Our Client: An international fuel supplier, this organisation operates at a pivotal point in the nuclear fuel supply chain, enabling zero-carbon electricity generation for consumers around the world. With over 50 years of experience, sustainability sits at the core of its operations, supported by a global presence that ensures both diversity and security of supply through facilities in Europe, the UK, and the United States. Your Role: You will be responsible for revising, developing, and maturing Threat Intelligence processes, tooling, and policies to strengthen existing services and ensure they remain effective against a constantly evolving external threat landscape. This includes identifying external cyber risks that may impact the organisation, highlighting associated challenges, and driving improvements to the quality, timeliness, and operational effectiveness of intelligence outputs. The role will work closely with internal and external stakeholders, building strong, trusted relationships across the business and with peer organisations within the civil nuclear sector to enable effective Threat Intelligence information sharing. You will coordinate with technical and non-technical teams to ensure relevant threat intelligence informs risk modelling and assessment, supports enterprise decision-making, and is delivered through clearly defined services aligned to an agreed service catalogue. You will integrate Threat Intelligence into core cyber security functions, including threat management, threat modelling, vulnerability management, and cyber incident response, supporting rapid response to emerging and zero-day threats. The role will also contribute to the ongoing maturation of the Threat Defence and Cyber Security Operations strategy, delivering capabilities through a combination of in-house and outsourced services, and collaborating across teams to respond to urgent, business-critical requirements that protect the organisation's operations and assets. This position can offer you up to three days remote working arrangements, depending on workload and significant training can also be provided. Essential Experience: Proven experience delivering a Threat Intelligence function and working closely with Information Security teams, including SOC, CIRT/CERT/CSIRC, incident response, and cyber defence operations. Demonstrable experience supporting the development and delivery of cyber defence strategies, including threat management, metrics, reporting, and intelligence-driven decision making. Strong understanding of cyber threat intelligence sources and collection methods, alongside awareness of geopolitical drivers, state-aligned APT groups, cybercrime organisations, and their capabilities, intent, and tactics. Solid technical knowledge of cyber security concepts and incident management, including threat actors, attack techniques, threat vectors, risk management, and incident response across on-prem, cloud, and enterprise environments. Excellent communication, reporting, and leadership skills, with experience producing high-quality reports, dashboards, and documentation for technical and non-technical stakeholders. Benefits: Bonus scheme Pension contributions up to 16% Hybrid working arrangements offering 3 days remote Companywide employee discounts. Flexible benefits such as additional holidays, life assurance. Next Steps: Due to the sensitive environments, where you will be based for this position, you will need to be able to pass security checks to be considered. To arrange a call to discuss this position in more detail please apply or email your CV to (see below) .
Apr 21, 2026
Full time
Our Client: An international fuel supplier, this organisation operates at a pivotal point in the nuclear fuel supply chain, enabling zero-carbon electricity generation for consumers around the world. With over 50 years of experience, sustainability sits at the core of its operations, supported by a global presence that ensures both diversity and security of supply through facilities in Europe, the UK, and the United States. Your Role: You will be responsible for revising, developing, and maturing Threat Intelligence processes, tooling, and policies to strengthen existing services and ensure they remain effective against a constantly evolving external threat landscape. This includes identifying external cyber risks that may impact the organisation, highlighting associated challenges, and driving improvements to the quality, timeliness, and operational effectiveness of intelligence outputs. The role will work closely with internal and external stakeholders, building strong, trusted relationships across the business and with peer organisations within the civil nuclear sector to enable effective Threat Intelligence information sharing. You will coordinate with technical and non-technical teams to ensure relevant threat intelligence informs risk modelling and assessment, supports enterprise decision-making, and is delivered through clearly defined services aligned to an agreed service catalogue. You will integrate Threat Intelligence into core cyber security functions, including threat management, threat modelling, vulnerability management, and cyber incident response, supporting rapid response to emerging and zero-day threats. The role will also contribute to the ongoing maturation of the Threat Defence and Cyber Security Operations strategy, delivering capabilities through a combination of in-house and outsourced services, and collaborating across teams to respond to urgent, business-critical requirements that protect the organisation's operations and assets. This position can offer you up to three days remote working arrangements, depending on workload and significant training can also be provided. Essential Experience: Proven experience delivering a Threat Intelligence function and working closely with Information Security teams, including SOC, CIRT/CERT/CSIRC, incident response, and cyber defence operations. Demonstrable experience supporting the development and delivery of cyber defence strategies, including threat management, metrics, reporting, and intelligence-driven decision making. Strong understanding of cyber threat intelligence sources and collection methods, alongside awareness of geopolitical drivers, state-aligned APT groups, cybercrime organisations, and their capabilities, intent, and tactics. Solid technical knowledge of cyber security concepts and incident management, including threat actors, attack techniques, threat vectors, risk management, and incident response across on-prem, cloud, and enterprise environments. Excellent communication, reporting, and leadership skills, with experience producing high-quality reports, dashboards, and documentation for technical and non-technical stakeholders. Benefits: Bonus scheme Pension contributions up to 16% Hybrid working arrangements offering 3 days remote Companywide employee discounts. Flexible benefits such as additional holidays, life assurance. Next Steps: Due to the sensitive environments, where you will be based for this position, you will need to be able to pass security checks to be considered. To arrange a call to discuss this position in more detail please apply or email your CV to (see below) .
Role: Cybersecurity Solution Architect Location: Reading, UK Hybrid Contract (Inside IR35) The Role We are looking for an experienced Cybersecurity Solution Architect to design, manage, and strengthen enterprise security capabilities across IT and OT environments. The role requires deep hands-on cybersecurity experience with a strong focus on vulnerability management and risk mitigation. Your responsibilities: Design and define end-to-end cybersecurity solutions aligned with enterprise security standards and business requirements. Lead and support vulnerability identification, assessment, prioritisation, and remediation across large enterprise environments. Manage and mitigate security vulnerabilities across both IT and OT (Operational Technology) landscapes. Work closely with infrastructure, application, and OT teams to embed security controls into architectures and operations. Provide architectural guidance on secure system design, threat modelling, and risk-based decision making. Support continuous improvement of vulnerability management processes and overall security posture. Your Profile Essential skills/knowledge/experience: Minimum 5+ years of hands-on experience in Cybersecurity, preferably in an enterprise environment. Strong experience in enterprise vulnerability management, including identification, tracking, remediation, and reporting. Hands-on experience with Vulnerability Management (VM) tools across IT environments. Proven exposure to OT security and vulnerability management in OT environments. Experience working as a security architect in various security domains Strong understanding of cybersecurity principles, threats, vulnerabilities, and mitigation techniques. Ability to work with cross-functional teams and translate security requirements into practical solutions. Knowledge of Zero Trust security framework Has experience working with Water utility Desirable skills/knowledge/experience: Experience working in regulated or critical infrastructure environments. Familiarity with enterprise security architectures and security control frameworks
Apr 21, 2026
Contractor
Role: Cybersecurity Solution Architect Location: Reading, UK Hybrid Contract (Inside IR35) The Role We are looking for an experienced Cybersecurity Solution Architect to design, manage, and strengthen enterprise security capabilities across IT and OT environments. The role requires deep hands-on cybersecurity experience with a strong focus on vulnerability management and risk mitigation. Your responsibilities: Design and define end-to-end cybersecurity solutions aligned with enterprise security standards and business requirements. Lead and support vulnerability identification, assessment, prioritisation, and remediation across large enterprise environments. Manage and mitigate security vulnerabilities across both IT and OT (Operational Technology) landscapes. Work closely with infrastructure, application, and OT teams to embed security controls into architectures and operations. Provide architectural guidance on secure system design, threat modelling, and risk-based decision making. Support continuous improvement of vulnerability management processes and overall security posture. Your Profile Essential skills/knowledge/experience: Minimum 5+ years of hands-on experience in Cybersecurity, preferably in an enterprise environment. Strong experience in enterprise vulnerability management, including identification, tracking, remediation, and reporting. Hands-on experience with Vulnerability Management (VM) tools across IT environments. Proven exposure to OT security and vulnerability management in OT environments. Experience working as a security architect in various security domains Strong understanding of cybersecurity principles, threats, vulnerabilities, and mitigation techniques. Ability to work with cross-functional teams and translate security requirements into practical solutions. Knowledge of Zero Trust security framework Has experience working with Water utility Desirable skills/knowledge/experience: Experience working in regulated or critical infrastructure environments. Familiarity with enterprise security architectures and security control frameworks
Senior Cyber Security Splunk SME Full Time Permanent Fully onsite - Moorgate, London EC2Y 80-92K basic + benefits (5% pension, 25 days hols, life insurance, medical cover) Are you an experienced Splunk SME looking for a new challenge? Do you have a strong background in Splunk, IAM and SOAR with a high-level understanding of wider Splunk ecosystem, along with Incident Management, Python and Powershell skills? Here at ARM, we are recruiting for a full time permanent Splunk SME for a global IT services and consultancy client of ours. Our client: They're a leading business with a global reach that empowers local teams, and they undertake hugely exciting work that is genuinely changing the world. Their advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. They're a rapidly growing, people-first technology organisation and part of a $1B global service provider delivering end-to-end IT Outsourcing (ITO) and Cyber Defence services to clients across the UK and beyond. Within their Security Practice, they provide a range of services including Managed Detection and Response (MDR), Vulnerability Management, Penetration Testing, Incident Response, and consultancy led Security Advisory services. You'll be joining a team that values learning, celebrates innovation, and supports your career journey every step of the way. The Opportunity: We are looking for a skilled Splunk Specialist to deliver end-to-end Splunk engagements, helping clients build and enhance their security monitoring capabilities. You will lead the full project lifecycle, from requirements gathering and stakeholder engagement through to data onboarding, alert development, and dashboard creation, ensuring solutions are aligned to both business and security objectives. You will bring strong hands-on experience with Splunk Enterprise Security and a proven track record in delivering cybersecurity projects. This includes designing and implementing detection use cases, tuning alerts, and developing dashboards that provide clear, actionable insights for security operations teams. Experience with SOAR and UEBA technologies is advantageous but not essential. This role suits someone who enjoys working in a client-facing environment, solving complex challenges, and contributing to the ongoing evolution of modern Security Operations Centres. What You'll Be Doing: Design, build, and continuously enhance detection capabilities within Splunk across Linux and Windows environments, including log onboarding, normalisation, and enrichment Develop and maintain high-quality detection content such as correlation searches and risk-based alerting within Splunk Enterprise Security Write and optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage of tactics, techniques, and procedures Work with the wider Splunk ecosystem, including tools like TrackMe, and contribute to automation and orchestration initiatives (including exposure to SOAR where applicable) Leverage scripting languages such as Python and PowerShell to automate detection logic, enrich data, and integrate with security workflows Provide mentorship and technical guidance to junior engineers, particularly on Splunk backend activities such as data ingestion, parsing, indexing, and troubleshooting Collaborate closely with SOC analysts, incident responders, and global engineering teams to improve detection and response capabilities Apply strong analytical and problem-solving skills to translate threat intelligence into actionable detection use cases and continuously improve security operations What We're Looking For: Essential: Experience working on multiple projects with broad scope, ambiguity, and a high degree of difficulty Demonstrable proficiency across a wide range of IT and cybersecurity technologies Strong knowledge of key cybersecurity domains, including Identity and Access Management and Incident Management High-level analytical ability to solve unusual and complex problems Ability to maintain up-to-date working knowledge of cybersecurity principles and best practices Experience in senior stakeholder management and providing clear, relevant management reporting, professional communication - written and verbal. Eligibility to work in the UK. Desirable: Experience in technology projects such as cyber infrastructure implementation or replacement initiatives Understanding of global program structures, launch plans, timing, and ownership Ability to coach and mentor team members through knowledge transfer and constructive feedback Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Apr 21, 2026
Full time
Senior Cyber Security Splunk SME Full Time Permanent Fully onsite - Moorgate, London EC2Y 80-92K basic + benefits (5% pension, 25 days hols, life insurance, medical cover) Are you an experienced Splunk SME looking for a new challenge? Do you have a strong background in Splunk, IAM and SOAR with a high-level understanding of wider Splunk ecosystem, along with Incident Management, Python and Powershell skills? Here at ARM, we are recruiting for a full time permanent Splunk SME for a global IT services and consultancy client of ours. Our client: They're a leading business with a global reach that empowers local teams, and they undertake hugely exciting work that is genuinely changing the world. Their advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. They're a rapidly growing, people-first technology organisation and part of a $1B global service provider delivering end-to-end IT Outsourcing (ITO) and Cyber Defence services to clients across the UK and beyond. Within their Security Practice, they provide a range of services including Managed Detection and Response (MDR), Vulnerability Management, Penetration Testing, Incident Response, and consultancy led Security Advisory services. You'll be joining a team that values learning, celebrates innovation, and supports your career journey every step of the way. The Opportunity: We are looking for a skilled Splunk Specialist to deliver end-to-end Splunk engagements, helping clients build and enhance their security monitoring capabilities. You will lead the full project lifecycle, from requirements gathering and stakeholder engagement through to data onboarding, alert development, and dashboard creation, ensuring solutions are aligned to both business and security objectives. You will bring strong hands-on experience with Splunk Enterprise Security and a proven track record in delivering cybersecurity projects. This includes designing and implementing detection use cases, tuning alerts, and developing dashboards that provide clear, actionable insights for security operations teams. Experience with SOAR and UEBA technologies is advantageous but not essential. This role suits someone who enjoys working in a client-facing environment, solving complex challenges, and contributing to the ongoing evolution of modern Security Operations Centres. What You'll Be Doing: Design, build, and continuously enhance detection capabilities within Splunk across Linux and Windows environments, including log onboarding, normalisation, and enrichment Develop and maintain high-quality detection content such as correlation searches and risk-based alerting within Splunk Enterprise Security Write and optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage of tactics, techniques, and procedures Work with the wider Splunk ecosystem, including tools like TrackMe, and contribute to automation and orchestration initiatives (including exposure to SOAR where applicable) Leverage scripting languages such as Python and PowerShell to automate detection logic, enrich data, and integrate with security workflows Provide mentorship and technical guidance to junior engineers, particularly on Splunk backend activities such as data ingestion, parsing, indexing, and troubleshooting Collaborate closely with SOC analysts, incident responders, and global engineering teams to improve detection and response capabilities Apply strong analytical and problem-solving skills to translate threat intelligence into actionable detection use cases and continuously improve security operations What We're Looking For: Essential: Experience working on multiple projects with broad scope, ambiguity, and a high degree of difficulty Demonstrable proficiency across a wide range of IT and cybersecurity technologies Strong knowledge of key cybersecurity domains, including Identity and Access Management and Incident Management High-level analytical ability to solve unusual and complex problems Ability to maintain up-to-date working knowledge of cybersecurity principles and best practices Experience in senior stakeholder management and providing clear, relevant management reporting, professional communication - written and verbal. Eligibility to work in the UK. Desirable: Experience in technology projects such as cyber infrastructure implementation or replacement initiatives Understanding of global program structures, launch plans, timing, and ownership Ability to coach and mentor team members through knowledge transfer and constructive feedback Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
We are recruiting for Cyber Security Lead for A leading manufacturing business to take ownership of its security and compliance agenda. This is a high impact, hand on role where you will shape and mature the organisation's cyber security posture, with a clear road map to achieve: Cyber Essentials - Cyber Essentials Plus - ISO 27001 You'll be the go-to expert for security, working across infrastructure, operations, and leadership to embed best practice in a live 24/7 production environment. The Role You will take ownership of cyber security across the organisation, combining hands-on technical delivery with strategic oversight. Key Responsibilities Lead delivery of Cyber Essentials, CE+ and ISO 27001 certification Assess current environment, identifying risks, vulnerabilities, and gaps Implement security improvements across infrastructure and systems Embed security into BAU IT operations and change processes Work closely with infrastructure, support, and third-party providers Deliver security awareness and upskilling across the business Engage with customers and stakeholders on security requirements Monitor and respond to the evolving threat landscape Experience This role suits someone who can operate as a security lead without the luxury of a large team. Strong cyber security background across infrastructure and systems environments Experience delivering or supporting Cyber Essentials/ISO 27001 Knowledge of: Identity & access management (Entra ID, MFA, Conditional Access) Endpoint & network security (EDR/MDR, Firewalls) Vulnerability management & patching Incident response processes Ability to translate technical risk into business impact Key Traits Hands-on and pragmatic Comfortable working in a fast-paced, high-pressure environment Strong stakeholder engagement skills (technical & non-technical) Proactive mindset with a focus on continuous improvement Able to balance security vs operational reality Desirable: Exposure to offensive security/"hacker mindset" Experience in regulated sectors (manufacturing, aerospace, defence) Relevant certifications (CISSP, CISM, Microsoft Security, etc.) Why This Role? Opportunity to build and shape security from the ground up Exposure to end-to-end security ownership Hybrid Working At Gleeson Recruitment Group, we embrace inclusivity and welcome applicants of all backgrounds, experiences, and abilities. We are proud to be a disability confident employer. By applying you will be registered as a candidate with Gleeson Recruitment Limited. Our Privacy Policy is available on our website and explains how we will use your data.
Apr 21, 2026
Full time
We are recruiting for Cyber Security Lead for A leading manufacturing business to take ownership of its security and compliance agenda. This is a high impact, hand on role where you will shape and mature the organisation's cyber security posture, with a clear road map to achieve: Cyber Essentials - Cyber Essentials Plus - ISO 27001 You'll be the go-to expert for security, working across infrastructure, operations, and leadership to embed best practice in a live 24/7 production environment. The Role You will take ownership of cyber security across the organisation, combining hands-on technical delivery with strategic oversight. Key Responsibilities Lead delivery of Cyber Essentials, CE+ and ISO 27001 certification Assess current environment, identifying risks, vulnerabilities, and gaps Implement security improvements across infrastructure and systems Embed security into BAU IT operations and change processes Work closely with infrastructure, support, and third-party providers Deliver security awareness and upskilling across the business Engage with customers and stakeholders on security requirements Monitor and respond to the evolving threat landscape Experience This role suits someone who can operate as a security lead without the luxury of a large team. Strong cyber security background across infrastructure and systems environments Experience delivering or supporting Cyber Essentials/ISO 27001 Knowledge of: Identity & access management (Entra ID, MFA, Conditional Access) Endpoint & network security (EDR/MDR, Firewalls) Vulnerability management & patching Incident response processes Ability to translate technical risk into business impact Key Traits Hands-on and pragmatic Comfortable working in a fast-paced, high-pressure environment Strong stakeholder engagement skills (technical & non-technical) Proactive mindset with a focus on continuous improvement Able to balance security vs operational reality Desirable: Exposure to offensive security/"hacker mindset" Experience in regulated sectors (manufacturing, aerospace, defence) Relevant certifications (CISSP, CISM, Microsoft Security, etc.) Why This Role? Opportunity to build and shape security from the ground up Exposure to end-to-end security ownership Hybrid Working At Gleeson Recruitment Group, we embrace inclusivity and welcome applicants of all backgrounds, experiences, and abilities. We are proud to be a disability confident employer. By applying you will be registered as a candidate with Gleeson Recruitment Limited. Our Privacy Policy is available on our website and explains how we will use your data.
Senior Cyber Security Splunk SME Full Time Permanent Fully onsite - Moorgate, London EC2Y £80-92K basic + benefits (5% pension, 25 days hols, life insurance, medical cover) Are you an experienced Splunk SME looking for a new challenge? Do you have a strong background in Splunk, IAM and SOAR with a high-level understanding of wider Splunk ecosystem, along with Incident Management, Python and Powershell skills? Here at ARM, we are recruiting for a full time permanent Splunk SME for a global IT services and consultancy client of ours. Our client: They're a leading business with a global reach that empowers local teams, and they undertake hugely exciting work that is genuinely changing the world. Their advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. They're a rapidly growing, people-first technology organisation and part of a $1B global service provider delivering end-to-end IT Outsourcing (ITO) and Cyber Defence services to clients across the UK and beyond. Within their Security Practice, they provide a range of services including Managed Detection and Response (MDR), Vulnerability Management, Penetration Testing, Incident Response, and consultancy led Security Advisory services. You'll be joining a team that values learning, celebrates innovation, and supports your career journey every step of the way. The Opportunity: We are looking for a skilled Splunk Specialist to deliver end-to-end Splunk engagements, helping clients build and enhance their security monitoring capabilities. You will lead the full project life cycle, from requirements gathering and stakeholder engagement through to data onboarding, alert development, and dashboard creation, ensuring solutions are aligned to both business and security objectives. You will bring strong hands-on experience with Splunk Enterprise Security and a proven track record in delivering cybersecurity projects. This includes designing and implementing detection use cases, tuning alerts, and developing dashboards that provide clear, actionable insights for security operations teams. Experience with SOAR and UEBA technologies is advantageous but not essential. This role suits someone who enjoys working in a client-facing environment, solving complex challenges, and contributing to the ongoing evolution of modern Security Operations Centres. What You'll Be Doing: Design, build, and continuously enhance detection capabilities within Splunk across Linux and Windows environments, including log onboarding, normalisation, and enrichment Develop and maintain high-quality detection content such as correlation searches and risk-based alerting within Splunk Enterprise Security Write and optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage of tactics, techniques, and procedures Work with the wider Splunk ecosystem, including tools like TrackMe, and contribute to automation and orchestration initiatives (including exposure to SOAR where applicable) Leverage Scripting languages such as Python and PowerShell to automate detection logic, enrich data, and integrate with security workflows Provide mentorship and technical guidance to junior engineers, particularly on Splunk Back End activities such as data ingestion, parsing, indexing, and troubleshooting Collaborate closely with SOC analysts, incident responders, and global engineering teams to improve detection and response capabilities Apply strong analytical and problem-solving skills to translate threat intelligence into actionable detection use cases and continuously improve security operations What We're Looking For: Essential: Experience working on multiple projects with broad scope, ambiguity, and a high degree of difficulty Demonstrable proficiency across a wide range of IT and cybersecurity technologies Strong knowledge of key cybersecurity domains, including Identity and Access Management and Incident Management High-level analytical ability to solve unusual and complex problems Ability to maintain up-to-date working knowledge of cybersecurity principles and best practices Experience in senior stakeholder management and providing clear, relevant management reporting, professional communication - written and verbal. Eligibility to work in the UK. Desirable: Experience in technology projects such as cyber infrastructure implementation or replacement initiatives Understanding of global program structures, launch plans, timing, and ownership Ability to coach and mentor team members through knowledge transfer and constructive feedback Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Apr 21, 2026
Full time
Senior Cyber Security Splunk SME Full Time Permanent Fully onsite - Moorgate, London EC2Y £80-92K basic + benefits (5% pension, 25 days hols, life insurance, medical cover) Are you an experienced Splunk SME looking for a new challenge? Do you have a strong background in Splunk, IAM and SOAR with a high-level understanding of wider Splunk ecosystem, along with Incident Management, Python and Powershell skills? Here at ARM, we are recruiting for a full time permanent Splunk SME for a global IT services and consultancy client of ours. Our client: They're a leading business with a global reach that empowers local teams, and they undertake hugely exciting work that is genuinely changing the world. Their advanced portfolio of consulting, applications, business process, cloud, and infrastructure services will allow you to achieve great things by working with brilliant colleagues, and clients, on exciting projects. They're a rapidly growing, people-first technology organisation and part of a $1B global service provider delivering end-to-end IT Outsourcing (ITO) and Cyber Defence services to clients across the UK and beyond. Within their Security Practice, they provide a range of services including Managed Detection and Response (MDR), Vulnerability Management, Penetration Testing, Incident Response, and consultancy led Security Advisory services. You'll be joining a team that values learning, celebrates innovation, and supports your career journey every step of the way. The Opportunity: We are looking for a skilled Splunk Specialist to deliver end-to-end Splunk engagements, helping clients build and enhance their security monitoring capabilities. You will lead the full project life cycle, from requirements gathering and stakeholder engagement through to data onboarding, alert development, and dashboard creation, ensuring solutions are aligned to both business and security objectives. You will bring strong hands-on experience with Splunk Enterprise Security and a proven track record in delivering cybersecurity projects. This includes designing and implementing detection use cases, tuning alerts, and developing dashboards that provide clear, actionable insights for security operations teams. Experience with SOAR and UEBA technologies is advantageous but not essential. This role suits someone who enjoys working in a client-facing environment, solving complex challenges, and contributing to the ongoing evolution of modern Security Operations Centres. What You'll Be Doing: Design, build, and continuously enhance detection capabilities within Splunk across Linux and Windows environments, including log onboarding, normalisation, and enrichment Develop and maintain high-quality detection content such as correlation searches and risk-based alerting within Splunk Enterprise Security Write and optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage of tactics, techniques, and procedures Work with the wider Splunk ecosystem, including tools like TrackMe, and contribute to automation and orchestration initiatives (including exposure to SOAR where applicable) Leverage Scripting languages such as Python and PowerShell to automate detection logic, enrich data, and integrate with security workflows Provide mentorship and technical guidance to junior engineers, particularly on Splunk Back End activities such as data ingestion, parsing, indexing, and troubleshooting Collaborate closely with SOC analysts, incident responders, and global engineering teams to improve detection and response capabilities Apply strong analytical and problem-solving skills to translate threat intelligence into actionable detection use cases and continuously improve security operations What We're Looking For: Essential: Experience working on multiple projects with broad scope, ambiguity, and a high degree of difficulty Demonstrable proficiency across a wide range of IT and cybersecurity technologies Strong knowledge of key cybersecurity domains, including Identity and Access Management and Incident Management High-level analytical ability to solve unusual and complex problems Ability to maintain up-to-date working knowledge of cybersecurity principles and best practices Experience in senior stakeholder management and providing clear, relevant management reporting, professional communication - written and verbal. Eligibility to work in the UK. Desirable: Experience in technology projects such as cyber infrastructure implementation or replacement initiatives Understanding of global program structures, launch plans, timing, and ownership Ability to coach and mentor team members through knowledge transfer and constructive feedback Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Senior IT Support Engineer We are seeking a Senior IT Support Engineer with deep Microsoft ecosystem expertise and strong infrastructure support and operations experience to lead on infrastructure management, systems optimisation, and cyber security maturity. This role combines hands-on senior-level support, infrastructure ownership, and security leadership, ensuring secure, resilient, and high-performing IT services across the organisation. You will act as a technical escalation point, a Microsoft subject matter expert, and a key contributor to our strategic digital roadmap. Key Responsibilities Systems, Infrastructure & Support Operations Provide senior-level technical support and escalation across Microsoft-based infrastructure, acting as the final point of resolution. Lead infrastructure management, integration, automation, and optimisation, ensuring high availability and performance. Own and maintain core Microsoft platforms, including Microsoft 365, Entra ID (Azure AD), Intune, Exchange, and endpoint environments. Recommend and implement technologies that enhance resilience, security, scalability, and user experience. Maintain high standards of documentation, configuration management, change control, and service continuity. Support and mentor junior engineers, raising overall support capability and operational maturity. Work closely with stakeholders to translate business requirements into robust technical solutions. Microsoft Technologies Expertise Act as the organisation's subject matter expert for Microsoft technologies, including: Microsoft 365 administration and support Identity and access management (Entra ID / IAM) Endpoint management and device compliance via Intune Defender XDR and Microsoft security tooling Lead troubleshooting and optimisation of hybrid environments, including on-premise and cloud-integrated systems. Cyber Security & Infrastructure Protection Develop and deliver the organisation's cybersecurity and infrastructure protection roadmap, aligned with standards such as Cyber Essentials and Cyber Essentials Plus. Manage and optimise security platforms covering: Endpoint protection Identity protection Defender XDR Conditional access and device compliance Lead vulnerability assessments, threat modelling, incident response planning, and recovery testing. Strengthen information governance, data protection, and secure configuration baselines. Own security-focused change control, coordinate penetration testing, and manage remediation activity. Essential Skills & Experience Strong Microsoft support and administration background, with proven experience supporting complex, enterprise Microsoft environments. In-depth knowledge of Microsoft 365 security and management tools, including Defender XDR, Intune, IAM, and compliance features. Solid infrastructure support experience, including server, endpoint, identity, and cloud-integrated systems. Experience leading or contributing to Cyber Essentials or similar security frameworks. Excellent communication skills with the ability to explain complex technical issues to non-technical stakeholders. Proven ability to operate effectively in a hands-on senior support and infrastructure role.
Apr 21, 2026
Full time
Senior IT Support Engineer We are seeking a Senior IT Support Engineer with deep Microsoft ecosystem expertise and strong infrastructure support and operations experience to lead on infrastructure management, systems optimisation, and cyber security maturity. This role combines hands-on senior-level support, infrastructure ownership, and security leadership, ensuring secure, resilient, and high-performing IT services across the organisation. You will act as a technical escalation point, a Microsoft subject matter expert, and a key contributor to our strategic digital roadmap. Key Responsibilities Systems, Infrastructure & Support Operations Provide senior-level technical support and escalation across Microsoft-based infrastructure, acting as the final point of resolution. Lead infrastructure management, integration, automation, and optimisation, ensuring high availability and performance. Own and maintain core Microsoft platforms, including Microsoft 365, Entra ID (Azure AD), Intune, Exchange, and endpoint environments. Recommend and implement technologies that enhance resilience, security, scalability, and user experience. Maintain high standards of documentation, configuration management, change control, and service continuity. Support and mentor junior engineers, raising overall support capability and operational maturity. Work closely with stakeholders to translate business requirements into robust technical solutions. Microsoft Technologies Expertise Act as the organisation's subject matter expert for Microsoft technologies, including: Microsoft 365 administration and support Identity and access management (Entra ID / IAM) Endpoint management and device compliance via Intune Defender XDR and Microsoft security tooling Lead troubleshooting and optimisation of hybrid environments, including on-premise and cloud-integrated systems. Cyber Security & Infrastructure Protection Develop and deliver the organisation's cybersecurity and infrastructure protection roadmap, aligned with standards such as Cyber Essentials and Cyber Essentials Plus. Manage and optimise security platforms covering: Endpoint protection Identity protection Defender XDR Conditional access and device compliance Lead vulnerability assessments, threat modelling, incident response planning, and recovery testing. Strengthen information governance, data protection, and secure configuration baselines. Own security-focused change control, coordinate penetration testing, and manage remediation activity. Essential Skills & Experience Strong Microsoft support and administration background, with proven experience supporting complex, enterprise Microsoft environments. In-depth knowledge of Microsoft 365 security and management tools, including Defender XDR, Intune, IAM, and compliance features. Solid infrastructure support experience, including server, endpoint, identity, and cloud-integrated systems. Experience leading or contributing to Cyber Essentials or similar security frameworks. Excellent communication skills with the ability to explain complex technical issues to non-technical stakeholders. Proven ability to operate effectively in a hands-on senior support and infrastructure role.
PRINCIPAL CYBERSECURITY ENGINEER SC Cleared - UK Only - (Sponsorship is unavailable) you must hold SC Clearance.Provide expert advice on the defences against cyber threats, data breaches, and emerging risks. This includes offering guidance on the selection, design, justification, implementation, and operational management of cybersecurity strategies, technologies, and standards. Contribute to the development and refinement of controls and processes to ensure the safety, confidentiality, integrity, availability, and overall security of data stored on systems. You will be responsible for identifying gaps in existing cybersecurity policies and procedures and, in collaboration with security, network, information governance, and technical leads, developing new measures to address these gaps. KEY RESPONSIBILITIES: You will work closely with system and service owners, as well as internal and external stakeholders, to design, implement, and enforce appropriate protective and detective security controls, policies, and procedures. The role includes the administration and operational management of security tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud, and Darktrace, including system and model tuning, email module management, and configuration of autonomous response actions. You will be responsible for incident response activities, including triaging security alerts, investigating incidents, coordinating escalation and remediation, and conducting root cause analysis. You must be able to communicate effectively about security incidents and cyber risks to both technical and non-technical stakeholders. The role works closely with the Security Operations Centre (SOC) partner, supporting the assessment and investigation of alerts and contributing to the development and refinement of incident response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting incident, threat, and compliance reporting to stakeholders at all levels, including compiling a monthly SIRO report. Continuous improvement is a core responsibility. You will conduct post-incident reviews, recommend control and process improvements, and contribute to the creation and maintenance of cybersecurity governance documentation. You will also research emerging cyber threats and mitigation strategies and provide reports or presentations to senior stakeholders as required. The role supports cybersecurity training and awareness initiatives, promoting a strong security culture and helping to upskill colleagues in cybersecurity best practices. You will also collaborate with solution architects and project teams to ensure security is embedded into system and application designs, supporting secure architecture and delivery from the outset. Compliance & Framework Alignment: Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies. Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports. Ability to analyse and interpret security events/logs and perform remediation work to address security issues. Desirable: Recognised cybersecurity certifications (e.g., CompTIA Security+, CEH, GIAC, CISSP). Experience with DarkTrace Qualifications Bachelor's degree in Cybersecurity or Computer Science Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Apr 21, 2026
Full time
PRINCIPAL CYBERSECURITY ENGINEER SC Cleared - UK Only - (Sponsorship is unavailable) you must hold SC Clearance.Provide expert advice on the defences against cyber threats, data breaches, and emerging risks. This includes offering guidance on the selection, design, justification, implementation, and operational management of cybersecurity strategies, technologies, and standards. Contribute to the development and refinement of controls and processes to ensure the safety, confidentiality, integrity, availability, and overall security of data stored on systems. You will be responsible for identifying gaps in existing cybersecurity policies and procedures and, in collaboration with security, network, information governance, and technical leads, developing new measures to address these gaps. KEY RESPONSIBILITIES: You will work closely with system and service owners, as well as internal and external stakeholders, to design, implement, and enforce appropriate protective and detective security controls, policies, and procedures. The role includes the administration and operational management of security tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud, and Darktrace, including system and model tuning, email module management, and configuration of autonomous response actions. You will be responsible for incident response activities, including triaging security alerts, investigating incidents, coordinating escalation and remediation, and conducting root cause analysis. You must be able to communicate effectively about security incidents and cyber risks to both technical and non-technical stakeholders. The role works closely with the Security Operations Centre (SOC) partner, supporting the assessment and investigation of alerts and contributing to the development and refinement of incident response plans and playbooks. You will support vulnerability management activities, including vulnerability assessments, annual audits, and penetration testing. This includes preparing and presenting incident, threat, and compliance reporting to stakeholders at all levels, including compiling a monthly SIRO report. Continuous improvement is a core responsibility. You will conduct post-incident reviews, recommend control and process improvements, and contribute to the creation and maintenance of cybersecurity governance documentation. You will also research emerging cyber threats and mitigation strategies and provide reports or presentations to senior stakeholders as required. The role supports cybersecurity training and awareness initiatives, promoting a strong security culture and helping to upskill colleagues in cybersecurity best practices. You will also collaborate with solution architects and project teams to ensure security is embedded into system and application designs, supporting secure architecture and delivery from the outset. Compliance & Framework Alignment: Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon Web Services cloud environments as well as on-premise/virtual Microsoft technologies. Strong analytical, communication, and problem-solving skills, including the ability to produce clear technical and non-technical reports. Ability to analyse and interpret security events/logs and perform remediation work to address security issues. Desirable: Recognised cybersecurity certifications (e.g., CompTIA Security+, CEH, GIAC, CISSP). Experience with DarkTrace Qualifications Bachelor's degree in Cybersecurity or Computer Science Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
ServiceNow SecOps (Security Operations) is the broader suite of security-focused applications designed to connect security and IT teams, automate workflows, and integrate with existing security tools to detect, prioritize, and remediate threats faster. It includes multiple modules such as Security Incident Response (SIR), Vulnerability Response (VR), and Threat Intelligence, among others. Security Incident Response (SIR) is a specific module within SecOps focused solely on managing and resolving security incidents. It provides structured workflows, automation, and playbooks to identify, contain, eradicate, and recover from cyberattacks. While SecOps is the umbrella platform, SIR is one of its core capabilities. Key Differences: * Scope: SecOps: End-to-end security operations platform covering incident response, vulnerability management, threat intelligence, and orchestration. SIR: Specializes in handling security incidents-from detection to resolution. * Primary Use Case: SecOps: Aligns security and IT teams, integrates multiple security tools, and automates cross-domain workflows. SIR: Focuses on cyberattack life cycle management-identification, containment, eradication, recovery, and lessons learned. * Integrations: SecOps: Integrates with SIEM, SOAR, vulnerability scanners, and ITSM for a unified security posture. SIR: Integrates with threat detection tools (eg, Splunk, CrowdStrike) to ingest alerts and trigger incident workflows3. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 10 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.
Apr 21, 2026
Contractor
ServiceNow SecOps (Security Operations) is the broader suite of security-focused applications designed to connect security and IT teams, automate workflows, and integrate with existing security tools to detect, prioritize, and remediate threats faster. It includes multiple modules such as Security Incident Response (SIR), Vulnerability Response (VR), and Threat Intelligence, among others. Security Incident Response (SIR) is a specific module within SecOps focused solely on managing and resolving security incidents. It provides structured workflows, automation, and playbooks to identify, contain, eradicate, and recover from cyberattacks. While SecOps is the umbrella platform, SIR is one of its core capabilities. Key Differences: * Scope: SecOps: End-to-end security operations platform covering incident response, vulnerability management, threat intelligence, and orchestration. SIR: Specializes in handling security incidents-from detection to resolution. * Primary Use Case: SecOps: Aligns security and IT teams, integrates multiple security tools, and automates cross-domain workflows. SIR: Focuses on cyberattack life cycle management-identification, containment, eradication, recovery, and lessons learned. * Integrations: SecOps: Integrates with SIEM, SOAR, vulnerability scanners, and ITSM for a unified security posture. SIR: Integrates with threat detection tools (eg, Splunk, CrowdStrike) to ingest alerts and trigger incident workflows3. Due to the nature and urgency of this post, candidates holding or who have held high level security clearance in the past are most welcome to apply. Please note successful applicants will be required to be security cleared prior to appointment which can take a minimum 10 weeks. LA International is an award-winning partner of choice for many of the world's most influential companies and government organisations. Holding Enhanced Government Security Accreditation, we are recognised as the European market leader in the delivery of Security Cleared talent to organisations that demand the very highest levels of security, compliance and assurance. An award-winning organisation, having secured the prestigious Queens Award for Enterprise: International Trade over multiple years. We are committed to fostering an inclusive, equitable and accessible workplace where everyone feels valued and supported. We welcome applications from all individuals, regardless of background or identity, and we encourage candidates who may not meet every listed requirement to still apply. If you require any adjustments or support during the recruitment process, please let us know and we will work with you to ensure a fair and accessible experience. Please Note: If a high volume of applications is received, only candidates shortlisted will be contacted.
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
Apr 20, 2026
Full time
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
Apr 20, 2026
Full time
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
Head of Cloud Platforms Salary: up to £95,000 Contract: Permanent We are working on behalf of our client to recruit a Head of Cloud Platforms. This is a senior leadership role sitting within the IT department, reporting to the Director of Infrastructure & Operations. The Role You will lead the Cloud Platform and Integration teams, taking ownership of the strategic direction and day-to-day management of cloud platforms (AWS & Azure), DevOps tooling, and systems integration (middleware). You will define the long-term technical roadmap, oversee CI/CD pipelines and infrastructure-as-code (IaC), and ensure platforms are secure, reliable, and cost-effective. Working closely with software development, infrastructure, cyber security, and business teams, you will align platform engineering with the wider digital strategy, drive automation, and act as a technical leader and mentor across their team. Key Responsibilities: Lead and manage the Cloud Platform and Integration teams, ensuring effective collaboration and delivery Define and implement cloud architecture, automation strategies, and CI/CD pipelines across AWS, Azure, and M365 Drive adoption of IaC and automated deployment processes Oversee systems integration architecture, ensuring compatibility and performance across cloud, on-premises, and hybrid environments Lead incident response, disaster recovery planning, and BCP/DR testing Monitor platform performance and establish KPIs and SLAs for availability, security, and uptime Lead security audits, risk assessments, and vulnerability management, working alongside Cyber Security teams Mentor senior technical leads and support their professional development Engage with stakeholders to translate business requirements into technical solutions Evaluate new tools and technologies to improve infrastructure efficiency and scalability Skills and Experience Required: Deep knowledge of AWS (EC2, VPC, RDS, S3, CloudFront, Route 53, IAM, CloudWatch, EKS) and Microsoft Azure Experience managing and delivering within multi-cloud environments Hands-on experience with CI/CD pipelines and GitOps practices (e.g. Jenkins, Bitbucket, Terraform) Experience deploying and maintaining Linux systems (Ubuntu, CentOS, RHEL, Amazon Linux) Knowledge of containerisation technologies including Docker and Kubernetes Experience with middleware technologies, including AWS SQS/SNS and API Gateway Scripting skills in Bash and/or Python Proven experience managing technical teams and providing clear direction Strong communication skills, with the ability to present technical information to varied audiences James Andrews is acting as an employment agency and business in relation to this role. At James Andrews Recruitment Solutions we try to respond to all applications personally, however, due to the high volume of applications this is not always possible. If you have not heard back from us within 72 hours, please assume that your application has been unsuccessful on this occasion. Don't forget our recommendation scheme: Recommend a friend or colleague to us and receive up to £100 each once they have completed 20 days in a role via James Andrews! Terms and conditions apply, contact us for details.
Apr 20, 2026
Full time
Head of Cloud Platforms Salary: up to £95,000 Contract: Permanent We are working on behalf of our client to recruit a Head of Cloud Platforms. This is a senior leadership role sitting within the IT department, reporting to the Director of Infrastructure & Operations. The Role You will lead the Cloud Platform and Integration teams, taking ownership of the strategic direction and day-to-day management of cloud platforms (AWS & Azure), DevOps tooling, and systems integration (middleware). You will define the long-term technical roadmap, oversee CI/CD pipelines and infrastructure-as-code (IaC), and ensure platforms are secure, reliable, and cost-effective. Working closely with software development, infrastructure, cyber security, and business teams, you will align platform engineering with the wider digital strategy, drive automation, and act as a technical leader and mentor across their team. Key Responsibilities: Lead and manage the Cloud Platform and Integration teams, ensuring effective collaboration and delivery Define and implement cloud architecture, automation strategies, and CI/CD pipelines across AWS, Azure, and M365 Drive adoption of IaC and automated deployment processes Oversee systems integration architecture, ensuring compatibility and performance across cloud, on-premises, and hybrid environments Lead incident response, disaster recovery planning, and BCP/DR testing Monitor platform performance and establish KPIs and SLAs for availability, security, and uptime Lead security audits, risk assessments, and vulnerability management, working alongside Cyber Security teams Mentor senior technical leads and support their professional development Engage with stakeholders to translate business requirements into technical solutions Evaluate new tools and technologies to improve infrastructure efficiency and scalability Skills and Experience Required: Deep knowledge of AWS (EC2, VPC, RDS, S3, CloudFront, Route 53, IAM, CloudWatch, EKS) and Microsoft Azure Experience managing and delivering within multi-cloud environments Hands-on experience with CI/CD pipelines and GitOps practices (e.g. Jenkins, Bitbucket, Terraform) Experience deploying and maintaining Linux systems (Ubuntu, CentOS, RHEL, Amazon Linux) Knowledge of containerisation technologies including Docker and Kubernetes Experience with middleware technologies, including AWS SQS/SNS and API Gateway Scripting skills in Bash and/or Python Proven experience managing technical teams and providing clear direction Strong communication skills, with the ability to present technical information to varied audiences James Andrews is acting as an employment agency and business in relation to this role. At James Andrews Recruitment Solutions we try to respond to all applications personally, however, due to the high volume of applications this is not always possible. If you have not heard back from us within 72 hours, please assume that your application has been unsuccessful on this occasion. Don't forget our recommendation scheme: Recommend a friend or colleague to us and receive up to £100 each once they have completed 20 days in a role via James Andrews! Terms and conditions apply, contact us for details.
Senior IT Support Engineer (Cybersecurity focus) required to support, manage, and enhance my clients IT infrastructure while maintaining a strong cybersecurity posture. The role combines hands-on systems engineering with leadership in security, compliance, and technical projects, working closely with stakeholders across the company. Key Responsibilities Lead the support, optimisation, and integration of enterprise IT systems. Develop and deliver cybersecurity initiatives, including Cyber Essentials certification. Manage security platforms such as identity management and endpoint protection tools. Conduct vulnerability management, penetration testing, and incident response planning. Drive technical projects from planning through to delivery and review. Contribute to IT strategy, standards, documentation, and change control processes. Support continuous improvement and adoption of best-practice frameworks (ITIL, Prince2). Essential Skills & Experience Proven experience in cybersecurity engineering. Strong knowledge of enterprise and cloud platforms, particularly Microsoft 365 (Defender, Intune, IAM, Compliance). Demonstrable project management experience ideally (eg Prince2). Experience with compliance frameworks such as Cyber Essentials and audit processes. ITIL qualification or experience working within the ITIL framework. Excellent communication skills and ability to work collaboratively.
Apr 20, 2026
Full time
Senior IT Support Engineer (Cybersecurity focus) required to support, manage, and enhance my clients IT infrastructure while maintaining a strong cybersecurity posture. The role combines hands-on systems engineering with leadership in security, compliance, and technical projects, working closely with stakeholders across the company. Key Responsibilities Lead the support, optimisation, and integration of enterprise IT systems. Develop and deliver cybersecurity initiatives, including Cyber Essentials certification. Manage security platforms such as identity management and endpoint protection tools. Conduct vulnerability management, penetration testing, and incident response planning. Drive technical projects from planning through to delivery and review. Contribute to IT strategy, standards, documentation, and change control processes. Support continuous improvement and adoption of best-practice frameworks (ITIL, Prince2). Essential Skills & Experience Proven experience in cybersecurity engineering. Strong knowledge of enterprise and cloud platforms, particularly Microsoft 365 (Defender, Intune, IAM, Compliance). Demonstrable project management experience ideally (eg Prince2). Experience with compliance frameworks such as Cyber Essentials and audit processes. ITIL qualification or experience working within the ITIL framework. Excellent communication skills and ability to work collaboratively.
Senior Cyber Security Engineer (Contract) Location: London (Hybrid public sector client) Rate: £500 per day (Umbrella) Contract Length: 6 months Start Date: March 2026 We are supporting a key public sector organisation in London who are undergoing a significant uplift in their cyber security capability through the deployment of an outsourced Security Operations Centre (SOC) delivered in partnership with NCC Group, leveraging Splunk and CrowdStrike. Due to an upcoming vacancy within the internal cyber team, they are now seeking a Senior Cyber Security Engineer to provide critical technical leadership, ensuring the organisation maximises the value of its SOC investment. This role will act as the bridge between the internal security function and the external SOC provider, driving optimisation, integration, and capability maturity across the environment. This is a hands-on technical role suited to a seasoned cyber security professional with deep expertise in endpoint security, SIEM engineering, and threat detection engineering, alongside the ability to mentor and uplift existing team capability. Key Responsibilities Lead the deployment, configuration, and ongoing management of CrowdStrike Falcon across the enterprise environment Work closely with the SOC partner to design, build, and optimise Splunk Enterprise Security dashboards, correlation searches, and data models Act as a senior escalation point for high-priority security incidents, supporting containment and remediation using EDR and SIEM tooling Develop and implement SOAR automation workflows to streamline detection and response processes Conduct proactive threat hunting activities using advanced queries and behavioural analytics Support capability uplift by training and mentoring internal team members across CrowdStrike, Splunk, and security analysis techniques Contribute to vulnerability management, penetration testing oversight, and security policy/standards development Required Experience 5+ years experience in Cyber Security Engineering or SOC Tier 3-level roles Strong hands-on expertise with CrowdStrike Falcon (Prevent, Insight, Discover) Advanced Splunk experience, including SPL development and Splunk ES administration Solid understanding of network protocols, cloud environments (AWS/Azure), and the MITRE ATT&CK framework Experience with vulnerability assessment tools (2+ years desirable) Exposure to penetration testing or web application security testing Desirable Certifications Security certifications such as Security+, CySA+, CISSP, GCIH, GCIA, CCSP CrowdStrike certifications (CCFA / CCFR / CCSE highly desirable) Splunk Certified Cybersecurity Defense Engineer (required)
Apr 18, 2026
Contractor
Senior Cyber Security Engineer (Contract) Location: London (Hybrid public sector client) Rate: £500 per day (Umbrella) Contract Length: 6 months Start Date: March 2026 We are supporting a key public sector organisation in London who are undergoing a significant uplift in their cyber security capability through the deployment of an outsourced Security Operations Centre (SOC) delivered in partnership with NCC Group, leveraging Splunk and CrowdStrike. Due to an upcoming vacancy within the internal cyber team, they are now seeking a Senior Cyber Security Engineer to provide critical technical leadership, ensuring the organisation maximises the value of its SOC investment. This role will act as the bridge between the internal security function and the external SOC provider, driving optimisation, integration, and capability maturity across the environment. This is a hands-on technical role suited to a seasoned cyber security professional with deep expertise in endpoint security, SIEM engineering, and threat detection engineering, alongside the ability to mentor and uplift existing team capability. Key Responsibilities Lead the deployment, configuration, and ongoing management of CrowdStrike Falcon across the enterprise environment Work closely with the SOC partner to design, build, and optimise Splunk Enterprise Security dashboards, correlation searches, and data models Act as a senior escalation point for high-priority security incidents, supporting containment and remediation using EDR and SIEM tooling Develop and implement SOAR automation workflows to streamline detection and response processes Conduct proactive threat hunting activities using advanced queries and behavioural analytics Support capability uplift by training and mentoring internal team members across CrowdStrike, Splunk, and security analysis techniques Contribute to vulnerability management, penetration testing oversight, and security policy/standards development Required Experience 5+ years experience in Cyber Security Engineering or SOC Tier 3-level roles Strong hands-on expertise with CrowdStrike Falcon (Prevent, Insight, Discover) Advanced Splunk experience, including SPL development and Splunk ES administration Solid understanding of network protocols, cloud environments (AWS/Azure), and the MITRE ATT&CK framework Experience with vulnerability assessment tools (2+ years desirable) Exposure to penetration testing or web application security testing Desirable Certifications Security certifications such as Security+, CySA+, CISSP, GCIH, GCIA, CCSP CrowdStrike certifications (CCFA / CCFR / CCSE highly desirable) Splunk Certified Cybersecurity Defense Engineer (required)
2nd Line Security Analyst Bath Hybrid working - 2-3 days a week Competitive + Progression into Leadership + A Healthy Training and Development Budget + 25 Days Annual Leave + Bank Holidays + Matched Pension (5-9%) + Hybrid Working Excellent opportunity for a 2nd Line Security Analyst / EUC Security Analyst or similar to join a company offering a career path into leadership, a great benefits package, and a very healthy training and development budget. This company are a market-leading global engineering business going through an exciting period of change and growth. As part of this, they are continuing to invest heavily in their Cyber Security teams globally, making this a great opportunity to join a business where you can make a real impact and progress your career. In this role you will serve as a key escalation point for the 1st Line team, supporting the identification, containment, and remediation of threats across the End User Compute estate. You will investigate issues such as malware, phishing, unauthorised access, and endpoint vulnerabilities, while working closely with wider security and infrastructure teams to support patching, remediation, and secure device configuration. The ideal candidate will have experience in a similar security or EUC-focused support role, with knowledge of endpoint vulnerability remediation, patch management, and Microsoft-based environments. Candidates with exposure to tools such as Intune, SCCM, Qualys, Entra ID, Microsoft Defender, Microsoft 365, and Active Directory will be of particular interest. Any experience supporting Cyber Essentials Plus, ISO 27001, or similar security standards would also be beneficial. This is a fantastic opportunity to join a business offering a very healthy training and development budget, an excellent benefits package, and progression all the way up to Global Team Leadership. The Role: 2nd Line Security Analyst / EUC Security Analyst position Incident response, containment, and remediation across endpoint environments Work closely with 1st and 3rd line teams to resolve and escalate security issues where needed Hybrid working - 2-3 days a week onsite The Person: Experience within a similar security, EUC, or 2nd line support position Good understanding of endpoint security, remediation, and Microsoft environments Exposure to tools such as Intune, SCCM, Qualys, Entra ID, Defender, Microsoft 365, and Active Directory Looking for progression and commutable to Bath Reference Number: BBBH(phone number removed) Rise Technical Recruitment Ltd acts an employment agency for permanent roles and an employment business for temporary roles. The salary advertised is the bracket available for this position. The actual salary paid will be dependent on your level of experience, qualifications and skill set and will be decided by our client, the employer. Rise are not responsible or liable for any hiring decisions made by the end client. We are an equal opportunities company and welcome applications from all suitable candidates.
Apr 18, 2026
Full time
2nd Line Security Analyst Bath Hybrid working - 2-3 days a week Competitive + Progression into Leadership + A Healthy Training and Development Budget + 25 Days Annual Leave + Bank Holidays + Matched Pension (5-9%) + Hybrid Working Excellent opportunity for a 2nd Line Security Analyst / EUC Security Analyst or similar to join a company offering a career path into leadership, a great benefits package, and a very healthy training and development budget. This company are a market-leading global engineering business going through an exciting period of change and growth. As part of this, they are continuing to invest heavily in their Cyber Security teams globally, making this a great opportunity to join a business where you can make a real impact and progress your career. In this role you will serve as a key escalation point for the 1st Line team, supporting the identification, containment, and remediation of threats across the End User Compute estate. You will investigate issues such as malware, phishing, unauthorised access, and endpoint vulnerabilities, while working closely with wider security and infrastructure teams to support patching, remediation, and secure device configuration. The ideal candidate will have experience in a similar security or EUC-focused support role, with knowledge of endpoint vulnerability remediation, patch management, and Microsoft-based environments. Candidates with exposure to tools such as Intune, SCCM, Qualys, Entra ID, Microsoft Defender, Microsoft 365, and Active Directory will be of particular interest. Any experience supporting Cyber Essentials Plus, ISO 27001, or similar security standards would also be beneficial. This is a fantastic opportunity to join a business offering a very healthy training and development budget, an excellent benefits package, and progression all the way up to Global Team Leadership. The Role: 2nd Line Security Analyst / EUC Security Analyst position Incident response, containment, and remediation across endpoint environments Work closely with 1st and 3rd line teams to resolve and escalate security issues where needed Hybrid working - 2-3 days a week onsite The Person: Experience within a similar security, EUC, or 2nd line support position Good understanding of endpoint security, remediation, and Microsoft environments Exposure to tools such as Intune, SCCM, Qualys, Entra ID, Defender, Microsoft 365, and Active Directory Looking for progression and commutable to Bath Reference Number: BBBH(phone number removed) Rise Technical Recruitment Ltd acts an employment agency for permanent roles and an employment business for temporary roles. The salary advertised is the bracket available for this position. The actual salary paid will be dependent on your level of experience, qualifications and skill set and will be decided by our client, the employer. Rise are not responsible or liable for any hiring decisions made by the end client. We are an equal opportunities company and welcome applications from all suitable candidates.
Security Analyst SOC, Tier 2 SOC Analyst to join an award winning managed service provider 24x7 security team. As a Tier 2 Analyst, you will lead the investigation, containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. Taking ownership of complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. You will be involved in • Incident Detection & Response • Threat Intelligence and Analysis • Security Monitoring and Detection Engineering • Compliance, Reporting and Documentation • Vulnerability Management • Collaboration and knowledge sharing This would suit an experienced security analyst who has proved experience working in a busy security department, working in security operations. Strong alert triage, incident response, security monitoring, and threat analysis. Experience handling real-world security incidents and working with SIEM, EDR, or vulnerability management tools. Ideally have a strong bachelor s degree in computer science, Information Security, Cyber Security or related field with any SIEM-specific certification or vendor-specific training. Relevant cybersecurity certifications such as Certified Cloud Security Professional (CCSP) or other relevant security certifications, Security+ (CompTIA), CEH (Certified Ethical Hacker), CISSP, BTL1, BTL2 or others are highly desirable but not essential. Office based in Stoke on Trent, shifts, rota basis of 4 days on working - early's, late's and nights. This is an excellent opportunity for an experienced security analyst ready to take the next step with a chance to mentor junior analysts, deepen your technical expertise, and help shape our evolving security posture in a collaborative, hands-on environment.
Apr 18, 2026
Full time
Security Analyst SOC, Tier 2 SOC Analyst to join an award winning managed service provider 24x7 security team. As a Tier 2 Analyst, you will lead the investigation, containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. Taking ownership of complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. You will be involved in • Incident Detection & Response • Threat Intelligence and Analysis • Security Monitoring and Detection Engineering • Compliance, Reporting and Documentation • Vulnerability Management • Collaboration and knowledge sharing This would suit an experienced security analyst who has proved experience working in a busy security department, working in security operations. Strong alert triage, incident response, security monitoring, and threat analysis. Experience handling real-world security incidents and working with SIEM, EDR, or vulnerability management tools. Ideally have a strong bachelor s degree in computer science, Information Security, Cyber Security or related field with any SIEM-specific certification or vendor-specific training. Relevant cybersecurity certifications such as Certified Cloud Security Professional (CCSP) or other relevant security certifications, Security+ (CompTIA), CEH (Certified Ethical Hacker), CISSP, BTL1, BTL2 or others are highly desirable but not essential. Office based in Stoke on Trent, shifts, rota basis of 4 days on working - early's, late's and nights. This is an excellent opportunity for an experienced security analyst ready to take the next step with a chance to mentor junior analysts, deepen your technical expertise, and help shape our evolving security posture in a collaborative, hands-on environment.
Senior Cyber Security Engineer (Contract) Location: East London (Local Council) Rate: 500 per day (Umbrella) Duration: 6 months Working Pattern: Hybrid - 1-3 days per week onsite (depending on project needs) The Opportunity We are seeking a highly skilled Senior Cyber Security Engineer to support a Local Council in East London. This role is critical in maximising the value of a newly established outsourced Security Operations Centre (SOC) partnership, ensuring effective integration, optimisation, and knowledge transfer across the internal team. Following a recent team departure, this position will provide senior-level technical leadership to enhance security operations, strengthen internal capability, and drive forward cyber resilience. Key Responsibilities Lead deployment, configuration, and optimisation of endpoint protection using CrowdStrike Falcon Collaborate with SOC partner to design and enhance Splunk dashboards, alerts, and data models Act as escalation point for high-severity incidents, driving rapid detection and response Develop SOAR workflows to automate and streamline security operations Conduct proactive threat hunting to identify hidden risks Upskill internal teams in CrowdStrike, Splunk, and security analysis best practices Required Experience 5+ years in Cyber Security Engineering or SOC (Tier 3) roles Strong hands-on expertise with CrowdStrike (Falcon Prevent, Insight, Discover) Advanced Splunk skills, including SPL and Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+, CISSP, GCIH, CCSP) CrowdStrike certifications (e.g. CCFA, CCFR, CCSE) - preferred Splunk Certified Cybersecurity Defense Engineer - required Eden Brown is committed to equality in the workplace and is an equal opportunity employer. Eden Brown is acting as an Employment Business in relation to this vacancy.
Apr 18, 2026
Contractor
Senior Cyber Security Engineer (Contract) Location: East London (Local Council) Rate: 500 per day (Umbrella) Duration: 6 months Working Pattern: Hybrid - 1-3 days per week onsite (depending on project needs) The Opportunity We are seeking a highly skilled Senior Cyber Security Engineer to support a Local Council in East London. This role is critical in maximising the value of a newly established outsourced Security Operations Centre (SOC) partnership, ensuring effective integration, optimisation, and knowledge transfer across the internal team. Following a recent team departure, this position will provide senior-level technical leadership to enhance security operations, strengthen internal capability, and drive forward cyber resilience. Key Responsibilities Lead deployment, configuration, and optimisation of endpoint protection using CrowdStrike Falcon Collaborate with SOC partner to design and enhance Splunk dashboards, alerts, and data models Act as escalation point for high-severity incidents, driving rapid detection and response Develop SOAR workflows to automate and streamline security operations Conduct proactive threat hunting to identify hidden risks Upskill internal teams in CrowdStrike, Splunk, and security analysis best practices Required Experience 5+ years in Cyber Security Engineering or SOC (Tier 3) roles Strong hands-on expertise with CrowdStrike (Falcon Prevent, Insight, Discover) Advanced Splunk skills, including SPL and Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+, CISSP, GCIH, CCSP) CrowdStrike certifications (e.g. CCFA, CCFR, CCSE) - preferred Splunk Certified Cybersecurity Defense Engineer - required Eden Brown is committed to equality in the workplace and is an equal opportunity employer. Eden Brown is acting as an Employment Business in relation to this vacancy.
Senior Cyber Security Engineer (Contract) Hybrid 6-Month Contract Start: ASAP Day Rate: 500p/d inside The Opportunity We're looking for a Senior Cyber Security Engineer to join a forward-thinking public sector environment at a critical point in its cyber maturity journey. With a newly implemented outsourced Security Operations Centre (SOC) powered by Splunk and CrowdStrike , this role is key to maximising both investment and capability. You'll act as the senior technical lead-optimising tooling, strengthening detection and response, and upskilling the internal team. This is a hands-on, high-impact role suited to someone who can hit the ground running and elevate an evolving security function. Key Responsibilities Endpoint Security Leadership: Own deployment, configuration, and optimisation of CrowdStrike Falcon SIEM Optimisation: Partner with the SOC to enhance Splunk dashboards, alerts, and data models Incident Response: Act as escalation point for high-priority incidents, driving rapid containment Threat Hunting: Proactively identify hidden threats using advanced queries and telemetry Automation (SOAR): Build workflows to streamline response and reduce manual effort Capability Building: Upskill internal teams across CrowdStrike, Splunk, and security analysis Required Experience 5+ years in Cyber Security Engineering or SOC (Tier 3 level) Deep hands-on experience with CrowdStrike Falcon (Prevent, Insight, Discover) Strong Splunk expertise, including SPL and Enterprise Security (ES) Solid understanding of: Network protocols Cloud security (AWS/Azure) MITRE ATT&CK framework Additional desirable experience: Vulnerability Assessment tools Penetration Testing / Web Application Testing exposure Security policy and standards development Certifications (Desirable) Cyber Security: CompTIA Security+, Network+, CySA+, GSEC CISSP, GCIH, GCIA, CCSP CrowdStrike (ideally 2+): CCFA (Falcon Administrator) CCFR (Falcon Responder) CCSE (SIEM Engineer) Splunk: Splunk Certified Cybersecurity Defense Engineer (preferred) Why Apply? Shape and optimise a modern SOC capability Work with best-in-class tools (CrowdStrike & Splunk) High-impact role with visibility across the organisation Opportunity to leave a lasting legacy through capability uplift and knowledge transfer If you're a senior cyber specialist who thrives in hands-on, technically challenging environments and enjoys building capability as well as solving problems, this is worth a conversation Eden Brown Synergy is an equal opportunities employer. Eden Brown Limited is a limited company registered in England and Wales with registered number (phone number removed). Our registered address is 5th floor 4 Coleman Street, London, EC2R 5AR, part of nGAGE Specialist Recruitment Limited T/A nGAGE Talent. Please consider the environment before printing this e-mail. This message is intended solely for the addressee and may contain confidential information. If you have received this message in error, please send it back to us, and immediately and permanently delete it. Do not use, copy or disclose the information contained in this message or in any attachment. We take reasonable precautions to ensure no viruses are present in this email but cannot accept responsibility for any loss or damage sustained as a result of computer viruses and the recipient must ensure that the email (and attachments) are virus free.
Apr 18, 2026
Contractor
Senior Cyber Security Engineer (Contract) Hybrid 6-Month Contract Start: ASAP Day Rate: 500p/d inside The Opportunity We're looking for a Senior Cyber Security Engineer to join a forward-thinking public sector environment at a critical point in its cyber maturity journey. With a newly implemented outsourced Security Operations Centre (SOC) powered by Splunk and CrowdStrike , this role is key to maximising both investment and capability. You'll act as the senior technical lead-optimising tooling, strengthening detection and response, and upskilling the internal team. This is a hands-on, high-impact role suited to someone who can hit the ground running and elevate an evolving security function. Key Responsibilities Endpoint Security Leadership: Own deployment, configuration, and optimisation of CrowdStrike Falcon SIEM Optimisation: Partner with the SOC to enhance Splunk dashboards, alerts, and data models Incident Response: Act as escalation point for high-priority incidents, driving rapid containment Threat Hunting: Proactively identify hidden threats using advanced queries and telemetry Automation (SOAR): Build workflows to streamline response and reduce manual effort Capability Building: Upskill internal teams across CrowdStrike, Splunk, and security analysis Required Experience 5+ years in Cyber Security Engineering or SOC (Tier 3 level) Deep hands-on experience with CrowdStrike Falcon (Prevent, Insight, Discover) Strong Splunk expertise, including SPL and Enterprise Security (ES) Solid understanding of: Network protocols Cloud security (AWS/Azure) MITRE ATT&CK framework Additional desirable experience: Vulnerability Assessment tools Penetration Testing / Web Application Testing exposure Security policy and standards development Certifications (Desirable) Cyber Security: CompTIA Security+, Network+, CySA+, GSEC CISSP, GCIH, GCIA, CCSP CrowdStrike (ideally 2+): CCFA (Falcon Administrator) CCFR (Falcon Responder) CCSE (SIEM Engineer) Splunk: Splunk Certified Cybersecurity Defense Engineer (preferred) Why Apply? Shape and optimise a modern SOC capability Work with best-in-class tools (CrowdStrike & Splunk) High-impact role with visibility across the organisation Opportunity to leave a lasting legacy through capability uplift and knowledge transfer If you're a senior cyber specialist who thrives in hands-on, technically challenging environments and enjoys building capability as well as solving problems, this is worth a conversation Eden Brown Synergy is an equal opportunities employer. Eden Brown Limited is a limited company registered in England and Wales with registered number (phone number removed). Our registered address is 5th floor 4 Coleman Street, London, EC2R 5AR, part of nGAGE Specialist Recruitment Limited T/A nGAGE Talent. Please consider the environment before printing this e-mail. This message is intended solely for the addressee and may contain confidential information. If you have received this message in error, please send it back to us, and immediately and permanently delete it. Do not use, copy or disclose the information contained in this message or in any attachment. We take reasonable precautions to ensure no viruses are present in this email but cannot accept responsibility for any loss or damage sustained as a result of computer viruses and the recipient must ensure that the email (and attachments) are virus free.
Director of Technology Infrastructure and Cybersecurity London Status: Permanent Reports to: Chief Technical Officer (CTO) Direct reports: Technology Operations Managers (EMEA/APAC & Americas), Cyber Security Lead, AV Lead Job Purpose The Director of Technology Infrastructure and Cybersecurity leads the strategy, delivery, security, and continuous improvement of the IFRS Foundation's global technology environment, ensuring alignment with corporate objectives. Supporting 350 staff across six countries, the role ensures resilient, secure, and high performing services in a 24x7 operational model. Combining strategic oversight with operational accountability, the Director is responsible for infrastructure, end user computing, AV, cybersecurity, and third party suppliers. The role is central to managing risk, maintaining service continuity, and enabling organisational effectiveness across a distributed global footprint. Operating within a cloud first model, the infrastructure landscape is primarily delivered through platforms such as Microsoft Azure & Microsoft 365. The Team The Director of Infrastructure and Cyber Security is a global role managing the delivery, management and update of Infrastructure and Cyber Security at the Foundation's 6 offices (Beijing, Frankfurt, London, Montreal, San Francisco, and Tokyo). The role works with colleagues from other regions and with the Enterprise Applications Manager and Project Manager - IT Initiatives. The role reports into the CTO for the organisation. Principal accountabilities The Director of Technology Infrastructure & Cybersecurity oversees infrastructure teams and is accountable for core technology services, including infrastructure, digital workplace, AV, and cybersecurity. This role provides strategic and operational leadership across these areas, manages supplier relationships, and works with business leaders and the CTO to shape the organisation's infrastructure and security roadmap. The Director ensures innovation, resilience, risk management, and service continuity in a distributed environment. IFRS prioritises cloud based technology platforms. Drive standardisation across multiple offices while accommodating regional requirements. Develop strategies for managing the cloud infrastructure, digital workplace and security operations, providing technical leadership to optimise the performance and cost base of the services. Operational Excellence (24x7 Global Environment) Ensure high availability and performance of all core systems supporting a 24x7 international operation. Establish and monitor SLAs, KPIs, and operational metrics to maintain service quality. Implement robust monitoring, alerting, and incident management processes. Ensure effective disaster recovery and business continuity capabilities across all locations. Oversee the planning, installation, maintenance and acceptance of new and updated infrastructure, digital workplace and security components and services. Define safety and security procedures to be followed, and delegate tasks at the appropriate level. Service levels: Ensure that the Cloud infrastructure, Digital Workplace and Security operations team meet Service or Operational Level Agreements. Report and present service level information to stakeholders. Review service level information and report to stakeholders, recommending appropriate action. Incident management: Review incidents and breaches of service level agreements. Report on findings and initiate improvement actions. Problem Management: Conduct investigations of significant operational outage and provide recommendations for problem mitigation. Initiate reviews of infrastructure performance to surface & resolve problems and build infrastructure resilience. Ensure effective delivery of technology services across six international offices, considering local regulations, time zones, and operational differences. Build and lead a globally distributed team and/or vendor ecosystem. Foster collaboration between regional stakeholders and technology teams. Identify, assess, and mitigate technology infrastructure risks across all regions. Maintain and continuously improve technology controls in line with organisational risk frameworks and regulatory requirements. Ensure infrastructure and operations meet audit, compliance, and governance standards. Lead infrastructure related input into enterprise risk management processes. Monitoring and reporting: Ensure that operational issues are identified, recorded, monitored and resolved. Provide appropriate status and other reports to specialists, users and managers. Policies, operational procedures and standards: Design and develop operational standards and procedures for cloud infrastructure, digital workplace and security operations management, aligning all operations procedures to service expectations and other quality standards. Cybersecurity Ensure infrastructure is secure by design and aligned with cybersecurity policies. Oversee implementation of security controls including endpoint protection, network security, identity management, and vulnerability management. Ensure proactive threat detection, response, and remediation capabilities. Promote security awareness initiatives across the organisation. Lead the Information Security Group (ISG) comprising of key stakeholders across the Foundation. Incident management: Review and report on incidents and breaches of cybersecurity. Initiate improvement actions. End User Computing & Desktop Services Own the strategy and delivery of end user computing, including desktops, laptops, mobile devices, and collaboration tools. Ensure a consistent, high quality user experience across all offices and remote workers. Drive automation, modern workplace solutions, and device lifecycle management. Automation tools: Investigate and manage the adoption of tools, techniques and processes (including automation) for the management of systems and services. Oversee AV infrastructure supporting global meetings, hybrid working, and events. Ensure reliable, high quality conferencing and collaboration capabilities across all locations. Partner with business stakeholders to continuously enhance user experience in meeting spaces. Develop and manage infrastructure budgets, ensuring cost control and value for money. Optimise resource allocation across internal teams and external partners. Support business cases for infrastructure investments and transformation initiatives. Supplier & Outsourcing Management Manage relationships with outsourced service providers and strategic technology partners. Define, negotiate and monitor contracts, SLAs, and performance outcomes. Ensure suppliers deliver value, innovation, and compliance with organisational standards. Mitigate vendor related risks and avoid over dependency on single providers. Skills and attributes Governance Development of KPIs and Service Level Agreements Project resource allocation Business Relationship Management Policy creation Change Management Asset Management Proven leadership experience in technology infrastructure within an international, multi site organisation. Strong expertise in cloud platforms, enterprise infrastructure, networking, and end user computing. Demonstrated experience managing outsourced services and third party vendors. Deep understanding of technology risk management, cybersecurity principles, and compliance frameworks. Experience supporting 24x7 operations with high availability requirements. Strong stakeholder management and communication skills across global teams. Personal Attributes Strong communication and interpersonal skills. Pragmatic and solutions focused with strong decision making capability. Resilient and calm under pressure in a global operational environment. Collaborative leader who builds trust across technical and non technical stakeholders. Continuous improvement mindset with a focus on service quality and innovation. Ability to balance strategic thinking with hands on operational oversight. Self starting. Qualifications & experience Bachelor's degree in computer science or a related field or equivalent industry experience. Significant experience in technology roles, with proven experience in a senior leadership position covering infrastructure and cybersecurity. Knowledge of Cloud environments specifically Azure. Experience in vendor management and contract negotiation. Excellent problem solving and critical thinking skills. Knowledge of security best practices and industry compliance standards. Knowledge of ITIL based environment. Use of ITSM platforms. Application Closing Date: 24th May 2026
Apr 18, 2026
Full time
Director of Technology Infrastructure and Cybersecurity London Status: Permanent Reports to: Chief Technical Officer (CTO) Direct reports: Technology Operations Managers (EMEA/APAC & Americas), Cyber Security Lead, AV Lead Job Purpose The Director of Technology Infrastructure and Cybersecurity leads the strategy, delivery, security, and continuous improvement of the IFRS Foundation's global technology environment, ensuring alignment with corporate objectives. Supporting 350 staff across six countries, the role ensures resilient, secure, and high performing services in a 24x7 operational model. Combining strategic oversight with operational accountability, the Director is responsible for infrastructure, end user computing, AV, cybersecurity, and third party suppliers. The role is central to managing risk, maintaining service continuity, and enabling organisational effectiveness across a distributed global footprint. Operating within a cloud first model, the infrastructure landscape is primarily delivered through platforms such as Microsoft Azure & Microsoft 365. The Team The Director of Infrastructure and Cyber Security is a global role managing the delivery, management and update of Infrastructure and Cyber Security at the Foundation's 6 offices (Beijing, Frankfurt, London, Montreal, San Francisco, and Tokyo). The role works with colleagues from other regions and with the Enterprise Applications Manager and Project Manager - IT Initiatives. The role reports into the CTO for the organisation. Principal accountabilities The Director of Technology Infrastructure & Cybersecurity oversees infrastructure teams and is accountable for core technology services, including infrastructure, digital workplace, AV, and cybersecurity. This role provides strategic and operational leadership across these areas, manages supplier relationships, and works with business leaders and the CTO to shape the organisation's infrastructure and security roadmap. The Director ensures innovation, resilience, risk management, and service continuity in a distributed environment. IFRS prioritises cloud based technology platforms. Drive standardisation across multiple offices while accommodating regional requirements. Develop strategies for managing the cloud infrastructure, digital workplace and security operations, providing technical leadership to optimise the performance and cost base of the services. Operational Excellence (24x7 Global Environment) Ensure high availability and performance of all core systems supporting a 24x7 international operation. Establish and monitor SLAs, KPIs, and operational metrics to maintain service quality. Implement robust monitoring, alerting, and incident management processes. Ensure effective disaster recovery and business continuity capabilities across all locations. Oversee the planning, installation, maintenance and acceptance of new and updated infrastructure, digital workplace and security components and services. Define safety and security procedures to be followed, and delegate tasks at the appropriate level. Service levels: Ensure that the Cloud infrastructure, Digital Workplace and Security operations team meet Service or Operational Level Agreements. Report and present service level information to stakeholders. Review service level information and report to stakeholders, recommending appropriate action. Incident management: Review incidents and breaches of service level agreements. Report on findings and initiate improvement actions. Problem Management: Conduct investigations of significant operational outage and provide recommendations for problem mitigation. Initiate reviews of infrastructure performance to surface & resolve problems and build infrastructure resilience. Ensure effective delivery of technology services across six international offices, considering local regulations, time zones, and operational differences. Build and lead a globally distributed team and/or vendor ecosystem. Foster collaboration between regional stakeholders and technology teams. Identify, assess, and mitigate technology infrastructure risks across all regions. Maintain and continuously improve technology controls in line with organisational risk frameworks and regulatory requirements. Ensure infrastructure and operations meet audit, compliance, and governance standards. Lead infrastructure related input into enterprise risk management processes. Monitoring and reporting: Ensure that operational issues are identified, recorded, monitored and resolved. Provide appropriate status and other reports to specialists, users and managers. Policies, operational procedures and standards: Design and develop operational standards and procedures for cloud infrastructure, digital workplace and security operations management, aligning all operations procedures to service expectations and other quality standards. Cybersecurity Ensure infrastructure is secure by design and aligned with cybersecurity policies. Oversee implementation of security controls including endpoint protection, network security, identity management, and vulnerability management. Ensure proactive threat detection, response, and remediation capabilities. Promote security awareness initiatives across the organisation. Lead the Information Security Group (ISG) comprising of key stakeholders across the Foundation. Incident management: Review and report on incidents and breaches of cybersecurity. Initiate improvement actions. End User Computing & Desktop Services Own the strategy and delivery of end user computing, including desktops, laptops, mobile devices, and collaboration tools. Ensure a consistent, high quality user experience across all offices and remote workers. Drive automation, modern workplace solutions, and device lifecycle management. Automation tools: Investigate and manage the adoption of tools, techniques and processes (including automation) for the management of systems and services. Oversee AV infrastructure supporting global meetings, hybrid working, and events. Ensure reliable, high quality conferencing and collaboration capabilities across all locations. Partner with business stakeholders to continuously enhance user experience in meeting spaces. Develop and manage infrastructure budgets, ensuring cost control and value for money. Optimise resource allocation across internal teams and external partners. Support business cases for infrastructure investments and transformation initiatives. Supplier & Outsourcing Management Manage relationships with outsourced service providers and strategic technology partners. Define, negotiate and monitor contracts, SLAs, and performance outcomes. Ensure suppliers deliver value, innovation, and compliance with organisational standards. Mitigate vendor related risks and avoid over dependency on single providers. Skills and attributes Governance Development of KPIs and Service Level Agreements Project resource allocation Business Relationship Management Policy creation Change Management Asset Management Proven leadership experience in technology infrastructure within an international, multi site organisation. Strong expertise in cloud platforms, enterprise infrastructure, networking, and end user computing. Demonstrated experience managing outsourced services and third party vendors. Deep understanding of technology risk management, cybersecurity principles, and compliance frameworks. Experience supporting 24x7 operations with high availability requirements. Strong stakeholder management and communication skills across global teams. Personal Attributes Strong communication and interpersonal skills. Pragmatic and solutions focused with strong decision making capability. Resilient and calm under pressure in a global operational environment. Collaborative leader who builds trust across technical and non technical stakeholders. Continuous improvement mindset with a focus on service quality and innovation. Ability to balance strategic thinking with hands on operational oversight. Self starting. Qualifications & experience Bachelor's degree in computer science or a related field or equivalent industry experience. Significant experience in technology roles, with proven experience in a senior leadership position covering infrastructure and cybersecurity. Knowledge of Cloud environments specifically Azure. Experience in vendor management and contract negotiation. Excellent problem solving and critical thinking skills. Knowledge of security best practices and industry compliance standards. Knowledge of ITIL based environment. Use of ITSM platforms. Application Closing Date: 24th May 2026
Nuclear Security Consultant | British Engineering Consultancy | £50,000 - £60,000 About the Company Our client is a British engineering and technology consultancy with a strong reputation in the national security and defence sectors. Their nuclear practice works across the full spectrum of protective security - from physical and personnel controls through to technical and cyber-blended solutions - supporting some of the UK's most critical national infrastructure. They are trusted by government and industry alike to deliver complex, high-stakes security programmes. The Role They are looking for a Nuclear Security Consultant to join their Protective Security team. You will lead the delivery of nuclear security projects, contribute to business development, and play an active role in growing the nuclear security capability. This is a client-facing role with real variety spanning project delivery , bid writing, and stakeholder engagement. Key Responsibilities Lead delivery of nuclear protective security projects to scope, cost, and quality Act as project manager on security-related engagements Support business development and bid writing to win new work Represent the business at client and partner meetings Contribute to the growth of the wider protective security team Experience Required 5+ years delivering nuclear security solutions Relevant security management qualification Experience across some of the following: ONR Security Assessment Principles (SyAPs), Vital Area Identification, General Design Assessment, threat and risk assessment, security engineering, site security surveys, vulnerability assessments, security strategy and policy development Knowledge of cyber and information security principles is desirable, particularly in blended physical/logical security solutions Further Details Location: Flexible - any office considered for the right candidate Working pattern: Hybrid, split between office, client sites, and home Clearance: SC minimum required; British Nationals only Salary: £50,000 - £60,000 Benefits include competitive salary with annual reviews, 25 days holiday (with option to buy 5 more), private healthcare, enhanced parental leave, bonus scheme, professional membership support, flexible working, and more. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Apr 17, 2026
Full time
Nuclear Security Consultant | British Engineering Consultancy | £50,000 - £60,000 About the Company Our client is a British engineering and technology consultancy with a strong reputation in the national security and defence sectors. Their nuclear practice works across the full spectrum of protective security - from physical and personnel controls through to technical and cyber-blended solutions - supporting some of the UK's most critical national infrastructure. They are trusted by government and industry alike to deliver complex, high-stakes security programmes. The Role They are looking for a Nuclear Security Consultant to join their Protective Security team. You will lead the delivery of nuclear security projects, contribute to business development, and play an active role in growing the nuclear security capability. This is a client-facing role with real variety spanning project delivery , bid writing, and stakeholder engagement. Key Responsibilities Lead delivery of nuclear protective security projects to scope, cost, and quality Act as project manager on security-related engagements Support business development and bid writing to win new work Represent the business at client and partner meetings Contribute to the growth of the wider protective security team Experience Required 5+ years delivering nuclear security solutions Relevant security management qualification Experience across some of the following: ONR Security Assessment Principles (SyAPs), Vital Area Identification, General Design Assessment, threat and risk assessment, security engineering, site security surveys, vulnerability assessments, security strategy and policy development Knowledge of cyber and information security principles is desirable, particularly in blended physical/logical security solutions Further Details Location: Flexible - any office considered for the right candidate Working pattern: Hybrid, split between office, client sites, and home Clearance: SC minimum required; British Nationals only Salary: £50,000 - £60,000 Benefits include competitive salary with annual reviews, 25 days holiday (with option to buy 5 more), private healthcare, enhanced parental leave, bonus scheme, professional membership support, flexible working, and more. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Lead End-User Engineer - Permanent - Staffordshire/Derbyshire/East Midlands - Hybrid Role £50,000 to £55,000pa + Pension, Healthcare & Exceptional Benefits Are you ready to take ownership of a Microsoft Modern Workplace, fast-evolving end-user environment? With over 200,000+ customers across the UK and Europe, this leading health and welfare organisation is expanding-and they're looking for a Lead End-User Engineer to drive excellence, shape modern workplace standards, and elevate the colleague technology experience. The Opportunity: As the Lead End-User Engineer, you'll be the technical authority for everything device, identity, and endpoint related. You will define engineering standards across Windows, macOS, iOS, and Android, ensuring all end-user platforms are secure, reliable, and optimised for a seamless colleague experience. You will have a forte with Builds & Configs, Initiating Policy & Compliance for the roll-out of Remote/Handheld Devices and Deployment Automation using Intune, Autopilot, JAMF, and MDM Proven ability in Application Packaging and deployment (Win32/MSIX, PKG, APK) and you will champion modern management, set the direction for endpoint engineering, and act as the go-to escalation point for complex issues-while helping shape the organisation's future workplace strategy. What You'll Bring: Strong 3rd Line Engineering experience across Windows services Hands-on expertise with Intune, Autopilot, Azure AD, ENTRA ID JAMF, and MDM platforms, macOS, Android, iOS, laptops, and remote devices. Proven ability in Application Packaging and deployment (Win32/MSIX, PKG, APK). Proven experience with Builds & Configs, Initiating Policy & Compliance for the roll-out of Remote/Handheld Devices. Advanced troubleshooting across device, identity, and network layers. Excellent documentation, communication, and stakeholder engagement skills. What You'll Own (Key Deliverables): Engineering Leadership: Own and drive builds, configuration, and deployment automation using Intune, Autopilot, JAMF, and MDM. Set and maintain engineering standards across all platforms. Lead application packaging and manage deployments across all device ecosystems. Ensure modern, secure, and consistent endpoint experiences for all users. Technical Authority: Act as the senior escalation point for 2nd & 3rd Line teams. Provide leadership during Major Incident scenarios. Lead technical investigations, RCA, and long-term remediation initiatives. Your Core Mission (Key Objectives): Security, Compliance & Assurance: Govern and optimise device compliance policies and configuration profiles. Ensure secure, seamless device enrolment. Collaborate with Cyber teams to support Conditional Access, vulnerability remediation, and alignment with CE+, DSPT, ISO 27001, and similar frameworks. Maintain audit-ready documentation for all builds and policy changes. Knowledge Sharing & Capability Building: Produce high-quality runbooks and documentation for 1st Line teams. Mentor and guide engineering colleagues to build a collaborative, proactive technical culture. Support onboarding and skill-development of new team members. Desirable Skills: Scripting/automation experience (PowerShell, Bash, etc.) Exposure to hybrid environments and modern provisioning. Knowledge of CE+, DSPT, ISO 27001, and similar governance frameworks. Ready to Take the Lead? Call Experis IT today
Apr 17, 2026
Full time
Lead End-User Engineer - Permanent - Staffordshire/Derbyshire/East Midlands - Hybrid Role £50,000 to £55,000pa + Pension, Healthcare & Exceptional Benefits Are you ready to take ownership of a Microsoft Modern Workplace, fast-evolving end-user environment? With over 200,000+ customers across the UK and Europe, this leading health and welfare organisation is expanding-and they're looking for a Lead End-User Engineer to drive excellence, shape modern workplace standards, and elevate the colleague technology experience. The Opportunity: As the Lead End-User Engineer, you'll be the technical authority for everything device, identity, and endpoint related. You will define engineering standards across Windows, macOS, iOS, and Android, ensuring all end-user platforms are secure, reliable, and optimised for a seamless colleague experience. You will have a forte with Builds & Configs, Initiating Policy & Compliance for the roll-out of Remote/Handheld Devices and Deployment Automation using Intune, Autopilot, JAMF, and MDM Proven ability in Application Packaging and deployment (Win32/MSIX, PKG, APK) and you will champion modern management, set the direction for endpoint engineering, and act as the go-to escalation point for complex issues-while helping shape the organisation's future workplace strategy. What You'll Bring: Strong 3rd Line Engineering experience across Windows services Hands-on expertise with Intune, Autopilot, Azure AD, ENTRA ID JAMF, and MDM platforms, macOS, Android, iOS, laptops, and remote devices. Proven ability in Application Packaging and deployment (Win32/MSIX, PKG, APK). Proven experience with Builds & Configs, Initiating Policy & Compliance for the roll-out of Remote/Handheld Devices. Advanced troubleshooting across device, identity, and network layers. Excellent documentation, communication, and stakeholder engagement skills. What You'll Own (Key Deliverables): Engineering Leadership: Own and drive builds, configuration, and deployment automation using Intune, Autopilot, JAMF, and MDM. Set and maintain engineering standards across all platforms. Lead application packaging and manage deployments across all device ecosystems. Ensure modern, secure, and consistent endpoint experiences for all users. Technical Authority: Act as the senior escalation point for 2nd & 3rd Line teams. Provide leadership during Major Incident scenarios. Lead technical investigations, RCA, and long-term remediation initiatives. Your Core Mission (Key Objectives): Security, Compliance & Assurance: Govern and optimise device compliance policies and configuration profiles. Ensure secure, seamless device enrolment. Collaborate with Cyber teams to support Conditional Access, vulnerability remediation, and alignment with CE+, DSPT, ISO 27001, and similar frameworks. Maintain audit-ready documentation for all builds and policy changes. Knowledge Sharing & Capability Building: Produce high-quality runbooks and documentation for 1st Line teams. Mentor and guide engineering colleagues to build a collaborative, proactive technical culture. Support onboarding and skill-development of new team members. Desirable Skills: Scripting/automation experience (PowerShell, Bash, etc.) Exposure to hybrid environments and modern provisioning. Knowledge of CE+, DSPT, ISO 27001, and similar governance frameworks. Ready to Take the Lead? Call Experis IT today
