Job Title: Principal Engineer - Vehicle Motion Control System Architect Location: Barrow-in-Furness / Filton /Coventry - Hybrid - (dependent on business needs) Salary: Competitive (Commensurate with skills and experience) What you'll be doing: Elicit requirements and describe a design solution (from a functional perspective). Understand design constraints (due to existing hardware/ software). Perform functional safety (FuSa), Quality and Cyber analysis on your designs and architect a system than satisfies requirements. Develop, collate and publish evidence in support of, BAE product delivery processes & applicable standards. Ensure you designs translate into MBSE or MathWorks toolchain, without loss of any function. Manage suppliers to deliver the required solutions on time, to quality & budget. Guide the development of more junior members of the team. Be the technical Subject Matter Expert for the vehicle control system. Develop the Validation and Verification plan, including MiL and HiL. Attending factory acceptance tests. Configuration and testing of equipment. Your skills and experiences: Essential: BEng (Hons) / MEng or equivalent in a relevant subject. Demonstrated experience, hands-on , architecting, analysing and developing motion control or flight control systems, within a Systems Engineering framework. Demonstrated experience designing or developing safety critical systems compliant with Functional Safety and System-of-Systems best practice. Demonstrated experience developing systems compliant with cyber security considerations. Good understanding of Newtonian physics, demonstrable experience creating parameterised plant models, filtering and state machines. Significant experience developing the functional definition of bespoke motion or flight control systems that are compliant with at least 1 of IEC 61508 family of functional safety (FuSa) standards (e.g. ARP4761, ARP4654, ISO26262 etc .) Desirable: Further higher education e.g. MSc, PHD, post doc positions. Experience developing real-time MiL& HiL test in a Speedgoat simulation environment or similar (i.e. IPG, VI Grade, dSpace, NI etc .). Experience working on systems that have a HMI & GUI element. Technical report writing skills. CEng Benefits As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Vehicle Control Team: An excellent opportunity has arisen for a Principal Engineer -Vehicle Motion Control System Architect, working within The Vehicle Control Team The Principal Engineer (Vehicle Control System Functional Architect) - shall provide support to the Engineering Manager and/or external specialists during design, development, analysis , integration and verification of our platform's motion control system (flight controls ). The Principal Engineer shall lead the development of our flight controls design solution. They must be familiar with functional safety and cyber security principles and be a role model for the application of systems engineering activities within the team. The Principal Engineer shall be responsible for technical leadership , concurrent with fostering a proactive team culture and developing the competency and skills of the team. We offer relocation support packages across all Submarines roles, subject to meeting eligibility criteria Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc .) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role , to allow for meaningful security vetting checks. Closing Date: 14th December 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role . Therefore, if you are interested, please submit your application as early as possible.
Dec 07, 2025
Full time
Job Title: Principal Engineer - Vehicle Motion Control System Architect Location: Barrow-in-Furness / Filton /Coventry - Hybrid - (dependent on business needs) Salary: Competitive (Commensurate with skills and experience) What you'll be doing: Elicit requirements and describe a design solution (from a functional perspective). Understand design constraints (due to existing hardware/ software). Perform functional safety (FuSa), Quality and Cyber analysis on your designs and architect a system than satisfies requirements. Develop, collate and publish evidence in support of, BAE product delivery processes & applicable standards. Ensure you designs translate into MBSE or MathWorks toolchain, without loss of any function. Manage suppliers to deliver the required solutions on time, to quality & budget. Guide the development of more junior members of the team. Be the technical Subject Matter Expert for the vehicle control system. Develop the Validation and Verification plan, including MiL and HiL. Attending factory acceptance tests. Configuration and testing of equipment. Your skills and experiences: Essential: BEng (Hons) / MEng or equivalent in a relevant subject. Demonstrated experience, hands-on , architecting, analysing and developing motion control or flight control systems, within a Systems Engineering framework. Demonstrated experience designing or developing safety critical systems compliant with Functional Safety and System-of-Systems best practice. Demonstrated experience developing systems compliant with cyber security considerations. Good understanding of Newtonian physics, demonstrable experience creating parameterised plant models, filtering and state machines. Significant experience developing the functional definition of bespoke motion or flight control systems that are compliant with at least 1 of IEC 61508 family of functional safety (FuSa) standards (e.g. ARP4761, ARP4654, ISO26262 etc .) Desirable: Further higher education e.g. MSc, PHD, post doc positions. Experience developing real-time MiL& HiL test in a Speedgoat simulation environment or similar (i.e. IPG, VI Grade, dSpace, NI etc .). Experience working on systems that have a HMI & GUI element. Technical report writing skills. CEng Benefits As well as a competitive pension scheme, BAE Systems also offers employee share plans, an extensive range of flexible discounted health, wellbeing and lifestyle benefits, including a green car scheme, private health plans and shopping discounts - you may also be eligible for an annual incentive. The Vehicle Control Team: An excellent opportunity has arisen for a Principal Engineer -Vehicle Motion Control System Architect, working within The Vehicle Control Team The Principal Engineer (Vehicle Control System Functional Architect) - shall provide support to the Engineering Manager and/or external specialists during design, development, analysis , integration and verification of our platform's motion control system (flight controls ). The Principal Engineer shall lead the development of our flight controls design solution. They must be familiar with functional safety and cyber security principles and be a role model for the application of systems engineering activities within the team. The Principal Engineer shall be responsible for technical leadership , concurrent with fostering a proactive team culture and developing the competency and skills of the team. We offer relocation support packages across all Submarines roles, subject to meeting eligibility criteria Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity of thought, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome people from all backgrounds and want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc .) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments. Please be aware that many roles at BAE Systems are subject to both security and export control restrictions. These restrictions mean that factors such as your nationality, any nationalities you may have previously held, and your place of birth can restrict the roles you are eligible to perform within the organisation. All applicants must as a minimum achieve Baseline Personnel Security Standard. Many roles also require higher levels of National Security Vetting where applicants must typically have 5 to 10 years of continuous residency in the UK depending on the vetting level required for the role , to allow for meaningful security vetting checks. Closing Date: 14th December 2025 We reserve the right to close this vacancy early if we receive sufficient applications for the role . Therefore, if you are interested, please submit your application as early as possible.
Maritime Control Systems Engineer Programme: Maritime Location: Farnborough, with flexibility to work from home dependent on business demands Grow our Maritime space with us! We are seeking an highly experienced and motivated Control Systems Engineer to lead the control systems team within Leidos UK Maritime Division. Initially you will be a senior member of the design and build team for Leidos Sea Dagger Commando Insertion Craft, responsible for the scoping, designing and delivering its Platform Management System (PMS). Subsequently you will move to supporting the delivery of PMS onto the wider portfolio of Leidos maritime assets. You will need to have extensive Programmable Logic Controller (PLC) and SCADA experience, with an innovative mindset which matched the design and delivery teams boundary pushing approach to platform development. You will be afforded a significant amount of autonomy to rapidly develop the right, cutting edge system to support this exciting programme. What will you be doing? Capture, develop and implement the customers user requirements, offering intelligent improvements where required. Architect the detailed design of the PMS Advise on design architecture and combat systems of the vessel, from a control systems perspective; Engage with equipment OEMs, facilitating their integration into platform management system, Design, develop and integrate the PMS function with the Agentic Artificial Intelligence and the autonomous systems being developed by Leidos for the Maritime domain. Responsible for the design, implantation and documentation of the vessels SCADA system, working with the wider team, customer, subcontractors, equipment OEMs and Human Factors (HF) specialists to maximise crew performance. Work with the platform naval architecture and marine systems team to create bespoke control systems for specific elements of the platform. Responsible for the update of essential PMS documentation such as the signals database, Testing and Assurance. What does Leidos need from me? Able to design complex PLC Control Systems based on COTS products (Rockwell/Siemens). Proven experience in the design and production of safety accredited SCADA systems. Using a PMS to support the testing and commissioning of equipment on complex maritime platforms. PMS virtualisation and systems integration in a cloud based environment. Experience in designing and implementing control systems to high Military security standards. Able to interface with and/or develop Machine Learning systems. Experience specifically within the Defence Maritime sector. Highly Desirable Understanding of high speed Maritime Platform Vehicle control. Security clearance: Clearance to Start - BPSS Clearance for Role - SC Must be UK Citizen holding or able to hold SC clearance What we do for you: At Leidos we are PASSIONATE about customer success, UNITED as a team and INSPIRED to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, all while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains only the best in talent. Our reward scheme includes: Contributory Pension Scheme Private Medical Insurance 33 days Annual Leave (including public and privilege holidays) Access to Flexible benefits (including life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) Flexi-Time Working Commitment to Diversity: We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Who We Are: Leidos UK & EUROPE we work to make the worldsafer,healthier, andmore efficient through technology, engineering andscience. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in frontline services, our work in the United Kingdom includes addressing some of the most complex problems in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose: you can use your passion and abilities at Leidos to keep the people you care about safe. We are at the forefront of machine learning, AI, cyber security and solutions. Using your skills in the technology frontline by helping to build a safer world. You can inspire change. Collaboration: having flexibility to do your job is one of our core benefits, enabling you to become part of our extraordinary team. We have been empowering our people to work flexibly for years. Whether you work from home, the office or on customer sites, we will give you the digital tools and the flexibility to work smarter and align your needs and ours. People: Leidos empowers people from every background to be themselves and gives you the tools to learn new skills by enabling growthwhilst developing. We believe that extraordinary people need opportunities to grow, to be inspired and to inspire others. At Leidos, we invest in technical academies, career rotations and a career development plans that enhance your future. JBRP1_UKTJ
Dec 07, 2025
Full time
Maritime Control Systems Engineer Programme: Maritime Location: Farnborough, with flexibility to work from home dependent on business demands Grow our Maritime space with us! We are seeking an highly experienced and motivated Control Systems Engineer to lead the control systems team within Leidos UK Maritime Division. Initially you will be a senior member of the design and build team for Leidos Sea Dagger Commando Insertion Craft, responsible for the scoping, designing and delivering its Platform Management System (PMS). Subsequently you will move to supporting the delivery of PMS onto the wider portfolio of Leidos maritime assets. You will need to have extensive Programmable Logic Controller (PLC) and SCADA experience, with an innovative mindset which matched the design and delivery teams boundary pushing approach to platform development. You will be afforded a significant amount of autonomy to rapidly develop the right, cutting edge system to support this exciting programme. What will you be doing? Capture, develop and implement the customers user requirements, offering intelligent improvements where required. Architect the detailed design of the PMS Advise on design architecture and combat systems of the vessel, from a control systems perspective; Engage with equipment OEMs, facilitating their integration into platform management system, Design, develop and integrate the PMS function with the Agentic Artificial Intelligence and the autonomous systems being developed by Leidos for the Maritime domain. Responsible for the design, implantation and documentation of the vessels SCADA system, working with the wider team, customer, subcontractors, equipment OEMs and Human Factors (HF) specialists to maximise crew performance. Work with the platform naval architecture and marine systems team to create bespoke control systems for specific elements of the platform. Responsible for the update of essential PMS documentation such as the signals database, Testing and Assurance. What does Leidos need from me? Able to design complex PLC Control Systems based on COTS products (Rockwell/Siemens). Proven experience in the design and production of safety accredited SCADA systems. Using a PMS to support the testing and commissioning of equipment on complex maritime platforms. PMS virtualisation and systems integration in a cloud based environment. Experience in designing and implementing control systems to high Military security standards. Able to interface with and/or develop Machine Learning systems. Experience specifically within the Defence Maritime sector. Highly Desirable Understanding of high speed Maritime Platform Vehicle control. Security clearance: Clearance to Start - BPSS Clearance for Role - SC Must be UK Citizen holding or able to hold SC clearance What we do for you: At Leidos we are PASSIONATE about customer success, UNITED as a team and INSPIRED to make a difference. We offer meaningful and engaging careers, a collaborative culture, and support for your career goals, all while nurturing a healthy work-life balance. We provide an employment package that attracts, develops and retains only the best in talent. Our reward scheme includes: Contributory Pension Scheme Private Medical Insurance 33 days Annual Leave (including public and privilege holidays) Access to Flexible benefits (including life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) Flexi-Time Working Commitment to Diversity: We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Who We Are: Leidos UK & EUROPE we work to make the worldsafer,healthier, andmore efficient through technology, engineering andscience. Leidos is a growing company delivering innovative technology and solutions focused on safeguarding critical capabilities and transformation in frontline services, our work in the United Kingdom includes addressing some of the most complex problems in defence, healthcare, government, safety and security, and transportation. What Makes Us Different: Purpose: you can use your passion and abilities at Leidos to keep the people you care about safe. We are at the forefront of machine learning, AI, cyber security and solutions. Using your skills in the technology frontline by helping to build a safer world. You can inspire change. Collaboration: having flexibility to do your job is one of our core benefits, enabling you to become part of our extraordinary team. We have been empowering our people to work flexibly for years. Whether you work from home, the office or on customer sites, we will give you the digital tools and the flexibility to work smarter and align your needs and ours. People: Leidos empowers people from every background to be themselves and gives you the tools to learn new skills by enabling growthwhilst developing. We believe that extraordinary people need opportunities to grow, to be inspired and to inspire others. At Leidos, we invest in technical academies, career rotations and a career development plans that enhance your future. JBRP1_UKTJ
VACANCY: Senior Desktop Support Engineer Job Type: Permanent Location: Bristol (Hybrid) Hours: -37.5 Hours per week. Out of hours work may be required. About us Teleperformance is a worldwide leader in multichannel customer experience management. We are experts in the call centre services industry and connect the biggest and most respected brands on the planet with their customers by providing customer care, technical support, customer acquisition, digital solutions, analytics, back-office and other specialized services to ensure consistently positive customer interactions. Weve been providing superior customer care for leading brands throughout the world since 1978 and every year we interact with more than 35% of the worlds population. We believe in the value of providing the best working environment for the best people, and our reputation as a company that works hard to inspire its employees has been recognized globally. Teleperformance was named a Great Place to Work in various countries, including the UK, and was included in Forbes 50 Most Trustworthy Companies based in Western Europe, as well as in AON Hewitt Globals Global Best Employers Program. We are an equal opportunities employer and we welcome applications from all suitably qualified persons. About the Role As a Senior Desktop Support Engineer you will provide desktop support to company employees, both on-site and at home for any issues reported. These will primarily relate to desktop and laptop hardware issues, software faults including email, telephony systems and associated in-house applications. You will be responsible for maintaining all IT kit based onsite and providing hands-on assistance to other IT teams and users based remotely. You will also be responsible for some people management and will be the escalation point of senior leaders both on site and remotely. General BAU tasks include but are not limited to, ticket management, hardware & software support, fault finding, troubleshooting, deployment, networking, and ensuring compliance with both internal and external security audits and accreditations. Good customer facing skills and ability to prioritise your workload are also key aspects of the role. Candidates must be well-presented and prepared to invest their time to learn new skills in the constantly evolving world of Information Technology. Travel to our other Teleperformance sites within the UK may also be required on occasion. Duties Troubleshooting reported faults with Windows Desktop, laptop, VDI & mobile for end users Software deployment and updates for all devices used in the estate Maintain a high degree of customer service via in person communication, call, e-mail, and instant messaging for all support queries Support and triage of major incident impacting business productivity and ability to maintain client KPIs Gather and submit evidence in relation to quarterly and annual security policies, and external audits Identifying business risks and ensuring adherence to internal and external security requirements Close attention to Service Level Agreements (SLAs) and setting a clear expectation to the customer Requirements Ability to attain CTC and SC clearance as per UK government requirements. Ability to maintain a high degree of customer service for all support queries. Proven track record of close attention to Service Level Agreements (SLAs) and setting a clear expectation to the customer. Proactive approach, ability to prioritise and manage own workload. Ability to solve complex problems & participate in continuous improvement. Excellent oral and written communication skills. Keen attention to detail. Ability to relate to others in a positive manner. Strong team focus. Experience with MS Office Packages People Management Skills and Experience (advantageous) Experience and/or Qualifications in an IT field Experience with Windows 10 & 11 Experience working with VDI solutions Experience with Cisco Networking desirable. Experience with MECM for software deployment, OS build and patch management Experience of managing and implementing Group Policy in an enterprise environment. Experience with Anti Virus software and managing cyber security threats Experience working with O365 products and services Working experience of ITIL and/or ISO270001 processes and procedures. Proactive approach, ability to prioritise and manage own workload Ability to solve complex problems & participate in continuous improvement. JBRP1_UKTJ
Dec 07, 2025
Full time
VACANCY: Senior Desktop Support Engineer Job Type: Permanent Location: Bristol (Hybrid) Hours: -37.5 Hours per week. Out of hours work may be required. About us Teleperformance is a worldwide leader in multichannel customer experience management. We are experts in the call centre services industry and connect the biggest and most respected brands on the planet with their customers by providing customer care, technical support, customer acquisition, digital solutions, analytics, back-office and other specialized services to ensure consistently positive customer interactions. Weve been providing superior customer care for leading brands throughout the world since 1978 and every year we interact with more than 35% of the worlds population. We believe in the value of providing the best working environment for the best people, and our reputation as a company that works hard to inspire its employees has been recognized globally. Teleperformance was named a Great Place to Work in various countries, including the UK, and was included in Forbes 50 Most Trustworthy Companies based in Western Europe, as well as in AON Hewitt Globals Global Best Employers Program. We are an equal opportunities employer and we welcome applications from all suitably qualified persons. About the Role As a Senior Desktop Support Engineer you will provide desktop support to company employees, both on-site and at home for any issues reported. These will primarily relate to desktop and laptop hardware issues, software faults including email, telephony systems and associated in-house applications. You will be responsible for maintaining all IT kit based onsite and providing hands-on assistance to other IT teams and users based remotely. You will also be responsible for some people management and will be the escalation point of senior leaders both on site and remotely. General BAU tasks include but are not limited to, ticket management, hardware & software support, fault finding, troubleshooting, deployment, networking, and ensuring compliance with both internal and external security audits and accreditations. Good customer facing skills and ability to prioritise your workload are also key aspects of the role. Candidates must be well-presented and prepared to invest their time to learn new skills in the constantly evolving world of Information Technology. Travel to our other Teleperformance sites within the UK may also be required on occasion. Duties Troubleshooting reported faults with Windows Desktop, laptop, VDI & mobile for end users Software deployment and updates for all devices used in the estate Maintain a high degree of customer service via in person communication, call, e-mail, and instant messaging for all support queries Support and triage of major incident impacting business productivity and ability to maintain client KPIs Gather and submit evidence in relation to quarterly and annual security policies, and external audits Identifying business risks and ensuring adherence to internal and external security requirements Close attention to Service Level Agreements (SLAs) and setting a clear expectation to the customer Requirements Ability to attain CTC and SC clearance as per UK government requirements. Ability to maintain a high degree of customer service for all support queries. Proven track record of close attention to Service Level Agreements (SLAs) and setting a clear expectation to the customer. Proactive approach, ability to prioritise and manage own workload. Ability to solve complex problems & participate in continuous improvement. Excellent oral and written communication skills. Keen attention to detail. Ability to relate to others in a positive manner. Strong team focus. Experience with MS Office Packages People Management Skills and Experience (advantageous) Experience and/or Qualifications in an IT field Experience with Windows 10 & 11 Experience working with VDI solutions Experience with Cisco Networking desirable. Experience with MECM for software deployment, OS build and patch management Experience of managing and implementing Group Policy in an enterprise environment. Experience with Anti Virus software and managing cyber security threats Experience working with O365 products and services Working experience of ITIL and/or ISO270001 processes and procedures. Proactive approach, ability to prioritise and manage own workload Ability to solve complex problems & participate in continuous improvement. JBRP1_UKTJ
CYBER SECURITY ENGINEER Summer-Browning Associates is supporting our client in the Central Government who is seeking a Cyber Security Engineer for an initial 12-month assignment, with the possibility of extension. Location: London Hybrid Remote The ideal candidate will hold an active DV clearance and have a solid background in Cyber Security Engineering working within a high-threat government environment, with the following skills and experience: Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, Sentinel, ELK, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Experience in Protective Monitoring & SOC operation Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. To apply, please submit your latest CV for review.
Dec 07, 2025
Contractor
CYBER SECURITY ENGINEER Summer-Browning Associates is supporting our client in the Central Government who is seeking a Cyber Security Engineer for an initial 12-month assignment, with the possibility of extension. Location: London Hybrid Remote The ideal candidate will hold an active DV clearance and have a solid background in Cyber Security Engineering working within a high-threat government environment, with the following skills and experience: Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, Sentinel, ELK, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Experience in Protective Monitoring & SOC operation Experience in network security principles, firewalls, and access control mechanisms. Preferred Qualifications: - Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable. To apply, please submit your latest CV for review.
IT Infrastructure Engineer Mostly in-office working in Whiteley, Hampshire Stratospherec are proud to be working with a fantastic UK SaaS Fintech company whose IT systems are revolutionising the UK finance, retail and commerce industries. Due to their sustained and continued growth they are looking to expand their IT Infrastructure team by hiring an Infrastructure Engineer with a strong Wintel and IT Infrastructure background. They have a number of large IT projects for the next 24 months including automating their IT Infrastructure deployments so they are looking for an experienced IT Engineer who has an interest in automation as well - no previous automation experience necessary. This role will mainly focused to in new IT project work, with some limited BAU work as well. They are looking for an Infrastructure Engineer with an interest in using automation tools to streamline infrastructure deployment, management and monitoring, combined with a background in administering and building new IT infrastructures and improvements in IT systems from previous projects is going to be vital for this role. Any background in Datacentre relocation or migration would be useful as well in this role Role Responsibilities: Infrastructure: Maintain and enhance IT infrastructure, including VMware ESXi, Microsoft Windows Server environments, and Network Monitoring and networking components. There is some minimal work supporting AWS/Linux server infrastructure as well. Ensure system reliability, scalability, and performance through proactive monitoring and automation. Maintain and improve local network environments, including Dell servers and Dell switch configurations. Strong technical expertise in Microsoft Active Directory (AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & Automation (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Learn how to automate configuration management, infrastructure provisioning, and application deployment. Configure and maintain authentication solutions (SSO, SAML, Entra Connect). Develop and manage automation solutions to streamline infrastructure deployment, management, and monitoring. Implement and optimize automation tools such as Azure DevOps (or other CI/CD pipelines), Terraform, Node-Red, and Packer. Deploy and manage monitoring tools (Zabbix, SolarWinds SentryOne, and other network/database monitoring solutions). Ensure secure cloud infrastructure management across Azure and AWS environments. Experience & Skills: It will be useful to have some of the following skills and experience: Strong expertise in defining, delivering, and supporting robust, resilient, and secure enterprise infrastructure. Experience with IT audits and compliance frameworks such as CIS, PCI DSS, Cyber Essentials, NIST, ISO 27001. An understanding of network security and compliance in regulated environments. Strong networking knowledge (LAN, WAN, DNS, DHCP, VPN, TCP/IP). Proficiency in firewall and load balancer technologies for secure environments. Hands-on experience with virtualization platforms (VMware, Citrix Xen) and backup solutions (Veeam or similar). Experience with monitoring tools (SolarWinds SentryOne, Zabbix etc.). Excellent problem-solving, communication, and documentation skills. Some familiarity with financial services regulations and compliance (PCI DSS, GDPR, DORA) would be useful but is not essential. Desirable (but not required) experience: Some interest in learning and using automation tools such as Azure DevOps, Terraform, Node-Red, Packer. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Scripting and automation skills (PowerShell, Python, Bash, or similar). Ability to design, implement, and maintain CI/CD pipelines for infrastructure automation. Some experience managing cloud environments (Azure, AWS). This is an exciting new role for a growing IT Infrastructure team, within a successful and growing SaaS company, so if you are looking for an exciting challenging IT Systems and automation role, then please apply with your CV for immediate interview. Please note we can only consider local candidates and with full UK Passports or settled status visas or indefinite leave to remain visas
Dec 07, 2025
Full time
IT Infrastructure Engineer Mostly in-office working in Whiteley, Hampshire Stratospherec are proud to be working with a fantastic UK SaaS Fintech company whose IT systems are revolutionising the UK finance, retail and commerce industries. Due to their sustained and continued growth they are looking to expand their IT Infrastructure team by hiring an Infrastructure Engineer with a strong Wintel and IT Infrastructure background. They have a number of large IT projects for the next 24 months including automating their IT Infrastructure deployments so they are looking for an experienced IT Engineer who has an interest in automation as well - no previous automation experience necessary. This role will mainly focused to in new IT project work, with some limited BAU work as well. They are looking for an Infrastructure Engineer with an interest in using automation tools to streamline infrastructure deployment, management and monitoring, combined with a background in administering and building new IT infrastructures and improvements in IT systems from previous projects is going to be vital for this role. Any background in Datacentre relocation or migration would be useful as well in this role Role Responsibilities: Infrastructure: Maintain and enhance IT infrastructure, including VMware ESXi, Microsoft Windows Server environments, and Network Monitoring and networking components. There is some minimal work supporting AWS/Linux server infrastructure as well. Ensure system reliability, scalability, and performance through proactive monitoring and automation. Maintain and improve local network environments, including Dell servers and Dell switch configurations. Strong technical expertise in Microsoft Active Directory (AD), Windows Server environments, and authentication solutions. Plan for scalability, redundancy, and high availability to support future growth. IT Security & Compliance: Ensure compliance with security and regulatory standards, including PCI DSS, Cyber Essentials+, DORA, and ISO 27001. Implement and enforce security best practices across infrastructure automation and cloud environments. Maintain accurate compliance documentation, including PCI DSS scope records and security policies. Secure high-value and high-risk data, such as cardholder (PCI) and personally identifiable information (PII). Cloud & Automation (these tools and skills will be taught): Implement and manage Infrastructure as Code (IaC) for cloud and on-premises environments. Learn how to automate configuration management, infrastructure provisioning, and application deployment. Configure and maintain authentication solutions (SSO, SAML, Entra Connect). Develop and manage automation solutions to streamline infrastructure deployment, management, and monitoring. Implement and optimize automation tools such as Azure DevOps (or other CI/CD pipelines), Terraform, Node-Red, and Packer. Deploy and manage monitoring tools (Zabbix, SolarWinds SentryOne, and other network/database monitoring solutions). Ensure secure cloud infrastructure management across Azure and AWS environments. Experience & Skills: It will be useful to have some of the following skills and experience: Strong expertise in defining, delivering, and supporting robust, resilient, and secure enterprise infrastructure. Experience with IT audits and compliance frameworks such as CIS, PCI DSS, Cyber Essentials, NIST, ISO 27001. An understanding of network security and compliance in regulated environments. Strong networking knowledge (LAN, WAN, DNS, DHCP, VPN, TCP/IP). Proficiency in firewall and load balancer technologies for secure environments. Hands-on experience with virtualization platforms (VMware, Citrix Xen) and backup solutions (Veeam or similar). Experience with monitoring tools (SolarWinds SentryOne, Zabbix etc.). Excellent problem-solving, communication, and documentation skills. Some familiarity with financial services regulations and compliance (PCI DSS, GDPR, DORA) would be useful but is not essential. Desirable (but not required) experience: Some interest in learning and using automation tools such as Azure DevOps, Terraform, Node-Red, Packer. Proven ability to secure high-value data (PCI cardholder data, PII) and implement security best practices. Scripting and automation skills (PowerShell, Python, Bash, or similar). Ability to design, implement, and maintain CI/CD pipelines for infrastructure automation. Some experience managing cloud environments (Azure, AWS). This is an exciting new role for a growing IT Infrastructure team, within a successful and growing SaaS company, so if you are looking for an exciting challenging IT Systems and automation role, then please apply with your CV for immediate interview. Please note we can only consider local candidates and with full UK Passports or settled status visas or indefinite leave to remain visas
Locations : Boston Atlanta London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Security Platform Engineering: Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous compliance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Dec 07, 2025
Full time
Locations : Boston Atlanta London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Security Platform Engineering: Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous compliance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Locations : Boston Atlanta London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Security Platform Engineering: Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous compliance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Dec 06, 2025
Full time
Locations : Boston Atlanta London Who We Are Boston Consulting Group partners with leaders in business and society to tackle their most important challenges and capture their greatest opportunities. BCG was the pioneer in business strategy when it was founded in 1963. Today, we help clients with total transformation-inspiring complex change, enabling organizations to grow, building competitive advantage, and driving bottom-line impact. To succeed, organizations must blend digital and human capabilities. Our diverse, global teams bring deep industry and functional expertise and a range of perspectives to spark change. BCG delivers solutions through leading-edge management consulting along with technology and design, corporate and digital ventures-and business purpose. We work in a uniquely collaborative model across the firm and throughout all levels of the client organization, generating results that allow our clients to thrive. What You'll Do The Global Platform Team Lead and Senior Director - IT Security is responsible for leading the design, delivery, and continuous evolution of BCG's security platforms across identity, device, and data protection domains. This role ensures end-to-end security engineering across all technology environments, including cloud, on-prem, and hybrid systems. The leader will drive strategic planning, execution, and operations of scalable, automated, and resilient security controls that protect BCG's global operations and users, while enabling innovation and agility across BCG Core, BCG X, and CT worldwide. This role is also accountable for embedding security within DevSecOps practices, enforcing automation at scale, and applying Site Reliability Engineering (SRE) principles across all security services. The role requires strong partnership with ISRM, with a focus on balancing and prioritizing security requirements, automation opportunities, user experience needs, and broader business outcomes. Key Responsibilities: Strategic Leadership & Transformation: Define and execute a unified security engineering strategy that addresses identity, endpoint, and data protection across all environments. Lead the design and implementation of scalable, automated security solutions that integrate seamlessly into enterprise platforms and user experiences. Establish a global security architecture and engineering roadmap focused on prevention, detection, and rapid response. Drive continuous improvement of security posture while aligning with business needs, regulatory requirements, and user experience expectations. Champion DevSecOps practices to embed security early into development and delivery workflows. Security Platform Engineering: Lead end-to-end engineering for identity and access management (IAM), including authentication, authorization, and privileged access controls. Oversee endpoint security architecture and enforcement, ensuring comprehensive coverage for threat detection, malware prevention, and device compliance. Build and operate scalable data protection solutions, including data loss prevention (DLP), secrets management, encryption, and classification. Integrate security controls into CI/CD pipelines, cloud-native services, and on-prem platforms to enforce security-by-design principles. Deliver security capabilities that support modern work scenarios, remote access, zero-trust networking, and AI/ML workloads. Leverage automation frameworks and IaC to improve scalability and reduce manual intervention. Operational Security, SRE & Assurance: Ensure security platforms are resilient, continuously monitored, and designed for 24x7 support and incident response readiness. Embed security telemetry and observability to enable proactive threat detection and automated response. Apply SRE principles to improve reliability, performance, and maintainability of security services. Lead platform health, patching automation, and vulnerability remediation workflows. Define service level objectives (SLOs) and key performance indicators (KPIs) for all security services. Compliance, Governance & Risk Management: Ensure alignment with global compliance requirements such as ISO 27001, NIST, SOC 2, GDPR, and others. Partner with governance, legal, and ISRM teams to implement enforceable policies and standards across identity, endpoint, and data domains. Operationalize policy enforcement through automated controls and continuous compliance checks. Lead risk mitigation efforts with technical solutions that scale across diverse user and system profiles. Financial & Vendor Management: Manage security platform budgets and investments with a focus on cost optimization and long-term value. Evaluate and manage third-party vendors and partners, ensuring they meet technical, contractual, and security expectations. Lead procurement and renewal cycles in alignment with operational and architectural strategies. Leadership & Talent Development: Build and mentor a global team of security engineers, fostering a high-performance, collaborative, and forward-thinking culture. Drive internal knowledge sharing and upskilling programs across security architecture, automation, and secure software engineering. Collaborate cross-functionally with platform, product, and enterprise architecture teams to embed security early and often. What You'll Bring Required Qualifications: 10+ years of experience in cybersecurity, security engineering, or platform security roles. 5+ years in a senior leadership position with accountability for enterprise-scale security platforms. Deep expertise in IAM, endpoint security, and data protection technologies, with proven ability to design and scale global solutions. Experience with security engineering in hybrid and cloud-native environments (AWS, Azure, GCP). Proven track record in automating security controls, implementing zero-trust models, and supporting 24x7 security operations. Strong understanding of compliance frameworks and risk management strategies. Preferred Qualifications: Certifications such as CISSP, CCSP, CISM, AWS/Azure Security Specialty, or equivalent. Experience with tools like Okta, Azure AD, CrowdStrike, Tanium, Zscaler, Vault, and other modern security platforms. Familiarity with DevSecOps principles, Infrastructure as Code, and secure software development practices. Who You'll Work With Work Environment & Additional Information: Hybrid or on-site work model. Occasional travel may be required for business, vendor, or team engagement. Ability to operate in a fast-paced, complex environment, balancing long-term strategy with operational agility. Additional info For US locations only In the US, we have a compensation transparency approach. Total compensation for this role includes base salary, annual discretionary performance bonus, retirement contribution, and a market leading benefits package described below. The base salary range for this role in Boston is $183,000.00 - $237,000.00. This is an estimated range, however, specific base salaries within the range depend on various factors such as experience and skill set. It is not common for new BCG employees to be hired at the high-end of the salary range. BCG regularly reviews its ranges to ensure market competitiveness. In addition to your base salary, your total compensation will include a bonus of up to 45% and a generous retirement contribution that starts at 10%. Senior Directors/Executive Directors are also eligible for a Firm Performance Bonus. All of our plans provide best in class coverage: Zero dollar ($0) health insurance premiums for BCG employees, spouses, and children Low $10 (USD) copays for trips to the doctor, urgent care visits and prescriptions for generic drugs Dental coverage, including up to $5,000 in orthodontia benefits Vision insurance with coverage for both glasses and contact lenses annually Reimbursement for gym memberships and other fitness activities Fully vested Profit Sharing Retirement Fund contributions made annually, whether you contribute or not, plus the option for employees to make personal contributions to a 401(k) plan Paid Parental Leave and other family benefits such as elective egg freezing, surrogacy, and adoption reimbursement Generous paid time off including 12 holidays per year, an annual office closure between Christmas and New Years, and 20 vacation days per year (earned at 1.66 days per month) Paid sick time on an as needed basis Boston Consulting Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under national, provincial, or local law, where applicable, and those with criminal histories will be considered in a manner consistent with applicable state and local laws. BCG is an E - Verify Employer. Click here for more information on E-Verify.
Why join Marshall Land Systems in this role? The Head of Business Security & Compliance is responsible for leading the global security and compliance strategy across all UK, European and Canadian sites, programmes, and projects. The role provides senior expertise across information security, cyber security, data governance, and defence security requirements, ensuring the organisation meets all legislative, regulatory, and contractual standards. This position acts as the principal link between technical teams, business leadership, government partners, clients, and external authorities to maintain a robust, compliant, and resilient security environment. Responsibilities in this role include: Strategic Security, Data Governance & Compliance Leadership Provide senior leadership on IT and data compliance, including global expertise in data management, information security, and GDPR requirements. Establish, maintain, and continuously improve the organisation's security frameworks, procedures, policies, and standards, ensuring alignment with legislation, MoD requirements, Government guidelines, contract requirements and corporate expectations. Lead initiatives to embed and sustain a robust security culture across all business areas. Cyber Security Oversight & IT Assurance Oversee cyber security governance, working closely with IT teams and managed service providers to ensure controls are implemented, functioning, tested, and routinely audited. Provide senior guidance to ensure IT systems and infrastructure comply with security procedures, data protection standards, and operational requirements. Develop and deliver organisation-wide training on IT compliance, information security, and cyber security best practices. Defence Security, Accreditation & Classified Material Management Act as the organisation's Security Controller and Crypto Custodian, ensuring full compliance with defence security obligations. Manage all aspects of personnel and facility security clearances, security accreditation, and the handling, processing, storage, mustering, and destruction of protectively marked and crypto-related material. Lead the management of Security Aspects Letters (SALs), security reporting, audits, and all requirements linked to defence contracts. Physical, Facilities & Operational Security Plan, implement, and oversee FSC-compliant physical and operational security measures for sites, facilities, programmes, and projects. Manage contracts and performance for security services, systems, and equipment. Ensure security vetting processes are effectively managed in partnership with HR and deliver mandatory security inductions and briefings. Assurance, Monitoring & Reporting Lead the audit and assurance programme to validate the effectiveness of security procedures, controls, and compliance measures. Analyse security incidents, produce monthly security performance reporting, and proactively address emerging patterns or risks. Maintain organisational security SLAs, manuals, and compliance documentation, ensuring all accreditations remain current and properly governed. Stakeholder Engagement & External Relations Work closely with internal stakeholders to anticipate and resolve security risks, ensuring programmes and projects meet required security standards. Maintain influential relationships with external commercial and government security advisors, including the Police, CTSA, MOD, NPSA, DE&S, and other relevant agencies. Represent the organisation confidently in all security-related engagements, audits, and consultations. Continuous Improvement & Environmental Awareness Monitor changes in legislation, technology, threat landscapes, and best practices to ensure the organisation remains compliant and well-protected. Drive continuous improvement across all areas of security and compliance. Apply if you have most of the following: Extensive experience in security, information assurance, cyber governance, or compliance roles. Proven track record leading security in a multi-site or multinational organisation. Experience working with MoD, NPSA, DE&S, government security agencies, or other regulated defence/security environments. Experience handling classified information, managing clearances, or acting in roles such as Security Controller or Crypto Custodian. Demonstrated experience overseeing cyber security controls, audits, or compliance in partnership with IT teams and MSPs. Familiarity with frameworks such as ISO 27001, NIST, CAF, or similar standards. Experience developing corporate security policies, frameworks, and operating procedures. Experience leading security accreditation, assurance reviews, or certification maintenance. Exposure to facility and physical security planning, contract management, and security technology solutions. Experience delivering security awareness training and supporting cultural transformation programmes. Successful track record working with senior leadership teams, HR, IT, facilities, programme management, and external partners. Experience presenting security performance, risks, and incident insights to executive boards or senior stakeholders. Experience analysing incidents, producing incident reports, and implementing corrective actions Additional local needs The successful candidate will need to be eligible to obtain full SC clearance. The benefits we will offer you include: 27 days holiday increasing with service up to 30 days (option to buy /sell) Pension contributions up to 9% Private medical insurance for you and your partner Extensive flexible benefit program including Cycle to Work Life assurance at 4x basic salary Enhanced parental leave and pay Paid volunteering leave Access to industry leading wellbeing resources and tools Marshall Land Systems is a Canadian-owned global company with an unrivalled pedigree of British engineering excellence. From its origins in Cambridge, UK, through more than a century of innovation, pioneering advances from the nose of Concorde to the early Hydrogen fuel cell technology that ultimately powered the moon landings, Marshall engineers now continue to innovate specialist vehicles and infrastructure for NATO forces across the world. From bomb disposal vehicles to deployed shelters, from command and control to CT scanners on the battlefield, Marshall Land Systems protects people in critical situations with the very best in engineering. It employs 600 people with major facilities the UK, Canada, and the Netherlands.
Dec 06, 2025
Full time
Why join Marshall Land Systems in this role? The Head of Business Security & Compliance is responsible for leading the global security and compliance strategy across all UK, European and Canadian sites, programmes, and projects. The role provides senior expertise across information security, cyber security, data governance, and defence security requirements, ensuring the organisation meets all legislative, regulatory, and contractual standards. This position acts as the principal link between technical teams, business leadership, government partners, clients, and external authorities to maintain a robust, compliant, and resilient security environment. Responsibilities in this role include: Strategic Security, Data Governance & Compliance Leadership Provide senior leadership on IT and data compliance, including global expertise in data management, information security, and GDPR requirements. Establish, maintain, and continuously improve the organisation's security frameworks, procedures, policies, and standards, ensuring alignment with legislation, MoD requirements, Government guidelines, contract requirements and corporate expectations. Lead initiatives to embed and sustain a robust security culture across all business areas. Cyber Security Oversight & IT Assurance Oversee cyber security governance, working closely with IT teams and managed service providers to ensure controls are implemented, functioning, tested, and routinely audited. Provide senior guidance to ensure IT systems and infrastructure comply with security procedures, data protection standards, and operational requirements. Develop and deliver organisation-wide training on IT compliance, information security, and cyber security best practices. Defence Security, Accreditation & Classified Material Management Act as the organisation's Security Controller and Crypto Custodian, ensuring full compliance with defence security obligations. Manage all aspects of personnel and facility security clearances, security accreditation, and the handling, processing, storage, mustering, and destruction of protectively marked and crypto-related material. Lead the management of Security Aspects Letters (SALs), security reporting, audits, and all requirements linked to defence contracts. Physical, Facilities & Operational Security Plan, implement, and oversee FSC-compliant physical and operational security measures for sites, facilities, programmes, and projects. Manage contracts and performance for security services, systems, and equipment. Ensure security vetting processes are effectively managed in partnership with HR and deliver mandatory security inductions and briefings. Assurance, Monitoring & Reporting Lead the audit and assurance programme to validate the effectiveness of security procedures, controls, and compliance measures. Analyse security incidents, produce monthly security performance reporting, and proactively address emerging patterns or risks. Maintain organisational security SLAs, manuals, and compliance documentation, ensuring all accreditations remain current and properly governed. Stakeholder Engagement & External Relations Work closely with internal stakeholders to anticipate and resolve security risks, ensuring programmes and projects meet required security standards. Maintain influential relationships with external commercial and government security advisors, including the Police, CTSA, MOD, NPSA, DE&S, and other relevant agencies. Represent the organisation confidently in all security-related engagements, audits, and consultations. Continuous Improvement & Environmental Awareness Monitor changes in legislation, technology, threat landscapes, and best practices to ensure the organisation remains compliant and well-protected. Drive continuous improvement across all areas of security and compliance. Apply if you have most of the following: Extensive experience in security, information assurance, cyber governance, or compliance roles. Proven track record leading security in a multi-site or multinational organisation. Experience working with MoD, NPSA, DE&S, government security agencies, or other regulated defence/security environments. Experience handling classified information, managing clearances, or acting in roles such as Security Controller or Crypto Custodian. Demonstrated experience overseeing cyber security controls, audits, or compliance in partnership with IT teams and MSPs. Familiarity with frameworks such as ISO 27001, NIST, CAF, or similar standards. Experience developing corporate security policies, frameworks, and operating procedures. Experience leading security accreditation, assurance reviews, or certification maintenance. Exposure to facility and physical security planning, contract management, and security technology solutions. Experience delivering security awareness training and supporting cultural transformation programmes. Successful track record working with senior leadership teams, HR, IT, facilities, programme management, and external partners. Experience presenting security performance, risks, and incident insights to executive boards or senior stakeholders. Experience analysing incidents, producing incident reports, and implementing corrective actions Additional local needs The successful candidate will need to be eligible to obtain full SC clearance. The benefits we will offer you include: 27 days holiday increasing with service up to 30 days (option to buy /sell) Pension contributions up to 9% Private medical insurance for you and your partner Extensive flexible benefit program including Cycle to Work Life assurance at 4x basic salary Enhanced parental leave and pay Paid volunteering leave Access to industry leading wellbeing resources and tools Marshall Land Systems is a Canadian-owned global company with an unrivalled pedigree of British engineering excellence. From its origins in Cambridge, UK, through more than a century of innovation, pioneering advances from the nose of Concorde to the early Hydrogen fuel cell technology that ultimately powered the moon landings, Marshall engineers now continue to innovate specialist vehicles and infrastructure for NATO forces across the world. From bomb disposal vehicles to deployed shelters, from command and control to CT scanners on the battlefield, Marshall Land Systems protects people in critical situations with the very best in engineering. It employs 600 people with major facilities the UK, Canada, and the Netherlands.
Cyber Security Specialist Birmingham - hybrid 3 months Inside IR35 - Umbrella only Overview We are seeking a highly skilled contractor to perform threat modelling and assessment activities across complex IT and telecommunications infrastructure. This role will be part of a small team whose function will be to identify risks across multiple and complex environments over a six-month engagement. Key Responsibilities Conduct comprehensive threat modelling and risk assessments on diverse IT and telecoms infrastructure. Collaborate with architecture and engineering teams to identify vulnerabilities and recommend mitigations. Develop threat models using a pre-defined methodology. Contribute to and produce clear, actionable reports and briefings for technical and non-technical stakeholders. Essential Skills & Experience Proven experience in threat modelling and security assessment of complex infrastructures. Knowledge of secure design principles and architecture reviews. Strong background in cybersecurity, ideally with exposure to telecoms environments. Background in operational security (Intelligence, Threat Hunting or Red Team) Familiarity with threat modelling frameworks, (MITRE ATT&CK, STRIDE, PASTA etc) Ability to drive work to tight timescales and deadlines. Ability to work independently and manage priorities in a dynamic environment. All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
Dec 06, 2025
Contractor
Cyber Security Specialist Birmingham - hybrid 3 months Inside IR35 - Umbrella only Overview We are seeking a highly skilled contractor to perform threat modelling and assessment activities across complex IT and telecommunications infrastructure. This role will be part of a small team whose function will be to identify risks across multiple and complex environments over a six-month engagement. Key Responsibilities Conduct comprehensive threat modelling and risk assessments on diverse IT and telecoms infrastructure. Collaborate with architecture and engineering teams to identify vulnerabilities and recommend mitigations. Develop threat models using a pre-defined methodology. Contribute to and produce clear, actionable reports and briefings for technical and non-technical stakeholders. Essential Skills & Experience Proven experience in threat modelling and security assessment of complex infrastructures. Knowledge of secure design principles and architecture reviews. Strong background in cybersecurity, ideally with exposure to telecoms environments. Background in operational security (Intelligence, Threat Hunting or Red Team) Familiarity with threat modelling frameworks, (MITRE ATT&CK, STRIDE, PASTA etc) Ability to drive work to tight timescales and deadlines. Ability to work independently and manage priorities in a dynamic environment. All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
OT Cyber Security Specialist (SC Cleared) Contract: 12 months Location: 2 days per week onsite (London or Capenhurst) Industry: Industrial / Utilities / Nuclear Clearance: Must hold active SC clearance Start: ASAP/Jan Rate - £(Apply online only)/day inside IR35 Purpose of the Role The OT Cyber Security Specialist will support the design, development, integration, and delivery of OT security controls as part of a wider OT Cyber Security Enhancement Programme. The role reports to the Head of OT Cyber Security & Cyber Assurance, with matrix reporting to the OT Security Programme Manager, and sits within the Group Information Security Department. The successful candidate must be experienced in developing OT cyber security procedures, maintaining and embedding Cyber Security Management Systems (CSMS), creating technical documentation, and delivering training and awareness activities. Key Accountabilities 1. Programme Support and Delivery Develop and update site management system procedures to align with OT Cyber Security Standards. Amend existing procedures based on OT security review findings, embedding improvements in the global CSMS. Collaborate with site Information Security Managers to integrate changes and support risk assessment refreshes. Coordinate and prioritise risk treatment activities in line with updated procedures. Support the OT Security Programme Manager in delivering control uplifts, including documentation updates. Performance Indicators Increased alignment of OT security strategy with programme objectives. Adoption and integration of policies, standards, and procedures across sites. Reduction in identified OT security risks. Clear documentation of technical and business requirements for risk mitigation. 2. Gap Analysis & Risk Assessment Lead gap assessments against the OT cyber security standard and global OT risk framework. Define risk mitigation requirements in collaboration with engineering, local security, and technical teams. Work with engineering, design authority, IT, site ISMs, and maintenance teams to embed security controls in the project lifecycle. Support assurance reviews for new and existing projects to confirm compliance with reference architectures and security standards. Liaise with project teams and vendors to ensure risk considerations are embedded from design to deployment. Performance Indicators Percentage of projects evaluated and approved on time. Successful incorporation of Security by Design principles. Time to resolve deviations from standards. Volume of compliance assessments conducted annually. 3. Security Awareness & Training Develop and support the delivery of a global OT security awareness campaign. Prepare and deliver tailored training materials to stakeholders across the OT governance structure. Work with marketing/communications to coordinate the rollout of security awareness materials. Performance Indicators Effective design and delivery of the awareness programme. Number of training sessions delivered to OT security stakeholders. 4. Business Engagement & Communications Prepare and communicate assessment results, recommendations, guidance, and industry trends to operational and tactical stakeholders. Support KPI reporting and contribution of security performance metrics to leadership. Performance Indicators Quality and relevance of stakeholder feedback. Timely delivery of KPI and programme reports. Job Requirements Vocational Qualifications (Preferred) Bachelor s or Master s degree in Automation, Robotics, Cyber Security, Computer Science, or related discipline. Relevant OT/IT cyber security certifications such as: ISA/IEC 62443 Series CISSP / CISM / CISA CEH GICSP CSSA Behavioural Competencies Strong collaboration and teamwork. Commitment to continuous improvement. Accountability and empowerment. Transparency, respect, and inclusivity. Strong focus on safety and integrity. Long-term, strategic thinking. Professional Skills Excellent written and verbal communication skills, able to tailor to technical and non-technical audiences. Proven experience delivering high-quality work independently or within cross-disciplinary teams. Strong stakeholder management and relationship-building skills. Effective problem-solving and collaboration capabilities. Technical Skills Required: Minimum 3+ years OT Security experience within programme design/delivery or security engineering. Strong experience in procedural writing and documentation creation. Experience developing and maintaining Cyber Security Management Systems (CSMS). Proven application of security standards and best practices including NIST CSF, ISO 27001, IEC 62443, and NIS regulations. Strong understanding of OT systems, networks, architecture, protocols, and vulnerabilities. Experience in: Developing OT security procedures and processes. End-to-end risk assessment, management, and treatment. Conducting compliance assessments and assurance reviews. Translating business needs into technical specifications. Delivering training and awareness activities to promote a strong cyber security culture. Additional Requirements Must hold current SC clearance (essential). Must be able to work onsite 2 days per week in London or Capenhurst. Experience working in industrial, utilities, or nuclear environments is strongly preferred.
Dec 06, 2025
Contractor
OT Cyber Security Specialist (SC Cleared) Contract: 12 months Location: 2 days per week onsite (London or Capenhurst) Industry: Industrial / Utilities / Nuclear Clearance: Must hold active SC clearance Start: ASAP/Jan Rate - £(Apply online only)/day inside IR35 Purpose of the Role The OT Cyber Security Specialist will support the design, development, integration, and delivery of OT security controls as part of a wider OT Cyber Security Enhancement Programme. The role reports to the Head of OT Cyber Security & Cyber Assurance, with matrix reporting to the OT Security Programme Manager, and sits within the Group Information Security Department. The successful candidate must be experienced in developing OT cyber security procedures, maintaining and embedding Cyber Security Management Systems (CSMS), creating technical documentation, and delivering training and awareness activities. Key Accountabilities 1. Programme Support and Delivery Develop and update site management system procedures to align with OT Cyber Security Standards. Amend existing procedures based on OT security review findings, embedding improvements in the global CSMS. Collaborate with site Information Security Managers to integrate changes and support risk assessment refreshes. Coordinate and prioritise risk treatment activities in line with updated procedures. Support the OT Security Programme Manager in delivering control uplifts, including documentation updates. Performance Indicators Increased alignment of OT security strategy with programme objectives. Adoption and integration of policies, standards, and procedures across sites. Reduction in identified OT security risks. Clear documentation of technical and business requirements for risk mitigation. 2. Gap Analysis & Risk Assessment Lead gap assessments against the OT cyber security standard and global OT risk framework. Define risk mitigation requirements in collaboration with engineering, local security, and technical teams. Work with engineering, design authority, IT, site ISMs, and maintenance teams to embed security controls in the project lifecycle. Support assurance reviews for new and existing projects to confirm compliance with reference architectures and security standards. Liaise with project teams and vendors to ensure risk considerations are embedded from design to deployment. Performance Indicators Percentage of projects evaluated and approved on time. Successful incorporation of Security by Design principles. Time to resolve deviations from standards. Volume of compliance assessments conducted annually. 3. Security Awareness & Training Develop and support the delivery of a global OT security awareness campaign. Prepare and deliver tailored training materials to stakeholders across the OT governance structure. Work with marketing/communications to coordinate the rollout of security awareness materials. Performance Indicators Effective design and delivery of the awareness programme. Number of training sessions delivered to OT security stakeholders. 4. Business Engagement & Communications Prepare and communicate assessment results, recommendations, guidance, and industry trends to operational and tactical stakeholders. Support KPI reporting and contribution of security performance metrics to leadership. Performance Indicators Quality and relevance of stakeholder feedback. Timely delivery of KPI and programme reports. Job Requirements Vocational Qualifications (Preferred) Bachelor s or Master s degree in Automation, Robotics, Cyber Security, Computer Science, or related discipline. Relevant OT/IT cyber security certifications such as: ISA/IEC 62443 Series CISSP / CISM / CISA CEH GICSP CSSA Behavioural Competencies Strong collaboration and teamwork. Commitment to continuous improvement. Accountability and empowerment. Transparency, respect, and inclusivity. Strong focus on safety and integrity. Long-term, strategic thinking. Professional Skills Excellent written and verbal communication skills, able to tailor to technical and non-technical audiences. Proven experience delivering high-quality work independently or within cross-disciplinary teams. Strong stakeholder management and relationship-building skills. Effective problem-solving and collaboration capabilities. Technical Skills Required: Minimum 3+ years OT Security experience within programme design/delivery or security engineering. Strong experience in procedural writing and documentation creation. Experience developing and maintaining Cyber Security Management Systems (CSMS). Proven application of security standards and best practices including NIST CSF, ISO 27001, IEC 62443, and NIS regulations. Strong understanding of OT systems, networks, architecture, protocols, and vulnerabilities. Experience in: Developing OT security procedures and processes. End-to-end risk assessment, management, and treatment. Conducting compliance assessments and assurance reviews. Translating business needs into technical specifications. Delivering training and awareness activities to promote a strong cyber security culture. Additional Requirements Must hold current SC clearance (essential). Must be able to work onsite 2 days per week in London or Capenhurst. Experience working in industrial, utilities, or nuclear environments is strongly preferred.
At T V S D we are passionate about technology. Innovations impact our daily lives in countless ways, and we are dedicated to being a part of that progress. We test, we audit, we inspect, we advise. We never stop challenging ourselves for the safety of society and its people. We breathe technology, we strive for professional excellence, and we leave a mark. We take the future into our hands. We are T V S D. We are looking for an IoT/IIoT cybersecurity engineer, in a hybrid home and laboratory position, headquartered in the UK to strengthen our IOT cybersecurity team. Your primary objective will be to deliver cybersecurity assessment and certification evaluation of products and components. Examples of the tasks, include, but are not limited to; assessment to latest cybersecurity standards, penetration testing (IoT and WebApp), threat modelling, firmware investigation, code analysis etc. This service will be provided to external clients, who will predominantly be manufacturers of wired and wireless IoT/IIoT devices. You will be part of a dynamic, professional global team whose core values include operating with integrity, being solutions orientated and being committed to building and sustaining long-term relationships with our customers. You will regularly engage with customers and attend to customer requirements and, using your technical expertise, you will contribute to the development and scaling of a robust product certification framework. Your role will include testing products as well as contributing to the development of an evolving and dynamic cyber assessment service. Main Duties & Responsibilities: Perform assessments to the latest cybersecurity regulations, standards and guidelines Perform security reviews and testing of IOT hardware devices, including application design, embedded software, web applications, web services and mobile applications to bespoke test programs and the latest regulatory cybersecurity requirements Hardware penetration testing Skilled in the use of the appropriate software tools used in assessments and penetration Engage with customers, understand their products and assessment requirements, and define bespoke test programs based upon our customer needs Actively contribute to the development of the TUV SUD security program with a focus on IIoT/IoT devices. Participate and contribute on global cybersecurity regulatory standards committees Provide training to customers on the interpretation of regulatory standards and best practice Fluent written and spoken English (other language skills would be desirable). Essential Criteria: Relevant Cybersecurity qualification, preferably a cybersecurity degree (BSc/MSc/PhD) or equivalent cybersecurity qualification Experience in a penetration testing (SW/HW) or similar offensive security A commitment to customer service excellence. Strong analytical skills and efficient problem solving. Ability to work unsupervised, under pressure and meet deadlines. Creative with strong commitment to quality and excellence. Desirable Criteria: Assessment experience to EN (Apply online only), EN 18031-x series of standards, NIST 8259, NIST CSF, etc Additional cybersecurity credentials such as OWASP, OSCP, CISSP etc Knowledge of security architecture design and applying regulatory guidance on cybersecurity assessment methodologies for risk management. Practical knowledge with the development and implementation of electronic, network, or data security related controls (encryption, digital signatures, secure boot, access control, password management). Understanding how to implement security activities such as vulnerability and patch management, threat intelligence etc. Hands-on practical knowledge with reverse engineering and/or vulnerability testing tools and techniques. Experience in common scripting languages such as Python, Ruby, LUA, Powershell or BASH and at least one development language e.g. Java, C, C# or similar would benefit the role. Experience in product development and testing. Further Information: T V S D in the UK offers a competitive salary and benefits package that includes a minimum of 33 days holiday entitlement (for full-time employees, including public holidays), a contributory Group Personal Pension Plan and a non-contributory Group Life Assurance Scheme. We also offer various Salary Exchange/Sacrifice schemes (buying/selling holiday, cycle to work scheme, pensions), incentive schemes and comprehensive wellbeing support (Employee Assistance Programme, Dental Scheme and Occupational Health services). Dependent on their role, employees may also be eligible for hybrid/permanent home-working, a Company Car/Car Allowance and Private Medical Insurance. At T V S D, we have employees from more than 100 different countries collaborating together. People of different backgrounds, skills, and pursuing different life goals. Our strength comes from these countless and varied perspectives. We are committed to be an inclusive and diverse workplace by welcoming people of all backgrounds. We want Diversity & Inclusion (D&I) to be a foundation of our company and create an environment where all our employees can trust they will be treated with respect, regardless of gender, nationality, ethnic background, faith, beliefs, disabilities, age, sexual orientation, or identity. As such, our employees are expected to behave at all times in a manner consistent with T V S D Code of Ethics and Company values. We firmly believe embedding D&I in the heart of what we do will inherently contribute to the success of T V S D. Click here to find out more about Diversity at T V S D.
Dec 06, 2025
Full time
At T V S D we are passionate about technology. Innovations impact our daily lives in countless ways, and we are dedicated to being a part of that progress. We test, we audit, we inspect, we advise. We never stop challenging ourselves for the safety of society and its people. We breathe technology, we strive for professional excellence, and we leave a mark. We take the future into our hands. We are T V S D. We are looking for an IoT/IIoT cybersecurity engineer, in a hybrid home and laboratory position, headquartered in the UK to strengthen our IOT cybersecurity team. Your primary objective will be to deliver cybersecurity assessment and certification evaluation of products and components. Examples of the tasks, include, but are not limited to; assessment to latest cybersecurity standards, penetration testing (IoT and WebApp), threat modelling, firmware investigation, code analysis etc. This service will be provided to external clients, who will predominantly be manufacturers of wired and wireless IoT/IIoT devices. You will be part of a dynamic, professional global team whose core values include operating with integrity, being solutions orientated and being committed to building and sustaining long-term relationships with our customers. You will regularly engage with customers and attend to customer requirements and, using your technical expertise, you will contribute to the development and scaling of a robust product certification framework. Your role will include testing products as well as contributing to the development of an evolving and dynamic cyber assessment service. Main Duties & Responsibilities: Perform assessments to the latest cybersecurity regulations, standards and guidelines Perform security reviews and testing of IOT hardware devices, including application design, embedded software, web applications, web services and mobile applications to bespoke test programs and the latest regulatory cybersecurity requirements Hardware penetration testing Skilled in the use of the appropriate software tools used in assessments and penetration Engage with customers, understand their products and assessment requirements, and define bespoke test programs based upon our customer needs Actively contribute to the development of the TUV SUD security program with a focus on IIoT/IoT devices. Participate and contribute on global cybersecurity regulatory standards committees Provide training to customers on the interpretation of regulatory standards and best practice Fluent written and spoken English (other language skills would be desirable). Essential Criteria: Relevant Cybersecurity qualification, preferably a cybersecurity degree (BSc/MSc/PhD) or equivalent cybersecurity qualification Experience in a penetration testing (SW/HW) or similar offensive security A commitment to customer service excellence. Strong analytical skills and efficient problem solving. Ability to work unsupervised, under pressure and meet deadlines. Creative with strong commitment to quality and excellence. Desirable Criteria: Assessment experience to EN (Apply online only), EN 18031-x series of standards, NIST 8259, NIST CSF, etc Additional cybersecurity credentials such as OWASP, OSCP, CISSP etc Knowledge of security architecture design and applying regulatory guidance on cybersecurity assessment methodologies for risk management. Practical knowledge with the development and implementation of electronic, network, or data security related controls (encryption, digital signatures, secure boot, access control, password management). Understanding how to implement security activities such as vulnerability and patch management, threat intelligence etc. Hands-on practical knowledge with reverse engineering and/or vulnerability testing tools and techniques. Experience in common scripting languages such as Python, Ruby, LUA, Powershell or BASH and at least one development language e.g. Java, C, C# or similar would benefit the role. Experience in product development and testing. Further Information: T V S D in the UK offers a competitive salary and benefits package that includes a minimum of 33 days holiday entitlement (for full-time employees, including public holidays), a contributory Group Personal Pension Plan and a non-contributory Group Life Assurance Scheme. We also offer various Salary Exchange/Sacrifice schemes (buying/selling holiday, cycle to work scheme, pensions), incentive schemes and comprehensive wellbeing support (Employee Assistance Programme, Dental Scheme and Occupational Health services). Dependent on their role, employees may also be eligible for hybrid/permanent home-working, a Company Car/Car Allowance and Private Medical Insurance. At T V S D, we have employees from more than 100 different countries collaborating together. People of different backgrounds, skills, and pursuing different life goals. Our strength comes from these countless and varied perspectives. We are committed to be an inclusive and diverse workplace by welcoming people of all backgrounds. We want Diversity & Inclusion (D&I) to be a foundation of our company and create an environment where all our employees can trust they will be treated with respect, regardless of gender, nationality, ethnic background, faith, beliefs, disabilities, age, sexual orientation, or identity. As such, our employees are expected to behave at all times in a manner consistent with T V S D Code of Ethics and Company values. We firmly believe embedding D&I in the heart of what we do will inherently contribute to the success of T V S D. Click here to find out more about Diversity at T V S D.
Active eDV required Our client, a leader in the Defence & Security sector, is seeking a qualified DevOps Engineer to join their team. This permanent role involves deploying applications and software to both cloud and on-prem environments for various business areas. The opportunity is based in an office at one of our client's sites in either Gloucester or Manchester, with the potential for hybrid working. This role requires the applicant to hold an active eDV clearance. Key Responsibilities: Building and setting up development tools and infrastructure Understanding the needs of project stakeholders Automating and improving development and release processes Ensuring that systems are safe and secure against cyber security threats Identifying technical problems and developing software updates and solutions Collaborating with other engineers to ensure that development follows established processes and works as intended Job Requirements: Experience of working in an Agile/SCRUM/DevOps delivery model Proficiency in cloud technologies such as AWS or Azure Knowledge of Infrastructure as Code tools like Terraform, Puppet, Chef, Ansible, etc. Experience in building and deploying large-scale applications in Continuous Integration/Delivery pipelines Familiarity with container platform and orchestration systems like ECS, AKS, Kubernetes/helm/Docker Experience in automation and integration tools such as Jenkins, Concourse CI, or cloud equivalents Proficiency in scripting languages and source control Benefits: Competitive salary Opportunity to work on a variety of interesting and challenging projects Professional development and training opportunities Supportive and collaborative work environment Employee benefits package If you are an experienced DevOps Engineer seeking a new opportunity to develop your career within the Defence & Security sector, we would love to hear from you. Apply now to join our client's dynamic and talented team in either Gloucester or Manchester.
Dec 06, 2025
Full time
Active eDV required Our client, a leader in the Defence & Security sector, is seeking a qualified DevOps Engineer to join their team. This permanent role involves deploying applications and software to both cloud and on-prem environments for various business areas. The opportunity is based in an office at one of our client's sites in either Gloucester or Manchester, with the potential for hybrid working. This role requires the applicant to hold an active eDV clearance. Key Responsibilities: Building and setting up development tools and infrastructure Understanding the needs of project stakeholders Automating and improving development and release processes Ensuring that systems are safe and secure against cyber security threats Identifying technical problems and developing software updates and solutions Collaborating with other engineers to ensure that development follows established processes and works as intended Job Requirements: Experience of working in an Agile/SCRUM/DevOps delivery model Proficiency in cloud technologies such as AWS or Azure Knowledge of Infrastructure as Code tools like Terraform, Puppet, Chef, Ansible, etc. Experience in building and deploying large-scale applications in Continuous Integration/Delivery pipelines Familiarity with container platform and orchestration systems like ECS, AKS, Kubernetes/helm/Docker Experience in automation and integration tools such as Jenkins, Concourse CI, or cloud equivalents Proficiency in scripting languages and source control Benefits: Competitive salary Opportunity to work on a variety of interesting and challenging projects Professional development and training opportunities Supportive and collaborative work environment Employee benefits package If you are an experienced DevOps Engineer seeking a new opportunity to develop your career within the Defence & Security sector, we would love to hear from you. Apply now to join our client's dynamic and talented team in either Gloucester or Manchester.
We are seeking an experienced and dynamic Second Line IT Engineer to join a busy helpdesk team, this role serves as a primary escalation point to ensure the resolution of escalated tickets and changes within contracted service levels. They will also be responsible for remediating vulnerabilities and applying security configurations. You will provide a high level of technical support to a wide range of users, spanning across different industries. The role demands a commitment to resolving complex incidents and requests while contributing to maintenance and project initiatives, enhancing customer platforms and services. Main Duties Handle escalated issues from first-line support that require a deeper level of technical expertise. Perform advanced troubleshooting of hardware, software, network, and system-related issues. Coordinate with third-line engineers or external vendors when necessary to resolve complex issues. Ensure proper communication and information transfer when escalating issues, providing all necessary details to facilitate fast resolution. Perform root cause analysis on recurring or complex issues to prevent future occurrences. Provide reports and documentation on findings to management and other teams for further review or corrective action. Ensure that all incidents and requests are handled in accordance with established SLAs. Follow compliance, security, and quality assurance guidelines during troubleshooting and system changes. Skills and Knowledge Customer focused and have a genuine desire to provide a quality service. Excellent written and verbal communication skills. A team player who can contribute to a collaborative working environment An understanding of ITIL and Cyber Essentials frameworks. Endpoint support for Microsoft Windows and Apple Mac devices, with a focus on troubleshooting and ensuring user productivity. Proficiency in the support and management of Microsoft 365 products, including but not limited to Exchange, SharePoint, OneDrive, and Intune. Management of Azure resources such as Azure Session Desktops and Azure files. Windows Server administration including Active Directory, Group Policy, DHCP and DNS. Solid understanding of network infrastructure, including DNS, Wi-Fi, VLANs, and VPNs, with an ability to troubleshoot connectivity issues. Experience with VOIP technologies, particularly Microsoft Teams telephony, and its integration within the MSP environment. Salary and Benefits £27-28K Hybrid Working, 3 days office based, 2 days from home Company Pension Scheme Life Assurance Private Healthcare Professional Growth Opportunities and Training Available 20 days holiday plus bank holidays Special Leave for birthdays and Christmas On-site Parking Volunteer Days Employee Assistance Programme
Dec 06, 2025
Full time
We are seeking an experienced and dynamic Second Line IT Engineer to join a busy helpdesk team, this role serves as a primary escalation point to ensure the resolution of escalated tickets and changes within contracted service levels. They will also be responsible for remediating vulnerabilities and applying security configurations. You will provide a high level of technical support to a wide range of users, spanning across different industries. The role demands a commitment to resolving complex incidents and requests while contributing to maintenance and project initiatives, enhancing customer platforms and services. Main Duties Handle escalated issues from first-line support that require a deeper level of technical expertise. Perform advanced troubleshooting of hardware, software, network, and system-related issues. Coordinate with third-line engineers or external vendors when necessary to resolve complex issues. Ensure proper communication and information transfer when escalating issues, providing all necessary details to facilitate fast resolution. Perform root cause analysis on recurring or complex issues to prevent future occurrences. Provide reports and documentation on findings to management and other teams for further review or corrective action. Ensure that all incidents and requests are handled in accordance with established SLAs. Follow compliance, security, and quality assurance guidelines during troubleshooting and system changes. Skills and Knowledge Customer focused and have a genuine desire to provide a quality service. Excellent written and verbal communication skills. A team player who can contribute to a collaborative working environment An understanding of ITIL and Cyber Essentials frameworks. Endpoint support for Microsoft Windows and Apple Mac devices, with a focus on troubleshooting and ensuring user productivity. Proficiency in the support and management of Microsoft 365 products, including but not limited to Exchange, SharePoint, OneDrive, and Intune. Management of Azure resources such as Azure Session Desktops and Azure files. Windows Server administration including Active Directory, Group Policy, DHCP and DNS. Solid understanding of network infrastructure, including DNS, Wi-Fi, VLANs, and VPNs, with an ability to troubleshoot connectivity issues. Experience with VOIP technologies, particularly Microsoft Teams telephony, and its integration within the MSP environment. Salary and Benefits £27-28K Hybrid Working, 3 days office based, 2 days from home Company Pension Scheme Life Assurance Private Healthcare Professional Growth Opportunities and Training Available 20 days holiday plus bank holidays Special Leave for birthdays and Christmas On-site Parking Volunteer Days Employee Assistance Programme
2nd Line Support Engineer My client is expanding and is seeking a proactive, technically strong 2nd Line Support Engineer to join their growing team. If you thrive in a fast-paced MSP environment, enjoy tackling complex technical challenges, and want exposure to a wide range of modern technologies, this role will suit you perfectly. You ll act as a key escalation point for technical issues across Microsoft 365, Azure, Windows Server, networking and endpoint management. You ll work extensively with their RMM platform and cybersecurity tooling including SentinelOne, Huntress and backup solutions-so a strong focus on security and reliability is essential. This is a client-facing role that requires excellent troubleshooting skills, outstanding communication and a commitment to high-quality service delivery. What You ll Be Doing Providing 2nd line remote and on-site support across multiple client environments Acting as an escalation point for 1st line engineers and seeing issues through to full resolution Monitoring, managing and remediating systems using RMM tools Troubleshooting issues across Microsoft 365, Azure AD, Windows Server and endpoint devices Supporting endpoint security, EDR platforms (SentinelOne, Huntress) and backup solutions Assisting with deployments, migrations and infrastructure upgrades Escalating complex issues to senior engineers or vendors where appropriate Maintaining accurate technical documentation and communicating clearly with clients Contributing to process improvements and best-practice initiatives What You ll Bring Essential: 3 4+ years experience in an MSP or multi-client IT support environment Strong knowledge of Microsoft 365, Intune and Azure AD Solid understanding of Windows Server, Active Directory and Group Policy Good networking fundamentals (VLANs, firewalls, VPNs, DNS, DHCP) Strong troubleshooting ability with a see it through mindset Excellent communication and customer-service skills Full UK driving licence and willingness to travel Desirable: Experience with RMM and PSA tools Hands-on experience with SentinelOne, Huntress or similar EDR/security platforms Experience supporting image-based, file-level and/or cloud backups Understanding of Cyber Essentials and security best practice Certifications such as CompTIA Network+, Microsoft 365 Fundamentals or similar Who You Are You ll be a great fit if you re client-focused, pragmatic and genuinely passionate about technology. My client values integrity, reliability and innovation. The team is collaborative and supportive, and they re looking for someone who remains calm under pressure, has a methodical approach to problem-solving, and brings a good sense of humour to the job. Benefits: Remote Working Bonus 24 days holiday + Bank Holidays + Christmas Shut Down Interested? Click Apply Now! 2nd Line Support Engineer
Dec 06, 2025
Full time
2nd Line Support Engineer My client is expanding and is seeking a proactive, technically strong 2nd Line Support Engineer to join their growing team. If you thrive in a fast-paced MSP environment, enjoy tackling complex technical challenges, and want exposure to a wide range of modern technologies, this role will suit you perfectly. You ll act as a key escalation point for technical issues across Microsoft 365, Azure, Windows Server, networking and endpoint management. You ll work extensively with their RMM platform and cybersecurity tooling including SentinelOne, Huntress and backup solutions-so a strong focus on security and reliability is essential. This is a client-facing role that requires excellent troubleshooting skills, outstanding communication and a commitment to high-quality service delivery. What You ll Be Doing Providing 2nd line remote and on-site support across multiple client environments Acting as an escalation point for 1st line engineers and seeing issues through to full resolution Monitoring, managing and remediating systems using RMM tools Troubleshooting issues across Microsoft 365, Azure AD, Windows Server and endpoint devices Supporting endpoint security, EDR platforms (SentinelOne, Huntress) and backup solutions Assisting with deployments, migrations and infrastructure upgrades Escalating complex issues to senior engineers or vendors where appropriate Maintaining accurate technical documentation and communicating clearly with clients Contributing to process improvements and best-practice initiatives What You ll Bring Essential: 3 4+ years experience in an MSP or multi-client IT support environment Strong knowledge of Microsoft 365, Intune and Azure AD Solid understanding of Windows Server, Active Directory and Group Policy Good networking fundamentals (VLANs, firewalls, VPNs, DNS, DHCP) Strong troubleshooting ability with a see it through mindset Excellent communication and customer-service skills Full UK driving licence and willingness to travel Desirable: Experience with RMM and PSA tools Hands-on experience with SentinelOne, Huntress or similar EDR/security platforms Experience supporting image-based, file-level and/or cloud backups Understanding of Cyber Essentials and security best practice Certifications such as CompTIA Network+, Microsoft 365 Fundamentals or similar Who You Are You ll be a great fit if you re client-focused, pragmatic and genuinely passionate about technology. My client values integrity, reliability and innovation. The team is collaborative and supportive, and they re looking for someone who remains calm under pressure, has a methodical approach to problem-solving, and brings a good sense of humour to the job. Benefits: Remote Working Bonus 24 days holiday + Bank Holidays + Christmas Shut Down Interested? Click Apply Now! 2nd Line Support Engineer
We are seeking a highly skilled contractor to perform threat modelling and assessment activities across complex IT and telecommunications infrastructure. This role will be part of a small team whose function will be to identify risks across multiple and complex environments over a six-month engagement. Key Responsibilities: Conduct comprehensive threat modelling and risk assessments on diverse IT and telecoms infrastructure. Collaborate with architecture and engineering teams to identify vulnerabilities and recommend mitigations. Develop threat models using a pre-defined methodology. Contribute to and produce clear, actionable reports and briefings for technical and non-technical stakeholders. Essential Skills & Experience Proven experience in threat modelling and security assessment of complex infrastructures. Knowledge of secure design principles and architecture reviews. Strong background in cybersecurity, ideally with exposure to telecoms environments. Background in operational security (Intelligence, Threat Hunting or Red Team) Familiarity with threat modelling frameworks, (MITRE ATT&CK, STRIDE, PASTA etc) Ability to drive work to tight timescales and deadlines. Ability to work independently and manage priorities in a dynamic environment. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Dec 06, 2025
Contractor
We are seeking a highly skilled contractor to perform threat modelling and assessment activities across complex IT and telecommunications infrastructure. This role will be part of a small team whose function will be to identify risks across multiple and complex environments over a six-month engagement. Key Responsibilities: Conduct comprehensive threat modelling and risk assessments on diverse IT and telecoms infrastructure. Collaborate with architecture and engineering teams to identify vulnerabilities and recommend mitigations. Develop threat models using a pre-defined methodology. Contribute to and produce clear, actionable reports and briefings for technical and non-technical stakeholders. Essential Skills & Experience Proven experience in threat modelling and security assessment of complex infrastructures. Knowledge of secure design principles and architecture reviews. Strong background in cybersecurity, ideally with exposure to telecoms environments. Background in operational security (Intelligence, Threat Hunting or Red Team) Familiarity with threat modelling frameworks, (MITRE ATT&CK, STRIDE, PASTA etc) Ability to drive work to tight timescales and deadlines. Ability to work independently and manage priorities in a dynamic environment. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Candidates that our clients are looking for must have a strong academic background typically with a first class degree or PhD in a numerate subject such as physics, engineering or maths. We look for candidates with the aptitude to learn quickly and take on our customers most challenging problems. We help our staff develop the skills they need through on-the-job training coupled with readily available support and guidance The Candidate will: be self-motivating, capable of working independently have a good (1st/2.1) undergraduate degree or a PhD in a numerate discipline have a strong academic background typically including A 's in A-level Maths and Physics have strong verbal and written presentation skills have software development experience, preferably in C/C++. The candidate will be responsible for: developing software for cyber security systems developing novel signal, image, or data processing applications developing solutions in C/C++, HTML, Typescript/Javascript, Python, and Rust providing support and training to our customers in using the software. Excellent benefits package. Background security check will be required before working on site.
Dec 06, 2025
Full time
Candidates that our clients are looking for must have a strong academic background typically with a first class degree or PhD in a numerate subject such as physics, engineering or maths. We look for candidates with the aptitude to learn quickly and take on our customers most challenging problems. We help our staff develop the skills they need through on-the-job training coupled with readily available support and guidance The Candidate will: be self-motivating, capable of working independently have a good (1st/2.1) undergraduate degree or a PhD in a numerate discipline have a strong academic background typically including A 's in A-level Maths and Physics have strong verbal and written presentation skills have software development experience, preferably in C/C++. The candidate will be responsible for: developing software for cyber security systems developing novel signal, image, or data processing applications developing solutions in C/C++, HTML, Typescript/Javascript, Python, and Rust providing support and training to our customers in using the software. Excellent benefits package. Background security check will be required before working on site.
IAM Engineer II Location: London (City) - (4 days office/1 remote) Salary: 85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver life cycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to 85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Dec 06, 2025
Full time
IAM Engineer II Location: London (City) - (4 days office/1 remote) Salary: 85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver life cycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to 85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
OT/ICS Cyber Security Consultant 80% Remote / 20% Client Site UK-Wide We re looking for a hands-on OT/ICS Cyber Security Engineer to join a dynamic team tackling real-world industrial cyber challenges. This isn t a typical desk job you ll lead and support red team activities (penetration testing, adversary simulation, resilience validation) while contributing to blue team functions like incident response, risk assessment, security monitoring, and OT solution deployment. You ll work on live and upcoming projects, collaborating with internal teams and partners, creating attack scenarios, validating security controls, and helping improve overall OT cyber resilience. What we need from you: Practical experience in offensive security (pen testing, vulnerability assessment, adversary simulation) Knowledge of OT/ICS environments (SCADA, PLCs, RTUs) and IT/OT interfaces Nice to have: GICSP, OSCP/GPEN/CREST CRT, DFIR exposure, offensive tools experience (Nessus, Metasploit, MITRE ATT&CK for ICS), and physical security assessments aligned with NIS/NPSA Why this role? 80% remote, 20% on client sites across the UK Work with a team that values passion, collaboration, and hands-on OT cyber expertise Be part of projects that truly make a difference to industrial cyber resilience
Dec 06, 2025
Full time
OT/ICS Cyber Security Consultant 80% Remote / 20% Client Site UK-Wide We re looking for a hands-on OT/ICS Cyber Security Engineer to join a dynamic team tackling real-world industrial cyber challenges. This isn t a typical desk job you ll lead and support red team activities (penetration testing, adversary simulation, resilience validation) while contributing to blue team functions like incident response, risk assessment, security monitoring, and OT solution deployment. You ll work on live and upcoming projects, collaborating with internal teams and partners, creating attack scenarios, validating security controls, and helping improve overall OT cyber resilience. What we need from you: Practical experience in offensive security (pen testing, vulnerability assessment, adversary simulation) Knowledge of OT/ICS environments (SCADA, PLCs, RTUs) and IT/OT interfaces Nice to have: GICSP, OSCP/GPEN/CREST CRT, DFIR exposure, offensive tools experience (Nessus, Metasploit, MITRE ATT&CK for ICS), and physical security assessments aligned with NIS/NPSA Why this role? 80% remote, 20% on client sites across the UK Work with a team that values passion, collaboration, and hands-on OT cyber expertise Be part of projects that truly make a difference to industrial cyber resilience
We are currently looking for bright students studying a computer related degree to join our close-knit technical team. This diverse role will give you a hands on taster into several different areas of the tech industry. Ideally the candidate would have a keen interest in two or more of the below areas: SQL Server Database Administration Cyber Security & Networks Computer Hardware Personal and Enterprise Windows & Server Administration You will be encouraged to actively participate in the designing, maintaining and upgrading of services that are critical to the NHS and many healthcare organisations around the world. If you enjoy solving technical problems, have an interest in technology and thrive in a fast-paced environment then this role is for you. Requirements Currently studying a computer related degree Minimum ABB/AAC at A-level including either Maths or IT Benefits We have lots of fantastic benefits here at TPP. These include: Fantastic holiday entitlement Regular social events Opportunities to travel internationally Life insurance BUPA Health, Dental and Travel cover £300 birthday meal allowance JBRP1_UKTJ
Dec 06, 2025
Full time
We are currently looking for bright students studying a computer related degree to join our close-knit technical team. This diverse role will give you a hands on taster into several different areas of the tech industry. Ideally the candidate would have a keen interest in two or more of the below areas: SQL Server Database Administration Cyber Security & Networks Computer Hardware Personal and Enterprise Windows & Server Administration You will be encouraged to actively participate in the designing, maintaining and upgrading of services that are critical to the NHS and many healthcare organisations around the world. If you enjoy solving technical problems, have an interest in technology and thrive in a fast-paced environment then this role is for you. Requirements Currently studying a computer related degree Minimum ABB/AAC at A-level including either Maths or IT Benefits We have lots of fantastic benefits here at TPP. These include: Fantastic holiday entitlement Regular social events Opportunities to travel internationally Life insurance BUPA Health, Dental and Travel cover £300 birthday meal allowance JBRP1_UKTJ
Metering Engineer Clearance required: BPSS Interview process: Tech IV Location: Remote with travel at set milestones. Leads site-level technical coordination for metering deployments Participates to site surveys (so will travel a lot at the beginning) and assessments as OT technical expert (instrumentation + IT/OT integration) Strong specialist in metering technologies, instrumentation, and automation Designs and validates connectivity architecture (PLCs, SCADA, gateways, PME) Oversees configuration, commissioning, and interface validation Ensures cybersecurity compliance with the support of the Cyber SME in the central team Drives robust coms integration Manages site-level documentation, change control, and testing Provides support to xxxx local teams Experience in L&S, sustainability solutions and especially Schneider PME & RA is a plus English speaker Reports to Project managers in each Cluster (by Geo) and the lead architect in the central technical team Detailed job description from the client We are seeking a highly skilled and motivated Technical Engineer to lead the design and deployment of industrial utilities metering solutions across xxxx sites. In this pivotal role, you will be responsible for conducting site assessments, selecting appropriate meters, designing installation plans, and integrating metering systems with OT/IT infrastructure. You will also ensure all solutions comply with international standards. By enabling precise monitoring of energy and resources, you will directly contribute to THE CLIENT's sustainability objectives and drive operational excellence. Key Responsibilities Perform on-site assessments to evaluate infrastructure and feasibility for installing electricity, gas, diesel, water, and wastewater meters, addressing mechanical, electrical, civil considerations, and challenges like complex or limited pipe runs and retrofits. Analyze engineering documentation including process flow diagrams, P&IDs, and electrical single-line diagrams to identify optimal meter technologies, sizes, and installation points. Provide recommendations for metering solutions that adhere to xxxx's standards, including the appropriate selection of meter type, accuracy class, and communication protocols, based on a thorough assessment and consideration of installation complexities, hazardous areas, fluid characteristics, and physical parameters. Design and implement meter connectivity architecture by integrating with PLCs, gateways, SCADA systems, and Schneider PME platforms. Collaborate with site engineering and OT/IT teams to define network requirements and ensure compliance with cybersecurity and OT boundary controls. Provide technical input to OEMs and installation contractors, supporting procurement and commissioning activities. Document 'as-is' and 'to-be' metering configurations, maintaining traceable records of design decisions and lessons learned. Skills and Experience Degree or equivalent in Electrical, Instrumentation, Automation or Control Engineering. Proven experience in industrial utilities metering (electricity, gas, steam, water, wastewater), ideally within pharmaceutical or process manufacturing environments. Strong understanding of flow measurement principles and metering technologies. Deep knowledge of communication protocols including Modbus TCP/RTU, Ethernet/IP, RS-485, and pulse/analog signals. Familiarity with PLCs, gateways, SCADA systems, and PME integration. Ability to interpret technical drawings and produce structured documentation. Excellent communication and stakeholder engagement skills. Training in Hazardous Area Equipment selection and installation fundamentals. Experience with global projects and working knowledge of both local and international standards (e.g. ATEX, CSA). Skilled in handling large datasets, particularly for energy data verification Expected Deliverables Site Assessment Reports with metering gap analysis. Recommended Meter Specifications and Connectivity Designs. Meter Layout Drawings, Maintenance and Calibration guide. Bill of Materials (BoM) for procurement with clear outline of scopes. Technical validation input for cost estimation and vendor quotations. JBRP1_UKTJ
Dec 06, 2025
Full time
Metering Engineer Clearance required: BPSS Interview process: Tech IV Location: Remote with travel at set milestones. Leads site-level technical coordination for metering deployments Participates to site surveys (so will travel a lot at the beginning) and assessments as OT technical expert (instrumentation + IT/OT integration) Strong specialist in metering technologies, instrumentation, and automation Designs and validates connectivity architecture (PLCs, SCADA, gateways, PME) Oversees configuration, commissioning, and interface validation Ensures cybersecurity compliance with the support of the Cyber SME in the central team Drives robust coms integration Manages site-level documentation, change control, and testing Provides support to xxxx local teams Experience in L&S, sustainability solutions and especially Schneider PME & RA is a plus English speaker Reports to Project managers in each Cluster (by Geo) and the lead architect in the central technical team Detailed job description from the client We are seeking a highly skilled and motivated Technical Engineer to lead the design and deployment of industrial utilities metering solutions across xxxx sites. In this pivotal role, you will be responsible for conducting site assessments, selecting appropriate meters, designing installation plans, and integrating metering systems with OT/IT infrastructure. You will also ensure all solutions comply with international standards. By enabling precise monitoring of energy and resources, you will directly contribute to THE CLIENT's sustainability objectives and drive operational excellence. Key Responsibilities Perform on-site assessments to evaluate infrastructure and feasibility for installing electricity, gas, diesel, water, and wastewater meters, addressing mechanical, electrical, civil considerations, and challenges like complex or limited pipe runs and retrofits. Analyze engineering documentation including process flow diagrams, P&IDs, and electrical single-line diagrams to identify optimal meter technologies, sizes, and installation points. Provide recommendations for metering solutions that adhere to xxxx's standards, including the appropriate selection of meter type, accuracy class, and communication protocols, based on a thorough assessment and consideration of installation complexities, hazardous areas, fluid characteristics, and physical parameters. Design and implement meter connectivity architecture by integrating with PLCs, gateways, SCADA systems, and Schneider PME platforms. Collaborate with site engineering and OT/IT teams to define network requirements and ensure compliance with cybersecurity and OT boundary controls. Provide technical input to OEMs and installation contractors, supporting procurement and commissioning activities. Document 'as-is' and 'to-be' metering configurations, maintaining traceable records of design decisions and lessons learned. Skills and Experience Degree or equivalent in Electrical, Instrumentation, Automation or Control Engineering. Proven experience in industrial utilities metering (electricity, gas, steam, water, wastewater), ideally within pharmaceutical or process manufacturing environments. Strong understanding of flow measurement principles and metering technologies. Deep knowledge of communication protocols including Modbus TCP/RTU, Ethernet/IP, RS-485, and pulse/analog signals. Familiarity with PLCs, gateways, SCADA systems, and PME integration. Ability to interpret technical drawings and produce structured documentation. Excellent communication and stakeholder engagement skills. Training in Hazardous Area Equipment selection and installation fundamentals. Experience with global projects and working knowledge of both local and international standards (e.g. ATEX, CSA). Skilled in handling large datasets, particularly for energy data verification Expected Deliverables Site Assessment Reports with metering gap analysis. Recommended Meter Specifications and Connectivity Designs. Meter Layout Drawings, Maintenance and Calibration guide. Bill of Materials (BoM) for procurement with clear outline of scopes. Technical validation input for cost estimation and vendor quotations. JBRP1_UKTJ
