Royal United Services Institute for Defence and Security Studies
About RUSI The Royal United Services Institute (RUSI), based in London, Brussels and Nairobi, is the UK s leading independent think tank engaged in cutting edge research in defence and security. Its mission is to inform, influence and enhance public debate on a safer and more stable world. RUSI is a research-led institute, producing independent, practical and innovative analysis to address today s complex challenges About the role As a Programme Manager Networks and Engagement for the Cyber and Tech research group, you will be project managing and coordinating events for the Cyber Effects Network . You will also support the management of other projects and events, as well as coordinating the team s external communications (e.g. newsletters and social media). More broadly, you will develop the Cyber and Tech research group s ability to engage with the cyber and tech community across governments, industry and civil society. This professional administrative role plays a critical part in supporting both programme delivery and the team s research staff and leadership. Whilst an interest in our area of research is a plus, this role does not itself involve research or policy analysis and is not intended to be a pathway into those positions. Candidates should therefore be motivated by programme coordination, event organisation and operational delivery and excellence. Key tasks Events and workshops In collaboration with the Cyber Effects Network lead and other research project leads, support the organisation and delivery of workshops, roundtables and events. Coordinating with the RUSI events and Communications and Marketing teams Managing invitations and participant lists Coordinating with speakers and participants Preparing agendas and other event documentation Supporting event administration and follow-up Identifying potential opportunities and themes for community (non-project related) events Project management Support the management of the Cyber Effects Network and other research projects. Where appropriate, lead on financial and grant management on specific programme areas Produce and maintain accurate project documentation Coordinating with programme delivery partners, where applicable Supporting post-project and post-event documentation and reporting Ad-hoc administrative duties to support the Cyber and Team research group. Communications Support the Cyber and Tech team s external outreach and engagement activities Coordinating preparation of a regular RUSI Cyber and Tech newsletter Coordinating newsletter to the Cyber Effects Network mailing list Coordinating with the RUSI communications team and Cyber and Tech researchers to draft and schedule social media posts Map networks and stakeholders across themes and areas of interest Promoting Cyber and Tech events, publications and other public outputs on social media Business Development Support the Senior Programme Manager and Cyber and Tech researchers with business development. Support on the management and development of bids across the Cyber and Tech team Support, with an avenue to develop and own partnerships with the funder landscape as identified by Cyber and Tech researchers Support wider team business development activities by researching potential partners The above list of duties is not exhaustive. The post holder will be required to undertake such duties that may reasonably be expected within the scope and grade of the role. Person specification The successful candidate will be highly organised, detail-oriented and comfortable multi-tasking and managing multiple administrative tasks in a fast-paced, high-profile environment. This role is particularly suited to candidates seeking opportunities in programme administration, including event management within policy organisations. Skills and experience Strong organisational, administrative skills and attention to detail. Experience coordinating public and private events Ability to work independently, supporting multiple team members, and effectively prioritising and managing workload across competing requests Ability to manage multiple tasks and deadlines Excellent written English Excellent communication and interpersonal skills including the ability to communicate effectively with a wide range of stakeholders and ability to present complex information. Familiarity with newsletter and social media platforms Experience in organising large scale events (e.g. conferences) Experience in project/ programme management ideally gained in research setting Project management qualification/ certification gained from an accredited body Working knowledge and application of project management methodologies and frameworks Working knowledge and management of budgets including reporting and audit management Some knowledge about cyber security, emerging technologies or national security issues. Our expectations We expect all staff to abide by and promote our RUSI s Vision and Values and Equal Opportunities Statement. Applicants must have the legal right to work in the UK at the time of application. Benefits 25 days annual leave (rising with service) Additional days off during Christmas - RUSI Christmas closure days Generous pension contributions at 6% employer contribution Access to 24/7 Employee Assistance Programme Season ticket loan Free access to RUSI's world leading programme of events and conferences, research materials and library Trained Mental Health First Aiders Enhanced sick pay Enhanced maternity and paternity leave Depending on length of service Application Process To apply, please click on the apply button and follow the instructions to submit: Your CV. Cover Letter, no longer than 1 page, explaining your interest in the role and any significant relevant skills and/or experience. The closing date for applications is 10th May 2026 . Applications will be reviewed on a rolling basis, and the closing date brought forward if needed. Early application is encouraged. Only shortlisted candidates will be contacted. Equal Opportunity and Values At RUSI you will be appreciated and valued. Our stakeholders, transactions, and projects are international and diverse, so we work hard to create inclusive teams that support our efforts and each other. We are committed in promoting equality and diversity in our workforce and make it as diverse as the communities we serve. Our recruitment data helps us monitor the effectiveness of our recruitment practices in order that we can continue to improve on creating a more diverse workforce. We re aware that the questionnaire may not capture the rich complexities of our backgrounds and identities, so we apologise if these are not best described. Please note that this data will be kept confidential and separated from your job application. If you are uncomfortable sharing, choose "Prefer not to say" or skip the questions entirely.
Apr 28, 2026
Full time
About RUSI The Royal United Services Institute (RUSI), based in London, Brussels and Nairobi, is the UK s leading independent think tank engaged in cutting edge research in defence and security. Its mission is to inform, influence and enhance public debate on a safer and more stable world. RUSI is a research-led institute, producing independent, practical and innovative analysis to address today s complex challenges About the role As a Programme Manager Networks and Engagement for the Cyber and Tech research group, you will be project managing and coordinating events for the Cyber Effects Network . You will also support the management of other projects and events, as well as coordinating the team s external communications (e.g. newsletters and social media). More broadly, you will develop the Cyber and Tech research group s ability to engage with the cyber and tech community across governments, industry and civil society. This professional administrative role plays a critical part in supporting both programme delivery and the team s research staff and leadership. Whilst an interest in our area of research is a plus, this role does not itself involve research or policy analysis and is not intended to be a pathway into those positions. Candidates should therefore be motivated by programme coordination, event organisation and operational delivery and excellence. Key tasks Events and workshops In collaboration with the Cyber Effects Network lead and other research project leads, support the organisation and delivery of workshops, roundtables and events. Coordinating with the RUSI events and Communications and Marketing teams Managing invitations and participant lists Coordinating with speakers and participants Preparing agendas and other event documentation Supporting event administration and follow-up Identifying potential opportunities and themes for community (non-project related) events Project management Support the management of the Cyber Effects Network and other research projects. Where appropriate, lead on financial and grant management on specific programme areas Produce and maintain accurate project documentation Coordinating with programme delivery partners, where applicable Supporting post-project and post-event documentation and reporting Ad-hoc administrative duties to support the Cyber and Team research group. Communications Support the Cyber and Tech team s external outreach and engagement activities Coordinating preparation of a regular RUSI Cyber and Tech newsletter Coordinating newsletter to the Cyber Effects Network mailing list Coordinating with the RUSI communications team and Cyber and Tech researchers to draft and schedule social media posts Map networks and stakeholders across themes and areas of interest Promoting Cyber and Tech events, publications and other public outputs on social media Business Development Support the Senior Programme Manager and Cyber and Tech researchers with business development. Support on the management and development of bids across the Cyber and Tech team Support, with an avenue to develop and own partnerships with the funder landscape as identified by Cyber and Tech researchers Support wider team business development activities by researching potential partners The above list of duties is not exhaustive. The post holder will be required to undertake such duties that may reasonably be expected within the scope and grade of the role. Person specification The successful candidate will be highly organised, detail-oriented and comfortable multi-tasking and managing multiple administrative tasks in a fast-paced, high-profile environment. This role is particularly suited to candidates seeking opportunities in programme administration, including event management within policy organisations. Skills and experience Strong organisational, administrative skills and attention to detail. Experience coordinating public and private events Ability to work independently, supporting multiple team members, and effectively prioritising and managing workload across competing requests Ability to manage multiple tasks and deadlines Excellent written English Excellent communication and interpersonal skills including the ability to communicate effectively with a wide range of stakeholders and ability to present complex information. Familiarity with newsletter and social media platforms Experience in organising large scale events (e.g. conferences) Experience in project/ programme management ideally gained in research setting Project management qualification/ certification gained from an accredited body Working knowledge and application of project management methodologies and frameworks Working knowledge and management of budgets including reporting and audit management Some knowledge about cyber security, emerging technologies or national security issues. Our expectations We expect all staff to abide by and promote our RUSI s Vision and Values and Equal Opportunities Statement. Applicants must have the legal right to work in the UK at the time of application. Benefits 25 days annual leave (rising with service) Additional days off during Christmas - RUSI Christmas closure days Generous pension contributions at 6% employer contribution Access to 24/7 Employee Assistance Programme Season ticket loan Free access to RUSI's world leading programme of events and conferences, research materials and library Trained Mental Health First Aiders Enhanced sick pay Enhanced maternity and paternity leave Depending on length of service Application Process To apply, please click on the apply button and follow the instructions to submit: Your CV. Cover Letter, no longer than 1 page, explaining your interest in the role and any significant relevant skills and/or experience. The closing date for applications is 10th May 2026 . Applications will be reviewed on a rolling basis, and the closing date brought forward if needed. Early application is encouraged. Only shortlisted candidates will be contacted. Equal Opportunity and Values At RUSI you will be appreciated and valued. Our stakeholders, transactions, and projects are international and diverse, so we work hard to create inclusive teams that support our efforts and each other. We are committed in promoting equality and diversity in our workforce and make it as diverse as the communities we serve. Our recruitment data helps us monitor the effectiveness of our recruitment practices in order that we can continue to improve on creating a more diverse workforce. We re aware that the questionnaire may not capture the rich complexities of our backgrounds and identities, so we apologise if these are not best described. Please note that this data will be kept confidential and separated from your job application. If you are uncomfortable sharing, choose "Prefer not to say" or skip the questions entirely.
Your new company Our client is a highly successful privately owned organisation committed to providing excellent service to a blue-chip clientele.Due to continued organic growth, excellent reputation and successful expansion into new markets, our client is looking to recruit a talented finance professional and people manager to join them as Financial Controller at their offices near Colchester, Essex. Your new role Reporting to the Finance Director, the Financial Controller will take day-to-day responsibility for finance; manage and develop a talented finance team, review and develop processes, controls, and lead the implementation of the new ERP system, BI tools and cybersecurity. Working closely with the Managing Director and board, the Financial Controller will provide strategic and operational finance support, delivering robust governance, insightful management reporting with analysis and strong cash management. The Financial Controller will play a key role in driving financial performance, influencing strategy and decision support through business partnering and the provision of high-quality, focused data-driven management information and modelling. They will lead budgeting, strategic business planning, statutory reporting, and audit. The Financial Controller will be the point of contact with banks, auditors and other professional bodies and will manage the business insurance, and utility contracts ensuring they are good value and fit for purpose. What you'll need to succeed The Financial Controller will be a qualified accountant; ACA, ACCA, CIMA, CGMA. They will be technically strong with good business acumen who is adept at providing business partner support to board and SMT. They will have strong IT skills, implementation of ERP systems and have experience of AI, BI and automation. They will be a confident communicator and presenter, inquisitive, able to ask probing questions, provide data-driven insight and influence in a calm and professional manner. The Financial Controller will be a talented people manager, passionate about leading and developing people and continuous process improvement, creating a talented, happy and motivated team culture. What you'll get in return This is an excellent opportunity for a talented and ambitious Financial Controller to join a successful business with exciting and achievable strategic growth plans. The Financial Controller will be offered a very good market-based salary, plus benefits which include:Pension, life assurance, health plan and health insurance, flexible working, professional development, professional membership fees and CIPD, hybrid working, 25 days holiday plus bank holidays, company bonus, team building and celebration events. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion on your career. Hays EA is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Apr 28, 2026
Full time
Your new company Our client is a highly successful privately owned organisation committed to providing excellent service to a blue-chip clientele.Due to continued organic growth, excellent reputation and successful expansion into new markets, our client is looking to recruit a talented finance professional and people manager to join them as Financial Controller at their offices near Colchester, Essex. Your new role Reporting to the Finance Director, the Financial Controller will take day-to-day responsibility for finance; manage and develop a talented finance team, review and develop processes, controls, and lead the implementation of the new ERP system, BI tools and cybersecurity. Working closely with the Managing Director and board, the Financial Controller will provide strategic and operational finance support, delivering robust governance, insightful management reporting with analysis and strong cash management. The Financial Controller will play a key role in driving financial performance, influencing strategy and decision support through business partnering and the provision of high-quality, focused data-driven management information and modelling. They will lead budgeting, strategic business planning, statutory reporting, and audit. The Financial Controller will be the point of contact with banks, auditors and other professional bodies and will manage the business insurance, and utility contracts ensuring they are good value and fit for purpose. What you'll need to succeed The Financial Controller will be a qualified accountant; ACA, ACCA, CIMA, CGMA. They will be technically strong with good business acumen who is adept at providing business partner support to board and SMT. They will have strong IT skills, implementation of ERP systems and have experience of AI, BI and automation. They will be a confident communicator and presenter, inquisitive, able to ask probing questions, provide data-driven insight and influence in a calm and professional manner. The Financial Controller will be a talented people manager, passionate about leading and developing people and continuous process improvement, creating a talented, happy and motivated team culture. What you'll get in return This is an excellent opportunity for a talented and ambitious Financial Controller to join a successful business with exciting and achievable strategic growth plans. The Financial Controller will be offered a very good market-based salary, plus benefits which include:Pension, life assurance, health plan and health insurance, flexible working, professional development, professional membership fees and CIPD, hybrid working, 25 days holiday plus bank holidays, company bonus, team building and celebration events. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion on your career. Hays EA is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
IT Security Manager Location: Alcester, UK (2x days onsite per month) Salary: 60k Role Profile We are seeking an experienced Information Security Manager to lead the assurance, performance management, and continuous improvement of our cybersecurity capabilities. The successful candidate will play a critical role in governing service providers, uplifting control maturity, and ensuring our security posture aligns with business objectives, regulatory expectations, and recognised industry frameworks. Skills and Experience Experience in IT security management, with a proven track record in cybersecurity leadership. Professional certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), CEH (Certified Ethical Hacker), or equivalent are highly desirable. In-depth knowledge of security frameworks (e.g., NIST, ISO 27001), network security protocols, firewalls, encryption, and intrusion detection systems (IDS). Strong understanding of threat landscape and risk management strategies. Proficiency in security tools and technologies such as SIEM (Security Information and Event Management) systems, anti-malware, DLP (Data Loss Prevention), and endpoint protection. Excellent problem-solving and analytical skills. Strong communication skills, with the ability to explain complex technical concepts to non-technical stakeholders. Leadership and team management experience. ECS Recruitment Group Ltd is acting as an Employment Agency in relation to this vacancy.
Apr 28, 2026
Full time
IT Security Manager Location: Alcester, UK (2x days onsite per month) Salary: 60k Role Profile We are seeking an experienced Information Security Manager to lead the assurance, performance management, and continuous improvement of our cybersecurity capabilities. The successful candidate will play a critical role in governing service providers, uplifting control maturity, and ensuring our security posture aligns with business objectives, regulatory expectations, and recognised industry frameworks. Skills and Experience Experience in IT security management, with a proven track record in cybersecurity leadership. Professional certifications such as CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor), CEH (Certified Ethical Hacker), or equivalent are highly desirable. In-depth knowledge of security frameworks (e.g., NIST, ISO 27001), network security protocols, firewalls, encryption, and intrusion detection systems (IDS). Strong understanding of threat landscape and risk management strategies. Proficiency in security tools and technologies such as SIEM (Security Information and Event Management) systems, anti-malware, DLP (Data Loss Prevention), and endpoint protection. Excellent problem-solving and analytical skills. Strong communication skills, with the ability to explain complex technical concepts to non-technical stakeholders. Leadership and team management experience. ECS Recruitment Group Ltd is acting as an Employment Agency in relation to this vacancy.
Due to the growth of the Company, we're seeking a detail oriented, independently minded, Senior Compliance & Legal Manager to help move our Compliance & Group Legal function up to the next level to work to improve efficiencies to meet the requirements of the Group supporting compliance and legal stakeholders to manage a broad spectrum ofRegulatory, Compliance and Risk issues arising from NextEnergy's investments and operational activities globally including group companies and all jurisdictions. The role encompasses detailed management, oversight and advisory of the Firm's compliance and group legal requirements. The role also encompasses a global outlook with regulatory requirements being understood and met in other jurisdictions. Key Responsibilities Deputize for CCLO where necessary with management responsibilities over time to provide support on all compliance and legal projects including data protection, cyber security and oversight of regulatory obligations in all areas of business. Enforcement of Second Line of Defence including oversight of ESG Reporting particularly the CSRD and CSDDD and equivalent UK Reporting obligations. Responsibility for Risk Management Framework with responsibility for enhancing the record keeping and reporting activities of internal committees ensuring record keeping, accurate minutes, action items followed up and collaboration with the business. Provide advice and guidance on financial crime, particularly Anti Money Laundering and terrorist financing, to the business and other control functions; support the Investment Teams on Investment KYC/AML, provide support with any audit requests. Compliance Testing and monitoring control framework and delivery of monitoring objectives within the Compliance team and business including testing of the US Compliance Programme by performing a number of tests as assigned by the CCLO, ensuring all findings/recommendations are documented and addressed. Supporting the provision of enhanced Management Information including compliance monitoring results, corporate governance matters, preparation of Board Materials, and horizon scanning. Skills & Competencies Intellectual Curiosity - we are looking for someone who is truly interested in our profession and has the intellectual curiosity to bring fresh ideas to the team. Independence - working independently is a critical component of the role. Time management & prioritization skills - the ability to effectively manage yourself and your workload is critical. Excellent presentational and communication skills (in English and/or other European languages including Italian) - you must be able to organize your thoughts in a way that others find clear and compelling. Flexibility - being an effective team player means being flexible in your approach and open to getting involved with new things, even if they are not spelled out in your job description. IT Literacy - you need to be comfortable with IT systems and working with data (you should have at least intermediate level Excel and excellent PowerPoint skills). Delivery focus - it may sound obvious, but the ability to proactively churn through work at pace and deliver quality outputs really matters. Strong critical thinking and problem solving skills Passion for the group mission 'to generate a more sustainable future by leading the transition to clean energy'. Alignment with the group values - be a leader, build trust, be responsible, be innovative and 'bring your alpha'. Experience & Qualifications At least 5 8 years of relevant compliance/legal experience in regulatory or legal within the financial services sector. Preference is for candidates in the fund management sector with legal qualifications. Strong knowledge of the investment management industry and/or financial products and financial market processes. Good knowledge of the FCA Handbook and FINRA rules. Good knowledge of European financial markets regulation, e.g. AIFMD / MiFID / MAR. The right to work in the UK. What We Offer A busy role in a supportive team, with plenty of opportunities to learn. International scope - we operate in over 8 countries. 30 days' holiday per year pro rated (3 of which are taken during the festive shutdown in December). BUPA Healthcare for you and qualifying dependents. Cycle to work and electric vehicle leasing schemes. Annual discretionary bonus. Diversity and Inclusion We are committed to equal employment and advancement opportunity irrespective of race, color, ancestry, social background, religion, gender, national origin, sexual orientation, age, citizenship, marital status, disability and gender identity.
Apr 27, 2026
Full time
Due to the growth of the Company, we're seeking a detail oriented, independently minded, Senior Compliance & Legal Manager to help move our Compliance & Group Legal function up to the next level to work to improve efficiencies to meet the requirements of the Group supporting compliance and legal stakeholders to manage a broad spectrum ofRegulatory, Compliance and Risk issues arising from NextEnergy's investments and operational activities globally including group companies and all jurisdictions. The role encompasses detailed management, oversight and advisory of the Firm's compliance and group legal requirements. The role also encompasses a global outlook with regulatory requirements being understood and met in other jurisdictions. Key Responsibilities Deputize for CCLO where necessary with management responsibilities over time to provide support on all compliance and legal projects including data protection, cyber security and oversight of regulatory obligations in all areas of business. Enforcement of Second Line of Defence including oversight of ESG Reporting particularly the CSRD and CSDDD and equivalent UK Reporting obligations. Responsibility for Risk Management Framework with responsibility for enhancing the record keeping and reporting activities of internal committees ensuring record keeping, accurate minutes, action items followed up and collaboration with the business. Provide advice and guidance on financial crime, particularly Anti Money Laundering and terrorist financing, to the business and other control functions; support the Investment Teams on Investment KYC/AML, provide support with any audit requests. Compliance Testing and monitoring control framework and delivery of monitoring objectives within the Compliance team and business including testing of the US Compliance Programme by performing a number of tests as assigned by the CCLO, ensuring all findings/recommendations are documented and addressed. Supporting the provision of enhanced Management Information including compliance monitoring results, corporate governance matters, preparation of Board Materials, and horizon scanning. Skills & Competencies Intellectual Curiosity - we are looking for someone who is truly interested in our profession and has the intellectual curiosity to bring fresh ideas to the team. Independence - working independently is a critical component of the role. Time management & prioritization skills - the ability to effectively manage yourself and your workload is critical. Excellent presentational and communication skills (in English and/or other European languages including Italian) - you must be able to organize your thoughts in a way that others find clear and compelling. Flexibility - being an effective team player means being flexible in your approach and open to getting involved with new things, even if they are not spelled out in your job description. IT Literacy - you need to be comfortable with IT systems and working with data (you should have at least intermediate level Excel and excellent PowerPoint skills). Delivery focus - it may sound obvious, but the ability to proactively churn through work at pace and deliver quality outputs really matters. Strong critical thinking and problem solving skills Passion for the group mission 'to generate a more sustainable future by leading the transition to clean energy'. Alignment with the group values - be a leader, build trust, be responsible, be innovative and 'bring your alpha'. Experience & Qualifications At least 5 8 years of relevant compliance/legal experience in regulatory or legal within the financial services sector. Preference is for candidates in the fund management sector with legal qualifications. Strong knowledge of the investment management industry and/or financial products and financial market processes. Good knowledge of the FCA Handbook and FINRA rules. Good knowledge of European financial markets regulation, e.g. AIFMD / MiFID / MAR. The right to work in the UK. What We Offer A busy role in a supportive team, with plenty of opportunities to learn. International scope - we operate in over 8 countries. 30 days' holiday per year pro rated (3 of which are taken during the festive shutdown in December). BUPA Healthcare for you and qualifying dependents. Cycle to work and electric vehicle leasing schemes. Annual discretionary bonus. Diversity and Inclusion We are committed to equal employment and advancement opportunity irrespective of race, color, ancestry, social background, religion, gender, national origin, sexual orientation, age, citizenship, marital status, disability and gender identity.
Who we are GlobalData is a specialist information services business helping clients decode the future, make better decisions and reach more customers. Through our data, expert analysis and innovative solutions, we provide intelligence across the world s largest industries to companies, governments and industry professionals. Formed in 2016 through the combination of multiple specialist firms, we are now a fully integrated global platform with 3,500+ colleagues across 20+ industries, supporting over 5,000 customers worldwide. Why join GlobalData? We are at a pivotal stage of growth, supported by recent investment and ambitious plans. It s a fast-paced, entrepreneurial environment where collaboration drives success, and where curious, ambitious individuals can make a real impact as we work towards becoming the world s most trusted source of strategic industry intelligence. The role As Information Security Manager, you will lead the strategy and delivery of initiatives that strengthen GlobalData s cybersecurity posture across global operations. You ll ensure our people, systems and infrastructure remain secure, resilient and able to support continued growth. Reporting to the Chief Information Security Officer, you will lead a team of security professionals, drive key security programmes, and work closely with stakeholders across technology and business teams to improve cyber governance, data security and operational resilience. This role requires strong expertise in information security, AI and data governance, alongside experience in vendor management and third-party risk. What you ll be doing Lead and deliver the information security strategy aligned to business goals Develop and maintain security frameworks, policies and standards Oversee risk management, threat assessment and vulnerability programmes Ensure compliance with ISO 27001, ISO 42001, GDPR and other relevant frameworks Manage security operations including incident response, monitoring and investigations Partner with IT, engineering, legal and business teams to embed security best practice Lead internal/external audits, assessments and remediation plans Manage third-party and vendor security risk programmes Build, mentor and lead a high-performing security team Provide executive reporting on security risks, metrics and improvement plans Monitor emerging threats, technologies and regulations What we re looking for 8+ years experience in senior cybersecurity or information security roles Leadership experience within a complex, multinational business Experience managing global teams across multiple regions Strong knowledge of ISO 27001, NIST, CIS Controls or similar frameworks Proven experience in security operations, risk management and compliance Experience handling security incidents and crisis management Strong commercial awareness and budget management experience Excellent communication and stakeholder management skills, including senior leadership exposure Strong understanding of IT infrastructure, cloud technologies and enterprise systems Experience managing third-party vendors and technology partners Preferred Certifications CISM or similar ISO 27001 Lead Implementer / Lead Auditor ISO 42001 (desirable) Technical Skills Security architecture and cloud security (AWS) SIEM, EDR and SOC tools ISO 27001 / ISO 42001 implementation Vulnerability management and penetration testing oversight Data protection, encryption and privacy controls Third-party risk management tools and processes Leadership & Competencies Inspiring leader who develops teams and delegates effectively Strategic thinker with strong decision-making skills Able to influence senior stakeholders and collaborate cross-functionally Hands-on and comfortable operating at all levels Calm under pressure with strong prioritisation skills Able to translate technical risk into clear business impact Highly organised with strong attention to detail In addition to a rewarding career, we support our GlobalData colleagues with a range of benefits across health, finances, fitness, travel, tech and more. To find out more about the roles and benefits on offer in your region, visit (url removed) GlobalData believes strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed. As such, we are proud to be an Equal Opportunity Employer. GlobalData is determined to ensure that no applicant or employee receives less favourable treatment on the grounds of gender, age, disability, religion, belief, sexual orientation, marital status, race, or is disadvantaged by conditions or requirements which cannot be shown to be justifiable.
Apr 27, 2026
Full time
Who we are GlobalData is a specialist information services business helping clients decode the future, make better decisions and reach more customers. Through our data, expert analysis and innovative solutions, we provide intelligence across the world s largest industries to companies, governments and industry professionals. Formed in 2016 through the combination of multiple specialist firms, we are now a fully integrated global platform with 3,500+ colleagues across 20+ industries, supporting over 5,000 customers worldwide. Why join GlobalData? We are at a pivotal stage of growth, supported by recent investment and ambitious plans. It s a fast-paced, entrepreneurial environment where collaboration drives success, and where curious, ambitious individuals can make a real impact as we work towards becoming the world s most trusted source of strategic industry intelligence. The role As Information Security Manager, you will lead the strategy and delivery of initiatives that strengthen GlobalData s cybersecurity posture across global operations. You ll ensure our people, systems and infrastructure remain secure, resilient and able to support continued growth. Reporting to the Chief Information Security Officer, you will lead a team of security professionals, drive key security programmes, and work closely with stakeholders across technology and business teams to improve cyber governance, data security and operational resilience. This role requires strong expertise in information security, AI and data governance, alongside experience in vendor management and third-party risk. What you ll be doing Lead and deliver the information security strategy aligned to business goals Develop and maintain security frameworks, policies and standards Oversee risk management, threat assessment and vulnerability programmes Ensure compliance with ISO 27001, ISO 42001, GDPR and other relevant frameworks Manage security operations including incident response, monitoring and investigations Partner with IT, engineering, legal and business teams to embed security best practice Lead internal/external audits, assessments and remediation plans Manage third-party and vendor security risk programmes Build, mentor and lead a high-performing security team Provide executive reporting on security risks, metrics and improvement plans Monitor emerging threats, technologies and regulations What we re looking for 8+ years experience in senior cybersecurity or information security roles Leadership experience within a complex, multinational business Experience managing global teams across multiple regions Strong knowledge of ISO 27001, NIST, CIS Controls or similar frameworks Proven experience in security operations, risk management and compliance Experience handling security incidents and crisis management Strong commercial awareness and budget management experience Excellent communication and stakeholder management skills, including senior leadership exposure Strong understanding of IT infrastructure, cloud technologies and enterprise systems Experience managing third-party vendors and technology partners Preferred Certifications CISM or similar ISO 27001 Lead Implementer / Lead Auditor ISO 42001 (desirable) Technical Skills Security architecture and cloud security (AWS) SIEM, EDR and SOC tools ISO 27001 / ISO 42001 implementation Vulnerability management and penetration testing oversight Data protection, encryption and privacy controls Third-party risk management tools and processes Leadership & Competencies Inspiring leader who develops teams and delegates effectively Strategic thinker with strong decision-making skills Able to influence senior stakeholders and collaborate cross-functionally Hands-on and comfortable operating at all levels Calm under pressure with strong prioritisation skills Able to translate technical risk into clear business impact Highly organised with strong attention to detail In addition to a rewarding career, we support our GlobalData colleagues with a range of benefits across health, finances, fitness, travel, tech and more. To find out more about the roles and benefits on offer in your region, visit (url removed) GlobalData believes strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed. As such, we are proud to be an Equal Opportunity Employer. GlobalData is determined to ensure that no applicant or employee receives less favourable treatment on the grounds of gender, age, disability, religion, belief, sexual orientation, marital status, race, or is disadvantaged by conditions or requirements which cannot be shown to be justifiable.
Bolton We have an opportunity working on behalf of UK Facilities Management, the Operational Technology (OT) Risk Manager will act as the deployed local security leader and expert in all elements of security for General Infrastructure Management Systems (GIMS) policy. Salary: Circa£60,000 depending on experience Dynamic (hybrid) working: 3-4 days per week on-site due to workload classification and frequent travel to all sites across the UK Security Clearance: British Citizen or a Dual UK national with British citizenship/Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security Team. What we can offer you: Company Bonus: Bonus of up to 21% of base salary Pension: maximum total (employer and employee) contribution of up to 14% Flexible working: We welcome applicants who are looking for flexible working arrangements Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave -enhancements are available for paternity leave, neonatal leave and fertility testing and treatments Facilities: Fantastic site facilities including subsidised meals, free car parking and much more Healthcare Cash Plan: The Healthcare Cash Plan benefit provides the option to claim cash back on everyday healthcare expenses such as optical, dental, health and wellbeing and more . The opportunity: The main focus is the creation, execution and maintenance of a framework to identify and address risks associated with the devices which support MBDA's Building and Infrastructure across the UK. This will also include input into the wider group structures as and when required. The OT Risk Manager will act as the point of contact for all new, existing and legacy GIMS installations, providing advice, guidance and direction to address the multiple security risks associated with them. This includes liaising with cross business teams outside of FM, such as Cyber and InfoSec, IM and Product Cyber. The OT Risk Manager will oversee all change management activities related to the connectivity and digital interfaces of the relevant infrastructure, ensuring all change remains appropriate and complaint with policy; ensuring an evidenced position is constantly maintained by MBDA UK of continued compliance with all relevant standards which may be subject no-notice audits by MBDA Group, MOD and other customers. They will deliver technical security consultancy to the business including architecture and solution suitability to meet a complex suite of business requirements. They will create and update ISO 27001 compliant policies to specifically address the GIMS policy ensuring that all policies, processes, procedures and technical infrastructure remains compliant with MBDA UKs wider ISO 27001 ISMS as well as other certifications as appropriate. The OT Risk Manager will be a critical leader in any new infrastructure projects within MBDA UK and for reducing cyber risk to the business as part of a wider team. The OT Risk Manager will also coordinate all technical security testing within their allocated area of operations, as well as maintaining upward reporting to MBDA UK FM Director, UK Security Director and UK CISO on results and remediation progressions. They will proactively coordinate with the Principle Cyber and Information Security Advisor for all required assurance activity and evidence based reporting. They will work with FM and wider business stakeholders to create a network of Asset Owners and formally document the asset registers for their areas of operation. What we're looking for from you: CISSP, InfoSec/Cyber Degree or equivalent (Essential) Experience or relevant certifications in network security or industrial control system hardening (Essential) Knowledge of security surrounding systems enabling critical services within business (ICS/SCADA/BMS/BEMS) Comfortable with establishing and maintaining relationships with national security authorities, internal stakeholders and industry partners. Expert in security concepts for IT network architectures, applications, cloud services and hardening of operating systems within ICS and SCADA context. Ability to present risk balanced security solutions to complex problems and provide clear advice directly to key stakeholders at all levels Experience of managing and developing inexperienced IT/FM Engineers to maintain security Experience of system accreditation processes and documentation. Experience of security risk management Knowledge of business IT processes and associated approval systems Expert knowledge of modern hacking Tactics, Techniques and Procedures including impacts affecting GIMS/ICS/SCADA. Our company: Peace is not a given, Freedom is not a given, Sovereignty is not a given MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom. We are proud of our employee-led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process. Follow us on LinkedIn (MBDA), X Instagram (MBDA_UK) and Glassdoor or visit our MBDA Careers website for more information.
Apr 25, 2026
Full time
Bolton We have an opportunity working on behalf of UK Facilities Management, the Operational Technology (OT) Risk Manager will act as the deployed local security leader and expert in all elements of security for General Infrastructure Management Systems (GIMS) policy. Salary: Circa£60,000 depending on experience Dynamic (hybrid) working: 3-4 days per week on-site due to workload classification and frequent travel to all sites across the UK Security Clearance: British Citizen or a Dual UK national with British citizenship/Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security Team. What we can offer you: Company Bonus: Bonus of up to 21% of base salary Pension: maximum total (employer and employee) contribution of up to 14% Flexible working: We welcome applicants who are looking for flexible working arrangements Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave -enhancements are available for paternity leave, neonatal leave and fertility testing and treatments Facilities: Fantastic site facilities including subsidised meals, free car parking and much more Healthcare Cash Plan: The Healthcare Cash Plan benefit provides the option to claim cash back on everyday healthcare expenses such as optical, dental, health and wellbeing and more . The opportunity: The main focus is the creation, execution and maintenance of a framework to identify and address risks associated with the devices which support MBDA's Building and Infrastructure across the UK. This will also include input into the wider group structures as and when required. The OT Risk Manager will act as the point of contact for all new, existing and legacy GIMS installations, providing advice, guidance and direction to address the multiple security risks associated with them. This includes liaising with cross business teams outside of FM, such as Cyber and InfoSec, IM and Product Cyber. The OT Risk Manager will oversee all change management activities related to the connectivity and digital interfaces of the relevant infrastructure, ensuring all change remains appropriate and complaint with policy; ensuring an evidenced position is constantly maintained by MBDA UK of continued compliance with all relevant standards which may be subject no-notice audits by MBDA Group, MOD and other customers. They will deliver technical security consultancy to the business including architecture and solution suitability to meet a complex suite of business requirements. They will create and update ISO 27001 compliant policies to specifically address the GIMS policy ensuring that all policies, processes, procedures and technical infrastructure remains compliant with MBDA UKs wider ISO 27001 ISMS as well as other certifications as appropriate. The OT Risk Manager will be a critical leader in any new infrastructure projects within MBDA UK and for reducing cyber risk to the business as part of a wider team. The OT Risk Manager will also coordinate all technical security testing within their allocated area of operations, as well as maintaining upward reporting to MBDA UK FM Director, UK Security Director and UK CISO on results and remediation progressions. They will proactively coordinate with the Principle Cyber and Information Security Advisor for all required assurance activity and evidence based reporting. They will work with FM and wider business stakeholders to create a network of Asset Owners and formally document the asset registers for their areas of operation. What we're looking for from you: CISSP, InfoSec/Cyber Degree or equivalent (Essential) Experience or relevant certifications in network security or industrial control system hardening (Essential) Knowledge of security surrounding systems enabling critical services within business (ICS/SCADA/BMS/BEMS) Comfortable with establishing and maintaining relationships with national security authorities, internal stakeholders and industry partners. Expert in security concepts for IT network architectures, applications, cloud services and hardening of operating systems within ICS and SCADA context. Ability to present risk balanced security solutions to complex problems and provide clear advice directly to key stakeholders at all levels Experience of managing and developing inexperienced IT/FM Engineers to maintain security Experience of system accreditation processes and documentation. Experience of security risk management Knowledge of business IT processes and associated approval systems Expert knowledge of modern hacking Tactics, Techniques and Procedures including impacts affecting GIMS/ICS/SCADA. Our company: Peace is not a given, Freedom is not a given, Sovereignty is not a given MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom. We are proud of our employee-led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process. Follow us on LinkedIn (MBDA), X Instagram (MBDA_UK) and Glassdoor or visit our MBDA Careers website for more information.
IT Security Assurance Manager Permanent - 40k - 43.5k + strong benefits Location: Hybrid - Bristol Your new company: I am looking to recruit an IT Security Assurance Manager to join a great public sector organisation. You'll join a forward-thinking organisation with a national footprint and a user base exceeding 2,000 people. With ambitious plans for IT Security transformation, this is a fantastic opportunity to be part of a dynamic and evolving team. The organisation is investing in its IT and Security function and is a great place to work. The role responsibilities: This is an interesting opportunity to join a great organisation at a key time when they are investing in and transforming their IT and Security estate. You will be supporting the IT Security and GRC Manager with IT Security Assurance tasks. Key parts of the role include: Overseeing audit assessment, assurance and remedial/improvement actions. Leading liaison activities to drive awareness and collaborative improvement workstreams. Leading efforts to attain and work to industry frameworks, standards and best practice. Help drive forward security standards and capabilities, You will need: Strong demonstrable experience of IT and cyber governance, compliance, risk, and security within enterprise IT environments. Experience communicating with stakeholders at all levels. Experience leading or contributing to the response and resolution of IT/cyber security incidents, including investigation, remediation, assurance, continuous improvement. Able to manage sensitive and challenging situations with discretion, fairness, empathy. Good experience in all aspects of IT/Cybersecurity and technology audit, assessment, assurance, and compliance. The ability to write fluently, accurately and concisely with clarity and authority. Proven abilities documenting and presenting concise reports, explaining complex information to varied audiences. What you'll get in return: Salary of between 40k- 43.5k 25 days annual leave + bank holidays - additional day for each year of service (up to 30 days) Hybrid working 2 days in Bristol per week (or other office in UK, but still once a month in Bristol) Strong civil service pension (27%) And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Apr 25, 2026
Full time
IT Security Assurance Manager Permanent - 40k - 43.5k + strong benefits Location: Hybrid - Bristol Your new company: I am looking to recruit an IT Security Assurance Manager to join a great public sector organisation. You'll join a forward-thinking organisation with a national footprint and a user base exceeding 2,000 people. With ambitious plans for IT Security transformation, this is a fantastic opportunity to be part of a dynamic and evolving team. The organisation is investing in its IT and Security function and is a great place to work. The role responsibilities: This is an interesting opportunity to join a great organisation at a key time when they are investing in and transforming their IT and Security estate. You will be supporting the IT Security and GRC Manager with IT Security Assurance tasks. Key parts of the role include: Overseeing audit assessment, assurance and remedial/improvement actions. Leading liaison activities to drive awareness and collaborative improvement workstreams. Leading efforts to attain and work to industry frameworks, standards and best practice. Help drive forward security standards and capabilities, You will need: Strong demonstrable experience of IT and cyber governance, compliance, risk, and security within enterprise IT environments. Experience communicating with stakeholders at all levels. Experience leading or contributing to the response and resolution of IT/cyber security incidents, including investigation, remediation, assurance, continuous improvement. Able to manage sensitive and challenging situations with discretion, fairness, empathy. Good experience in all aspects of IT/Cybersecurity and technology audit, assessment, assurance, and compliance. The ability to write fluently, accurately and concisely with clarity and authority. Proven abilities documenting and presenting concise reports, explaining complex information to varied audiences. What you'll get in return: Salary of between 40k- 43.5k 25 days annual leave + bank holidays - additional day for each year of service (up to 30 days) Hybrid working 2 days in Bristol per week (or other office in UK, but still once a month in Bristol) Strong civil service pension (27%) And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Job Title: IT & Security Manager Location: Stroud Salary: Up to 65,000 DOE About KO2's Client KO2's client is an ambitious and rapidly growing engineering startup entering an exciting phase of scale. With innovation at its core, the business is building a robust, secure, and future-proof technology environment to support expansion. They are now looking for an experienced IT & Security Manager to take ownership of their IT infrastructure and security strategy from the ground up. The Role This is a hands-on and strategic role where you will design, build, and manage the company's IT function while ensuring best-in-class security practices. You will play a key role in shaping internal infrastructure, supporting business growth, and embedding a strong security culture across the organisation. Key Responsibilities Design, implement, and manage scalable IT infrastructure across Linux, Mac, and Windows environments Lead the development and enforcement of IT security policies, procedures, and controls Own and drive ISO 27001 compliance, including audits, risk assessments, and continuous improvement Manage networks, cloud services, endpoints, and internal systems Ensure system reliability, performance, and security across all platforms Oversee user access, identity management, and endpoint security Act as the primary point of contact for all IT and information security matters Support and scale IT operations in line with company growth Manage third-party vendors and service providers where required About You Proven experience in an IT Manager, IT Lead, or similar role within a fast-paced environment Strong hands-on experience with Linux, macOS, and Windows systems Demonstrable experience implementing and maintaining ISO 27001 standards Solid understanding of cybersecurity principles, risk management, and compliance Experience with cloud platforms (e.g. AWS, Azure, or GCP) Ability to build IT systems and processes from scratch in a growing organisation Strong problem-solving skills and a proactive mindset Excellent communication skills, with the ability to work across technical and non-technical teams Desirable Skills Experience in a startup or scaling business Knowledge of DevOps practices and automation tools What KO2's Client Offers Opportunity to shape and lead IT and security strategy in a growing company A collaborative, innovative, and flexible working environment How to Apply If you're excited by the challenge of building and securing IT systems in a high-growth startup, please apply with your CV and a brief cover note outlining your experience and interest in the role.
Apr 25, 2026
Full time
Job Title: IT & Security Manager Location: Stroud Salary: Up to 65,000 DOE About KO2's Client KO2's client is an ambitious and rapidly growing engineering startup entering an exciting phase of scale. With innovation at its core, the business is building a robust, secure, and future-proof technology environment to support expansion. They are now looking for an experienced IT & Security Manager to take ownership of their IT infrastructure and security strategy from the ground up. The Role This is a hands-on and strategic role where you will design, build, and manage the company's IT function while ensuring best-in-class security practices. You will play a key role in shaping internal infrastructure, supporting business growth, and embedding a strong security culture across the organisation. Key Responsibilities Design, implement, and manage scalable IT infrastructure across Linux, Mac, and Windows environments Lead the development and enforcement of IT security policies, procedures, and controls Own and drive ISO 27001 compliance, including audits, risk assessments, and continuous improvement Manage networks, cloud services, endpoints, and internal systems Ensure system reliability, performance, and security across all platforms Oversee user access, identity management, and endpoint security Act as the primary point of contact for all IT and information security matters Support and scale IT operations in line with company growth Manage third-party vendors and service providers where required About You Proven experience in an IT Manager, IT Lead, or similar role within a fast-paced environment Strong hands-on experience with Linux, macOS, and Windows systems Demonstrable experience implementing and maintaining ISO 27001 standards Solid understanding of cybersecurity principles, risk management, and compliance Experience with cloud platforms (e.g. AWS, Azure, or GCP) Ability to build IT systems and processes from scratch in a growing organisation Strong problem-solving skills and a proactive mindset Excellent communication skills, with the ability to work across technical and non-technical teams Desirable Skills Experience in a startup or scaling business Knowledge of DevOps practices and automation tools What KO2's Client Offers Opportunity to shape and lead IT and security strategy in a growing company A collaborative, innovative, and flexible working environment How to Apply If you're excited by the challenge of building and securing IT systems in a high-growth startup, please apply with your CV and a brief cover note outlining your experience and interest in the role.
eDiscovery Senior Technical Project Manager London/hybrid (but remote from UK could be considered for an exceptional person) The Firm: Highly reputable international Legal Practice undergoing expansion in the eDiscovery Practice. The Role: Provide the eDiscovery team with technical, strategic and practical know how on eDiscovery services. Successfully deliver and assist others in the delivery of eDiscovery projects. Assist with the management of the eDiscovery team The Individual: Have proven experience of successfully supporting projects with all aspects of eDiscovery processes. Experience of using eDiscovery products such as Relativity, Reveal, Disco, Axcelerate, Nuix, and also know or happy to learn Sharedo or Opus2. You will be very technically adept and if not a Relativity Master be well on your way with an understanding across the tool and other tools (mentioned above). Delivery: Accountable for ensuring quality control process is adhered to in delivery of all services Ensure your Manager is made aware of all tasks, projects and the approach to delivery is discussed and confirmed with them Create recommendations, project plans, cost estimates, procedures and specifications, ensuring quotes are provided and instructions are agreed in writing Data processing of material received in various formats including native and load file mapping and ingestion, as well as exception handling Setup and customisation of Relativity , running searches and culling data, creating review batches, customising coding templates, creating user roles and related permission settings Carry out native and load file productions according to specifications Resolve 1st line support queries and work with our 2nd & 3rd line support to ensure technical issues are resolved Be a reference point for service issues, escalating any complaints from the Practice immediately to the team Manager and working with the Manager to address these Ensure defensible processes and data security procedures are adhered to at all times Administration of software and hardware used by the eDiscovery team Responsible for the successful end-to-end delivery of eDiscovery projects, including processing data, creating productions for disclosure/investigation, leveraging TAR functionality, Early Case Assessment tools. Also GenAI solutions, eBundling and case management solutions Keep up to date with developments by attending seminars and presentations on relevant services and technology, ensuring knowledge is shared and training is provided to all team members About Brimstone Consulting: We specialise in finding highly qualified staff in the following areas: E-Discovery and Digital Forensics; Payments; Fraud - (AML/CTF, Investigation, CFE s etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance ; IT - (full SDLC- BA s PM s , Architects, Developers etc.); Big Data and Data Analytics - (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients specifications. Our Data Protection number: ZA(phone number removed)
Apr 25, 2026
Full time
eDiscovery Senior Technical Project Manager London/hybrid (but remote from UK could be considered for an exceptional person) The Firm: Highly reputable international Legal Practice undergoing expansion in the eDiscovery Practice. The Role: Provide the eDiscovery team with technical, strategic and practical know how on eDiscovery services. Successfully deliver and assist others in the delivery of eDiscovery projects. Assist with the management of the eDiscovery team The Individual: Have proven experience of successfully supporting projects with all aspects of eDiscovery processes. Experience of using eDiscovery products such as Relativity, Reveal, Disco, Axcelerate, Nuix, and also know or happy to learn Sharedo or Opus2. You will be very technically adept and if not a Relativity Master be well on your way with an understanding across the tool and other tools (mentioned above). Delivery: Accountable for ensuring quality control process is adhered to in delivery of all services Ensure your Manager is made aware of all tasks, projects and the approach to delivery is discussed and confirmed with them Create recommendations, project plans, cost estimates, procedures and specifications, ensuring quotes are provided and instructions are agreed in writing Data processing of material received in various formats including native and load file mapping and ingestion, as well as exception handling Setup and customisation of Relativity , running searches and culling data, creating review batches, customising coding templates, creating user roles and related permission settings Carry out native and load file productions according to specifications Resolve 1st line support queries and work with our 2nd & 3rd line support to ensure technical issues are resolved Be a reference point for service issues, escalating any complaints from the Practice immediately to the team Manager and working with the Manager to address these Ensure defensible processes and data security procedures are adhered to at all times Administration of software and hardware used by the eDiscovery team Responsible for the successful end-to-end delivery of eDiscovery projects, including processing data, creating productions for disclosure/investigation, leveraging TAR functionality, Early Case Assessment tools. Also GenAI solutions, eBundling and case management solutions Keep up to date with developments by attending seminars and presentations on relevant services and technology, ensuring knowledge is shared and training is provided to all team members About Brimstone Consulting: We specialise in finding highly qualified staff in the following areas: E-Discovery and Digital Forensics; Payments; Fraud - (AML/CTF, Investigation, CFE s etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance ; IT - (full SDLC- BA s PM s , Architects, Developers etc.); Big Data and Data Analytics - (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients specifications. Our Data Protection number: ZA(phone number removed)
Cyber Security Governance, Risk and Compliance Manager - Lincolnshire based (hybrid) - Full time permanent role with a large business - Salary circa £60k plus bonus, great pension and more! We're partnering with a well-established, values-driven organisation looking to appoint a Cyber GRC Manager to strengthen governance, risk, and compliance across their technology and cyber landscape. This is a key role where you'll help shape and embed best-practice frameworks, ensuring the business remains secure, compliant, and resilient in an evolving threat environment. The Role You'll take ownership of cyber governance and risk management, working closely with senior stakeholders to identify, assess, and mitigate risk while ensuring alignment with regulatory requirements and industry standards. Key Responsibilities Leading cyber risk management activities, including maintaining risk registers Supporting governance frameworks, policies, and controls Delivering risk-based audits across IT and cyber environments Collaborating with internal teams and external partners Providing clear reporting and insight to senior stakeholders About You Experience within cyber GRC, IT audit, or risk management Strong understanding of frameworks such as ISO 27001, NIST, or similar Confident communicator, able to translate technical risks into business impact Proactive and detail-oriented, with a collaborative approach
Apr 24, 2026
Full time
Cyber Security Governance, Risk and Compliance Manager - Lincolnshire based (hybrid) - Full time permanent role with a large business - Salary circa £60k plus bonus, great pension and more! We're partnering with a well-established, values-driven organisation looking to appoint a Cyber GRC Manager to strengthen governance, risk, and compliance across their technology and cyber landscape. This is a key role where you'll help shape and embed best-practice frameworks, ensuring the business remains secure, compliant, and resilient in an evolving threat environment. The Role You'll take ownership of cyber governance and risk management, working closely with senior stakeholders to identify, assess, and mitigate risk while ensuring alignment with regulatory requirements and industry standards. Key Responsibilities Leading cyber risk management activities, including maintaining risk registers Supporting governance frameworks, policies, and controls Delivering risk-based audits across IT and cyber environments Collaborating with internal teams and external partners Providing clear reporting and insight to senior stakeholders About You Experience within cyber GRC, IT audit, or risk management Strong understanding of frameworks such as ISO 27001, NIST, or similar Confident communicator, able to translate technical risks into business impact Proactive and detail-oriented, with a collaborative approach
Job Title: Head of IT Location: Worcestershire across 3 sites (predominantly office based with flexibility for remote working of 1 day per week) Reports To: Partner, Head of Finance and Operations Department: Operational Support Direct Reports: 1 1st Line IT Support Technician Role Purpose The Head of IT has full accountability for the firm's information technology environment, ensuring it is secure, resilient, scalable and aligned to the firm's strategic and regulatory objectives. The role will also be responsible for driving the thoughtful and appropriate adoption of AI and automation, ensuring these technologies are used safely, ethically and pragmatically to enhance efficiency, decision making and client service. This is a senior leadership role with clear ownership of the end to end IT estate, including infrastructure, applications, cybersecurity, data and third party services. The role is responsible not only for operational stability, but for shaping and delivering the firm's technology roadmap so that technology actively supports business growth, efficiency and risk management. Working closely with senior leadership, the Head of IT will plan, prioritise and deliver technology initiatives using robust project management disciplines, ensuring change is well governed, outcomes focused and delivered with minimal disruption to the business. Core Accountabilities The overall performance, security and resilience of the firm's IT estate Ownership and continuous evolution of the business technology stack Delivery of IT and digital change programmes through effective project management Alignment of technology decisions with business strategy, regulatory obligations and operational risk IT governance, supplier performance, investment decisions and technology related risk Driving the responsible use of AI and automation to support efficiency, insight and business growth Key Responsibilities Technology Ownership & Infrastructure Own and manage the firm's IT infrastructure, including hardware, software, networks, cloud services, servers, storage, backup and disaster recovery Ensure systems are secure, reliable, well maintained and capable of scaling with business growth Proactively identify and address performance issues, capacity constraints and technical debt Oversee and coordinate external IT service providers where required Cybersecurity & Data Protection Hold overall accountability for the firm's cybersecurity posture Define, implement and enforce security policies, standards and controls Monitor systems and risks, responding appropriately to threats and incidents Ensure compliance with GDPR, data protection legislation and industry best practice Act as senior owner for IT related incidents, risk management and remediation Business Applications & Technology Stack Own the selection, implementation, integration and optimisation of core business systems Ensure applications are stable, well integrated and aligned to business processes Manage vendor relationships to maximise value, performance and reliability Ensure users are informed of relevant system changes and improvements IT Strategy, Projects & Change Delivery Define and maintain a clear IT strategy and multi year technology roadmap Translate strategic objectives into clearly scoped, prioritised and well governed IT projects Lead and deliver IT and digital change initiatives using appropriate project management methodologies Manage project plans, risks, dependencies, budgets and stakeholder communication Ensure technology change is delivered on time, within scope and aligned to business outcomes Business Continuity & Disaster Recovery Own and maintain disaster recovery and business continuity arrangements Ensure backups are robust, current and regularly tested Periodically test recovery processes and implement improvements Vendor, MSP & Contract Management Own the relationship and performance of the outsourced IT Managed Service Provider Manage all third party technology suppliers and service contracts Negotiate and review contracts and SLAs to ensure value, resilience and scalability Ensure contracts are renewed, replaced or exited in a controlled and timely manner Budget, Governance & Compliance Own the IT budget, cost forecasting and investment planning Ensure technology spend delivers clear business value Establish and maintain IT policies, procedures and governance frameworks Prepare for and manage IT audits and regulatory reviews Team Leadership & User Enablement Line manage and develop the 1st Line IT Support Technician Ensure users receive effective, timely and professional IT support Develop and deliver IT training to improve adoption and capability Maintain clear documentation, procedures and user guidance Key Skills & Experience Proven experience in a senior IT leadership role (IT Manager, IT Lead or Head of IT) Experience in accountancy, finance or professional services strongly preferred Strong knowledge of IT infrastructure, cloud platforms and business systems Demonstrable experience of cybersecurity, data protection and risk management Proven track record of delivering IT projects and managing technology change Strong vendor, contract and Managed Service Provider management experience Strong experience of building stakeholder relationships with Senior executives & C Suite. Proven line management, leadership and project management skills. Excellent communication and Team Player skills Strong decision making, prioritisation and problem solving abilities Qualifications Relevant certifications (e.g. Microsoft, ITIL, CompTIA, CISSP or similar) desirable Personal Attributes Clear ownership mindset with strong accountability Strategic thinker with a practical, delivery focused approach Confident decision maker able to balance risk, cost and business need Proactive, organised and comfortable managing competing priorities Able to operate both strategically and hands on when required Working Conditions Full time role, predominantly office based with some remote flexibility Occasional out of hours work for maintenance or critical incidents Benefits: Competitive salary 25 days annual leave, plus bank holidays Private Medical Health insurance Life Assurance Group Personal Pension Plan Electric Car scheme Cycle to Work Scheme Flexible Holiday Purchase Scheme Enhanced Family Pay - maternity, paternity, parental, and compassionate leave Employee Assistance Programme - 24/7 confidential helpline as well as online support If you wish to be considered for the role, please contact Joanne Harris on (phone number removed) or email me on (url removed)
Apr 24, 2026
Full time
Job Title: Head of IT Location: Worcestershire across 3 sites (predominantly office based with flexibility for remote working of 1 day per week) Reports To: Partner, Head of Finance and Operations Department: Operational Support Direct Reports: 1 1st Line IT Support Technician Role Purpose The Head of IT has full accountability for the firm's information technology environment, ensuring it is secure, resilient, scalable and aligned to the firm's strategic and regulatory objectives. The role will also be responsible for driving the thoughtful and appropriate adoption of AI and automation, ensuring these technologies are used safely, ethically and pragmatically to enhance efficiency, decision making and client service. This is a senior leadership role with clear ownership of the end to end IT estate, including infrastructure, applications, cybersecurity, data and third party services. The role is responsible not only for operational stability, but for shaping and delivering the firm's technology roadmap so that technology actively supports business growth, efficiency and risk management. Working closely with senior leadership, the Head of IT will plan, prioritise and deliver technology initiatives using robust project management disciplines, ensuring change is well governed, outcomes focused and delivered with minimal disruption to the business. Core Accountabilities The overall performance, security and resilience of the firm's IT estate Ownership and continuous evolution of the business technology stack Delivery of IT and digital change programmes through effective project management Alignment of technology decisions with business strategy, regulatory obligations and operational risk IT governance, supplier performance, investment decisions and technology related risk Driving the responsible use of AI and automation to support efficiency, insight and business growth Key Responsibilities Technology Ownership & Infrastructure Own and manage the firm's IT infrastructure, including hardware, software, networks, cloud services, servers, storage, backup and disaster recovery Ensure systems are secure, reliable, well maintained and capable of scaling with business growth Proactively identify and address performance issues, capacity constraints and technical debt Oversee and coordinate external IT service providers where required Cybersecurity & Data Protection Hold overall accountability for the firm's cybersecurity posture Define, implement and enforce security policies, standards and controls Monitor systems and risks, responding appropriately to threats and incidents Ensure compliance with GDPR, data protection legislation and industry best practice Act as senior owner for IT related incidents, risk management and remediation Business Applications & Technology Stack Own the selection, implementation, integration and optimisation of core business systems Ensure applications are stable, well integrated and aligned to business processes Manage vendor relationships to maximise value, performance and reliability Ensure users are informed of relevant system changes and improvements IT Strategy, Projects & Change Delivery Define and maintain a clear IT strategy and multi year technology roadmap Translate strategic objectives into clearly scoped, prioritised and well governed IT projects Lead and deliver IT and digital change initiatives using appropriate project management methodologies Manage project plans, risks, dependencies, budgets and stakeholder communication Ensure technology change is delivered on time, within scope and aligned to business outcomes Business Continuity & Disaster Recovery Own and maintain disaster recovery and business continuity arrangements Ensure backups are robust, current and regularly tested Periodically test recovery processes and implement improvements Vendor, MSP & Contract Management Own the relationship and performance of the outsourced IT Managed Service Provider Manage all third party technology suppliers and service contracts Negotiate and review contracts and SLAs to ensure value, resilience and scalability Ensure contracts are renewed, replaced or exited in a controlled and timely manner Budget, Governance & Compliance Own the IT budget, cost forecasting and investment planning Ensure technology spend delivers clear business value Establish and maintain IT policies, procedures and governance frameworks Prepare for and manage IT audits and regulatory reviews Team Leadership & User Enablement Line manage and develop the 1st Line IT Support Technician Ensure users receive effective, timely and professional IT support Develop and deliver IT training to improve adoption and capability Maintain clear documentation, procedures and user guidance Key Skills & Experience Proven experience in a senior IT leadership role (IT Manager, IT Lead or Head of IT) Experience in accountancy, finance or professional services strongly preferred Strong knowledge of IT infrastructure, cloud platforms and business systems Demonstrable experience of cybersecurity, data protection and risk management Proven track record of delivering IT projects and managing technology change Strong vendor, contract and Managed Service Provider management experience Strong experience of building stakeholder relationships with Senior executives & C Suite. Proven line management, leadership and project management skills. Excellent communication and Team Player skills Strong decision making, prioritisation and problem solving abilities Qualifications Relevant certifications (e.g. Microsoft, ITIL, CompTIA, CISSP or similar) desirable Personal Attributes Clear ownership mindset with strong accountability Strategic thinker with a practical, delivery focused approach Confident decision maker able to balance risk, cost and business need Proactive, organised and comfortable managing competing priorities Able to operate both strategically and hands on when required Working Conditions Full time role, predominantly office based with some remote flexibility Occasional out of hours work for maintenance or critical incidents Benefits: Competitive salary 25 days annual leave, plus bank holidays Private Medical Health insurance Life Assurance Group Personal Pension Plan Electric Car scheme Cycle to Work Scheme Flexible Holiday Purchase Scheme Enhanced Family Pay - maternity, paternity, parental, and compassionate leave Employee Assistance Programme - 24/7 confidential helpline as well as online support If you wish to be considered for the role, please contact Joanne Harris on (phone number removed) or email me on (url removed)
At Workstreet, we're on an exciting journey to help businesses scale securely by designing and implementing cutting edge security and compliance programs. As a fast growing startup, we specialize in a wide range of frameworks-including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP-empowering companies to meet regulatory requirements and enhance their cybersecurity posture from day one. The Opportunity We are seeking a Manager, GRC Engineering who leads with a client first mindset and brings exceptional relationship management skills to every engagement. The ideal candidate is an experienced client manager who knows how to build trust, navigate complex accounts, and deliver an outstanding client experience - while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take on clients within your first 15 days. You will serve as the primary point of contact for a portfolio of clients, leading engagements end to end, managing escalations with composure and urgency, and ensuring every client interaction reflects the highest standard of service. What You'll Do Client Relationship Management (Primary Focus) Own the Client Experience: Serve as the primary point of contact for a portfolio of client accounts, building strong, trusted relationships and ensuring clients feel supported, informed, and valued throughout every engagement. Lead Client Engagements: Guide clients through compliance initiatives end to end - from kickoff through certification - providing clear communication, proactive updates, and expert guidance at every milestone. Handle Escalations with Professionalism: Resolve complex client issues and requests with urgency, composure, and a solution oriented approach that reinforces confidence and long term retention. Be a Trusted Advisor: Understand each client's unique business context and deliver compliance guidance that is practical, actionable, and tailored to their needs. Collaborate Cross Functionally: Partner with internal teams and client stakeholders to embed security and compliance best practices and resolve issues quickly. Manage and Develop a Pod of Analysts: Lead a team of 3-5 analysts through coaching, mentorship, and performance management, fostering accountability, quality, and professional growth. Drive Consistent Delivery: Ensure the team meets deadlines and delivers high quality work across all active client engagements, stepping in to support where needed. GRC & Compliance Execution Develop and Maintain Compliance Frameworks: Create, update, and align compliance policies, procedures, and technical controls with SOC 2 (Type 1 & 2), ISO 27001, HIPAA, and PCI DSS standards. Lead Compliance Certifications: Oversee and execute SOC 2 and ISO 27001 implementation and certification projects across multi cloud environments (AWS, GCP, Azure). Conduct Risk and Security Audits: Perform regular risk assessments and audits to identify vulnerabilities and enhance overall security posture. Monitor Regulatory Developments: Stay informed on evolving regulations and frameworks to maintain the relevance and accuracy of compliance controls. Leverage Compliance Automation Tools: Utilize platforms such as Drata, Vanta, and SecureFrame to track compliance metrics and ensure continuous audit readiness. Who You Are Required Demonstrated experience managing client relationships directly - you are comfortable owning accounts, leading difficult conversations, and being the trusted face of an engagement. Exceptional professionalism in all client facing communication, with outstanding written and verbal English skills. 5+ years of experience managing or leading a team. Proven experience managing compliance programs with hands on familiarity with SOC 2 and ISO 27001 frameworks. Strong knowledge of technical control implementation in cloud platforms (AWS, GCP, Azure). Ability to manage multiple compliance projects simultaneously without sacrificing client experience or quality. Bachelor's degree in Information Technology, Cybersecurity, or a related field. Ability to work independently with a strong sense of initiative. Amenable to working US time zone hours. Nice to Have Experience at a Big 4 firm (e.g., Deloitte, PwC, EY, KPMG) in an advisory or assurance capacity. Consulting experience. Familiarity with additional frameworks and regulations (e.g., HiTRUST, PCI DSS, NIST, GDPR, HIPAA). What We Offer Career Development: Clear growth path with mentorship and training opportunities. Technical Training: Comprehensive onboarding on security and compliance frameworks. Competitive Compensation: Competitive base salary with regular performance reviews, merit based appraisals, and bonus opportunities. Growth Opportunity: Early stage company with significant room for career advancement. Remote First Culture: Flexibility to work from anywhere while collaborating with a global team. Reliable high speed internet connection. Quiet, professional home office setup. Must be amenable to working UK time zone hours. Fluency in written and verbal English communication skills. Workstreet Is An Equal Opportunity Employer As an equal opportunity employer, Workstreet is committed to providing employment opportunities to all individuals. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.
Apr 23, 2026
Full time
At Workstreet, we're on an exciting journey to help businesses scale securely by designing and implementing cutting edge security and compliance programs. As a fast growing startup, we specialize in a wide range of frameworks-including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP-empowering companies to meet regulatory requirements and enhance their cybersecurity posture from day one. The Opportunity We are seeking a Manager, GRC Engineering who leads with a client first mindset and brings exceptional relationship management skills to every engagement. The ideal candidate is an experienced client manager who knows how to build trust, navigate complex accounts, and deliver an outstanding client experience - while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take on clients within your first 15 days. You will serve as the primary point of contact for a portfolio of clients, leading engagements end to end, managing escalations with composure and urgency, and ensuring every client interaction reflects the highest standard of service. What You'll Do Client Relationship Management (Primary Focus) Own the Client Experience: Serve as the primary point of contact for a portfolio of client accounts, building strong, trusted relationships and ensuring clients feel supported, informed, and valued throughout every engagement. Lead Client Engagements: Guide clients through compliance initiatives end to end - from kickoff through certification - providing clear communication, proactive updates, and expert guidance at every milestone. Handle Escalations with Professionalism: Resolve complex client issues and requests with urgency, composure, and a solution oriented approach that reinforces confidence and long term retention. Be a Trusted Advisor: Understand each client's unique business context and deliver compliance guidance that is practical, actionable, and tailored to their needs. Collaborate Cross Functionally: Partner with internal teams and client stakeholders to embed security and compliance best practices and resolve issues quickly. Manage and Develop a Pod of Analysts: Lead a team of 3-5 analysts through coaching, mentorship, and performance management, fostering accountability, quality, and professional growth. Drive Consistent Delivery: Ensure the team meets deadlines and delivers high quality work across all active client engagements, stepping in to support where needed. GRC & Compliance Execution Develop and Maintain Compliance Frameworks: Create, update, and align compliance policies, procedures, and technical controls with SOC 2 (Type 1 & 2), ISO 27001, HIPAA, and PCI DSS standards. Lead Compliance Certifications: Oversee and execute SOC 2 and ISO 27001 implementation and certification projects across multi cloud environments (AWS, GCP, Azure). Conduct Risk and Security Audits: Perform regular risk assessments and audits to identify vulnerabilities and enhance overall security posture. Monitor Regulatory Developments: Stay informed on evolving regulations and frameworks to maintain the relevance and accuracy of compliance controls. Leverage Compliance Automation Tools: Utilize platforms such as Drata, Vanta, and SecureFrame to track compliance metrics and ensure continuous audit readiness. Who You Are Required Demonstrated experience managing client relationships directly - you are comfortable owning accounts, leading difficult conversations, and being the trusted face of an engagement. Exceptional professionalism in all client facing communication, with outstanding written and verbal English skills. 5+ years of experience managing or leading a team. Proven experience managing compliance programs with hands on familiarity with SOC 2 and ISO 27001 frameworks. Strong knowledge of technical control implementation in cloud platforms (AWS, GCP, Azure). Ability to manage multiple compliance projects simultaneously without sacrificing client experience or quality. Bachelor's degree in Information Technology, Cybersecurity, or a related field. Ability to work independently with a strong sense of initiative. Amenable to working US time zone hours. Nice to Have Experience at a Big 4 firm (e.g., Deloitte, PwC, EY, KPMG) in an advisory or assurance capacity. Consulting experience. Familiarity with additional frameworks and regulations (e.g., HiTRUST, PCI DSS, NIST, GDPR, HIPAA). What We Offer Career Development: Clear growth path with mentorship and training opportunities. Technical Training: Comprehensive onboarding on security and compliance frameworks. Competitive Compensation: Competitive base salary with regular performance reviews, merit based appraisals, and bonus opportunities. Growth Opportunity: Early stage company with significant room for career advancement. Remote First Culture: Flexibility to work from anywhere while collaborating with a global team. Reliable high speed internet connection. Quiet, professional home office setup. Must be amenable to working UK time zone hours. Fluency in written and verbal English communication skills. Workstreet Is An Equal Opportunity Employer As an equal opportunity employer, Workstreet is committed to providing employment opportunities to all individuals. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.
Base Location: You'll be expected to spend 50% of your working week in one of the following locations: Reading, Havant, Glasgow or Perth. Salary: £50,100 - £75,100 + performance-related bonus and a range of benefits to support your finances, wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available. The Role The IT Risk and Controls Manager, within the Service Operations and Delivery team, assists with the implementation and ongoing development of IT risk and control procedures throughout the SIAM ecosystem. With a focus on proactive risk management and operational resilience, the role collaborates closely with IT stakeholders, service delivery teams, and providers to identify, communicate, and address compliance challenges, ensuring operational risks are effectively managed within the organisation's risk appetite. This role evaluates the effectiveness of IT controls, verifies adherence to established standards and requirements, and provides critical information to support the Service Leadership team in informed decision-making. In addition, this position drives the seamless integration of controls into operational processes and services, works in partnership with the Governance Risk and Compliance (GRC) team, and builds strong relationships with IT Partners, Business Units, and service providers to foster a culture of continual improvement and operational resilience. You Will Ensure IT systems and operational processes comply with relevant regulations and industry standards and conduct regular and thorough IT risk assessments in collaboration with cross-functional teams to identify potential compliance gaps and areas for improvement. Drive operational resilience initiatives by ensuring IT systems and services are robust, recoverable, and capable of withstanding disruptions. Support the business continuity and disaster recovery (BC/DR) planning and testing processes from an IT risk and controls perspective, ensuring that appropriate measures and controls are in place, regularly reviewed, and improved to minimise the impact of incidents on business operations. Manage the Group Technology Services (GTS) Operational Risk Register by diligently tracking operational risks, embedding appropriate controls within business processes, and providing regular updates on risk status. Reporting on IT risk and control matters, including emerging issues and outstanding actions, directly to Risk Boards and Committees to facilitate informed decision making. Consult closely with Cyber Risk and Information Security teams to align strategies, share insights, and ensure a unified approach to managing IT risks and collaborate effectively with the 2LOD GRC Team and engage with GTS stakeholders to drive a culture of compliance and strengthen overall governance structures. Coordinate activities with audit teams to systematically review and evaluate IT controls and processes, addressing any identified weaknesses or instances of non compliance. You Have Experience of delivering IT risk, compliance or assurance activities including operational resilience. Good knowledge of IT governance frameworks such as COBIT 5, ITIL, ISO 31000, 27005, 38500 and their interactions. Experience of designing or reviewing IT processes and their controls and performing risk assessments. Working knowledge of IT and operational risk, IT and enterprise architecture, IT strategy and IT outsourcing, service management, and delivery. Proficiency in communicating and collaborating with both internal and external stakeholders. About SSE SSE's purpose is to provide energy needed today while building a better world of energy for tomorrow. We do this by developing, building, operating and investing in electricity infrastructure and businesses needed in the energy transition. Our Transforming for Growth investment plan sees us investing £33 bn in critical electricity infrastructure across the five years to 2030. Our IT division powers growth across all SSE business areas by making sure we have the systems, software and security needed to take the lead in a low carbon world. They provide expertise, advice and day to day support in emerging technologies, data and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24/7 counselling service. Interest free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. Generous family entitlements such as maternity and adoption pay, and paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal opportunities for everyone to succeed and especially welcome applications from those who may not be well represented in our workforce or industry.
Apr 23, 2026
Full time
Base Location: You'll be expected to spend 50% of your working week in one of the following locations: Reading, Havant, Glasgow or Perth. Salary: £50,100 - £75,100 + performance-related bonus and a range of benefits to support your finances, wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available. The Role The IT Risk and Controls Manager, within the Service Operations and Delivery team, assists with the implementation and ongoing development of IT risk and control procedures throughout the SIAM ecosystem. With a focus on proactive risk management and operational resilience, the role collaborates closely with IT stakeholders, service delivery teams, and providers to identify, communicate, and address compliance challenges, ensuring operational risks are effectively managed within the organisation's risk appetite. This role evaluates the effectiveness of IT controls, verifies adherence to established standards and requirements, and provides critical information to support the Service Leadership team in informed decision-making. In addition, this position drives the seamless integration of controls into operational processes and services, works in partnership with the Governance Risk and Compliance (GRC) team, and builds strong relationships with IT Partners, Business Units, and service providers to foster a culture of continual improvement and operational resilience. You Will Ensure IT systems and operational processes comply with relevant regulations and industry standards and conduct regular and thorough IT risk assessments in collaboration with cross-functional teams to identify potential compliance gaps and areas for improvement. Drive operational resilience initiatives by ensuring IT systems and services are robust, recoverable, and capable of withstanding disruptions. Support the business continuity and disaster recovery (BC/DR) planning and testing processes from an IT risk and controls perspective, ensuring that appropriate measures and controls are in place, regularly reviewed, and improved to minimise the impact of incidents on business operations. Manage the Group Technology Services (GTS) Operational Risk Register by diligently tracking operational risks, embedding appropriate controls within business processes, and providing regular updates on risk status. Reporting on IT risk and control matters, including emerging issues and outstanding actions, directly to Risk Boards and Committees to facilitate informed decision making. Consult closely with Cyber Risk and Information Security teams to align strategies, share insights, and ensure a unified approach to managing IT risks and collaborate effectively with the 2LOD GRC Team and engage with GTS stakeholders to drive a culture of compliance and strengthen overall governance structures. Coordinate activities with audit teams to systematically review and evaluate IT controls and processes, addressing any identified weaknesses or instances of non compliance. You Have Experience of delivering IT risk, compliance or assurance activities including operational resilience. Good knowledge of IT governance frameworks such as COBIT 5, ITIL, ISO 31000, 27005, 38500 and their interactions. Experience of designing or reviewing IT processes and their controls and performing risk assessments. Working knowledge of IT and operational risk, IT and enterprise architecture, IT strategy and IT outsourcing, service management, and delivery. Proficiency in communicating and collaborating with both internal and external stakeholders. About SSE SSE's purpose is to provide energy needed today while building a better world of energy for tomorrow. We do this by developing, building, operating and investing in electricity infrastructure and businesses needed in the energy transition. Our Transforming for Growth investment plan sees us investing £33 bn in critical electricity infrastructure across the five years to 2030. Our IT division powers growth across all SSE business areas by making sure we have the systems, software and security needed to take the lead in a low carbon world. They provide expertise, advice and day to day support in emerging technologies, data and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24/7 counselling service. Interest free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. Generous family entitlements such as maternity and adoption pay, and paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal opportunities for everyone to succeed and especially welcome applications from those who may not be well represented in our workforce or industry.
Get Staffed Online Recruitment Limited
Ringwood, Hampshire
ISO and Compliance Manager Location: Ringwood, Hampshire + non-contractual hybrid home working Salary: £40,000 - £45,000 DoE + Profit Share + Benefits Hours: 37.5 hours per week The Role Are you an experienced ISO and Compliance Manager, who ensures an organisation maintains full adherence to all statutory, regulatory, contractual, and certification based obligations. This is a key role in overseeing multiple ISO management systems, data security and privacy frameworks. Duties Include: Managing, maintaining, and continually improving ISO 9001, ISO 27001, ISO 20000, and ISO 14001 management systems. Coordinating internal audit schedules. Supporting external surveillance / recertification audits. Maintaining controlled documentation and evidence of conformity. Leading the annual DSPT submission and maintaining DSPT evidence libraries. Planning and coordinating Cyber Essentials Plus certification and audit activity. Supporting organisational risk management and maintaining relevant registers. Skills and Experience: 3+ years' experience in a similar role. Ability to work independently and in a fast paced team environment. Strong knowledge of ISO frameworks and audit processes. Experience with DSPT, CE+ and regulatory compliance. Excellent documentation, audit, and evidence tracking skills. Strong organisational and communication abilities across technical and non technical teams. Experience in risk management, environmental compliance, or insurance (desirable). High attention to detail with evidence based working. Analytical mindset with the ability to turn regulatory requirements into practical processes. Proactive, positive attitude with strong ownership. The Package: Company Profit Share (first £3,600 is tax free). 22 days annual leave plus bank holidays, increasing with your length of service. Birthday as additional paid leave. Additional paid leave (dependent on company performance). Private Medical Insurance, including dental. Ongoing training and support. Company sick pay policy. Pension Scheme. Hybrid Working Progression opportunities. Fresh fruit, the occasional pizza and a posh coffee machine! Our Client Our client has been a specialist IT Infrastructure and Support Services provider for over 25 years. They are an Employee Ownership Trust - a growing company. They are proud winners of Best Place to Work award and overall winner of the Ringwood Business Awards 2024. Their core services include support desk, on-site engineering, project management and delivery, storage and logistics, and technical consultancy. They encourage progression within themselves for their colleagues, offering opportunities in other teams and departments. Join our client's friendly company, where a great team and a positive culture await you.
Apr 23, 2026
Full time
ISO and Compliance Manager Location: Ringwood, Hampshire + non-contractual hybrid home working Salary: £40,000 - £45,000 DoE + Profit Share + Benefits Hours: 37.5 hours per week The Role Are you an experienced ISO and Compliance Manager, who ensures an organisation maintains full adherence to all statutory, regulatory, contractual, and certification based obligations. This is a key role in overseeing multiple ISO management systems, data security and privacy frameworks. Duties Include: Managing, maintaining, and continually improving ISO 9001, ISO 27001, ISO 20000, and ISO 14001 management systems. Coordinating internal audit schedules. Supporting external surveillance / recertification audits. Maintaining controlled documentation and evidence of conformity. Leading the annual DSPT submission and maintaining DSPT evidence libraries. Planning and coordinating Cyber Essentials Plus certification and audit activity. Supporting organisational risk management and maintaining relevant registers. Skills and Experience: 3+ years' experience in a similar role. Ability to work independently and in a fast paced team environment. Strong knowledge of ISO frameworks and audit processes. Experience with DSPT, CE+ and regulatory compliance. Excellent documentation, audit, and evidence tracking skills. Strong organisational and communication abilities across technical and non technical teams. Experience in risk management, environmental compliance, or insurance (desirable). High attention to detail with evidence based working. Analytical mindset with the ability to turn regulatory requirements into practical processes. Proactive, positive attitude with strong ownership. The Package: Company Profit Share (first £3,600 is tax free). 22 days annual leave plus bank holidays, increasing with your length of service. Birthday as additional paid leave. Additional paid leave (dependent on company performance). Private Medical Insurance, including dental. Ongoing training and support. Company sick pay policy. Pension Scheme. Hybrid Working Progression opportunities. Fresh fruit, the occasional pizza and a posh coffee machine! Our Client Our client has been a specialist IT Infrastructure and Support Services provider for over 25 years. They are an Employee Ownership Trust - a growing company. They are proud winners of Best Place to Work award and overall winner of the Ringwood Business Awards 2024. Their core services include support desk, on-site engineering, project management and delivery, storage and logistics, and technical consultancy. They encourage progression within themselves for their colleagues, offering opportunities in other teams and departments. Join our client's friendly company, where a great team and a positive culture await you.
Base Location: You'll be expected to spend 50% of your working week in one of the following locations: Reading, Havant, Glasgow or Perth. Salary: £50,100 - £75,100 + performance-related bonus and a range of benefits to support your finances, wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available. The Role The IT Risk and Controls Manager, within the Service Operations and Delivery team, assists with the implementation and ongoing development of IT risk and control procedures throughout the SIAM ecosystem. With a focus on proactive risk management and operational resilience, the role collaborates closely with IT stakeholders, service delivery teams, and providers to identify, communicate, and address compliance challenges, ensuring operational risks are effectively managed within the organisation's risk appetite. This role evaluates the effectiveness of IT controls, verifies adherence to established standards and requirements, and provides critical information to support the Service Leadership team in informed decision-making. In addition, this position drives the seamless integration of controls into operational processes and services, works in partnership with the Governance Risk and Compliance (GRC) team, and builds strong relationships with IT Partners, Business Units, and service providers to foster a culture of continual improvement and operational resilience. You Will Ensure IT systems and operational processes comply with relevant regulations and industry standards and conduct regular and thorough IT risk assessments in collaboration with cross-functional teams to identify potential compliance gaps and areas for improvement. Drive operational resilience initiatives by ensuring IT systems and services are robust, recoverable, and capable of withstanding disruptions. Support the business continuity and disaster recovery (BC/DR) planning and testing processes from an IT risk and controls perspective, ensuring that appropriate measures and controls are in place, regularly reviewed, and improved to minimise the impact of incidents on business operations. Manage the Group Technology Services (GTS) Operational Risk Register by diligently tracking operational risks, embedding appropriate controls within business processes, and providing regular updates on risk status. Reporting on IT risk and control matters, including emerging issues and outstanding actions, directly to Risk Boards and Committees to facilitate informed decision making. Consult closely with Cyber Risk and Information Security teams to align strategies, share insights, and ensure a unified approach to managing IT risks and collaborate effectively with the 2LOD GRC Team and engage with GTS stakeholders to drive a culture of compliance and strengthen overall governance structures. Coordinate activities with audit teams to systematically review and evaluate IT controls and processes, addressing any identified weaknesses or instances of non compliance. You Have Experience of delivering IT risk, compliance or assurance activities including operational resilience. Good knowledge of IT governance frameworks such as COBIT 5, ITIL, ISO 31000, 27005, 38500 and their interactions. Experience of designing or reviewing IT processes and their controls and performing risk assessments. Working knowledge of IT and operational risk, IT and enterprise architecture, IT strategy and IT outsourcing, service management, and delivery. Proficiency in communicating and collaborating with both internal and external stakeholders. About SSE SSE's purpose is to provide energy needed today while building a better world of energy for tomorrow. We do this by developing, building, operating and investing in electricity infrastructure and businesses needed in the energy transition. Our Transforming for Growth investment plan sees us investing £33 bn in critical electricity infrastructure across the five years to 2030. Our IT division powers growth across all SSE business areas by making sure we have the systems, software and security needed to take the lead in a low carbon world. They provide expertise, advice and day to day support in emerging technologies, data and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24/7 counselling service. Interest free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. Generous family entitlements such as maternity and adoption pay, and paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal opportunities for everyone to succeed and especially welcome applications from those who may not be well represented in our workforce or industry.
Apr 23, 2026
Full time
Base Location: You'll be expected to spend 50% of your working week in one of the following locations: Reading, Havant, Glasgow or Perth. Salary: £50,100 - £75,100 + performance-related bonus and a range of benefits to support your finances, wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available. The Role The IT Risk and Controls Manager, within the Service Operations and Delivery team, assists with the implementation and ongoing development of IT risk and control procedures throughout the SIAM ecosystem. With a focus on proactive risk management and operational resilience, the role collaborates closely with IT stakeholders, service delivery teams, and providers to identify, communicate, and address compliance challenges, ensuring operational risks are effectively managed within the organisation's risk appetite. This role evaluates the effectiveness of IT controls, verifies adherence to established standards and requirements, and provides critical information to support the Service Leadership team in informed decision-making. In addition, this position drives the seamless integration of controls into operational processes and services, works in partnership with the Governance Risk and Compliance (GRC) team, and builds strong relationships with IT Partners, Business Units, and service providers to foster a culture of continual improvement and operational resilience. You Will Ensure IT systems and operational processes comply with relevant regulations and industry standards and conduct regular and thorough IT risk assessments in collaboration with cross-functional teams to identify potential compliance gaps and areas for improvement. Drive operational resilience initiatives by ensuring IT systems and services are robust, recoverable, and capable of withstanding disruptions. Support the business continuity and disaster recovery (BC/DR) planning and testing processes from an IT risk and controls perspective, ensuring that appropriate measures and controls are in place, regularly reviewed, and improved to minimise the impact of incidents on business operations. Manage the Group Technology Services (GTS) Operational Risk Register by diligently tracking operational risks, embedding appropriate controls within business processes, and providing regular updates on risk status. Reporting on IT risk and control matters, including emerging issues and outstanding actions, directly to Risk Boards and Committees to facilitate informed decision making. Consult closely with Cyber Risk and Information Security teams to align strategies, share insights, and ensure a unified approach to managing IT risks and collaborate effectively with the 2LOD GRC Team and engage with GTS stakeholders to drive a culture of compliance and strengthen overall governance structures. Coordinate activities with audit teams to systematically review and evaluate IT controls and processes, addressing any identified weaknesses or instances of non compliance. You Have Experience of delivering IT risk, compliance or assurance activities including operational resilience. Good knowledge of IT governance frameworks such as COBIT 5, ITIL, ISO 31000, 27005, 38500 and their interactions. Experience of designing or reviewing IT processes and their controls and performing risk assessments. Working knowledge of IT and operational risk, IT and enterprise architecture, IT strategy and IT outsourcing, service management, and delivery. Proficiency in communicating and collaborating with both internal and external stakeholders. About SSE SSE's purpose is to provide energy needed today while building a better world of energy for tomorrow. We do this by developing, building, operating and investing in electricity infrastructure and businesses needed in the energy transition. Our Transforming for Growth investment plan sees us investing £33 bn in critical electricity infrastructure across the five years to 2030. Our IT division powers growth across all SSE business areas by making sure we have the systems, software and security needed to take the lead in a low carbon world. They provide expertise, advice and day to day support in emerging technologies, data and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24/7 counselling service. Interest free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. Generous family entitlements such as maternity and adoption pay, and paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal opportunities for everyone to succeed and especially welcome applications from those who may not be well represented in our workforce or industry.
Base Location: You'll be expected to spend 50% of your working week in one of the following locations: Reading, Havant, Glasgow or Perth. Salary: £50,100 - £75,100 + performance-related bonus and a range of benefits to support your finances, wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available. The Role The IT Risk and Controls Manager, within the Service Operations and Delivery team, assists with the implementation and ongoing development of IT risk and control procedures throughout the SIAM ecosystem. With a focus on proactive risk management and operational resilience, the role collaborates closely with IT stakeholders, service delivery teams, and providers to identify, communicate, and address compliance challenges, ensuring operational risks are effectively managed within the organisation's risk appetite. This role evaluates the effectiveness of IT controls, verifies adherence to established standards and requirements, and provides critical information to support the Service Leadership team in informed decision-making. In addition, this position drives the seamless integration of controls into operational processes and services, works in partnership with the Governance Risk and Compliance (GRC) team, and builds strong relationships with IT Partners, Business Units, and service providers to foster a culture of continual improvement and operational resilience. You Will Ensure IT systems and operational processes comply with relevant regulations and industry standards and conduct regular and thorough IT risk assessments in collaboration with cross-functional teams to identify potential compliance gaps and areas for improvement. Drive operational resilience initiatives by ensuring IT systems and services are robust, recoverable, and capable of withstanding disruptions. Support the business continuity and disaster recovery (BC/DR) planning and testing processes from an IT risk and controls perspective, ensuring that appropriate measures and controls are in place, regularly reviewed, and improved to minimise the impact of incidents on business operations. Manage the Group Technology Services (GTS) Operational Risk Register by diligently tracking operational risks, embedding appropriate controls within business processes, and providing regular updates on risk status. Reporting on IT risk and control matters, including emerging issues and outstanding actions, directly to Risk Boards and Committees to facilitate informed decision making. Consult closely with Cyber Risk and Information Security teams to align strategies, share insights, and ensure a unified approach to managing IT risks and collaborate effectively with the 2LOD GRC Team and engage with GTS stakeholders to drive a culture of compliance and strengthen overall governance structures. Coordinate activities with audit teams to systematically review and evaluate IT controls and processes, addressing any identified weaknesses or instances of non compliance. You Have Experience of delivering IT risk, compliance or assurance activities including operational resilience. Good knowledge of IT governance frameworks such as COBIT 5, ITIL, ISO 31000, 27005, 38500 and their interactions. Experience of designing or reviewing IT processes and their controls and performing risk assessments. Working knowledge of IT and operational risk, IT and enterprise architecture, IT strategy and IT outsourcing, service management, and delivery. Proficiency in communicating and collaborating with both internal and external stakeholders. About SSE SSE's purpose is to provide energy needed today while building a better world of energy for tomorrow. We do this by developing, building, operating and investing in electricity infrastructure and businesses needed in the energy transition. Our Transforming for Growth investment plan sees us investing £33 bn in critical electricity infrastructure across the five years to 2030. Our IT division powers growth across all SSE business areas by making sure we have the systems, software and security needed to take the lead in a low carbon world. They provide expertise, advice and day to day support in emerging technologies, data and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24/7 counselling service. Interest free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. Generous family entitlements such as maternity and adoption pay, and paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal opportunities for everyone to succeed and especially welcome applications from those who may not be well represented in our workforce or industry.
Apr 23, 2026
Full time
Base Location: You'll be expected to spend 50% of your working week in one of the following locations: Reading, Havant, Glasgow or Perth. Salary: £50,100 - £75,100 + performance-related bonus and a range of benefits to support your finances, wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available. The Role The IT Risk and Controls Manager, within the Service Operations and Delivery team, assists with the implementation and ongoing development of IT risk and control procedures throughout the SIAM ecosystem. With a focus on proactive risk management and operational resilience, the role collaborates closely with IT stakeholders, service delivery teams, and providers to identify, communicate, and address compliance challenges, ensuring operational risks are effectively managed within the organisation's risk appetite. This role evaluates the effectiveness of IT controls, verifies adherence to established standards and requirements, and provides critical information to support the Service Leadership team in informed decision-making. In addition, this position drives the seamless integration of controls into operational processes and services, works in partnership with the Governance Risk and Compliance (GRC) team, and builds strong relationships with IT Partners, Business Units, and service providers to foster a culture of continual improvement and operational resilience. You Will Ensure IT systems and operational processes comply with relevant regulations and industry standards and conduct regular and thorough IT risk assessments in collaboration with cross-functional teams to identify potential compliance gaps and areas for improvement. Drive operational resilience initiatives by ensuring IT systems and services are robust, recoverable, and capable of withstanding disruptions. Support the business continuity and disaster recovery (BC/DR) planning and testing processes from an IT risk and controls perspective, ensuring that appropriate measures and controls are in place, regularly reviewed, and improved to minimise the impact of incidents on business operations. Manage the Group Technology Services (GTS) Operational Risk Register by diligently tracking operational risks, embedding appropriate controls within business processes, and providing regular updates on risk status. Reporting on IT risk and control matters, including emerging issues and outstanding actions, directly to Risk Boards and Committees to facilitate informed decision making. Consult closely with Cyber Risk and Information Security teams to align strategies, share insights, and ensure a unified approach to managing IT risks and collaborate effectively with the 2LOD GRC Team and engage with GTS stakeholders to drive a culture of compliance and strengthen overall governance structures. Coordinate activities with audit teams to systematically review and evaluate IT controls and processes, addressing any identified weaknesses or instances of non compliance. You Have Experience of delivering IT risk, compliance or assurance activities including operational resilience. Good knowledge of IT governance frameworks such as COBIT 5, ITIL, ISO 31000, 27005, 38500 and their interactions. Experience of designing or reviewing IT processes and their controls and performing risk assessments. Working knowledge of IT and operational risk, IT and enterprise architecture, IT strategy and IT outsourcing, service management, and delivery. Proficiency in communicating and collaborating with both internal and external stakeholders. About SSE SSE's purpose is to provide energy needed today while building a better world of energy for tomorrow. We do this by developing, building, operating and investing in electricity infrastructure and businesses needed in the energy transition. Our Transforming for Growth investment plan sees us investing £33 bn in critical electricity infrastructure across the five years to 2030. Our IT division powers growth across all SSE business areas by making sure we have the systems, software and security needed to take the lead in a low carbon world. They provide expertise, advice and day to day support in emerging technologies, data and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24/7 counselling service. Interest free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. Generous family entitlements such as maternity and adoption pay, and paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal opportunities for everyone to succeed and especially welcome applications from those who may not be well represented in our workforce or industry.
Job Title: Senior Infrastructure & Information Security Manager Location: Farringdon, London (Hybrid - 3 days onsite) Salary: £110,000 + generous bonus Overview In this senior leadership role within a high-performing international law firm of 200 users, you will be responsible for owning both infrastructure and information security across multiple global offices. The Role Lead IT infrastructure (M365, Azure, networks, identity, endpoints) Own the firm's security programme (ISO 27001, Cyber Essentials, risk, audits, incident response) Manage MSPs, SOC providers, and third-party vendors (SLAs, performance, contracts) Deliver key projects (migrations, upgrades, office setups, DR) Lead and develop a small team (2 direct reports) Act as escalation point for critical incidents What We're Looking For Strong background in infrastructure, now operating at a security leadership level Experience in a similar sized law firm is highly desirable Proven ownership of security frameworks, audits, and risk management Experience managing vendors and external providers Excellent communication and stakeholder engagement skills If this ticks all the boxes, hit 'Apply' now! Similar job titles include Network Security Manager, IT Security Manager, Infrastructure Manager, Head of IT, Head of Infrastructure & Security.
Apr 23, 2026
Full time
Job Title: Senior Infrastructure & Information Security Manager Location: Farringdon, London (Hybrid - 3 days onsite) Salary: £110,000 + generous bonus Overview In this senior leadership role within a high-performing international law firm of 200 users, you will be responsible for owning both infrastructure and information security across multiple global offices. The Role Lead IT infrastructure (M365, Azure, networks, identity, endpoints) Own the firm's security programme (ISO 27001, Cyber Essentials, risk, audits, incident response) Manage MSPs, SOC providers, and third-party vendors (SLAs, performance, contracts) Deliver key projects (migrations, upgrades, office setups, DR) Lead and develop a small team (2 direct reports) Act as escalation point for critical incidents What We're Looking For Strong background in infrastructure, now operating at a security leadership level Experience in a similar sized law firm is highly desirable Proven ownership of security frameworks, audits, and risk management Experience managing vendors and external providers Excellent communication and stakeholder engagement skills If this ticks all the boxes, hit 'Apply' now! Similar job titles include Network Security Manager, IT Security Manager, Infrastructure Manager, Head of IT, Head of Infrastructure & Security.
Project Manager/Business Analyst Preston Based (Remote working with visits to site as and when required.) 71.45 per hour Umbrella Inside IR35 6 Month Contract initially. This is a great opportunity to work within one of the UK's leading Defence organisations based In Preston. Mainly remote working with visits to site as and when required. Some travel to Barrow involved too. Typical duties include (but are not limited to): Pulling together all aspects of service delivery to achieve targets and KPIs Ensuring that Service Levels are achieved and appropriate Driving ITIL good practice and owning the Service Operations policies & processes Continuous Service Improvement through Problem & CSI processes Quality of data through asset & configuration management Running of DSR, WSR, MSR & Operations Review Working with Performance Management to communicate Operations performance Assurance of delivery through tools including Audit, SIPs, Self Certification Create and manage a Project plan Report on Project Progress Work with transition manager to deliver project Drive achievement on Project plan Act as Business Analyst, creating and managing requirements catalogue Travel to Barrow in Furness will be required Knowledge: The role holder will be an experienced 'hands-on' Project manager that will get work as part of a small team on a critical role transferring resources and workload in a cyber security organisation. Experience of project management, cyber security and business analysis are required. The role holder will have excellent knowledge of working in a large corporation, preferably relating to Cyber projects or people move related projects. Skills: Strong leadership skills Excellent collaborative skills Excellent influencing skills The role requires a robust character that can work in challenging and high pressure conditions. Qualifications: Formal Qualifications in Project Management are preferred but recognise that experience on the job training are equally valuable. For more information please contact Lauren Morley at JAM Recruitment or click apply.
Apr 22, 2026
Contractor
Project Manager/Business Analyst Preston Based (Remote working with visits to site as and when required.) 71.45 per hour Umbrella Inside IR35 6 Month Contract initially. This is a great opportunity to work within one of the UK's leading Defence organisations based In Preston. Mainly remote working with visits to site as and when required. Some travel to Barrow involved too. Typical duties include (but are not limited to): Pulling together all aspects of service delivery to achieve targets and KPIs Ensuring that Service Levels are achieved and appropriate Driving ITIL good practice and owning the Service Operations policies & processes Continuous Service Improvement through Problem & CSI processes Quality of data through asset & configuration management Running of DSR, WSR, MSR & Operations Review Working with Performance Management to communicate Operations performance Assurance of delivery through tools including Audit, SIPs, Self Certification Create and manage a Project plan Report on Project Progress Work with transition manager to deliver project Drive achievement on Project plan Act as Business Analyst, creating and managing requirements catalogue Travel to Barrow in Furness will be required Knowledge: The role holder will be an experienced 'hands-on' Project manager that will get work as part of a small team on a critical role transferring resources and workload in a cyber security organisation. Experience of project management, cyber security and business analysis are required. The role holder will have excellent knowledge of working in a large corporation, preferably relating to Cyber projects or people move related projects. Skills: Strong leadership skills Excellent collaborative skills Excellent influencing skills The role requires a robust character that can work in challenging and high pressure conditions. Qualifications: Formal Qualifications in Project Management are preferred but recognise that experience on the job training are equally valuable. For more information please contact Lauren Morley at JAM Recruitment or click apply.
Base Location: You'll be expected to spend 50% of your working week in one of the following locations: Reading, Havant, Glasgow or Perth. Salary: £50,100 - £75,100 + performance-related bonus and a range of benefits to support your finances, wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available. The Role The IT Risk and Controls Manager, within the Service Operations and Delivery team, assists with the implementation and ongoing development of IT risk and control procedures throughout the SIAM ecosystem. With a focus on proactive risk management and operational resilience, the role collaborates closely with IT stakeholders, service delivery teams, and providers to identify, communicate, and address compliance challenges, ensuring operational risks are effectively managed within the organisation's risk appetite. This role evaluates the effectiveness of IT controls, verifies adherence to established standards and requirements, and provides critical information to support the Service Leadership team in informed decision-making. In addition, this position drives the seamless integration of controls into operational processes and services, works in partnership with the Governance Risk and Compliance (GRC) team, and builds strong relationships with IT Partners, Business Units, and service providers to foster a culture of continual improvement and operational resilience. You Will Ensure IT systems and operational processes comply with relevant regulations and industry standards and conduct regular and thorough IT risk assessments in collaboration with cross-functional teams to identify potential compliance gaps and areas for improvement. Drive operational resilience initiatives by ensuring IT systems and services are robust, recoverable, and capable of withstanding disruptions. Support the business continuity and disaster recovery (BC/DR) planning and testing processes from an IT risk and controls perspective, ensuring that appropriate measures and controls are in place, regularly reviewed, and improved to minimise the impact of incidents on business operations. Manage the Group Technology Services (GTS) Operational Risk Register by diligently tracking operational risks, embedding appropriate controls within business processes, and providing regular updates on risk status. Reporting on IT risk and control matters, including emerging issues and outstanding actions, directly to Risk Boards and Committees to facilitate informed decision making. Consult closely with Cyber Risk and Information Security teams to align strategies, share insights, and ensure a unified approach to managing IT risks and collaborate effectively with the 2LOD GRC Team and engage with GTS stakeholders to drive a culture of compliance and strengthen overall governance structures. Coordinate activities with audit teams to systematically review and evaluate IT controls and processes, addressing any identified weaknesses or instances of non compliance. You Have Experience of delivering IT risk, compliance or assurance activities including operational resilience. Good knowledge of IT governance frameworks such as COBIT 5, ITIL, ISO 31000, 27005, 38500 and their interactions. Experience of designing or reviewing IT processes and their controls and performing risk assessments. Working knowledge of IT and operational risk, IT and enterprise architecture, IT strategy and IT outsourcing, service management, and delivery. Proficiency in communicating and collaborating with both internal and external stakeholders. About SSE SSE's purpose is to provide energy needed today while building a better world of energy for tomorrow. We do this by developing, building, operating and investing in electricity infrastructure and businesses needed in the energy transition. Our Transforming for Growth investment plan sees us investing £33 bn in critical electricity infrastructure across the five years to 2030. Our IT division powers growth across all SSE business areas by making sure we have the systems, software and security needed to take the lead in a low carbon world. They provide expertise, advice and day to day support in emerging technologies, data and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24/7 counselling service. Interest free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. Generous family entitlements such as maternity and adoption pay, and paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal opportunities for everyone to succeed and especially welcome applications from those who may not be well represented in our workforce or industry.
Apr 22, 2026
Full time
Base Location: You'll be expected to spend 50% of your working week in one of the following locations: Reading, Havant, Glasgow or Perth. Salary: £50,100 - £75,100 + performance-related bonus and a range of benefits to support your finances, wellbeing and family. Working Pattern: Permanent Full Time Flexible First options available. The Role The IT Risk and Controls Manager, within the Service Operations and Delivery team, assists with the implementation and ongoing development of IT risk and control procedures throughout the SIAM ecosystem. With a focus on proactive risk management and operational resilience, the role collaborates closely with IT stakeholders, service delivery teams, and providers to identify, communicate, and address compliance challenges, ensuring operational risks are effectively managed within the organisation's risk appetite. This role evaluates the effectiveness of IT controls, verifies adherence to established standards and requirements, and provides critical information to support the Service Leadership team in informed decision-making. In addition, this position drives the seamless integration of controls into operational processes and services, works in partnership with the Governance Risk and Compliance (GRC) team, and builds strong relationships with IT Partners, Business Units, and service providers to foster a culture of continual improvement and operational resilience. You Will Ensure IT systems and operational processes comply with relevant regulations and industry standards and conduct regular and thorough IT risk assessments in collaboration with cross-functional teams to identify potential compliance gaps and areas for improvement. Drive operational resilience initiatives by ensuring IT systems and services are robust, recoverable, and capable of withstanding disruptions. Support the business continuity and disaster recovery (BC/DR) planning and testing processes from an IT risk and controls perspective, ensuring that appropriate measures and controls are in place, regularly reviewed, and improved to minimise the impact of incidents on business operations. Manage the Group Technology Services (GTS) Operational Risk Register by diligently tracking operational risks, embedding appropriate controls within business processes, and providing regular updates on risk status. Reporting on IT risk and control matters, including emerging issues and outstanding actions, directly to Risk Boards and Committees to facilitate informed decision making. Consult closely with Cyber Risk and Information Security teams to align strategies, share insights, and ensure a unified approach to managing IT risks and collaborate effectively with the 2LOD GRC Team and engage with GTS stakeholders to drive a culture of compliance and strengthen overall governance structures. Coordinate activities with audit teams to systematically review and evaluate IT controls and processes, addressing any identified weaknesses or instances of non compliance. You Have Experience of delivering IT risk, compliance or assurance activities including operational resilience. Good knowledge of IT governance frameworks such as COBIT 5, ITIL, ISO 31000, 27005, 38500 and their interactions. Experience of designing or reviewing IT processes and their controls and performing risk assessments. Working knowledge of IT and operational risk, IT and enterprise architecture, IT strategy and IT outsourcing, service management, and delivery. Proficiency in communicating and collaborating with both internal and external stakeholders. About SSE SSE's purpose is to provide energy needed today while building a better world of energy for tomorrow. We do this by developing, building, operating and investing in electricity infrastructure and businesses needed in the energy transition. Our Transforming for Growth investment plan sees us investing £33 bn in critical electricity infrastructure across the five years to 2030. Our IT division powers growth across all SSE business areas by making sure we have the systems, software and security needed to take the lead in a low carbon world. They provide expertise, advice and day to day support in emerging technologies, data and analytics, cyber security and more. Flexible benefits to fit your life Enjoy discounts on private healthcare and gym memberships. Wellbeing benefits like a free online GP and 24/7 counselling service. Interest free loans on tech and transport season tickets, or a new bike with our Cycle to Work scheme. Generous family entitlements such as maternity and adoption pay, and paternity leave. Work with an equal opportunity employer SSE will make any reasonable adjustments you need to ensure that your application and experience with us is positive. Please contact / to discuss how we can support you. We're dedicated to fostering an open and inclusive workplace where people from all backgrounds can thrive. We create equal opportunities for everyone to succeed and especially welcome applications from those who may not be well represented in our workforce or industry.
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
Apr 20, 2026
Full time
A career at Lombard Odier means working for a renowned global wealth and asset manager, with a strong focus on sustainable investing. An innovative bank of choice for private and institutional clients, our independently owned Firm is one of the best-capitalised banking groups in the world, managing close to CHF 300 billion and operating from over 25 offices across 4 continents. With a history spanning over 225 years, Lombard Odier is an investment house providing a comprehensive offering of discretionary and advisory portfolio management, wealth services and custody. We also offer asset management services and investment strategies through Lombard Odier Investment Managers and provide advanced banking technology to other financial institutions. "Rethink Everything" is our philosophy - it is at the heart of everything we do. We have grown stronger through more than 40 financial crises by rethinking the world around us to provide a fresh investment perspective for our clients. Lombard Odier Investment Managers ("LOIM") is the asset management business of the Lombard Odier Group. In order to strengthen our IT & Operations team, we are looking for a: Chief Technology Officer (CTO) The Chief Technology Officer (CTO) at LOIM is a key executive leader responsible for defining and executing the firm's global technology strategy, delivering a resilient and scalable technology ecosystem, and enabling innovation across all functions. This role oversees all aspects of IT, data, cybersecurity, digital transformation, AI, and technology operations to ensure LOIM remains competitive, efficient, compliant, and client centric. The CTO will drive a multi year transformation agenda, lead diverse technology teams across locations, manage critical vendor relationships, and deliver major strategic programs that are foundational to LOIM's future operating model. YOUR ROLE Technology Strategy & Governance Define and maintain LOIM's global IT strategy and multi year technology roadmap.Lead the development and execution of key technology pillars (architecture, data, AI, cloud, digital workplace, cybersecurity).Ensure alignment with business strategy, investment priorities, and industry best practices.Provide thought leadership and innovation guidance to the Executive Committee, Boards & Committees, and senior leadership. Technology Leadership & Talent Management Lead, develop, and inspire a multi location technology organization.Build a strong team, upskill the organization to an AI-augmented workforce, and foster a culture of accountability, collaboration, and continuous improvement.Attract and retain high calibre technology professionals. Change, Transformation & Project Delivery Oversee the delivery of major transformation programs, ensuring milestones, scope, and budgets are met.Strengthen project governance, change management, and stakeholder alignment across all business units.Drive implementation of new platforms, tools, and data capabilities to modernize LOIM's technology landscape. Budget, Vendor & Supplier Management Own the global technology budget, ensuring cost discipline and return on investment including establishment & maintenance of impactful relationships with senior management at suppliers.Optimise commercial performance of critical technology partners, including SaaS vendors, market data providers, and infrastructure providers.Negotiate contracts and oversee risk, service levels, and performance. Operational Excellence, Cybersecurity & Resilience Ensure the stability, security, and scalability of all systems and infrastructure.Strengthen cyber defence, vulnerability management, regulatory compliance, and operational risk frameworks.Oversee disaster recovery, business continuity planning, and incident response.Work across functions to minimize IT & Operational errors. Boards, Committees, Reporting & Risk Management Represent Technology at relevant boards, committees (operational risk, digital, IT steering, data governance, investment platform).Produce KPIs, dashboards, and regulatory reports, ensuring accuracy and timely delivery.Proactively manage technology related business risks across the organisation. Client Due Diligence & External Engagement Lead the technology response for client due diligence requests, RFPs, and operational reviews.Present LOIM's technology strategy and controls to investors and partners.Foster strong relationships with external stakeholders, including regulators and auditors. Business Partnership Act as a strategic advisor to Investment, Sales, Risk, Operations, Compliance and Executive leadership teams.Translate business needs into scalable technology solutions.Champion data driven decision making and adoption of digital tools across LOIM.Strong, demonstrable network across industry peers, consortiums / forms and key service providers. YOUR PROFILE 15+ years in senior technology leadership roles, ideally within asset management, wealth management, or capital markets.Proven track record of delivering large scale transformation across investment platforms, data, and enterprise architecture.Deep experience with key investment management platforms (e.g., Enfusion, PORT, FactSet, Aladdin, Bloomberg, market data systems).Strong background in cybersecurity, vendor management, cloud transformation, AI adoption, and regulatory environments.Strategic thinker with ability to translate business objectives into actionable roadmaps.Strong executive presence, capable of influencing C suite and board level stakeholders.Exceptional team leadership, communication, and change management skills.High integrity, resilience, and ability to operate in a complex, fast changing environment. Our Maison's DNA is defined by five core values. Excellence drives us to be the best at what we do, while Innovation fuels our progress. Respect underpins every interaction, and Integrity shapes our actions. Together, we are One Team, united in serving our clients with unwavering dedication. As a responsible and supportive employer, we promote a diverse and inclusive work environment for our employees and candidates. Diversity, Equity and Inclusion are woven into the fabric of our Maison's DNA, and we strive to ensure that our employees can fulfill both their personal and professional aspirations by encouraging internal mobility and individual upskilling programs. We firmly believe that building Diverse Teams contributes to our successes and to deliver on this, we actively embed Diversity, Equity and Inclusion in our business strategy. It is an exciting time to join our Teams. All applications will be handled in the strictest confidence.
