Hamilton Barnes
Corsham, Wiltshire
Infrastructure Security Engineer - 6 months - SC Cleared - Hybrid We are seeking an experienced Security Engineer to support the delivery of secure infrastructure and systems. This is a hands-on security engineering role, working closely with architecture, engineering, and security assurance teams to design, implement, and assure secure solutions within a complex, highly regulated environment. The role is critical to ensuring systems are secure by design, compliant, and accreditation-ready, supporting delivery across multiple security domains. Key Responsibilities Provide hands-on security engineering Work closely with Project Management, Architecture, Security Assurance, and Engineering teams Design and document secure system and infrastructure solutions Act as the security engineering bridge between delivery, architecture, and assurance Support security accreditation activities, including input into the Security Accreditation Plan Ensure solutions comply with relevant security standards and compliance frameworks Identify security risks and recommend appropriate mitigations Support security governance forums, including security working groups Provide advice on emerging cyber security technologies and associated risk/cost trade-offs Skills & Experience Required Active SC clearance is required Proven experience in a hands-on Security Engineer role within complex enterprise environments Strong experience with Linux/Ubuntu system administration Identity and access control experience including LDAP, RADIUS, and/or TACACS Demonstrable experience managing PKI hierarchies Experience delivering security engineering for virtualised platforms (VMware ESXi/vCenter) Network security experience including Cisco IOS-XE, ASA, VPNs, BGP, VRF/MPLS Experience working with security frameworks such as NIST CSF and ISO 27001 Excellent communication skills and ability to work across multi-disciplinary team Contract Details Duration: 6 months Rate: £525 per day (Inside IR35) Working Model: Hybrid Location : Corsham
Infrastructure Security Engineer - 6 months - SC Cleared - Hybrid We are seeking an experienced Security Engineer to support the delivery of secure infrastructure and systems. This is a hands-on security engineering role, working closely with architecture, engineering, and security assurance teams to design, implement, and assure secure solutions within a complex, highly regulated environment. The role is critical to ensuring systems are secure by design, compliant, and accreditation-ready, supporting delivery across multiple security domains. Key Responsibilities Provide hands-on security engineering Work closely with Project Management, Architecture, Security Assurance, and Engineering teams Design and document secure system and infrastructure solutions Act as the security engineering bridge between delivery, architecture, and assurance Support security accreditation activities, including input into the Security Accreditation Plan Ensure solutions comply with relevant security standards and compliance frameworks Identify security risks and recommend appropriate mitigations Support security governance forums, including security working groups Provide advice on emerging cyber security technologies and associated risk/cost trade-offs Skills & Experience Required Active SC clearance is required Proven experience in a hands-on Security Engineer role within complex enterprise environments Strong experience with Linux/Ubuntu system administration Identity and access control experience including LDAP, RADIUS, and/or TACACS Demonstrable experience managing PKI hierarchies Experience delivering security engineering for virtualised platforms (VMware ESXi/vCenter) Network security experience including Cisco IOS-XE, ASA, VPNs, BGP, VRF/MPLS Experience working with security frameworks such as NIST CSF and ISO 27001 Excellent communication skills and ability to work across multi-disciplinary team Contract Details Duration: 6 months Rate: £525 per day (Inside IR35) Working Model: Hybrid Location : Corsham
Conventus Solutions Ltd
Corsham, Wiltshire
Location: Corsham / Hybrid We have an urgent need for a Security Infrastructure Engineer to support the Security team installing, configuring and updating servers and software components. Who will validate the engineering designs are JSP 453 compliant, providing the supporting evidence and documentation. Working with the Engineering, Design and Security teams to identify security risks, recommending mitigations and solutions. Advise on the benefits of in-service and emergent cyber security technologies, presenting recommended courses of action (CoA) and associated cost/risk analysis. Skills and Experience: Infrastructure Access control consisting of: Ubuntu and/or Linux System administration LDAP Design and Management RADIUS / TACACS configuration Significant, demonstrable, experience in providing security engineering input to the installation, configuration, maintenance, administration, and support of related or similar solutions. Significant demonstrable experience in understanding and administration of PKI Hierarchy. Demonstrable experience of security policy frameworks including, but not limited to, NIST CSF, ISO 27001 and MOD-specific concepts including MoD Secure by Design (SbD). Experience in providing security engineering input to the implementation of: Virtualisation technologies such as VMware ESXi 8 and VCentre 8. Network infrastructure such as CISCO IOS-XE, CISCO ASA, BGP, VRF/MPLS, VPN, QoS. Clear understanding of JSP 604/453 network security engineering compliance Highly Desirable Qualifications: Relevant Cyber Security qualifications such as CompTIA Security+, GIAC Security Essentials Certification, Systems Security Certified Practitioner. Desirable: Device automation using scripting such as Python / PHP Delivering against high pressure timelines and in complex organisations. Writing and analysing technical requirements. Conducting product selections against complex requirements, specifically measuring performance, cost, and time. Working as part of a large technical team. Experience of Cyber Essentials/Cyber Essentials Plus. Experience of Penetration Testing and IT System security. In-date professional registration with organisations such as APMG or CIISec Strong critical thinking and analytical skills to solve problems through innovative and practical solutions. Working within the public sector, preferably Defence Digital (formerly ISS). Delivering accredited secure solutions within the UK Public Sector. Delivering in Agile (SAFE4) and Waterfall projects SCOM. Due to the nature of the work, candidates are required to hold a DV or hold current SC and be willing to undergo UK National Security Vetting procedures to achieve DV clearance.
Location: Corsham / Hybrid We have an urgent need for a Security Infrastructure Engineer to support the Security team installing, configuring and updating servers and software components. Who will validate the engineering designs are JSP 453 compliant, providing the supporting evidence and documentation. Working with the Engineering, Design and Security teams to identify security risks, recommending mitigations and solutions. Advise on the benefits of in-service and emergent cyber security technologies, presenting recommended courses of action (CoA) and associated cost/risk analysis. Skills and Experience: Infrastructure Access control consisting of: Ubuntu and/or Linux System administration LDAP Design and Management RADIUS / TACACS configuration Significant, demonstrable, experience in providing security engineering input to the installation, configuration, maintenance, administration, and support of related or similar solutions. Significant demonstrable experience in understanding and administration of PKI Hierarchy. Demonstrable experience of security policy frameworks including, but not limited to, NIST CSF, ISO 27001 and MOD-specific concepts including MoD Secure by Design (SbD). Experience in providing security engineering input to the implementation of: Virtualisation technologies such as VMware ESXi 8 and VCentre 8. Network infrastructure such as CISCO IOS-XE, CISCO ASA, BGP, VRF/MPLS, VPN, QoS. Clear understanding of JSP 604/453 network security engineering compliance Highly Desirable Qualifications: Relevant Cyber Security qualifications such as CompTIA Security+, GIAC Security Essentials Certification, Systems Security Certified Practitioner. Desirable: Device automation using scripting such as Python / PHP Delivering against high pressure timelines and in complex organisations. Writing and analysing technical requirements. Conducting product selections against complex requirements, specifically measuring performance, cost, and time. Working as part of a large technical team. Experience of Cyber Essentials/Cyber Essentials Plus. Experience of Penetration Testing and IT System security. In-date professional registration with organisations such as APMG or CIISec Strong critical thinking and analytical skills to solve problems through innovative and practical solutions. Working within the public sector, preferably Defence Digital (formerly ISS). Delivering accredited secure solutions within the UK Public Sector. Delivering in Agile (SAFE4) and Waterfall projects SCOM. Due to the nature of the work, candidates are required to hold a DV or hold current SC and be willing to undergo UK National Security Vetting procedures to achieve DV clearance.
InterSystems
Windsor, Berkshire
InterSystems provides the information engines that power some of the world's most important applications. In healthcare, finance, government, and other sectors where lives and livelihoods are at stake, InterSystems has been a strategic technology provider since 1978. InterSystems is a privately held company headquartered in Cambridge, Massachusetts (USA), with offices worldwide, and its software products are used daily by millions of people in more than 100 countries. For more information about InterSystems, the Cache database, Ensemble, HealthShare, and TrakCare. The Hosted Services organization was formed in 2015 to enable the delivery of fully managed and hosted TrakCare and other healthcare related solutions. With five established datacentre locations globally, and several contracts in the pipeline, Hosted Services is expected to continue to grow. To support this growth, we are now looking for a Network Engineer to work within our Hosting Services team to oversee the ongoing delivery, administration and security compliance of the network infrastructure underpinning our hosted services internationally. Responsibilities Provide expert-level support for the network infrastructure that underpins our data center based services. Ensure that network service levels are monitored, reviewed and reported on a regular basis, and that the necessary steps are taken to resolve any issues or negative trends that may be identified. Ensure that network and related activities are completed within agreed timelines and/or in line with agreed schedules. Work with technical architects, project managers and other stakeholders to identify, assess, select and present appropriate network solutions for their needs. Build and deploy agreed solutions within specified timelines. Develop, implement and test disaster recovery and/or network fail-over plans as required. Maintain operational acceptance criteria for network solutions to be supported by the hosting team, and work with the appropriate delivery teams to ensure that these are met before transition into production. Ensure that network and associated service components under management are monitored 24x7 for availability, capacity and performance. Monitor and report on network capacity across all network elements, and pro-actively identify and address potential issues in a timely manner. Ensure that agreed network and access processes are followed and, in particular, that events, incidents and requests are dealt with in a timely manner using the appropriate operational processes and tools. Ensure ongoing compliance with network and related security policies Ensure that network and related solutions are documented, including network diagrams, "as-built" configurations, IP address data, and support procedures e.g. "how to fail-over a connection", etc. Maintain good relationships with other team members, other teams, customers and suppliers in order to maximize team working and collaboration. Continue to look for ways that the service can be improved and, where agreed, lead or assist with the implementation of service improvements. In particular, focus on service automation opportunities in line with the wider hosted services strategy and available tools; continue to optimize performance, efficiency and utilization. Provide consultation to customers and stakeholders on in-life customer solutions. Provide 24x7 support as part of the wider hosting operations team. Required experience & qualifications Minimum of CCNP with routing and switching or security certification Strong knowledge and hands-on experience of configuring, troubleshooting and supporting Cisco and F5 networking equipment in a datacentre environment, specifically Cisco Nexus switches, Cisco ASA firewalls, F5 LTM and DNS load balancers. Strong network design and management skills and experience, including setting up firewall rules, dynamic routing, load balancing, intrusion detection and prevention, setting up remote access and site-to-site VPNs. Strong practical experience of following ITIL processes in a 24x7 operations environment with tight SLA and security compliance requirements. Practical experience with the majority of: Cisco Nexus 7000/9000 series, NX-OS, IOS, VDC, VPC, HSRP, STP, NTP, logging, port channels, layer 3 switching Cisco ASR (100x), IOS, XE, OSFP, BGP, VRF, NTP, logging Cisco ASA, IPS, ASAv, Multi-context IPSEC VPN, Anyconnect SSL VPN, NAT, ACLs F5 LTM, route domains, partitions, pools, nodes, irules, GTM - DNS Management, GLB Desirable skills: Good client and relationship management ability with excellent oral and written communication and presentation skills Able to demonstrate flexibility, motivation as well as excellent problem solving and team working Knowledge of service monitoring and alerting (Nagios, Cacti preferred). Knowledge of configuration management (Puppet preferred). Ability to manage 3rd party vendors e.g. F5, Cisco
InterSystems provides the information engines that power some of the world's most important applications. In healthcare, finance, government, and other sectors where lives and livelihoods are at stake, InterSystems has been a strategic technology provider since 1978. InterSystems is a privately held company headquartered in Cambridge, Massachusetts (USA), with offices worldwide, and its software products are used daily by millions of people in more than 100 countries. For more information about InterSystems, the Cache database, Ensemble, HealthShare, and TrakCare. The Hosted Services organization was formed in 2015 to enable the delivery of fully managed and hosted TrakCare and other healthcare related solutions. With five established datacentre locations globally, and several contracts in the pipeline, Hosted Services is expected to continue to grow. To support this growth, we are now looking for a Network Engineer to work within our Hosting Services team to oversee the ongoing delivery, administration and security compliance of the network infrastructure underpinning our hosted services internationally. Responsibilities Provide expert-level support for the network infrastructure that underpins our data center based services. Ensure that network service levels are monitored, reviewed and reported on a regular basis, and that the necessary steps are taken to resolve any issues or negative trends that may be identified. Ensure that network and related activities are completed within agreed timelines and/or in line with agreed schedules. Work with technical architects, project managers and other stakeholders to identify, assess, select and present appropriate network solutions for their needs. Build and deploy agreed solutions within specified timelines. Develop, implement and test disaster recovery and/or network fail-over plans as required. Maintain operational acceptance criteria for network solutions to be supported by the hosting team, and work with the appropriate delivery teams to ensure that these are met before transition into production. Ensure that network and associated service components under management are monitored 24x7 for availability, capacity and performance. Monitor and report on network capacity across all network elements, and pro-actively identify and address potential issues in a timely manner. Ensure that agreed network and access processes are followed and, in particular, that events, incidents and requests are dealt with in a timely manner using the appropriate operational processes and tools. Ensure ongoing compliance with network and related security policies Ensure that network and related solutions are documented, including network diagrams, "as-built" configurations, IP address data, and support procedures e.g. "how to fail-over a connection", etc. Maintain good relationships with other team members, other teams, customers and suppliers in order to maximize team working and collaboration. Continue to look for ways that the service can be improved and, where agreed, lead or assist with the implementation of service improvements. In particular, focus on service automation opportunities in line with the wider hosted services strategy and available tools; continue to optimize performance, efficiency and utilization. Provide consultation to customers and stakeholders on in-life customer solutions. Provide 24x7 support as part of the wider hosting operations team. Required experience & qualifications Minimum of CCNP with routing and switching or security certification Strong knowledge and hands-on experience of configuring, troubleshooting and supporting Cisco and F5 networking equipment in a datacentre environment, specifically Cisco Nexus switches, Cisco ASA firewalls, F5 LTM and DNS load balancers. Strong network design and management skills and experience, including setting up firewall rules, dynamic routing, load balancing, intrusion detection and prevention, setting up remote access and site-to-site VPNs. Strong practical experience of following ITIL processes in a 24x7 operations environment with tight SLA and security compliance requirements. Practical experience with the majority of: Cisco Nexus 7000/9000 series, NX-OS, IOS, VDC, VPC, HSRP, STP, NTP, logging, port channels, layer 3 switching Cisco ASR (100x), IOS, XE, OSFP, BGP, VRF, NTP, logging Cisco ASA, IPS, ASAv, Multi-context IPSEC VPN, Anyconnect SSL VPN, NAT, ACLs F5 LTM, route domains, partitions, pools, nodes, irules, GTM - DNS Management, GLB Desirable skills: Good client and relationship management ability with excellent oral and written communication and presentation skills Able to demonstrate flexibility, motivation as well as excellent problem solving and team working Knowledge of service monitoring and alerting (Nagios, Cacti preferred). Knowledge of configuration management (Puppet preferred). Ability to manage 3rd party vendors e.g. F5, Cisco
