MFA Technical Engineer Role ( Solid IAM and MFA experience) The role is for a MFA Technical Engineer with significant experience in delivery projects into large organisations with many stakeholders. The successful candidates must therefore have strong social skills across different mediums and ability to communicate a vision based on developing technology. The successful candidate will have a strong general technical background with hands on experience delivering IAM and infrastructure projects. Inside IR35 - Based in Sheffield 2-3 day a week - non-negotiable Key responsibilities Engineer and support MFA solutions across enterprise identity platforms (eg, Azure AD/Entra ID, iSeries, ADFS, etc). Deliver authentication patterns: OIDC/OAuth2, SAML2, Kerberos/LDAP, session management, token lifecycle. Integrate apps with enterprise IAM/SSO platforms (AD, ADLDS, ADFS, Entra). Integrate MFA with applications using standards and protocols (SAML 2.0, OAuth 2.0, OpenID Connect, RADIUS, LDAP). Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Implement and maintain authentication policies (conditional access, step-up authentication, risk-based controls, device posture). Manage MFA factors and lifecycle: push, OTP, FIDO2/WebAuthn, hardware tokens, SMS/voice (where permitted), backup codes, recovery flows. Monitor service health and security events; tune alerting and dashboards. Troubleshoot complex authentication issues (SSO/MFA failures, token/certificate issues, clock drift, network/proxy constraints). Partner with IAM, Cyber Security, Architecture, and application teams to deliver secure-by-design integrations. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Produce and maintain technical documentation, runbooks, and knowledge articles; contribute to operational readiness Support audits and control testing; evidence compliance with security and regulatory requirements. Participate in on-call/incident response, problem management, and continuous improvement. Essential Skills Knowledge of Multi-Factor Authentication/Passwordless Authentication technology is required. Strong hands-on experience with federated protocols (OIDC/OAuth2/SAML). Experience with at least one IdP platform and troubleshooting tools. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Support PoC/Pilot testing and planning for rollout for new authentication patterns. Work with Architecture on production infrastructure design. Present at stakeholder forums to provide updates on the project deliverables and achievements. Is technically versed on modern authentication protocols and can have technical discussion to support issues identified during implementations. Conduct reviews with service owners to complete/review technology assessments to determine suitable approach. Plan and support IAM Authentication implementation. Familiar with JIRA/Confluence and can support our journey to use these tools better. Hands-on experience engineering MFA/SSO within an enterprise IAM environment. Working knowledge of PKI, certificates, TLS, and key management concepts. Experience operating production services: monitoring, incident management, change/release processes. Desirable Skills Previous experience of working in financial services, ideally HSBC experience. EntraID/AzureAD experience. Scripting/automation skills (PowerShell and/or Python) and familiarity with APIs. Experience with FIDO2/WebAuthn and phishing-resistant MFA rollouts. Knowledge of Zero Trust and adaptive/risk-based authentication. Familiarity with privileged access controls (PAM) and strong authentication for admin workflows. Cloud identity experience (Azure/AWS/GCP) and hybrid identity (AD, ADFS). ITIL practices and experience in regulated environments (financial services). Understanding of regulatory/security expectations (least privilege, auditability). Qualifications Degree in Computer Science, Engineering, Cyber Security, or equivalent experience. Security/IAM certifications are a plus (eg, Microsoft Identity, Okta/Ping certs, CISSP/SSCP, GIAC-role dependent).
Jun 11, 2026
Contractor
MFA Technical Engineer Role ( Solid IAM and MFA experience) The role is for a MFA Technical Engineer with significant experience in delivery projects into large organisations with many stakeholders. The successful candidates must therefore have strong social skills across different mediums and ability to communicate a vision based on developing technology. The successful candidate will have a strong general technical background with hands on experience delivering IAM and infrastructure projects. Inside IR35 - Based in Sheffield 2-3 day a week - non-negotiable Key responsibilities Engineer and support MFA solutions across enterprise identity platforms (eg, Azure AD/Entra ID, iSeries, ADFS, etc). Deliver authentication patterns: OIDC/OAuth2, SAML2, Kerberos/LDAP, session management, token lifecycle. Integrate apps with enterprise IAM/SSO platforms (AD, ADLDS, ADFS, Entra). Integrate MFA with applications using standards and protocols (SAML 2.0, OAuth 2.0, OpenID Connect, RADIUS, LDAP). Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Implement and maintain authentication policies (conditional access, step-up authentication, risk-based controls, device posture). Manage MFA factors and lifecycle: push, OTP, FIDO2/WebAuthn, hardware tokens, SMS/voice (where permitted), backup codes, recovery flows. Monitor service health and security events; tune alerting and dashboards. Troubleshoot complex authentication issues (SSO/MFA failures, token/certificate issues, clock drift, network/proxy constraints). Partner with IAM, Cyber Security, Architecture, and application teams to deliver secure-by-design integrations. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Produce and maintain technical documentation, runbooks, and knowledge articles; contribute to operational readiness Support audits and control testing; evidence compliance with security and regulatory requirements. Participate in on-call/incident response, problem management, and continuous improvement. Essential Skills Knowledge of Multi-Factor Authentication/Passwordless Authentication technology is required. Strong hands-on experience with federated protocols (OIDC/OAuth2/SAML). Experience with at least one IdP platform and troubleshooting tools. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Support PoC/Pilot testing and planning for rollout for new authentication patterns. Work with Architecture on production infrastructure design. Present at stakeholder forums to provide updates on the project deliverables and achievements. Is technically versed on modern authentication protocols and can have technical discussion to support issues identified during implementations. Conduct reviews with service owners to complete/review technology assessments to determine suitable approach. Plan and support IAM Authentication implementation. Familiar with JIRA/Confluence and can support our journey to use these tools better. Hands-on experience engineering MFA/SSO within an enterprise IAM environment. Working knowledge of PKI, certificates, TLS, and key management concepts. Experience operating production services: monitoring, incident management, change/release processes. Desirable Skills Previous experience of working in financial services, ideally HSBC experience. EntraID/AzureAD experience. Scripting/automation skills (PowerShell and/or Python) and familiarity with APIs. Experience with FIDO2/WebAuthn and phishing-resistant MFA rollouts. Knowledge of Zero Trust and adaptive/risk-based authentication. Familiarity with privileged access controls (PAM) and strong authentication for admin workflows. Cloud identity experience (Azure/AWS/GCP) and hybrid identity (AD, ADFS). ITIL practices and experience in regulated environments (financial services). Understanding of regulatory/security expectations (least privilege, auditability). Qualifications Degree in Computer Science, Engineering, Cyber Security, or equivalent experience. Security/IAM certifications are a plus (eg, Microsoft Identity, Okta/Ping certs, CISSP/SSCP, GIAC-role dependent).
The H&S Advisor is responsible for ensuring compliance with UK health and safety legislation, managing risk assessments, supporting safe working practices, and promoting a strong safety culture across the organisation. Key Responsibilities Ensure compliance with UK H&S legislation and keep management updated on regulatory changes. Conduct and review risk assessments across engineering, maintenance, and office activities. Identify hazards, implement control measures, and ensure safe systems of work are understood by staff and contractors. Carry out regular site inspections and audits, reporting findings and ensuring corrective actions are completed. Lead investigations into accidents, incidents, and near-misses, producing reports and improvement plans. Coordinate H&S training (e.g., PASMA, IPAF, manual handling, first aid, fire safety), maintain the training matrix, and monitor staff competency. Maintain H&S documentation including policies, RAs, COSHH, equipment inspections, and training records. Produce monthly H&S performance reports and support safety documentation for client sites and tenders. Promote a positive safety culture through toolbox talks, briefings, and inductions, acting as the main point of contact for H&S queries. Skills & Qualifications NEBOSH General Certificate (or equivalent). Strong understanding of mechanical/electrical service environments. Experience writing RAMS and conducting risk assessments. Effective communication and report-writing skills; ability to influence safe behaviours. (Desirable) Construction industry experience, full UK driving licence, and experience delivering company-level training.
Jun 08, 2026
Full time
The H&S Advisor is responsible for ensuring compliance with UK health and safety legislation, managing risk assessments, supporting safe working practices, and promoting a strong safety culture across the organisation. Key Responsibilities Ensure compliance with UK H&S legislation and keep management updated on regulatory changes. Conduct and review risk assessments across engineering, maintenance, and office activities. Identify hazards, implement control measures, and ensure safe systems of work are understood by staff and contractors. Carry out regular site inspections and audits, reporting findings and ensuring corrective actions are completed. Lead investigations into accidents, incidents, and near-misses, producing reports and improvement plans. Coordinate H&S training (e.g., PASMA, IPAF, manual handling, first aid, fire safety), maintain the training matrix, and monitor staff competency. Maintain H&S documentation including policies, RAs, COSHH, equipment inspections, and training records. Produce monthly H&S performance reports and support safety documentation for client sites and tenders. Promote a positive safety culture through toolbox talks, briefings, and inductions, acting as the main point of contact for H&S queries. Skills & Qualifications NEBOSH General Certificate (or equivalent). Strong understanding of mechanical/electrical service environments. Experience writing RAMS and conducting risk assessments. Effective communication and report-writing skills; ability to influence safe behaviours. (Desirable) Construction industry experience, full UK driving licence, and experience delivering company-level training.
Technical Lead AI Inside IR35 3-days per week in Sheffield, 2-days remote We are seeking an experienced Technical Lead AI to join a leading financial services client, helping drive the evolution of modern software engineering through applied AI and intelligent automation. This role sits within a fraud protection environment, focused on building AI agents to detect financial crime events and improve software delivery efficiency across engineering teams. The successful candidate will combine strong full-stack engineering expertise with hands-on experience deploying and integrating large language models and agentic AI workflows into production environments. Key responsibilities: Designing and building AI agents for fraud detection and production engineering services Embedding AI capabilities across the software development lifecycle, from code creation through to delivery Improving engineering efficiency through AI-driven code validation, reviews, and automation Acting as a technical lead, mentoring and upskilling engineering teams while remaining hands-on Building scalable, production-grade software and AI-enabled platforms Requirements: Strong full-stack engineering background with Java, Spring Boot, and React Hands-on experience with LLMs and AI tooling such as Co-Pilot, Claude, OpenCode, or Mistral Experience building agentic AI workflows in enterprise environments Kubernetes and event-driven architecture experience, including Kafka and Google Pub/Sub Public cloud agnostic engineering experience Strong stakeholder engagement and technical leadership capability Additional information available on successful application.
Jun 05, 2026
Contractor
Technical Lead AI Inside IR35 3-days per week in Sheffield, 2-days remote We are seeking an experienced Technical Lead AI to join a leading financial services client, helping drive the evolution of modern software engineering through applied AI and intelligent automation. This role sits within a fraud protection environment, focused on building AI agents to detect financial crime events and improve software delivery efficiency across engineering teams. The successful candidate will combine strong full-stack engineering expertise with hands-on experience deploying and integrating large language models and agentic AI workflows into production environments. Key responsibilities: Designing and building AI agents for fraud detection and production engineering services Embedding AI capabilities across the software development lifecycle, from code creation through to delivery Improving engineering efficiency through AI-driven code validation, reviews, and automation Acting as a technical lead, mentoring and upskilling engineering teams while remaining hands-on Building scalable, production-grade software and AI-enabled platforms Requirements: Strong full-stack engineering background with Java, Spring Boot, and React Hands-on experience with LLMs and AI tooling such as Co-Pilot, Claude, OpenCode, or Mistral Experience building agentic AI workflows in enterprise environments Kubernetes and event-driven architecture experience, including Kafka and Google Pub/Sub Public cloud agnostic engineering experience Strong stakeholder engagement and technical leadership capability Additional information available on successful application.
DevSecOps Consultant Sheffield (3 days per week onsite) Inside IR35 We're partnering with a leading financial services client to appoint a DevSecOps Consultant to drive secure engineering practices across large-scale, cloud-based platforms. This role is ideal for someone who has come from a hands-on DevSecOps Engineering background and has since transitioned into architecture/design and advisory, while still retaining strong technical depth. Key Responsibilities: Define and implement secure architecture patterns across engineering platforms (CI/CD, build systems, runtime environments) Conduct security assessments, threat modelling, and gap analysis across platforms and pipelines Develop and embed DevSecOps best practices, including secure pipeline design and automated controls Establish and enforce security baselines using policy-as-code Build and deliver security roadmaps, prioritising risk and regulatory requirements Partner with engineering and platform teams to remediate vulnerabilities and improve security posture Act as a trusted advisor to senior stakeholders, translating technical risks into business impact Key Requirements: Proven background in hands-on DevSecOps Engineering, now operating in a design/architecture-focused role Strong experience across both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure-by-design engineering practices across a complex, enterprise environment, with strong influence across both technology and security functions. More details available on successful application.
Jun 05, 2026
Contractor
DevSecOps Consultant Sheffield (3 days per week onsite) Inside IR35 We're partnering with a leading financial services client to appoint a DevSecOps Consultant to drive secure engineering practices across large-scale, cloud-based platforms. This role is ideal for someone who has come from a hands-on DevSecOps Engineering background and has since transitioned into architecture/design and advisory, while still retaining strong technical depth. Key Responsibilities: Define and implement secure architecture patterns across engineering platforms (CI/CD, build systems, runtime environments) Conduct security assessments, threat modelling, and gap analysis across platforms and pipelines Develop and embed DevSecOps best practices, including secure pipeline design and automated controls Establish and enforce security baselines using policy-as-code Build and deliver security roadmaps, prioritising risk and regulatory requirements Partner with engineering and platform teams to remediate vulnerabilities and improve security posture Act as a trusted advisor to senior stakeholders, translating technical risks into business impact Key Requirements: Proven background in hands-on DevSecOps Engineering, now operating in a design/architecture-focused role Strong experience across both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure-by-design engineering practices across a complex, enterprise environment, with strong influence across both technology and security functions. More details available on successful application.
Data Anonymisation Specialist We are looking for a Data Anonymisation Specialist to join a financial services client based in Sheffield. The team are looking to hire a data anonymisation specialist who can be an integral part of helping the business to manage and mitigate any risks associated with third-party data sharing, across several short, medium and long-term planned activities. The Role We are specifically looking for someone with experience in supporting data anonymisation processes and an understanding of data types, structures and schemas. Applying your skills while considering the importance and impact of data security as a whole in a highly regulated environment is crucial. This is a great opportunity to be part of a developing service where your input is valued and can help drive its maturity and efficiencies for the future. Key Responsibilities: Advise application teams on Creation of data dictionaries Identifying sensitive data Define suitable anonymisation approaches Assign column level masking algorithms Operate the data masking service Support the data masking service Working with software vendor support and consultation services Some out-of-hours work supporting the masking service is required Experienced required: Proven experience with Structured data Data anonymisation analysis Data masking techniques Experience working with masking technology platforms Technical troubleshooting Working with stakeholders and building relationships Excellent verbal and written communication skills Immediate start (within 4 weeks) Desirable: Experience with writing and supporting Python code Experience with Delphix data masking or similar tooling Experience working in Azure or other cloud environment Experience in Financial Services or similar regulated sectors More details available on successful application.
Oct 06, 2025
Contractor
Data Anonymisation Specialist We are looking for a Data Anonymisation Specialist to join a financial services client based in Sheffield. The team are looking to hire a data anonymisation specialist who can be an integral part of helping the business to manage and mitigate any risks associated with third-party data sharing, across several short, medium and long-term planned activities. The Role We are specifically looking for someone with experience in supporting data anonymisation processes and an understanding of data types, structures and schemas. Applying your skills while considering the importance and impact of data security as a whole in a highly regulated environment is crucial. This is a great opportunity to be part of a developing service where your input is valued and can help drive its maturity and efficiencies for the future. Key Responsibilities: Advise application teams on Creation of data dictionaries Identifying sensitive data Define suitable anonymisation approaches Assign column level masking algorithms Operate the data masking service Support the data masking service Working with software vendor support and consultation services Some out-of-hours work supporting the masking service is required Experienced required: Proven experience with Structured data Data anonymisation analysis Data masking techniques Experience working with masking technology platforms Technical troubleshooting Working with stakeholders and building relationships Excellent verbal and written communication skills Immediate start (within 4 weeks) Desirable: Experience with writing and supporting Python code Experience with Delphix data masking or similar tooling Experience working in Azure or other cloud environment Experience in Financial Services or similar regulated sectors More details available on successful application.
