities to ensure smooth operations and adequate coverage. Act as an escalation point for high-priority security alerts and investigations. Act as an Incident Commander to ensure the incident investigation process is streamlined and completed from start to finish. Conduct QA reviews on tickets to ensure accuracy, completeness, and adherence to IR procedures. Lead shift handovers, ensuring continuity and communication across regions. Incident Response Monitor and triage security alerts using SIEM, EDR, and NDR platforms. Perform in-depth investigations into potential threats, applying TTP-based analysis and leveraging internal tools. Collaborate with business units and technical teams during incident response to gather context and execute containment or remediation. Provide structured documentation and recommendations post-incident. Team Support & Development Mentor junior and mid-level analysts during investigations and incident response. Support onboarding and continuous training through documentation, coaching, and hands-on guidance. Promote a culture of collaboration, accountability, and continuous improvement across shifts. Process & Tooling Contribution Help identify tooling or workflow gaps; provide recommendations to the Defense and Response Team/Detection and Response Enginnering Manager for improvements. Contribute to the creation and refinement of playbooks and operational procedures. Participate in tuning detection content and use-case development in partnership with threat detection teams. Reporting & Metrics Assist in tracking key performance indicators (Time to Detect, Time to Resolve, Escalation Ratios, etc.). Support reporting functions by summarizing incidents and shift activities in alignment with team OKRs. Required Qualifications Bachelor's degree (or higher) in Cybersecurity, Information Security, Computer Science, Information Technology, or a related field and/or 5+ years of experience in a cybersecurity analyst role, with at least 2 years in a lead or senior-level capacity . Proven hands-on experience with SIEM, EDR, NDR, and DFIR toolsets. In-depth understanding of attacker TTPs (MITRE ATT&CK) and strong investigative mindset. Experience responding to incidents in cloud environments (AWS, Azure, GCP). Excellent written and verbal communication skills, especially in cross-functional and high-pressure scenarios. Ability to guide and inspire analysts of varying experience levels. Equal OpportunitiesWe are passionate and committed to our people and go beyond the rhetoric of diversity and inclusion. You will be working in an inclusive environment and be encouraged to bring your whole self to work. We will do all that we can to help you successfully balance your work and homelife. As a growing business we will encourage you to develop your professional and personal aspirations, enjoy new experiences, and learn from the talented people you will be working with. It's talent that matters to us and we encourage applications from people irrespective of their gender identity, race, sexual orientation, religion, age, disability status or caring responsibilities. Recognized for seven years as a Great Place to Work and named one of Fortune's World's Most Admired Companies, Live Nation Entertainment is the world's leading live entertainment company comprised of global market leaders: Ticketmaster, Live Nation Concerts, and Live Nation Media & Sponsorship. Our world-class teams specialize in all aspects of the live entertainment industry, from ground-breaking innovations in ticketing, global venue development and operations, concert promotion and production, sales and brand partnerships, and unparalleled artist management supported by professionals in all facets of corporate operations. We believe in taking care of the countless employees helping artists bring live music to fans all around the world. Our many unique benefit programs are designed to help our teams live life to the fullest including generous vacation, healthcare, retirement benefits, student loan repayment, tuition reimbursement, six months of paid caregiver leave for new parents including fostering and perks like Roadie Babies helping new parents care for their babies on work trips. And of course, access to free live events through our exclusive employee ticketing program. There is no bigger stage for your career. See what your future looks like at Live Nation Entertainment.
Lead Detection and Response Analyst page is loaded Lead Detection and Response Analystlocations: Farringdon, London, United Kingdomtime type: Full timeposted on: Posted Todayjob requisition id: JR-82178Job Summary:Live Nation Entertainment is the world's leading live entertainment and eCommerce company, comprised of four market leaders: Live Nation Concerts, Front Line Management Group and Live Nation Network. is the global event ticketing leader and one of the world's top five eCommerce sites, with over 26 million monthly unique visitors. Live Nation Concerts produces over 20,000 shows annually for more than 2,000 artists globally. Front Line is the world's top artist management company, representing over 250 artists. These businesses power Live Nation Network, the leading provider of entertainment marketing solutions, enabling over 800 advertisers to tap into the 200 million consumers Live Nation delivers annually through its live event and digital platforms. For additional information, visit .Passionate and motivated. Driven, with an entrepreneurial spirit. Resourceful, innovative, forward thinking and committed. At Live Nation Entertainment, our people embrace these qualities, so if this sounds like you then please read on!As a UK/EMEA Lead DART Analyst, you will serve as the bridge between frontline analysts and DART management, helping guide real-time incident response, providing mentorship and quality assurance across shifts, and contributing to process development and strategic improvement. You will lead shift operations, act as an escalation point for complex investigations, and ensure consistent application of incident response processes across global teams. Key Responsibilities Operational Leadership Coordinate daily DART shift activities to ensure smooth operations and adequate coverage. Act as an escalation point for high-priority security alerts and investigations. Act as an Incident Commander to ensure the incident investigation process is streamlined and completed from start to finish. Conduct QA reviews on tickets to ensure accuracy, completeness, and adherence to IR procedures. Lead shift handovers, ensuring continuity and communication across regions. Incident Response Monitor and triage security alerts using SIEM, EDR, and NDR platforms. Perform in-depth investigations into potential threats, applying TTP-based analysis and leveraging internal tools. Collaborate with business units and technical teams during incident response to gather context and execute containment or remediation. Provide structured documentation and recommendations post-incident. Team Support & Development Mentor junior and mid-level analysts during investigations and incident response. Support onboarding and continuous training through documentation, coaching, and hands-on guidance. Promote a culture of collaboration, accountability, and continuous improvement across shifts. Process & Tooling Contribution Help identify tooling or workflow gaps; provide recommendations to the Defense and Response Team/Detection and Response Enginnering Manager for improvements. Contribute to the creation and refinement of playbooks and operational procedures. Participate in tuning detection content and use-case development in partnership with threat detection teams. Reporting & Metrics Assist in tracking key performance indicators (Time to Detect, Time to Resolve, Escalation Ratios, etc.). Support reporting functions by summarizing incidents and shift activities in alignment with team OKRs. Required Qualifications Bachelor's degree (or higher) in Cybersecurity, Information Security, Computer Science, Information Technology, or a related field and/or 5+ years of experience in a cybersecurity analyst role, with at least 2 years in a lead or senior-level capacity . Proven hands-on experience with SIEM, EDR, NDR, and DFIR toolsets. In-depth understanding of attacker TTPs (MITRE ATT&CK) and strong investigative mindset. Experience responding to incidents in cloud environments (AWS, Azure, GCP). Excellent written and verbal communication skills, especially in cross-functional and high-pressure scenarios. Ability to guide and inspire analysts of varying experience levels. Equal OpportunitiesWe are passionate and committed to our people and go beyond the rhetoric of diversity and inclusion. You will be working in an inclusive environment and be encouraged to bring your whole self to work. We will do all that we can to help you successfully balance your work and homelife. As a growing business we will encourage you to develop your professional and personal aspirations, enjoy new experiences, and learn from the talented people you will be working with. It's talent that matters to us and we encourage applications from people irrespective of their gender identity, race, sexual orientation, religion, age, disability status or caring responsibilities. Recognized for seven years as a Great Place to Work and named one of Fortune's World's Most Admired Companies, Live Nation Entertainment is the world's leading live entertainment company comprised of global market leaders: Ticketmaster, Live Nation Concerts, and Live Nation Media & Sponsorship. Our world-class teams specialize in all aspects of the live entertainment industry, from ground-breaking innovations in ticketing, global venue development and operations, concert promotion and production, sales and brand partnerships, and unparalleled artist management supported by professionals in all facets of corporate operations. We believe in taking care of the countless employees helping artists bring live music to fans all around the world. Our many unique benefit programs are designed to help our teams live life to the fullest including generous vacation, healthcare, retirement benefits, student loan repayment, tuition reimbursement, six months of paid caregiver leave for new parents including fostering and perks like Roadie Babies helping new parents care for their babies on work trips. And of course, access to free live events through our exclusive employee ticketing program. There is no bigger stage for your career. See what your future looks like at Live Nation Entertainment.
Entrust Corporation
Newbury, Berkshire
Information Security Analyst Reporting to the Information Security Manager, you'll support all aspects of security , risk , compliance , and awareness , while also acting as Deputy Security Officer for PKI and Certificate Authority operations. This is a hands-on role in a highly trusted environment where security underpins every business activity. Operational implementation and maintenance of the Information Security Management System (ISMS) ensuring that controls, processes, and standards are complied with, maintained, current and effective Reporting of any weaknesses, vulnerabilities, non-conformities or behaviours that undermine the high assurance levels expected of and by Entrust Proactively identifying InfoSec improvements, efficiencies, savings and benefits Acting as Deputy Security Officer for the Trust Service Centres (TSC), supporting the Company Security Officer, ensuring that corporate policy and local standards and procedures are upheld and maintained to protect Trust Services Ensuring conformity to external standards such as ISO27001:2022, tScheme, Cyber Essentials Plus and WebTrust Daily interaction with the MSO, providing subject matter expertise support, guidance and advice Supporting security enforcing events such as Key Signing Ceremonies (KSC), Hardware Security Module (HSM) operations, CA builds and off-site Trust Services. Activities include: Preparation and administration of all artefacts and components required for such activities (documentation, tokens, auditable items, tamper evident containers) Management, collection and transfer of all security artefacts and components HSM management Preparation of security enforcing and audit events Audits of security artefacts (on-site & off-site) Analysis of customer-specific security compliance requirements and advising the relevant business owner regarding delivery of such controls Supporting risk assessments in accordance with the Corporate risk policy and customer requirements Supporting all internal and 3rd party audits, both in preparation and attendance Supporting the management and maintenance of all local security and relevant standards, procedures and process ensuring ongoing compliance with requirements Developing and delivering local security awareness campaigns, training and briefings Managing secure destruction and disposal of information assets (paper and media), decommissioning of CA/PKI and related components, in accordance with PKI policy and data retention policy and standards Coordinating maintenance of technical security and environmental controls such as Alarms, CCTV, Cooling systems, Standby Generator, and Access Control Systems Supporting Business Continuity and Disaster Recovery (BCDR) plans, tests and maintenance ISO27001 Lead Implementer or Lead Auditor certification Minimum 3 years' experience in Information Security, including hands-on involvement in managing security programmes Ability to meet Entrust's pre-employment screening requirements Professional security qualifications (e.g. CISM or equivalent) Strong written and verbal communication skills, with the ability to explain technical concepts clearly Self-motivated, process-driven, and detail-oriented Critical thinker with a commitment to delivering high-quality outcomes Industry certifications such as CRISC, NCSP, CPSA, CEH Familiarity with security frameworks and standards (ISO27001, Cyber Essentials, NIST 800-83, JSP 440) Experience with SIEM and/or vulnerability scanning tools (e.g. Splunk, Rapid7 Nexpose etc) Understanding of PKI management practices and trust standards (tScheme, eIDAS, ETSI) Experience of Threat and Vulnerability Management Risk assessment and/or Management experienceAt Entrust, we don't just offer jobs - we offer career journeys. Here is what you can expect when you join our team:Flexibility: Life is all about balance. Whether you're remote, hybrid, or on-site, we offer flexible options that fit your lifestyle.
Information Security Analyst Reporting to the Information Security Manager, you'll support all aspects of security , risk , compliance , and awareness , while also acting as Deputy Security Officer for PKI and Certificate Authority operations. This is a hands-on role in a highly trusted environment where security underpins every business activity. Operational implementation and maintenance of the Information Security Management System (ISMS) ensuring that controls, processes, and standards are complied with, maintained, current and effective Reporting of any weaknesses, vulnerabilities, non-conformities or behaviours that undermine the high assurance levels expected of and by Entrust Proactively identifying InfoSec improvements, efficiencies, savings and benefits Acting as Deputy Security Officer for the Trust Service Centres (TSC), supporting the Company Security Officer, ensuring that corporate policy and local standards and procedures are upheld and maintained to protect Trust Services Ensuring conformity to external standards such as ISO27001:2022, tScheme, Cyber Essentials Plus and WebTrust Daily interaction with the MSO, providing subject matter expertise support, guidance and advice Supporting security enforcing events such as Key Signing Ceremonies (KSC), Hardware Security Module (HSM) operations, CA builds and off-site Trust Services. Activities include: Preparation and administration of all artefacts and components required for such activities (documentation, tokens, auditable items, tamper evident containers) Management, collection and transfer of all security artefacts and components HSM management Preparation of security enforcing and audit events Audits of security artefacts (on-site & off-site) Analysis of customer-specific security compliance requirements and advising the relevant business owner regarding delivery of such controls Supporting risk assessments in accordance with the Corporate risk policy and customer requirements Supporting all internal and 3rd party audits, both in preparation and attendance Supporting the management and maintenance of all local security and relevant standards, procedures and process ensuring ongoing compliance with requirements Developing and delivering local security awareness campaigns, training and briefings Managing secure destruction and disposal of information assets (paper and media), decommissioning of CA/PKI and related components, in accordance with PKI policy and data retention policy and standards Coordinating maintenance of technical security and environmental controls such as Alarms, CCTV, Cooling systems, Standby Generator, and Access Control Systems Supporting Business Continuity and Disaster Recovery (BCDR) plans, tests and maintenance ISO27001 Lead Implementer or Lead Auditor certification Minimum 3 years' experience in Information Security, including hands-on involvement in managing security programmes Ability to meet Entrust's pre-employment screening requirements Professional security qualifications (e.g. CISM or equivalent) Strong written and verbal communication skills, with the ability to explain technical concepts clearly Self-motivated, process-driven, and detail-oriented Critical thinker with a commitment to delivering high-quality outcomes Industry certifications such as CRISC, NCSP, CPSA, CEH Familiarity with security frameworks and standards (ISO27001, Cyber Essentials, NIST 800-83, JSP 440) Experience with SIEM and/or vulnerability scanning tools (e.g. Splunk, Rapid7 Nexpose etc) Understanding of PKI management practices and trust standards (tScheme, eIDAS, ETSI) Experience of Threat and Vulnerability Management Risk assessment and/or Management experienceAt Entrust, we don't just offer jobs - we offer career journeys. Here is what you can expect when you join our team:Flexibility: Life is all about balance. Whether you're remote, hybrid, or on-site, we offer flexible options that fit your lifestyle.