92 jobs found

Test Manager Location: Basingstoke (Onsite) Contract Length: 18 Months Clearance: Active DV Clearance Required Rate: 650- 700 per day Outside IR35 The Opportunity We are looking for an experienced Project Test Manager to join a high-profile, secure government infrastructure programme delivering critical national capabilities. This role offers the opportunity to lead and assure complex Test & Trials activity across a large-scale IT infrastructure environment. You will work closely with programme leadership, engineering teams, cyber specialists, and operational stakeholders to ensure solutions are validated, risks are identified early, and delivery meets operational and security expectations. The successful candidate will bring strong leadership, governance, and assurance experience within highly secure defence or government environments and be comfortable operating at programme level, providing independent challenge and strategic oversight. Key Responsibilities Lead the governance, assurance, and oversight of Test & Trials activities across the programme Develop, review, and enhance Test Strategies, Plans, and assurance frameworks Provide expert guidance to programme leadership on test readiness, delivery confidence, and risk Deliver independent challenge to ensure robust validation, compliance, and assurance standards are maintained Coordinate integration, system, acceptance, and operational testing activities Work collaboratively with engineering, cyber security, delivery, and operational teams to ensure aligned execution Produce senior-level assurance reports, readiness assessments, and risk evaluations Identify programme risks and recommend pragmatic mitigation strategies Support transition into service, operational acceptance, and go-live activities Ensure testing activity aligns with operational, technical, and security requirements Essential Experience Active DV Clearance (mandatory) Proven experience leading or consulting on Test & Trials activities within secure government, defence, or national security environments Strong background in test governance, assurance, and strategic test management Experience delivering within complex IT infrastructure or secure systems programmes Ability to advise and influence senior stakeholders on readiness, risk, and delivery confidence Strong understanding of integration, system, operational, and acceptance testing methodologies Experience operating within highly controlled, security-sensitive environments Excellent stakeholder engagement and communication skills Desirable Experience Experience supporting MOD, Defence, or National Security programmes Knowledge of secure networks, infrastructure delivery, or classified environments Experience providing independent assurance or programme-level consultancy Familiarity with delivery methodologies such as PRINCE2, Agile, or ITIL Why Apply? Long-term programme on a critical national infrastructure initiative High-impact role with significant stakeholder exposure Opportunity to shape assurance and testing strategy across a complex secure environment Outside IR35 engagement with competitive day rate Work alongside senior technical and operational specialists on mission-critical delivery programmes

Salary up to 75,537, 37 annual leave days plus 11 bank holidays and discretionary days, hybrid working policy, competitive pension scheme and other employee benefits Hays Technology are working in partnership with a Higher Education establishment in Stoke-on-Trent to recruit a Cyber Security Manager on a permanent basis. The successful candidate will lead and manage the overall approach to cyber security and governance of all environments. Key Responsibilities: Develop, implement, and continuously update the cyber security strategy, aligning it with business objectives and regulatory requirements, establishing and enforcing cyber security policies, standards, and guidelines to protect assets and data. Conduct regular risk assessments and vulnerability analyses to identify potential threats and weaknesses in the organisation's infrastructure, implementing and overseeing risk management processes, ensuring that appropriate controls and countermeasures are in place to mitigate all identified risks. Lead the incident response efforts, including preparing for, detecting, and responding to cyber security incidents, ensure that an effective incident response plan is in place and regularly tested and managing post incident analysis and reporting to prevent future occurrences. Manage and mentor the cyber security team, fostering a culture of continuous learning and development, ensuring that the team has the necessary skills and tools to protect the organisation effectively, and oversee recruitment, training, and performance management. Ensure that the organisation complies with all relevant cyber security laws, regulations, and industry standards, with responsibility for internal and external cyber security audits, ensuring that any identified gaps are addressed promptly and certifications are maintained. Primary point of contact for cyber security matters, collaborating with other departments, stakeholders, and external partners to ensure a coordinated approach to cyber security, communicating cyber security risks, incidents, and strategies to senior management and other stakeholders, providing insights and recommendations to support informed decision-making. In order to apply, you must have the following skills and experience: Educated to degree level in Cybersecurity or computing-based subjects, or in possession of an equivalent professional qualification or relevant experience. Certified Information Systems Security Professional (CISSP), Chartered IT Professional (CITP) (BCS) or equivalent qualification or experience. Extensive experience of leadership at an appropriately senior level within higher education or similarly complex organisation, including management of staff and resources. Experience of gathering operational evidence on the performance of cyber security using vulnerability assessment tools. An awareness and understanding of networking and communication related concepts and cloud virtualisation techniques. If you have the relevant experience and would like to apply, please submit your CV. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

Service Delivery Manager - Defence / Cyber Security Nottingham / Hybrid 65,000 - 75,000 + Excellent Benefits Applause IT are recruiting for a Service Delivery Manager to join a specialist technology organisation delivering secure projects and services across defence, cyber security and government sectors. This is a customer-facing delivery role focused on managing the successful delivery of complex technical programmes and services within highly secure environments. The successful candidate will take ownership of customer relationships, project delivery, governance, risk management and service quality across a portfolio of secure programmes. The role would suit an experienced Service Delivery Manager, Technical Delivery Manager or Project Delivery professional with previous experience working within MOD, defence, cyber security or secure government environments. The Role Manage the successful delivery of secure customer projects and services Build and maintain strong customer and stakeholder relationships Drive service delivery, governance and reporting across multiple programmes Manage project scope, schedules, risks, budgets and resources Coordinate internal technical teams, third-party suppliers and customer stakeholders Support delivery within Secure by Design and security-focused environments Provide regular delivery updates to customers and senior stakeholders Identify and mitigate delivery risks and issues proactively Support continuous improvement across service delivery and operational processes Assist with customer engagement and pre-sales support activities Skills & Experience Required Previous experience within a Service Delivery Manager, Delivery Manager or Technical Project Management role Experience delivering services or projects within MOD, defence, government or secure environments Strong customer-facing stakeholder management experience Experience managing technical or software delivery teams Strong understanding of governance, risk management and service delivery processes Experience working within Agile and Waterfall delivery environments Commercial awareness and experience managing customer expectations Strong communication and organisational skills Experience using project management and collaboration tools including Office 365 and Atlassian products SC Clearance or eligibility to obtain clearance highly desirable Desirable Experience Defence technology or cyber security sector experience Experience working with prime contractors or government customers Secure-by-Design or security-focused delivery experience PRINCE2, Agile, ITIL or similar certifications This is an excellent opportunity to join a growing specialist technology organisation delivering impactful secure programmes across defence and government sectors. If this role sounds like a strong fit for your background, click APPLY NOW for immediate consideration. Service Delivery Manager - Defence / Cyber Security - Nottingham / Hybrid / Location Independent - 65,000 - 75,000 + Excellent Benefits

Dedicated to sustainable development, Arup is a collective of designers, consultants and experts working globally. At Arup you will have the opportunity to collaborate on ambitious projects - delivering remarkable outcomes for clients and communities, and to do socially useful work that has meaning. Arup's purpose, shared values and collaborative approach has set it apart for over 75 years, and now is your opportunity to join. Job description - the role AMS is a global workforce solutions partner committed to creating inclusive, dynamic, and future-ready workplaces. We help organisations adapt, grow, and thrive in an ever-evolving world by building, shaping, and optimising diverse talent strategies. We partner with Arup to support their contingent recruitment processes. Acting as an extension of their recruitment teams, we connect them with skilled interim and temporary professionals, fostering workplaces where everyone can contribute and succeed. On Behalf of Arup, we are looking for a Cyber Project Manager for a 6 month contract based in either the London or the Newcastle upon Tyne office on a hybrid working model. Purpose of the role: The Cyber Project Manager will deliver a range of prioritised projects across a portfolio of work that collectively helps improve the security posture of the firm in accordance with the firm's strategic objectives. The delivery of the work will follow Prince 2 Agile methodology and will involve working closely with various internal teams including cyber resilience, governance, risk and compliance, infrastructure and operations teams. What you'll do: Manage the successful delivery of a range of Cyber Security related technology as part of the group's strategy through working to embed security within the software development lifecycle and ensuring Arup is prepared to defend against upcoming frontier AI models. Ensure an effective governance model is in place to support the delivery of the project, chairing project boards and robust status reporting. Work with a varied set of global stakeholders and develop effective relationships, building motivated, delivery focussed teams. Articulate and document sound business cases, with clearly defined measurable business outcomes and benefits. Produce sufficiently detailed plans and project related documents. Work closely with the project and technical specialist teams to ensure business needs are understood and delivered by the project. Experience of working within a Programme framework along with the ability to undertake elements of programme assurance. The skills you'll need: Strong experience in delivering Cyber projects. Hold relevant formal project management accreditation such as Prince 2, PMI, APM. Demonstrable experience of delivering projects in accordance with Waterfall and Agile methodologies, with emphasis in managing Agile delivery teams. Be able to engage both with technical teams and business stakeholders to achieve desired business outcomes & benefits. Demonstrable ability to manage and influence stakeholders of all levels. Comprehensive skills around problem, Issue, Risk and Change Management. Ability to competently manage multiple projects in a demanding environment. Strong risk assessment, problem resolution, negotiation and influencing skills. Have a successful track record in delivering complex global projects. About the client About the client Arup is an equal opportunity employer that actively promotes and nurtures a diverse and inclusive workforce. Guided by its values and alignment with the UN Sustainable Development Goals, Arup creates and contributes to equitable spaces and systems, while cultivating a sense of belonging for all. Arup's internal employee networks support their inclusive culture: from race, ethnicity and cross-cultural working to gender equity and LGBTQ+ and disability inclusion - creating a space for everyone to express themselves and make a positive difference. If you are interested in applying for this position and meet the criteria outlined above, please click the link to apply and speak to one of our Sourcing Specialists. AMS are committed to providing all our candidates with the opportunity to perform at their best throughout the recruitment process. Please let us know if you require any additional support or reasonable adjustments during the screening process and we will work with you and Arup to identify the best solution to meet your requirements. AMS, a Recruitment Process Outsourcing Company, may in the delivery of some of its services be deemed to operate as an Employment Agency or an Employment Business.

Integration Lead - Secure Digital Platform 6-Month contract - Inside IR35 - market rate Reading based - 5 days a week onsite Defence sector - need to be eligible for SC Clearance - current and active SC Cleared already is strongly preferred Role Description The Integration Lead is responsible for leading the technical design, development, and delivery of secure, scalable, and reusable foundational technology services within the Secure Digital Platform. The Integration Lead partners with Delivery Leads, product owners and architects, to lead and manage the technical implementation of platform capabilities and enterprise services to the roadmap planned for each platform. The Integration Lead acts as a hands-on technical leader and subject matter expert, ensuring engineering excellence, operational integrity, and alignment of delivery with enterprise architectural direction and business objectives. Key Responsibilities Provide delivery leadership across the Engineering, Agile team and Test teams to build and maintain reusable and secure platform services aligned with the organisation's technology strategy. Work with the Delivery leads to understand the roadmap of work Work closely with Product Owners / Architects to implement and test the capabilities within the platforms Drive high-quality software engineering practices across the team, including code reviews, test automation, CI/CD pipelines, performance monitoring, and observability. Ensure delivered solutions align with solution designs and security guardrails. Guide teams in the selection and use of modern tools, frameworks, and platforms that optimise development efficiency and operational effectiveness for delivery. Support the development and evolution of the Secure Digital Platform roadmap by identifying technical dependencies, enablers, and delivery risks. Partner with the wider Secure Digital Platform team to establish and enforce standards for infrastructure-as-code, API development, cloud-native services, and integration. Collaborate with cybersecurity, operations, and compliance teams to ensure secure design and adherence to internal and external policies. Act as a technical escalation point for complex engineering issues and support the Engineering, Agile and Test leads to develop and row technical capability within the teams. Contribute to the preparation of delivery-related artefacts such as technical documentation, support handovers, and implementation Runbook. Foster a culture of continuous improvement, experimentation, and feedback within engineering teams. Skills and Experience Essential 5+ years of experience in technical leadership roles within software engineering, infrastructure, or platform development teams Proven experience delivering secure, scalable technology services or platforms in complex enterprise environment Hands-on experience with cloud platforms (e.g., AWS, Azure, GCP), container orchestration, and infrastructure automation (e.g., Terraform, Ansible) Strong understanding of DevSecOps principles, CI/CD pipelines, test automation, and observability tooling Familiarity with platform and product-centric delivery models and agile frameworks (e.g., Scrum, SAFe) Excellent communication and stakeholder management skills across technical and non-technical audiences Strong problem-solving skills and ability to make pragmatic decisions under ambiguity or time constraints Commitment to fostering engineering culture, mentoring others, and growing internal technical capability High ethical standards when handling confidential information Desirable Experience with platform engineering, internal developer platforms (IDPs), or technical enablement teams Experience in a highly regulated industry (e.g., Aerospace & Defence, Finance, Critical Infrastructure) Exposure to secure coding practices, threat modelling, and secure-by-design approaches Experience leading hybrid delivery teams (e.g., internal and external/partner teams) Familiarity with ITSM and incident/problem/change/ management in an enterprise context Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.

Technology Resilience Assurance Manager We are recruiting for a Technology Resilience Assurance Manager to join one of our Insurance clients on a 6-month contract. Inside IR35 Hybrid Responsibilities Implement and ensure alignment with the Technology Resilience strategy across infrastructure and critical services. Support the enhancement and optimisation of ServiceNow and CMDB for Technology Resilience-related artefacts. Develop, maintain, and continuously improve disaster recovery (DR) and business continuity plans aligned to business priorities. Drive the transition from static documentation to practical, testable recovery capabilities. Support the design and implementation of resilient solutions across both cloud and on-premise environments. Embed recovery, redundancy, and fault tolerance into system and service design. Implement and support backup, replication, and failover strategies to enable rapid service restoration. Define and manage Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) for critical services. Validate backup integrity, restoration processes, and recovery sequencing to ensure effectiveness. Identify resilience gaps, assess risks, and drive remediation initiatives. Capture insights from testing and incidents, driving continuous improvement in recovery readiness. Develop and maintain clear recovery playbooks and structured documentation for key failure scenarios. Build internal resilience capability and reduce reliance on third-party support. Experience Proven experience within Technology Resilience, Disaster Recovery, Business Continuity, or Infrastructure Engineering roles. Strong understanding of technology resilience frameworks, regulatory requirements, and industry best practices. Experience working across complex IT environments, including cloud and on-premise infrastructure. Demonstrated experience in designing and implementing resilient architectures, including backup, replication, and failover strategies. Proven ability to define and manage RTO/RPO for critical services. Experience conducting disaster recovery testing, failover exercises, and scenario-based resilience simulations. Strong knowledge of ServiceNow and CMDB, particularly in relation to resilience and service mapping. Familiarity with cyber resilience and alignment between DR and security incident response. Strong documentation skills, with the ability to create clear recovery plans, playbooks, and operational procedures. Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.

Who we are GlobalData is a specialist information services business helping clients decode the future, make better decisions and reach more customers. Through our data, expert analysis and innovative solutions, we provide intelligence across the world s largest industries to companies, governments and industry professionals. Formed in 2016 through the combination of multiple specialist firms, we are now a fully integrated global platform with 3,500+ colleagues across 20+ industries, supporting over 5,000 customers worldwide. Why join GlobalData? We are at a pivotal stage of growth, supported by recent investment and ambitious plans. It s a fast-paced, entrepreneurial environment where collaboration drives success, and where curious, ambitious individuals can make a real impact as we work towards becoming the world s most trusted source of strategic industry intelligence. The role As Information Security Manager, you will lead the strategy and delivery of initiatives that strengthen GlobalData s cybersecurity posture across global operations. You ll ensure our people, systems and infrastructure remain secure, resilient and able to support continued growth. Reporting to the Chief Information Security Officer, you will lead a team of security professionals, drive key security programmes, and work closely with stakeholders across technology and business teams to improve cyber governance, data security and operational resilience. This role requires strong expertise in information security, AI and data governance, alongside experience in vendor management and third-party risk. What you ll be doing Lead and deliver the information security strategy aligned to business goals Develop and maintain security frameworks, policies and standards Oversee risk management, threat assessment and vulnerability programmes Ensure compliance with ISO 27001, ISO 42001, GDPR and other relevant frameworks Manage security operations including incident response, monitoring and investigations Partner with IT, engineering, legal and business teams to embed security best practice Lead internal/external audits, assessments and remediation plans Manage third-party and vendor security risk programmes Build, mentor and lead a high-performing security team Provide executive reporting on security risks, metrics and improvement plans Monitor emerging threats, technologies and regulations What we re looking for 8+ years experience in senior cybersecurity or information security roles Leadership experience within a complex, multinational business Experience managing global teams across multiple regions Strong knowledge of ISO 27001, NIST, CIS Controls or similar frameworks Proven experience in security operations, risk management and compliance Experience handling security incidents and crisis management Strong commercial awareness and budget management experience Excellent communication and stakeholder management skills, including senior leadership exposure Strong understanding of IT infrastructure, cloud technologies and enterprise systems Experience managing third-party vendors and technology partners Preferred Certifications CISM or similar ISO 27001 Lead Implementer / Lead Auditor ISO 42001 (desirable) Technical Skills Security architecture and cloud security (AWS) SIEM, EDR and SOC tools ISO 27001 / ISO 42001 implementation Vulnerability management and penetration testing oversight Data protection, encryption and privacy controls Third-party risk management tools and processes Leadership & Competencies Inspiring leader who develops teams and delegates effectively Strategic thinker with strong decision-making skills Able to influence senior stakeholders and collaborate cross-functionally Hands-on and comfortable operating at all levels Calm under pressure with strong prioritisation skills Able to translate technical risk into clear business impact Highly organised with strong attention to detail In addition to a rewarding career, we support our GlobalData colleagues with a range of benefits across health, finances, fitness, travel, tech and more. To find out more about the roles and benefits on offer in your region, visit (url removed) GlobalData believes strongly in the value of diversity and creating supportive, inclusive environments where our colleagues can succeed. As such, we are proud to be an Equal Opportunity Employer. GlobalData is determined to ensure that no applicant or employee receives less favourable treatment on the grounds of gender, age, disability, religion, belief, sexual orientation, marital status, race, or is disadvantaged by conditions or requirements which cannot be shown to be justifiable.

Information Security Officer Overview We are seeking an experienced Information Security Officer to play a pivotal role in managing and enhancing our clients security posture. The successful candidate will be responsible for overseeing information security risks, leading security operations and governance, and maintaining our ISO27001 and Cyber Essentials Plus certifications.Working closely with the IT leadership team, this role will ensure the right security controls are embedded into the systems designed, build and operate. Also acting as a company-wide champion for information security-supporting teams, raising awareness, and ensuring compliance with legal, regulatory and contractual obligations. Role & Responsibilities Manage and maintain the Information Security Management System (ISMS) aligned to ISO27001. Oversee external certification processes and manage external audit programmes. Deliver the internal information security audit programme. Own monthly and quarterly information security governance forums. Define and continuously evolve the organisation's information security strategy. Act as security architecture SME to support system development and change initiatives. Advise operational teams on the implementation and improvement of security controls. Develop and deliver a company-wide information security training and awareness programme. Serve as the Primary Incident Response Manager for information security incidents. Manage and review information security risks across the organisation. Lead information security improvement initiatives. Oversee supply chain information security risks and vendor assessments. Essential Skills & Experience Strong experience in policy and standards development. Cyber incident response expertise. Security architecture knowledge. In-depth understanding of ISO27001 controls. Experience with Cyber Essentials Plus certification. Strong risk management capability. Proven ability to communicate with and influence senior stakeholders. Desirable Audit process management. Supplier risk reviews. Qualifications Degree-level education preferred but not essential. Minimum 5 years' experience in an information security role. CISSP (or equivalent) required. C CISO certification desirable.

Identity Access Management (IAM) roles London / Manchester / Leeds / Edinburgh Hybrid - 2/3 days per week in office£55,000 - £115,000 + benefits Consultant Senior Consultant Manager Senior Manager Architect Associate Director Hays Technology are working with a global business consultancy organisation who are looking for a variety of Identity and Access Management professionals. The team you'll be working within are responsible for providing Identity and Access Management services to a wide range of clients. You'll be working on projects to provide IAM solutions to clients, running IAM diagnostics, assisting with strategy definition and minimising IAM risk for clients.These are roles that will require a good degree of technical knowledge spanning one or multiple of the IAM solutions listed further below. The roles will also require excellent communication skills alongside stakeholder engagement and management ability for the consulting side of the positions. Throughout your career with this organisation you may choose to stick more to the technical side of things, or may be more interested in the business consultancy side of things. This is a role that will allow you to grow with the business and my client will play to your strengths. The ideal candidate to start this role, however, will have a mixture of consulting experience and IAM technical expertise. The roles are hybrid and will be based in London / Manchester / Leeds / Edinburgh What you'll be doing (dependent on role seniority) Consulting with clients across a variety of sectors on IAM solutions Supporting on complex client engagements Running IAM diagnostics Assisting with application onboarding Preparing solutions to be released to clients Supporting and providing specialised input into IAM implementations of various scales IAM requirements gathering Providing outbound specialised expertise on IAM tools and their integration with client systems Gaining an understanding of clients' businesses, offering suggestions, providing IAM support Communicating effectively with technical and non-technical stakeholders Acting as an SME on IAM controls needed by clients What we're looking for: IAM expertise: understanding of technical controls and contemporary IAM risks Experience utilising/implementing one or more of the following, the more the better: Okta, Entra ID, BeyondTrust, Oneidentity, CyberArk, Sailpoint, Saviynt. Eligibility for SC clearance Experience consulting within the IAM space Demonstrable internal and external stakeholder engagement and management ability Good time management A resilient personality able to deal with a fast-paced environment What you'll get in return In addition to a salary of between £55,000 to £115,000, you'll also receive a variety of benefits, such as: Annual bonus - % dependent on role seniorityCar/cash allowance - £ dependent on role seniority Progression plans and growth opportunities within National and Global teams Good holidays and pension What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk

Risk Manager - SC Cleared - Outside IR35 Rate : £450 - £500/day (Outside IR35) Location : Bristol/Andover Travel : 2 days per week mandatory at the client site (travel expenses are not reimbursed) Clearance : Active SC clearance required Length : Initial 3 months We are seeking a senior Risk Manager to lead programme-wide risk and opportunity management, ensuring alignment with HM and MOD governance frameworks. This role goes beyond traditional risk reporting-positioning the Risk Manager as a trusted advisor to Senior Responsible Owners (SROs), Programme Boards, and assurance bodies , enabling risk-informed decision-making , shaping strategic trade-offs, and ensuring both threats and opportunities are actively managed to protect and enhance Defence capability outcomes. Key Responsibilities Risk Management Strategy & Planning: Develop, implement, and continuously refine the Programme Risk Management Strategy and Risk Management Plan , aligned to NAD, MOD, and HMG best practice. Define risk appetite, tolerance, thresholds, and escalation frameworks across project, programme, and portfolio levels. Ensure integration of risk management into overall programme governance, planning, and delivery lifecycle. Threat & Opportunity (Upside Risk) Management: Lead proactive identification and management of both threats and opportunities , ensuring balanced consideration of risk and value. Embed opportunity management practices to maximise programme benefits and outcomes. Align risk and opportunity management with benefits realisation and Defence capability delivery , not just milestones. Risk-Informed Decision Making: Act as a trusted advisor to SROs and Programme Boards , providing clear analysis of risks, opportunities, and trade-offs. Present decision options with associated impacts on cost, schedule, performance, and operational outcomes. Support informed decision-making through evidence-based insights and scenario analysis. Schedule Threshold Management & Escalation: Define and manage risk thresholds and escalation triggers , including schedule, cost, and performance tolerances. Monitor delivery against thresholds and ensure timely escalation from project to programme and portfolio governance levels. Provide early warning of risks that may impact critical paths, approvals, or operational readiness. Tooling & Quantitative Risk Analysis: Lead the use of Active Risk Manager (ARM) and Predict! (or equivalent) to manage risk data, reporting, and analysis. Deliver quantitative risk analysis (QRA) , including schedule and cost risk modelling where appropriate. Ensure data quality, consistency, and auditability across all risk artefacts. Commercial & Contractual Risk Integration: Integrate risk management with commercial strategies, supplier performance, and contractual frameworks . Identify and manage risks associated with multi-vendor delivery environments , including misaligned incentives and dependencies. Support commercial teams in embedding risk considerations into procurement and supplier management. Security, Accreditation & Cyber Risk: Lead management of security, accreditation, and cyber risks as core programme risk domains. Ensure alignment with Defence security policies, accreditation requirements, and cyber assurance processes. Provide visibility and escalation of risks impacting authority to operate and operational deployment. Governance, Assurance & Independent Challenge: Maintain comprehensive and auditable risk registers and RAID logs across programme levels. Provide high-quality reporting to Programme Boards, SROs, and assurance bodies (e.g., IPA, Cabinet Office). Exercise independent challenge , ensuring risks are accurately represented and not understated. Escalate material concerns without compromise, ensuring transparency and integrity in reporting. Requirements Essential: Proven experience as a Risk Manager within Defence, government, or large-scale regulated environments. Demonstrated experience developing Risk Management Strategies and Plans . Hands-on experience with Active Risk Manager (ARM) , Predict! , or equivalent tools. Experience delivering quantitative risk analysis (QRA) , including schedule and/or cost modelling. Strong understanding of commercial, supplier, and multi-vendor risk environments . Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.

We are seeking a senior Risk Manager to lead programme-wide risk and opportunity management, ensuring alignment with HM Treasury Orange Book principles and MOD governance frameworks. This role goes beyond traditional risk reporting-positioning the Risk Manager as a trusted advisor to Senior Responsible Owners (SROs), Programme Boards, and assurance bodies , enabling risk-informed decision-making , shaping strategic trade-offs, and ensuring both threats and opportunities are actively managed to protect and enhance Defence capability outcomes. Key Responsibilities Risk Management Strategy & Planning: Develop, implement, and continuously refine the Programme Risk Management Strategy and Risk Management Plan , aligned to NAD, MOD, and HMG best practice. Define risk appetite, tolerance, thresholds, and escalation frameworks across project, programme, and portfolio levels. Ensure integration of risk management into overall programme governance, planning, and delivery life cycle. Threat & Opportunity (Upside Risk) Management: Lead proactive identification and management of both threats and opportunities , ensuring balanced consideration of risk and value. Embed opportunity management practices to maximise programme benefits and outcomes. Align risk and opportunity management with benefits realisation and Defence capability delivery , not just milestones. Risk-Informed Decision Making: Act as a trusted advisor to SROs and Programme Boards , providing clear analysis of risks, opportunities, and trade-offs. Present decision options with associated impacts on cost, schedule, performance, and operational outcomes. Support informed decision-making through evidence-based insights and scenario analysis. Schedule Threshold Management & Escalation: Define and manage risk thresholds and escalation triggers , including schedule, cost, and performance tolerances. Monitor delivery against thresholds and ensure timely escalation from project to programme and portfolio governance levels. Provide early warning of risks that may impact critical paths, approvals, or operational readiness. Tooling & Quantitative Risk Analysis: Lead the use of Active Risk Manager (ARM) and Predict! (or equivalent) to manage risk data, reporting, and analysis. Deliver quantitative risk analysis (QRA) , including schedule and cost risk modelling where appropriate. Ensure data quality, consistency, and auditability across all risk artefacts. Commercial & Contractual Risk Integration: Integrate risk management with commercial strategies, supplier performance, and contractual frameworks . Identify and manage risks associated with multi-vendor delivery environments , including misaligned incentives and dependencies. Support commercial teams in embedding risk considerations into procurement and supplier management. Security, Accreditation & Cyber Risk: Lead management of security, accreditation, and cyber risks as core programme risk domains. Ensure alignment with Defence security policies, accreditation requirements, and cyber assurance processes. Provide visibility and escalation of risks impacting authority to operate and operational deployment. People, Skills & Clearance Risks: Identify and manage risks related to SC clearance constraints, key personnel dependencies, and skills shortages . Highlight risks associated with succession gaps and single points of failure across programme and supplier teams. Support workforce planning through proactive identification of people-related risks. Governance, Assurance & Independent Challenge: Maintain comprehensive and auditable risk registers and RAID logs across programme levels. Provide high-quality reporting to Programme Boards, SROs, and assurance bodies (eg, IPA, Cabinet Office). Exercise independent challenge , ensuring risks are accurately represented and not understated. Escalate material concerns without compromise, ensuring transparency and integrity in reporting. Stakeholder Engagement: Engage with senior stakeholders across NAD, MOD, suppliers, and wider HMG organisations. Facilitate risk workshops, reviews, and governance forums to ensure shared understanding and ownership of risk. Provide clear, concise communication tailored to both technical and non-technical audiences. Continuous Improvement & Risk Culture: Promote a proactive, transparent, and risk-aware culture across multidisciplinary teams. Drive continuous improvement in risk management practices, tools, and maturity. Capture and share lessons learned across programmes and portfolios. Requirements Essential: Proven experience as a Risk Manager within Defence, government, or large-scale regulated environments. Extensive experience supporting HMG Category A or Major Programmes , including approvals and assurance processes. Strong knowledge of HM Treasury Orange Book and risk management best practice. Demonstrated experience developing Risk Management Strategies and Plans . Hands-on experience with Active Risk Manager (ARM) , Predict! , or equivalent tools. Experience delivering quantitative risk analysis (QRA) , including schedule and/or cost modelling. Strong understanding of commercial, supplier, and multi-vendor risk environments . Experience managing security, accreditation, and cyber risks within Defence or similar contexts. Ability to influence senior stakeholders and provide independent challenge at Board level. Excellent analytical, communication, and reporting skills. Desirable: Experience within NAD/Defence Digital , Land ISTAR, or digital transformation programmes. Knowledge of HM Treasury Green Book and business case development. Familiarity with Infrastructure and Projects Authority (IPA) and GMPP assurance processes. Professional certification in risk management (eg, APM Risk, MoR, PMI-RMP).

As part of an exciting digital transformation, the University of Surrey is seeking a Cyber Security Continuous Improvement Manager. In this senior role, you will shape and strengthen the University's cyber resilience, ensuring our security capabilities, controls and behaviours continuously evolve in response to an ever changing threat landscape. We value, empower and support every member of staff to get the best out of your unique talents, so you'll be rewarded with a generous salary, 32 days holiday PLUS Bank Holidays, pension contribution of 14.5%, and a unique and vibrant working environment. Role & Responsibilities: You will play a central role in how the University identifies, manages and adapts to cyber risk-using data, intelligence and sector best practice to guide decision making. The post leads our shift from reactive to proactive security, driving behavioural and cultural change across the institution and embedding clear accountability for cyber risk. Beyond formal project delivery, you will oversee continuous improvement activity-translating operational insight from metrics, audits, incidents and risk assessments into practical, business as usual enhancements. This work ensures faster detection and response, greater organisational readiness, and more resilient incident management processes. Responsibilities include: Lead continuous improvement - develop and implement a structured, continuous improvement roadmap to enhance the University's cybersecurity maturity over time. Drive risk reduction initiatives - oversee the identification, tracking and mitigation or cyber risks, ensuring continuous reduction of vulnerabilities across systems and processes enabling and influencing executive risk decision making. Lead on internal exercises and post incident reviews - Lead lessons learned activities, ensuring root causes are addressed and translated into practical, proportionate improvements. Accountability for ensuring organisational learning is embedded. Establish metrics and reporting - define and manage key performance indicators and key risk indicators to measure the effectiveness of controls and improvement efforts and which allow informed and timely decision making at senior levels of the organisation. Support during cyber security incidents - Assisting the Director of Cyber Security and the Head of Cyber Security Operations by facilitating structured engagement between Cyber Operations, Cyber Risk & Compliance, IT Services, Communications, and other University senior stakeholders, ensuring clarity of roles, actions, and timelines. The IT team at Surrey are plugged in to the whole University, and our digital transformation work underpins the University's strategy. IT is growing our digital transformation capability, improving student experience, and helping increase our research impact. It's a vibrant and exciting time to join a great and well-respected team at the heart of the University's strategic plans. What's in it for you? We think Surrey is an amazing place to work, and we are carefully crafting a dynamic, flexible, and fun place to work and thrive. Our campus is a beautiful, leafy environment with carefully designed gardens, vibrant green playing fields, and a picturesque lake. With the buzz of student life and superb working facilities, the University is a global community of ideas and people, dedicated to life-changing education and research in an inspiring, innovative and diverse environment. Alongside our gorgeous campus setting, collegiate on-site atmosphere and plentiful development opportunities, we also offer: Competitive Salary Market leading Pension Up to 40 DAYS Holiday: 25 Days annual leave + 7 University Days + Bank Holidays Travel & Family benefits including subsidised rail fare, cycle to work scheme and on-site childcare Access to on site leisure facilities at discounted rates For more information or to be considered for the role, please apply via the University of Surrey Website. The University is committed to providing an inclusive environment that offers equal opportunities for all. We place great value on diversity and are seeking to increase the diversity within our community. Therefore, we particularly encourage applications from under-represented groups, such as people from Black, Asian and minority ethnic groups and people with disabilities. Further details Job Description

Forensic Technology/ Digital Forensics Manager London (hybrid) Opportunity to work for an outstanding company in the field. You will have a strong commercial background and client facing communication skills. Your experience is likely from a service provider or advisory firm. You will have an ability to collect data from various devices (Desktop, laptop, phones) but also from the cloud and more commercial enterprise wide systems e.g. global email etc. You will have experience with leading Digital Forensic tools e.g. EnCase, FTK, Cellebrite etc. You will have a strong academic background and likely a degree in a related subject. You will be able to attend the office and when required visit client sites. There are initially no direct reportees. You will collect data in a compliant manner so be familiar with ACPO and chain of custody. About Brimstone Consulting: We specialise in finding highly qualified staff in the following areas:Forensic Accounting & Fraud - (AML/CTF, Investigation, CFE s etc.); Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics- (MI/BI/CI);InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.);Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.);Compliance/Corporate Governance ;IT- (full SDLC- BA s PM s , Architects, Developers etc.); Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients specifications. We may store applications in our cloud storage facilities that may include dropbox.

Technical Account Manager (Cyber Security) Remote UK Based Up to £60,000 per annum plus additional benefits Additional: Due to security clearance required candidates wishing to apply must be based in the UK Our client, a leading UK Based MSSP, are looking for an experienced Cyber Security specialist to join their solutions team working as the dedicated Technical Account Manager. As the Technical Account Manager, you will bring your technical know-how, MDR/SOC, and act as the first point of call for customer service improvements Assist with the onboarding and building an understanding of customer business risks Work with the onboarding consultants to build Threat Models and maintain them during live service Allocated Technical Account Manager to act as a first point of contact for operational matters and proactive management of high priority and ongoing incidents Act as Customer advocate within the team Own the operational relationship between customers and the Team Assist the operational teams in fixing issues that arise during the operation of services Identify and implement, with the assistance of engineers and architects, technical enhancements to the services that drive value for customers Act as the Subject matter Expert to improve the quality of service and maintain a roadmap for those customers Core experience Previous experience and understanding of the operation of Security Operation Centres(SOC) and detection/response A strong understanding of basic cyber security principals Ability to manage time effectively and deliver tasks independently together with excellent interpersonal and communication skills. Any experience of working in/around Security Operation Centres, using and/or managing SIEM/EDR/SOAR platforms, a good understanding of cloud platforms, and a basic ability to script would all be advantageous. Certification - Advantageous but not essential General security (CREST CPSA / CPIA / CRIA / CMRE / CNIA / CHIA • CompTIA Security+, CompTIA Network+)

Our Client based in Greater Glasgow are looking for a Security Improvement Business Analyst to join their team, for an initial 9 months working Inside IR35. Within this role, you will be working across all layers of the business - Seupport Services, IT, HR Supply Chain, Standards & Performance - translating audit findings, cybersecurity risks and SIP Recommendations into details actionable requirements. The role involves deep collaboration with internal stakeholders, specialist security SME's, external Consultancy Partners and governance teams to ensure clarity, traceability and consistency of cybersecurity processes and controls. Collaborate with Security Improvement Project Manager to plan, prioritise and schedule business analysis activities Elicit, document and validate cybersecurity, IT, and operational requirements through workshops, interviews, process reviews and assessment of existing security controls and practices. Translate complex cybersecurity risks, audit findings, and technical requirements into clear, structured artefacts Act as a bridge between Business Stakeholders, IT Teams, Security SMEs and external consultancy partners - ensure alignment with NIST Cybersecurity Framework Outcomes Qualifications, Skills and Experience Strong Understanding of Cybersecurity domains such as Asset Management, identity and access management, incident response, network security, data protection, vulnerability management, and third-party security. Experience working with recognised security frameworks (e.g. NIST Cybersecurity Framework, ISO 27001) Comfortable working in a fast-paced, multi-workstream transformation project with evolving priorities and dependencies Proactive, self-motivated, and collaborative, with a commitment to high-quality documentation, clarity and structured delivery. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.

Project Test Manager Location: Hampshire (Onsite) Duration: 18 Months Clearance: D V Clearance required (Active) Rate: 650 to 750 per day - Outside IR35 Overview We are seeking a Project Test Managerto provide specialist oversight and assurance across a highly secure government IT infrastructure programme. This role will focus on managing and governing the test and trial activity, ensuring that infrastructure capabilities are validated, risks are identified early, and delivery remains aligned to operational requirements. The successful candidate will act as a trusted adviser to programme leadership, providing independent challenge, structured guidance, and leadership across complex test environments. Key Responsibilities Provide strategic oversight and assurance of Test & Trials activity across the programme Review and shape Test & Trials Strategies, Plans, and governance frameworks Advise programme leadership on test readiness, risks, and delivery confidence Provide independent challenge to ensure robust validation and assurance practices Support planning and execution of system integration, acceptance, and operational trials Engage with engineering, cyber, and operational stakeholders to ensure coordinated test delivery Produce high-level assurance reporting and readiness assessments Identify delivery risks and recommend mitigation strategies Support transition into service and operational acceptance activities Essential Skills & Experience Active DV Clearance (mandatory) Strong experience delivering Test & Trials consultancy or leadership within secure government or defence environments Demonstrable experience shaping test governance, strategy, and assurance frameworks Background working on secure IT infrastructure or complex systems programmes Experience advising senior stakeholders on test readiness and delivery risk Strong understanding of integration, system, and operational testing principles Ability to operate effectively within highly controlled, security-sensitive environments Desirable Experience Experience supporting MOD, Defence, or National Security programmes Familiarity with secure networks or infrastructure-based delivery environments Experience providing independent assurance or programme-level consultancy Knowledge of structured delivery methodologies (e.g., PRINCE2, ITIL, Agile)

Duncan Lewis Solicitors (Ltd): Regulated by the Solicitor's Regulation Authority, Duncan Lewis Solicitors was founded in 1998 and is headquartered in the City of London (Fenchurch Street EC3M), with offices nationwide. We are recognised by the Legal 500 and Chambers & Partners UK independent legal directories as a top-tier law firm in all of our key practice areas - "a diligent and professional team that is prepared to go the extra mile for its clients". A paperless law firm with over 500 personnel that embraces hybrid-working, we service both corporate entities and private individuals in over 25 areas of law across 60 languages. We give people a voice - that is our ethos. Recognised among The Times 200 Best Law Firms, we have been awarded Law Firm of the Year at the 2024 Lexis Nexis Awards and 2023 Modern Law Awards, reflecting our dedication to legal expertise and client service. We hold Investors in People Gold Standard accreditation for over 15 years, showcasing our commitment to professional development. Duncan Lewis is also Law Society Lexcel, Cyber Essentials Plus, and ISO 27001 certified, ensuring excellence in practice management and data security. We are committed to recruiting dedicated and talented professionals and welcome applications from exceptional candidates. At Duncan Lewis, we value training and diversity, and we take pride in our inclusive workforce. The Role: The ideal candidate will join a well-established national team of experienced Costs Lawyers and Costs Draftsmen, supporting the full lifecycle of the billing and recovery process for a wide range of legal sector clients. This senior position requires strong technical expertise, excellent drafting ability, and confident negotiation skills. Candidates with substantial Legal Aid experience and the ability to hit the ground running will be particularly valued. Main Responsibilities of the Role: Report directly to Manager Drafting / preparing inter partes bills of costs, costs budgets; and points of reply/dispute Drafting inter partes bills with Legal Aid element Drafting Claim1's, 1a's and VHCC/HCCP case Drafting of estimates of costs to accompany Allocation Questionnaires and Pre-Trial Checklists. Negotiations of Bills including attendance at CCMC's Overseeing the Issuing of the Notice of Commencement and associated documents Working to deadlines Attendance upon Detailed Assessment Hearing as and when necessary Providing technical / costs guidance to fee earners where required Assist junior members of the team to complete post -assessment work, with training and ad hoc queries Maintaining accurate time costing procedures Implementing any recommendations made by your supervisor following monthly meetings ensuring that these are dealt with promptly Ensuring full compliance with file management and internal quality standards Contributing to internal training and the ongoing development of costs management processes Key Skills Required: Minimum of 3 years legal experience in Costs Law namely drafting legal aid and Inter partes bills along with clear understanding and application of the civil procedure rules relating to costs Ability to draft an IP bill of costs (preferably with some LAA experience - 3 & 6 column bills) Ability to prepare costs budgets and have experience in the same Ability to draft schedule of costs and breakdowns Ability to negotiate Ability to draft Points of Reply Ability to work on their own and within a team Ability to risk assess Ability to provide sound advice to client's Ability to set matters down for assessment Have an understanding of Part 8 procedure Advocacy would be desired but not essential Work to achievable targets Familiar with Costs Master would be useful but not essential Have good Excel skills and Microsoft skills Why Join Us: A supportive, knowledgeable team that values expertise and encourages growth Opportunities to mentor, lead, and shape best practice within the department The chance to work on high-quality, complex matters that stretch your skills Clear pathways for progression within a respected national Costs team The recruitment process will fully comply with GDPR and other applicable laws. Background checks including CRB / DBS checks will establish your eligibility to work in the UK and suitability to the role. Equal Opportunities: Duncan Lewis is committed to Equal Opportunities and embraces diversity of its staff. The Company strives to ensure that our staff reflects the diversity of the communities we serve, which is reflective at all levels within our workforce. We guarantee an interview for candidates that disclose a disability and meet the essential requirements for the post. Please provide additional details in your covering letter if this applies.

My Client based in Greater Glasgow are looking for a Project Manager to join their team for an initial 9 months, working Inside IR35. Within this role you will be leading the delivery of the organisations multi-year Security Improvement Plan, a critical strategic initiative designed to uplift the organisations Cybersecurity maturity to meet the NIST Cybersecurity Framework Level 3 Target. You will be responsible for the planning, coordination and delivery of a complex, organisation wide cybersecurity transformation project spanning infrastructure, applications, data, user behaviour, governance and third-party risk. Principal Accountabilities: Demonstratable experience in delivering complex cybersecurity projects in highly available, mission-critical environments. Lead and coordinate the end-to-end delivery of their multi-year Security Improvement Plan (SIP). Manage the accelerated delivery of high-risk remediation work, followed by full project delivery across multiple security capability areas. Act as Client-side project management expert across all security workstreams, ensuring disciplined execution of governance, reporting and assurance processes. Facilitate alignment between Internal IT Teams, Security SMEs, external consultancy partners, and operational business units. Oversee supplier and Consultancy partner performance, ensuring adherence to Delivery Plans. Qualifications, skills and experience 7+ years experience delivering complex cybersecurity, uinfrastructure or technology transformation programmes, ideally in client-side, consultancy, or regulated public-sector environments. Strong understanding of cybersecurity frameworks and standards, particularly the NIST Cybersecurity Framework Experience working with complex technical environments spanning infrastructure, cloud services, applications, end-user devices, networks and third-party integrations. Demonstrated ability to lead security related procurement activity. Experience operating at Executive Level, supporting Senior Decision Making and presenting complex security issues in a clear and concise manner. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.

We're looking for an Operational Risk Manager Cyber & Resilience to join our Risk team and provide independent second line oversight across cyber, technology and operational resilience risks. This is a key assurance role, offering exposure to senior stakeholders and committees, where you'll combine strong cyber and information security knowledge with practical risk management expertise . You'll act as a trusted subject matter expert, translating complex cyber risks into clear, business focused insight that supports informed decision making. Key Accountabilities: Provide independent review and challenge of first line cyber, resilience and technology risk management activities. Oversee cyber risk coverage within RCSAs, scenario analysis and operational risk assessments . Assess control design and effectiveness across areas including: Cyber and information security Cloud and third party technology services Data protection, availability and resilience Identify emerging and interconnected cyber risks , escalating where risk appetite may be threatened. Provide second line oversight of cyber incidents, near misses and control failures , including root cause analysis and remediation. Track and validate closure of significant cyber risk issues and audit findings . Support the development and monitoring of risk indicators, thresholds and tolerances . Partner closely with Operational Resilience teams to embed cyber risk into: Important Business Services mapping Impact tolerances Severe but plausible cyber scenarios Produce high quality management information and reporting for senior forums, including executive committees and Board level packs. Act as a risk business partner to selected areas, building strong collaborative relationships while maintaining independence. Experience, Knowledge, Skills Strong experience in cyber security, information security or technology risk . Experience working in a heavily regulated environment Background in Risk, Audit or Compliance , with a solid understanding of risk and control frameworks. Ability to communicate complex technical topics clearly to non technical stakeholders. Confident, organised and detail focused, with the resilience to operate in a changing regulatory and technology landscape. Comfortable working independently while contributing to a close knit team. Strong working knowledge of Microsoft Excel and PowerPoint . Professional certifications such as CISA, CRISC, IRM or equivalent. Experience working with AI would be an advantage Why join us? At Kensington Mortgages, we believe our employees are the heart of our success. We are committed to creating a supportive and flexible work environment that values personal growth, professional development and a healthy work life balance Our inclusive culture respects and celebrates diversity in all its forms, ensuring that everyone feels welcome, valued and understood. We recognise and appreciate differences in thinking, learning styles, gender, race, identity, ethnic origins and sexual expression.