Role: OT Cyber Security Analyst Location: Culham - 2 days per week on site (hybrid) Contract length: Until 18/12/2026 Day rate: Approx. £50/hour (Umbrella) or £36.43/hour (PAYE) IR35: In scope This role sits at the heart of operational technology security within critical infrastructure, giving you the chance to shape and mature OT security controls and governance in a highly visible environment. What you will be doing Implement, operate, and continuously improve OT security controls and monitoring capabilities across complex OT environments. Apply and embed an OT Security Strategy, policies, and standards across industrial control and critical infrastructure systems. Align OT security with leading frameworks such as IEC 62443, NIST CSF, CAF and ISO 27001. Carry out OT security risk assessments, gap analyses and remediation planning. Work closely with operations, engineering teams and MSPs to ensure security controls are implemented and sustained. Contribute to governance artefacts - policies, standards and documentation that underpin OT security. Support integration with SIEM/SOC functions for OT environments. What our client is looking for Strong OT security experience within ICS or critical infrastructure - ideally from oil & gas, rail, chemical, or similar process industries. Hands-on experience implementing OT security strategies, policies and standards. Solid understanding of OT networks, segmentation and common industrial protocols. Familiarity with SIEM/SOC integration for OT environments. Experience working with operations/engineering teams and advising MSPs or third-party security providers. Excellent communication and documentation skills, especially around policies and standards. Maximum notice period of 2 weeks. Desirable Experience with OT asset discovery, monitoring and OT security tools. Exposure to regulatory requirements for critical infrastructure (e.g. NIS Directive, UK CAF). Understanding of project / service delivery lifecycles and ITSM controls. Security clearance Active SC clearance or SC that has lapsed within the last 12 months is required (no flexibility on this). This is a strong opportunity for someone who wants to work at the intersection of OT, cyber security and critical national infrastructure, with the stability of a contract running to the end of 2026.
May 13, 2026
Contractor
Role: OT Cyber Security Analyst Location: Culham - 2 days per week on site (hybrid) Contract length: Until 18/12/2026 Day rate: Approx. £50/hour (Umbrella) or £36.43/hour (PAYE) IR35: In scope This role sits at the heart of operational technology security within critical infrastructure, giving you the chance to shape and mature OT security controls and governance in a highly visible environment. What you will be doing Implement, operate, and continuously improve OT security controls and monitoring capabilities across complex OT environments. Apply and embed an OT Security Strategy, policies, and standards across industrial control and critical infrastructure systems. Align OT security with leading frameworks such as IEC 62443, NIST CSF, CAF and ISO 27001. Carry out OT security risk assessments, gap analyses and remediation planning. Work closely with operations, engineering teams and MSPs to ensure security controls are implemented and sustained. Contribute to governance artefacts - policies, standards and documentation that underpin OT security. Support integration with SIEM/SOC functions for OT environments. What our client is looking for Strong OT security experience within ICS or critical infrastructure - ideally from oil & gas, rail, chemical, or similar process industries. Hands-on experience implementing OT security strategies, policies and standards. Solid understanding of OT networks, segmentation and common industrial protocols. Familiarity with SIEM/SOC integration for OT environments. Experience working with operations/engineering teams and advising MSPs or third-party security providers. Excellent communication and documentation skills, especially around policies and standards. Maximum notice period of 2 weeks. Desirable Experience with OT asset discovery, monitoring and OT security tools. Exposure to regulatory requirements for critical infrastructure (e.g. NIS Directive, UK CAF). Understanding of project / service delivery lifecycles and ITSM controls. Security clearance Active SC clearance or SC that has lapsed within the last 12 months is required (no flexibility on this). This is a strong opportunity for someone who wants to work at the intersection of OT, cyber security and critical national infrastructure, with the stability of a contract running to the end of 2026.
Roke, Roke Manor, Romsey, Hampshire, United Kingdom Job Description Posted Tuesday 2 December 2025 at 01:00 Great ideas come from different minds. That's why we bring together engineers, scientists, analysts, and creatives from every background - and give them the trust, tools, and freedom to make a difference. What connects us is the mission: solving meaningful problems and building capability that protects what matters most. And as the challenges evolve, so do we - working on the technologies that will shape tomorrow, not just today. Cyber Software Engineer National Security Business Be part of a growing and highly trusted supplier into the NS domain working to deliver mission critical solutions helping to keep the nation safe, secure and prosperous. Working on leading edge technology solutions including AI/DS, Cyber, Cloud, SRE, VR and Platform Engineering We have secured long term work, across the full spectrum, on the latest framework with the client, which provides the springboard for our ongoing growth and development in this domain, so join us on what will be an incredible growth journey. Role As a Cyber Software Engineer you'll analyse, make, break, and secure systems across a variety of projects. Our Cyber work spans diverse technology stacks on multiple platforms, including Linux, Windows and Android, with environments ranging from small IoT devices, through to user equipment, servers and into the Cloud. You'll tackle hard problems, where solutions need research and experimentation to identify the art of the possible. Working in teams of talented individuals, you'll use your expertise to engineer these solutions, construct pipelines to robustly test them, and integrate them with upstream services. You'll see their deployment all the way to operational use, working hand in glove with our clients. The key requirements Software analysis, reverse engineering and vulnerability research of compiled or interpreted code that could be obfuscated or defensively structured, for either x86/x64 or ARM processor architectures. Operating systems and/or firmware internals, security architectures and hardware abstraction. Engineering software from design to delivery in modern IDEs and languages, using Agile delivery. Creating tested and testable code. Integrating with automated verification systems, CI and CD pipelines. You will have likely used some of the below technologies: Ghidra or IDA Pro for reverse engineering. C, C++, Java or C# for solution creation. Python, Bash, Powershell or Groovy for prototyping and tool-making. Experience in supporting areas is also beneficial, which could include: AI and ML models and their usage. Cloud technologies, including AWS. Virtualisation, emulation and containerisation. Built on over a 60 year heritage, Roke offers specialist knowledge in sensors, communications, cyber, and AI and ML. We change the way organisations think and act - through dynamic insights from the analysis of multiple layers of data. We take care of the innovative, technical stuff that keeps everyone safe - that's our mission, passion, and motivation. Where you'll work You'll find our Romsey site located within beautiful Hampshire countryside, close to the picturesque New Forest District and not far from a superb stretch of the south coast. This is no corporate concrete jungle; this is a manor house site, with ample parking an on-site gym and a driveway full of daffodils in the spring. Clearances Due to the nature of this role, we require you to be eligible to achieve SC / DV clearance. The Next Step Click apply, submitting an up-to-date CV. We look forward to hearing from you.
May 13, 2026
Full time
Roke, Roke Manor, Romsey, Hampshire, United Kingdom Job Description Posted Tuesday 2 December 2025 at 01:00 Great ideas come from different minds. That's why we bring together engineers, scientists, analysts, and creatives from every background - and give them the trust, tools, and freedom to make a difference. What connects us is the mission: solving meaningful problems and building capability that protects what matters most. And as the challenges evolve, so do we - working on the technologies that will shape tomorrow, not just today. Cyber Software Engineer National Security Business Be part of a growing and highly trusted supplier into the NS domain working to deliver mission critical solutions helping to keep the nation safe, secure and prosperous. Working on leading edge technology solutions including AI/DS, Cyber, Cloud, SRE, VR and Platform Engineering We have secured long term work, across the full spectrum, on the latest framework with the client, which provides the springboard for our ongoing growth and development in this domain, so join us on what will be an incredible growth journey. Role As a Cyber Software Engineer you'll analyse, make, break, and secure systems across a variety of projects. Our Cyber work spans diverse technology stacks on multiple platforms, including Linux, Windows and Android, with environments ranging from small IoT devices, through to user equipment, servers and into the Cloud. You'll tackle hard problems, where solutions need research and experimentation to identify the art of the possible. Working in teams of talented individuals, you'll use your expertise to engineer these solutions, construct pipelines to robustly test them, and integrate them with upstream services. You'll see their deployment all the way to operational use, working hand in glove with our clients. The key requirements Software analysis, reverse engineering and vulnerability research of compiled or interpreted code that could be obfuscated or defensively structured, for either x86/x64 or ARM processor architectures. Operating systems and/or firmware internals, security architectures and hardware abstraction. Engineering software from design to delivery in modern IDEs and languages, using Agile delivery. Creating tested and testable code. Integrating with automated verification systems, CI and CD pipelines. You will have likely used some of the below technologies: Ghidra or IDA Pro for reverse engineering. C, C++, Java or C# for solution creation. Python, Bash, Powershell or Groovy for prototyping and tool-making. Experience in supporting areas is also beneficial, which could include: AI and ML models and their usage. Cloud technologies, including AWS. Virtualisation, emulation and containerisation. Built on over a 60 year heritage, Roke offers specialist knowledge in sensors, communications, cyber, and AI and ML. We change the way organisations think and act - through dynamic insights from the analysis of multiple layers of data. We take care of the innovative, technical stuff that keeps everyone safe - that's our mission, passion, and motivation. Where you'll work You'll find our Romsey site located within beautiful Hampshire countryside, close to the picturesque New Forest District and not far from a superb stretch of the south coast. This is no corporate concrete jungle; this is a manor house site, with ample parking an on-site gym and a driveway full of daffodils in the spring. Clearances Due to the nature of this role, we require you to be eligible to achieve SC / DV clearance. The Next Step Click apply, submitting an up-to-date CV. We look forward to hearing from you.
Location: Culham, Oxfordshire (2 days/week on-site) Contract: Until 18/12/2026 IR35: In Scope Rate: 50/hr Umbrella Clearance: Active SC or lapsed within 12 months Role Overview We are seeking an experienced OT Cyber Security Analyst to support the security, monitoring, and continuous improvement of Operational Technology environments within a critical infrastructure setting. This role combines hands-on OT security engineering with governance and risk responsibilities , ensuring OT systems are protected, monitored, and aligned with industry standards and frameworks. You will work closely with OT engineers, security teams, and third-party providers to implement and maintain effective OT security controls. Key Responsibilities Implement OT security controls (segmentation, secure remote access, monitoring tools) Integrate OT environments into SIEM/SOC platforms and tune detections Support OT asset discovery, inventory, and security assessments Identify vulnerabilities and support remediation planning Assist with OT incident response (log collection, triage, SOC coordination) Work with engineers to ensure secure system changes with minimal disruption Track OT security maturity, control coverage, and reporting Contribute to OT security policies, standards, and continuous improvement Essential Requirements Experience in oil & gas, rail, chemical, nuclear, or similar critical infrastructure environments Strong OT/ICS security background Experience implementing OT security controls and strategies Knowledge of OT networks, segmentation, and industrial protocols SIEM/SOC integration experience in OT environments Strong understanding of: IEC 62443 NIST Cybersecurity Framework ISO 27001 UK CAF framework Experience with OT risk assessments and gap analysis Strong communication and documentation skills Max 2-week notice period Desirable OT asset discovery / monitoring tooling experience Exposure to UK critical infrastructure regulation (e.g. NIS, CAF) ITSM and service delivery lifecycle understanding Hybrid IT/OT environment experience
May 12, 2026
Contractor
Location: Culham, Oxfordshire (2 days/week on-site) Contract: Until 18/12/2026 IR35: In Scope Rate: 50/hr Umbrella Clearance: Active SC or lapsed within 12 months Role Overview We are seeking an experienced OT Cyber Security Analyst to support the security, monitoring, and continuous improvement of Operational Technology environments within a critical infrastructure setting. This role combines hands-on OT security engineering with governance and risk responsibilities , ensuring OT systems are protected, monitored, and aligned with industry standards and frameworks. You will work closely with OT engineers, security teams, and third-party providers to implement and maintain effective OT security controls. Key Responsibilities Implement OT security controls (segmentation, secure remote access, monitoring tools) Integrate OT environments into SIEM/SOC platforms and tune detections Support OT asset discovery, inventory, and security assessments Identify vulnerabilities and support remediation planning Assist with OT incident response (log collection, triage, SOC coordination) Work with engineers to ensure secure system changes with minimal disruption Track OT security maturity, control coverage, and reporting Contribute to OT security policies, standards, and continuous improvement Essential Requirements Experience in oil & gas, rail, chemical, nuclear, or similar critical infrastructure environments Strong OT/ICS security background Experience implementing OT security controls and strategies Knowledge of OT networks, segmentation, and industrial protocols SIEM/SOC integration experience in OT environments Strong understanding of: IEC 62443 NIST Cybersecurity Framework ISO 27001 UK CAF framework Experience with OT risk assessments and gap analysis Strong communication and documentation skills Max 2-week notice period Desirable OT asset discovery / monitoring tooling experience Exposure to UK critical infrastructure regulation (e.g. NIS, CAF) ITSM and service delivery lifecycle understanding Hybrid IT/OT environment experience
Cyber Security Operations Manager Liverpool (Hybrid) 75,000 We're working with a growing UK business looking to hire a Cyber Security Operations Manager to take full ownership of its security operations function, ensuring the organisation is protected, resilient, and continuously improving against an increasingly complex threat landscape. This is a high-impact position where you'll lead the security operations function end-to-end, driving improvements across threat detection, incident response, and overall security posture within a complex, evolving environment. The Role You'll take ownership of security operations, ensuring the business is protected against evolving threats while continuously improving processes, tooling, and team capability. Key responsibilities include: Leading the day-to-day operations of the Security Operations function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR, EDR/XDR, and security tooling Ensuring robust monitoring, alerting, and response across cloud, network, and endpoint environments Partnering with Infrastructure, Cloud, and Risk teams to strengthen security across the business Leading and developing a team of cyber engineers and analysts Driving automation initiatives to improve response times and operational efficiency Supporting governance, compliance, and audit requirements Reporting on security performance, risks, and KPIs to senior stakeholders What We're Looking For Proven experience leading a Security Operations or SOC function Strong understanding of SIEM, SOAR, EDR/XDR, IDS/IPS, and security tooling Experience managing incident response and threat management in complex environments Strong knowledge of frameworks such as NIST, ISO 27001, or CIS Controls Experience working in cloud environments (Azure, AWS, or GCP) Strong leadership and stakeholder management skills Ability to balance hands-on technical understanding with strategic oversight Why Join? Opportunity to lead and shape the security operations function High visibility role across technology and leadership teams Business actively investing in cyber security and resilience If you're looking for a role where you can lead, influence, and strengthen cyber security at scale, we'd love to hear from you. Apply today with your most up to date CV. BH36094
May 08, 2026
Full time
Cyber Security Operations Manager Liverpool (Hybrid) 75,000 We're working with a growing UK business looking to hire a Cyber Security Operations Manager to take full ownership of its security operations function, ensuring the organisation is protected, resilient, and continuously improving against an increasingly complex threat landscape. This is a high-impact position where you'll lead the security operations function end-to-end, driving improvements across threat detection, incident response, and overall security posture within a complex, evolving environment. The Role You'll take ownership of security operations, ensuring the business is protected against evolving threats while continuously improving processes, tooling, and team capability. Key responsibilities include: Leading the day-to-day operations of the Security Operations function, including oversight of any outsourced SOC Managing the full incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR, EDR/XDR, and security tooling Ensuring robust monitoring, alerting, and response across cloud, network, and endpoint environments Partnering with Infrastructure, Cloud, and Risk teams to strengthen security across the business Leading and developing a team of cyber engineers and analysts Driving automation initiatives to improve response times and operational efficiency Supporting governance, compliance, and audit requirements Reporting on security performance, risks, and KPIs to senior stakeholders What We're Looking For Proven experience leading a Security Operations or SOC function Strong understanding of SIEM, SOAR, EDR/XDR, IDS/IPS, and security tooling Experience managing incident response and threat management in complex environments Strong knowledge of frameworks such as NIST, ISO 27001, or CIS Controls Experience working in cloud environments (Azure, AWS, or GCP) Strong leadership and stakeholder management skills Ability to balance hands-on technical understanding with strategic oversight Why Join? Opportunity to lead and shape the security operations function High visibility role across technology and leadership teams Business actively investing in cyber security and resilience If you're looking for a role where you can lead, influence, and strengthen cyber security at scale, we'd love to hear from you. Apply today with your most up to date CV. BH36094
Systems Analyst Leeds - Hybrid Permanent Summary We're seeking a Systems Analyst to join our existing team in Leeds. The successful candidate will be responsible for the development, implementation and continual support of business systems where appropriate. You'll get the opportunity to collaborate with other members of the team as necessary in the planning, estimating, supervising and monitoring of implementation activities where required. Some of the key deliverables for the role will include: Incident Management - Managing the investigation and resolution of application incidents as well as aid and advise business users in the effective use of applications and information technology Change Management - Managing change requests through the full systems life cycle to completion. Including Requirement Gathering, Feasibility Analysis, Specification, Build and Configuration, Testing and UAT, Training, Implementation, Operational Handover and Post Implementation Support Problem Management - Where appropriate take ownership of the problem management process to identify root cause of critical incidents. Reconcile issues across support teams to improve Incident Management Process. Project Delivery - Provide support to ICT Projects, including Testing and UAT, Training, Operational Handover Supplier Management - Raising and managing tickets raised with 3rd party systems Disaster Recovery - Carry out testing of business continuity plans and maintain the development and testing of all Disaster Recovery plans within the IT Infrastructure Security - Installing Security Patches/Service Packs in a timely manner, in-line with Cyber Essentials as well as ensuring Information Security risks are identified, reported and actions taken to reduce the occurrence and impact of security incidents. What we're looking for: Previous experience as a Systems Analyst or similar Ideally have worked within the Utilities sector Proven experience in administering training, development, and competency platforms, construction management software, or digital form capture technologies would also be advantageous Must possess good analytical skills with the ability to interpret information logically. Strong communication, presentational and written skills with the ability to describe complex issues simply to colleagues at all levels of seniority. Has a systematically and creative minded approach to problem solving whilst working alone and equally as part of a team. Able to work under pressure and meet tight deadlines whist still producing good quality work. Experienced at gathering requirements and has strong negotiating skills. Experienced at prioritisation of calls. Excels at transferring knowledge through user guides or training. Next Steps: As a business, we're on a journey to build on our culture where everyone is included, treated fairly and with respect. This starts with recruitment and how we bring people into the organisation. We'll do our best to outline the recruitment process to you ahead of time with plenty of notice. If you require any accommodations to participate in the application or interview process, please let us know and we will work with you to ensure your needs are met. About Us: We are one of the leading independent engineering and services businesses in the UK. Founded in 1921, with a turnover of £500m and 3000 employees, we are proud of our history of developing great people through our investment in training. Working across a variety of sectors within the building and infrastructure industry, our innovative, responsible and forward-thinking approach allows us to work on fantastic ground-breaking projects, providing solutions using the latest tools and technologies. Progression is something we value, and we will make sure that when you join us you have a clearly defined development path, supported by regular reviews, training and ongoing support to enable you to be the best you can be.
Oct 03, 2025
Full time
Systems Analyst Leeds - Hybrid Permanent Summary We're seeking a Systems Analyst to join our existing team in Leeds. The successful candidate will be responsible for the development, implementation and continual support of business systems where appropriate. You'll get the opportunity to collaborate with other members of the team as necessary in the planning, estimating, supervising and monitoring of implementation activities where required. Some of the key deliverables for the role will include: Incident Management - Managing the investigation and resolution of application incidents as well as aid and advise business users in the effective use of applications and information technology Change Management - Managing change requests through the full systems life cycle to completion. Including Requirement Gathering, Feasibility Analysis, Specification, Build and Configuration, Testing and UAT, Training, Implementation, Operational Handover and Post Implementation Support Problem Management - Where appropriate take ownership of the problem management process to identify root cause of critical incidents. Reconcile issues across support teams to improve Incident Management Process. Project Delivery - Provide support to ICT Projects, including Testing and UAT, Training, Operational Handover Supplier Management - Raising and managing tickets raised with 3rd party systems Disaster Recovery - Carry out testing of business continuity plans and maintain the development and testing of all Disaster Recovery plans within the IT Infrastructure Security - Installing Security Patches/Service Packs in a timely manner, in-line with Cyber Essentials as well as ensuring Information Security risks are identified, reported and actions taken to reduce the occurrence and impact of security incidents. What we're looking for: Previous experience as a Systems Analyst or similar Ideally have worked within the Utilities sector Proven experience in administering training, development, and competency platforms, construction management software, or digital form capture technologies would also be advantageous Must possess good analytical skills with the ability to interpret information logically. Strong communication, presentational and written skills with the ability to describe complex issues simply to colleagues at all levels of seniority. Has a systematically and creative minded approach to problem solving whilst working alone and equally as part of a team. Able to work under pressure and meet tight deadlines whist still producing good quality work. Experienced at gathering requirements and has strong negotiating skills. Experienced at prioritisation of calls. Excels at transferring knowledge through user guides or training. Next Steps: As a business, we're on a journey to build on our culture where everyone is included, treated fairly and with respect. This starts with recruitment and how we bring people into the organisation. We'll do our best to outline the recruitment process to you ahead of time with plenty of notice. If you require any accommodations to participate in the application or interview process, please let us know and we will work with you to ensure your needs are met. About Us: We are one of the leading independent engineering and services businesses in the UK. Founded in 1921, with a turnover of £500m and 3000 employees, we are proud of our history of developing great people through our investment in training. Working across a variety of sectors within the building and infrastructure industry, our innovative, responsible and forward-thinking approach allows us to work on fantastic ground-breaking projects, providing solutions using the latest tools and technologies. Progression is something we value, and we will make sure that when you join us you have a clearly defined development path, supported by regular reviews, training and ongoing support to enable you to be the best you can be.
Job Title: Lead Security Solution Architect- PAM Location: Hybrid-London, UK (Days/Week Onsite) Duration: 6months+ 550GBP/Day Inside IR35 Project Overview CLIENT is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. One of the pillars of that programe is Privileged Access Management (PAM). CLIENT is working on uplifting controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need to integrate with as part of the end-to-end journey. Security Solution Architects manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Security Solution Architects will be required to record key decisions, design deviations, and technical risks and issues where appropriate. Security Solution Architects should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders. The Lead Security Solution Architect will provide technical thought leadership and direction to their project team and may represent the project/programme as subject matter expert. This role will require someone experienced in managing a team of on-shore and off-shore resources to deliver High- and Low-level designs to the required quality and standard. Principal Preferred Requirements Cybersecurity Expertise: Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level Experience in both operational and transformation cybersecurity roles or a clear working understanding of both perspectives Experience working in large-scale IT transformation programmes Experience working with PAM solutions such as CyberArk, Centrify, Delinea and OneIdentity Preparing end-to-end configuration of the strategic PAM capability - including on-prem deployments as well as Cloud native toolings Assisting in preparation of demonstrable journeys on the configured PAM tooling Platform & Technology: BizzDesign, Archi, or generic UML visualisation experience for high-level designs High proficiency and expertise in Jira for project & tasks management Working proficiency in Confluence for documentation Principal Accountabilities and Responsibilities Architecture & Design: Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements (including High and Low Level Designs Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process Articulate, publish, and ensure approval of any design deviations resulting in technical debt Ensure any technical risks or issues arising from a solution design are recorded and mitigated. Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes Ensures the design of the solutions are efficient, timely and cost effective throughout the project life cycle Clear understanding of both the motivations of the business and technical security Promote strong documentation and clerkship Governance: Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes Ensure all architecture artefacts undergo appropriate peer review prior to design authority presentation Present publications at technical design authorities for input, feedback, and approval Risk and Dependency Management: Effectively manages and escalates both technical and project risks or issues Articulates solutions and remediation steps to technical risks & issues Ability to map design decisions to resultant technical risks & issues to articulate the cause and rationale which leads to any negatively impacting change Leadership & Teamwork Provides technical thought leadership to the Design Team and the Project Ability to manage a project team of technical architects, engineers, and/or analysts Ability to take a deputised role in programme management-related tasks where necessary Qualifications & Certifications: Masters or doctorate degree in cybersecurity, computer science, software engineering, or related field CISSP/CISM certification or other broad cybersecurity industry-recognised certificate SABSA or TOGAF certified preferred Priyanka Sharma Senior Delivery Consultant
Oct 02, 2025
Contractor
Job Title: Lead Security Solution Architect- PAM Location: Hybrid-London, UK (Days/Week Onsite) Duration: 6months+ 550GBP/Day Inside IR35 Project Overview CLIENT is working on a strategic Identity and Access Management programme and is re-shaping the way Authentication, Federation, Privileged Access Management, Access Governance, Secrets Management and API Security is done across the bank. One of the pillars of that programe is Privileged Access Management (PAM). CLIENT is working on uplifting controls and capabilities in privileged access for the Group and introducing the strategic password vaulting solution that will enable to meet strategic requirements. We are seeking an experienced Lead Security Solution Architect that can complement an existing team of Solution Architects to progress with designs of different components of the PAM solution and other supporting systems it will need to integrate with as part of the end-to-end journey. Security Solution Architects manage end-to-end solution design and are responsible for delivering architecture design documents in line with functional and non-functional business requirements, strategies, principles, standards, and patterns. Alongside the creation of high-level designs, Security Solution Architects will be required to record key decisions, design deviations, and technical risks and issues where appropriate. Security Solution Architects should be comfortable presenting and sharing solutions at design authorities and senior leadership & stakeholders. The Lead Security Solution Architect will provide technical thought leadership and direction to their project team and may represent the project/programme as subject matter expert. This role will require someone experienced in managing a team of on-shore and off-shore resources to deliver High- and Low-level designs to the required quality and standard. Principal Preferred Requirements Cybersecurity Expertise: Significant experience and proven technical depth within one of the following domains of cybersecurity; security operations & incident response, threat & vulnerability management, identity & access management, cryptography, infrastructure, network, application, data, cloud Broad background across information technology with the ability to communicate clearly with non-security technical SMEs at a comfortable level Experience in both operational and transformation cybersecurity roles or a clear working understanding of both perspectives Experience working in large-scale IT transformation programmes Experience working with PAM solutions such as CyberArk, Centrify, Delinea and OneIdentity Preparing end-to-end configuration of the strategic PAM capability - including on-prem deployments as well as Cloud native toolings Assisting in preparation of demonstrable journeys on the configured PAM tooling Platform & Technology: BizzDesign, Archi, or generic UML visualisation experience for high-level designs High proficiency and expertise in Jira for project & tasks management Working proficiency in Confluence for documentation Principal Accountabilities and Responsibilities Architecture & Design: Produce, manage, and update end-to-end solution designs in line with reference architecture & business requirements (including High and Low Level Designs Articulate and publish key design decision records and options to ensure all solutions follow a logical, transparent decision-making process Articulate, publish, and ensure approval of any design deviations resulting in technical debt Ensure any technical risks or issues arising from a solution design are recorded and mitigated. Produces, manages and translates the requirements into the architecture for that solution, ensuring technology and services meet the customer needs and expected business outcomes Ensures the design of the solutions are efficient, timely and cost effective throughout the project life cycle Clear understanding of both the motivations of the business and technical security Promote strong documentation and clerkship Governance: Ensures all high-level designs, architecture patterns, decision records, deviation requests, and technical risks or issue records undergo architectural and project governance processes Ensure all architecture artefacts undergo appropriate peer review prior to design authority presentation Present publications at technical design authorities for input, feedback, and approval Risk and Dependency Management: Effectively manages and escalates both technical and project risks or issues Articulates solutions and remediation steps to technical risks & issues Ability to map design decisions to resultant technical risks & issues to articulate the cause and rationale which leads to any negatively impacting change Leadership & Teamwork Provides technical thought leadership to the Design Team and the Project Ability to manage a project team of technical architects, engineers, and/or analysts Ability to take a deputised role in programme management-related tasks where necessary Qualifications & Certifications: Masters or doctorate degree in cybersecurity, computer science, software engineering, or related field CISSP/CISM certification or other broad cybersecurity industry-recognised certificate SABSA or TOGAF certified preferred Priyanka Sharma Senior Delivery Consultant
