Third Party Risk Manager - Cyber (Supplier Assurance Technical Focus) Location Fully Remote (UK-based) Duration - 3 Months but likely to run until October 2026 About the Role At Tesco Insurance and Money Services, we're looking for a technology focused Third Party Risk Manager to help us secure our third-party and supplier ecosystem. This is a hands-on cyber security assurance role, not focused on data protection or operational resilience. You'll assess and challenge the technical security controls of around 80 suppliers, including cloud providers, SaaS platforms, and managed service partners. You'll play a key role in ensuring suppliers meet our cyber security standards, ISO 27001 requirements, and broader technical security expectations. What You'll Be Doing Own and manage cyber security assurance across 80 third-party suppliers Carry out technical security assessments of cloud, SaaS, and infrastructure providers Review supplier controls including: Cloud security Identity & access management Network security Application security Assess supplier evidence such as penetration tests, SOC reports, and ISO 27001 audits Lead ISO 27001-aligned supplier audits with a focus on technical control effectiveness Identify, track, and drive closure of supplier security risks Work closely with Cyber Security Engineering and Technology teams Provide clear, risk-based reporting on supplier security posture What We're Looking For Essential Experience Strong background in cyber security, infrastructure security, cloud security, or security engineering Proven experience in Third Party Risk Management (TPRM) or supplier assurance Experience performing technical security assessments of suppliers or systems Strong understanding of: Cloud security (AWS / Azure / GCP) IAM, network, and application security Hands-on experience with ISO 27001 audits and technical control assessment Ability to review and challenge security evidence (e.g. pen tests, SOC reports) Experience working in complex environments with multiple suppliers (50-100+) Desirable ISO 27001 Lead Auditor certification CISSP, CISM, CRISC or similar Background in security engineering, cloud security, or infrastructure security Financial services or regulated environment experience What You'll Bring A strong technical mindset and attention to detail Confidence challenging suppliers on security design and controls Ability to translate technical risk into clear outcomes Strong communication with both engineers and senior stakeholders Ownership of your supplier portfolio in a remote environment Candidates will ideally show evidence of the above in their CV to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention.
May 16, 2026
Contractor
Third Party Risk Manager - Cyber (Supplier Assurance Technical Focus) Location Fully Remote (UK-based) Duration - 3 Months but likely to run until October 2026 About the Role At Tesco Insurance and Money Services, we're looking for a technology focused Third Party Risk Manager to help us secure our third-party and supplier ecosystem. This is a hands-on cyber security assurance role, not focused on data protection or operational resilience. You'll assess and challenge the technical security controls of around 80 suppliers, including cloud providers, SaaS platforms, and managed service partners. You'll play a key role in ensuring suppliers meet our cyber security standards, ISO 27001 requirements, and broader technical security expectations. What You'll Be Doing Own and manage cyber security assurance across 80 third-party suppliers Carry out technical security assessments of cloud, SaaS, and infrastructure providers Review supplier controls including: Cloud security Identity & access management Network security Application security Assess supplier evidence such as penetration tests, SOC reports, and ISO 27001 audits Lead ISO 27001-aligned supplier audits with a focus on technical control effectiveness Identify, track, and drive closure of supplier security risks Work closely with Cyber Security Engineering and Technology teams Provide clear, risk-based reporting on supplier security posture What We're Looking For Essential Experience Strong background in cyber security, infrastructure security, cloud security, or security engineering Proven experience in Third Party Risk Management (TPRM) or supplier assurance Experience performing technical security assessments of suppliers or systems Strong understanding of: Cloud security (AWS / Azure / GCP) IAM, network, and application security Hands-on experience with ISO 27001 audits and technical control assessment Ability to review and challenge security evidence (e.g. pen tests, SOC reports) Experience working in complex environments with multiple suppliers (50-100+) Desirable ISO 27001 Lead Auditor certification CISSP, CISM, CRISC or similar Background in security engineering, cloud security, or infrastructure security Financial services or regulated environment experience What You'll Bring A strong technical mindset and attention to detail Confidence challenging suppliers on security design and controls Ability to translate technical risk into clear outcomes Strong communication with both engineers and senior stakeholders Ownership of your supplier portfolio in a remote environment Candidates will ideally show evidence of the above in their CV to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention.
About the Role: CrowdStrike is looking for highly motivated, self-driven, technical analysts dedicated to making a difference in global security by protecting organizations against the most advanced attackers in the world. Our CrowdStrike virtual security operations center offers opportunities to expand your skill set through a wide variety of experiences, detecting and responding to incidents as they occur in real-time for our customers. What You'll Do: Conduct monitoring and perform in-depth analysis of security alerts. Exercise incident handling processes across Windows, Mac, and Linux platforms. Perform malware analysis. Perform remote remediation of malware or malicious activity. Develop and improve processes for incident detection, triage, and the execution of countermeasures Produce high-quality written and verbal communications, recommendations, and findings to customer management. Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events. Manage internal programs or teams. Serve as the technical escalation point and mentor for lower-level analysts. Provide oversight and quality assurance for issues worked by lower-level analysts. Assist in the advancement of security processes and procedures. What You'll Need: Successful candidates will have experience in one or more of the following areas: Incident Handling: experience conducting or managing incident response for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hactivists. Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise. Systems Administration: an understanding of system internals is required to understand how to implement and execute countermeasures and remediation. Network Forensic Analysis: knowledge of network protocols, network analysis tools, and ability to perform analysis of associated network logs. Malware Analysis: ability to perform static and dynamic malware analysis to understand the nature of malware Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations. Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations. Programming/Scripting: experience coding in Powershell, C, C#, VB, Python, Perl, Ruby on Rails, and.NET. Education: BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field. Bonus Points: 4-6 years of relevant incident handling experience At least one relevant security certification Strong verbal and communication skills Strong problem solving skills Strong experience with Mac OS, Windows, and Unix operating systems. Ability to handle high pressure situations in a productive and professional manner. Strong time management skills with the ability to multi-task Benefits of Working at CrowdStrike: Market leader in compensation and equity awards Comprehensive physical and mental wellness programs Competitive vacation and holidays for recharge Paid parental and adoption leaves Professional development opportunities for all employees regardless of level or role Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections Vibrant office culture with world class amenities Great Place to Work Certified(TM) across the globeCrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs on valid job requirements.If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at for further assistance.
May 16, 2026
Full time
About the Role: CrowdStrike is looking for highly motivated, self-driven, technical analysts dedicated to making a difference in global security by protecting organizations against the most advanced attackers in the world. Our CrowdStrike virtual security operations center offers opportunities to expand your skill set through a wide variety of experiences, detecting and responding to incidents as they occur in real-time for our customers. What You'll Do: Conduct monitoring and perform in-depth analysis of security alerts. Exercise incident handling processes across Windows, Mac, and Linux platforms. Perform malware analysis. Perform remote remediation of malware or malicious activity. Develop and improve processes for incident detection, triage, and the execution of countermeasures Produce high-quality written and verbal communications, recommendations, and findings to customer management. Demonstrate industry thought leadership through blog posts, CrowdCasts, and other public speaking events. Manage internal programs or teams. Serve as the technical escalation point and mentor for lower-level analysts. Provide oversight and quality assurance for issues worked by lower-level analysts. Assist in the advancement of security processes and procedures. What You'll Need: Successful candidates will have experience in one or more of the following areas: Incident Handling: experience conducting or managing incident response for organizations, investigating targeted threats such as the Advanced Persistent Threat, Organized Crime, and Hactivists. Computer Forensic Analysis: a background using a variety of forensic analysis tools in incident response investigations to determine the extent and scope of compromise. Systems Administration: an understanding of system internals is required to understand how to implement and execute countermeasures and remediation. Network Forensic Analysis: knowledge of network protocols, network analysis tools, and ability to perform analysis of associated network logs. Malware Analysis: ability to perform static and dynamic malware analysis to understand the nature of malware Incident Remediation: strong understanding of targeted attacks and able to create customized tactical and strategic remediation plans for compromised organizations. Network Operations and Architecture/Engineering: strong understanding of secure network architecture and strong background in performing network operations. Programming/Scripting: experience coding in Powershell, C, C#, VB, Python, Perl, Ruby on Rails, and.NET. Education: BA or BS / MA or MS degree in Computer Science, Computer Engineering, Math, Information Security, Information Assurance, Information Security Management, Intelligence Studies, Cybersecurity, Cybersecurity Policy, or a related field. Bonus Points: 4-6 years of relevant incident handling experience At least one relevant security certification Strong verbal and communication skills Strong problem solving skills Strong experience with Mac OS, Windows, and Unix operating systems. Ability to handle high pressure situations in a productive and professional manner. Strong time management skills with the ability to multi-task Benefits of Working at CrowdStrike: Market leader in compensation and equity awards Comprehensive physical and mental wellness programs Competitive vacation and holidays for recharge Paid parental and adoption leaves Professional development opportunities for all employees regardless of level or role Employee Networks, geographic neighborhood groups, and volunteer opportunities to build connections Vibrant office culture with world class amenities Great Place to Work Certified(TM) across the globeCrowdStrike is proud to be an equal opportunity employer. We are committed to fostering a culture of belonging where everyone is valued for who they are and empowered to succeed. We support veterans and individuals with disabilities through our affirmative action program.CrowdStrike is committed to providing equal employment opportunity for all employees and applicants for employment. The Company does not discriminate in employment opportunities or practices on the basis of race, color, creed, ethnicity, religion, sex (including pregnancy or pregnancy-related medical conditions), sexual orientation, gender identity, marital or family status, veteran status, age, national origin, ancestry, physical disability (including HIV and AIDS), mental disability, medical condition, genetic information, membership or activity in a local human rights commission, status with regard to public assistance, or any other characteristic protected by law. We base all employment decisions including recruitment, selection, training, compensation, benefits, discipline, promotions, transfers, lay-offs, return from lay-off, terminations and social/recreational programs on valid job requirements.If you need assistance accessing or reviewing the information on this website or need help submitting an application for employment or requesting an accommodation, please contact us at for further assistance.
Senior Industrial Control Systems (ICS) and Security Manager Walton Park Personal Contract Full- time Joint-contribution pension from 6% (12% total) - Enhanced maternity & family leave - Life assurance - HolidayPlus - Virtual GP & Employee Assistance Programme plus retail and leisure discounts & many more. REQ5583 A senior governance and technical leadership role responsible for the lifecycle management, security, and governance of SGN's Operational Technology systems and physical security infrastructure at critical national infrastructure sites across the gas transmission network, ensuring regulatory compliance and risk management in line with industry and national standards. We deliver safety, warmth, and comfort to homes and businesses. Every role, whether in the office or on the front line, plays a key part in this mission. Here's how you will contribute Act as Asset Owner for SCADA and OT systems, maintaining governance, lifecycle management, and configuration control across SGN's gas transmission network Lead OT cybersecurity governance across Critical National Infrastructure (CNI) sites, ensuring compliance with NIS Regulations, the Cyber Assessment Framework (CAF), and HSE expectations for control system integrity Govern physical security assets at gas sites, maintaining appropriate protections and ensuring system changes are appropriately controlled Lead delivery of the OT capital programme, driving cyber security improvements, system upgrades, and resilience investments to time and regulatory commitments Coordinate cross-directorate engagement with Operations, Engineering, Cyber, and Regulatory teams to maintain oversight of OT risk, resilience, and compliance obligations Provide senior technical decision-making authority on OT security architecture, system resilience, and change governance - ensuring continuity of safe gas network operations What you will need Proven experience in OT or ICMS asset management, including hands on familiarity with SCADA systems, within a safety critical or regulated environment Strong understanding of OT cybersecurity frameworks and regulatory obligations, including NIS Regulations, the Cyber Assessment Framework (CAF), and IEC 62443 Experience in physical security asset management at Critical National Infrastructure (CNI) sites or equivalent high security operational environments Demonstrated ability to lead capital programmes and manage cross functional delivery across engineering, cyber, and operations disciplines Strong stakeholder management and communication skills, with the ability to operate at senior level across technical and non technical audiences including regulators Relevant qualification in engineering, computer science, cybersecurity, or a related discipline; professional accreditation in OT/ICS security or asset management is desirable Not sure you meet every requirement? Research shows some people - particularly women and those from underrepresented backgrounds - may hesitate to apply unless they meet every criteria. At SGN, we value diverse backgrounds, experiences and perspectives. Accommodations during the application process If you require any accommodations or support during the application process, reach out to us. We're here to help ensure an inclusive and accessible experience for everyone.
May 15, 2026
Full time
Senior Industrial Control Systems (ICS) and Security Manager Walton Park Personal Contract Full- time Joint-contribution pension from 6% (12% total) - Enhanced maternity & family leave - Life assurance - HolidayPlus - Virtual GP & Employee Assistance Programme plus retail and leisure discounts & many more. REQ5583 A senior governance and technical leadership role responsible for the lifecycle management, security, and governance of SGN's Operational Technology systems and physical security infrastructure at critical national infrastructure sites across the gas transmission network, ensuring regulatory compliance and risk management in line with industry and national standards. We deliver safety, warmth, and comfort to homes and businesses. Every role, whether in the office or on the front line, plays a key part in this mission. Here's how you will contribute Act as Asset Owner for SCADA and OT systems, maintaining governance, lifecycle management, and configuration control across SGN's gas transmission network Lead OT cybersecurity governance across Critical National Infrastructure (CNI) sites, ensuring compliance with NIS Regulations, the Cyber Assessment Framework (CAF), and HSE expectations for control system integrity Govern physical security assets at gas sites, maintaining appropriate protections and ensuring system changes are appropriately controlled Lead delivery of the OT capital programme, driving cyber security improvements, system upgrades, and resilience investments to time and regulatory commitments Coordinate cross-directorate engagement with Operations, Engineering, Cyber, and Regulatory teams to maintain oversight of OT risk, resilience, and compliance obligations Provide senior technical decision-making authority on OT security architecture, system resilience, and change governance - ensuring continuity of safe gas network operations What you will need Proven experience in OT or ICMS asset management, including hands on familiarity with SCADA systems, within a safety critical or regulated environment Strong understanding of OT cybersecurity frameworks and regulatory obligations, including NIS Regulations, the Cyber Assessment Framework (CAF), and IEC 62443 Experience in physical security asset management at Critical National Infrastructure (CNI) sites or equivalent high security operational environments Demonstrated ability to lead capital programmes and manage cross functional delivery across engineering, cyber, and operations disciplines Strong stakeholder management and communication skills, with the ability to operate at senior level across technical and non technical audiences including regulators Relevant qualification in engineering, computer science, cybersecurity, or a related discipline; professional accreditation in OT/ICS security or asset management is desirable Not sure you meet every requirement? Research shows some people - particularly women and those from underrepresented backgrounds - may hesitate to apply unless they meet every criteria. At SGN, we value diverse backgrounds, experiences and perspectives. Accommodations during the application process If you require any accommodations or support during the application process, reach out to us. We're here to help ensure an inclusive and accessible experience for everyone.
Project Test Manager Location: Hampshire (Onsite) Duration: 18 Months Clearance: DV Clearance required (Active) Rate: £550 to £600 per day - Outside IR35 Overview We are seeking a Project Test Manager to provide specialist oversight and assurance across a highly secure government IT infrastructure programme. This role will focus on managing and governing the test and trial activity, ensuring that infrastructure capabilities are validated, risks are identified early, and delivery remains aligned to operational requirements. The successful candidate will act as a trusted adviser to programme leadership, providing independent challenge, structured guidance, and leadership across complex test environments. Key Responsibilities Provide strategic oversight and assurance of Test & Trials activity across the programme Review and shape Test & Trials Strategies, Plans, and governance frameworks Advise programme leadership on test readiness, risks, and delivery confidence Provide independent challenge to ensure robust validation and assurance practices Support planning and execution of system integration, acceptance, and operational trials Engage with engineering, cyber, and operational stakeholders to ensure coordinated test delivery Produce high-level assurance reporting and readiness assessments Identify delivery risks and recommend mitigation strategies Support transition into service and operational acceptance activities Essential Skills & Experience Active DV Clearance (mandatory) Strong experience delivering Test & Trials consultancy or leadership within secure government or defence environments Demonstrable experience shaping test governance, strategy, and assurance frameworks Background working on secure IT infrastructure or complex systems programmes Experience advising senior stakeholders on test readiness and delivery risk Strong understanding of integration, system, and operational testing principles Ability to operate effectively within highly controlled, security sensitive environments
May 15, 2026
Full time
Project Test Manager Location: Hampshire (Onsite) Duration: 18 Months Clearance: DV Clearance required (Active) Rate: £550 to £600 per day - Outside IR35 Overview We are seeking a Project Test Manager to provide specialist oversight and assurance across a highly secure government IT infrastructure programme. This role will focus on managing and governing the test and trial activity, ensuring that infrastructure capabilities are validated, risks are identified early, and delivery remains aligned to operational requirements. The successful candidate will act as a trusted adviser to programme leadership, providing independent challenge, structured guidance, and leadership across complex test environments. Key Responsibilities Provide strategic oversight and assurance of Test & Trials activity across the programme Review and shape Test & Trials Strategies, Plans, and governance frameworks Advise programme leadership on test readiness, risks, and delivery confidence Provide independent challenge to ensure robust validation and assurance practices Support planning and execution of system integration, acceptance, and operational trials Engage with engineering, cyber, and operational stakeholders to ensure coordinated test delivery Produce high-level assurance reporting and readiness assessments Identify delivery risks and recommend mitigation strategies Support transition into service and operational acceptance activities Essential Skills & Experience Active DV Clearance (mandatory) Strong experience delivering Test & Trials consultancy or leadership within secure government or defence environments Demonstrable experience shaping test governance, strategy, and assurance frameworks Background working on secure IT infrastructure or complex systems programmes Experience advising senior stakeholders on test readiness and delivery risk Strong understanding of integration, system, and operational testing principles Ability to operate effectively within highly controlled, security sensitive environments
Quality Manager Based at our Cyber Centre of Excellence in Maidenhead. Ultra I&C's Cyber business are seeking an experienced individual to join the team as Quality Manager. In the role, you will lead and manage the operational performance of the Quality team in Cyber; equipping and enabling the business to achieve its objectives, whilst ensuring products, services and projects consistently meet the highest standards of quality and compliance. Candidates must be able to obtain and maintain SC security clearance. Key Responsibilities: Serve as technical lead for Quality activities across the Cyber business. Develop and implement best practice Quality policies and processes that enhance business performance using recognised process performance methodologies. Provide expert guidance and operational support to maintain ongoing certification to AS9100 and ISO9001 standards. Lead audits and inspections, ensuring timely identification and closure of findings. Oversee the execution of corrective actions and ensure resolution of non-compliance issues within agreed timelines. Regularly report Quality metrics and activities to the Senior Leadership Team, delivering accurate and timely updates on key performance indicators. Design and promote quality training programs and awareness initiatives across the organisation. Manage audits and assessments of production processes, products, and suppliers to verify adherence to quality standards and specifications. Advise Senior Leadership on quality concerns, process improvements, and performance optimisation opportunities. Champion the standardisation of processes across the Cyber business while ensuring compliance with UK legal and Customer specifications and standards. Lead the development and management of all Quality aspects within the Cyber supply chain Oversee quality management for Software, Firmware, and Hardware products. Collaborate effectively with key stakeholders to support delivery and ensure alignment with Quality and Cyber business strategies. Manage and mentor direct reports (Quality Engineers), fostering a high-performing team committed to continuous improvement. Required Skills & Experience: Essential: Demonstrable Quality management experience within the Aerospace / Defence industry. Demonstrable experience of ERP systems (preferably IFS) Demonstrable experience of supporting organisations to achieve compliance to the AS 9100 series of Standards and ISO9001 standards Skilled in implementing and maintaining Quality Management Systems (QMS) the BMS Strong leadership skills with the ability to motivate and develop a small quality team. Excellent communicator and collaborator, capable of influencing stakeholders and promoting quality initiatives. Proficient in data analysis, root cause identification, and problem-solving to resolve quality issues. Track record of identifying improvement opportunities and implementing changes to enhance quality, reduce costs, and improve productivity. Champion of continuous improvement, applying methodologies to drive operational excellence and process enhancements. Desirable: Experience of APQP and PPAP methodologies Understanding of the engineering lifecycle to align quality practices with development stages, ensuring effective integration of quality checkpoints. Membership or progress towards membership of the Chartered Quality Institute (CQI). AS9100 Lead Auditor certification, specific to aerospace and defence quality standards. Notice Due to the nature of the programs we deliver for our customers, candidates may need to obtain the relevant security clearance or handle export-controlled material as defined by the role's requirements. Applicants must be able to obtain and maintain the appropriate level of security clearance for the role. Due to the nature of our work, you must be a British Citizen who has been resident in the UK for the past 5 years in order to apply for SC clearance and 10 years for DV. For more information, please visit the UKSV website. Our Benefits Every employee is critical to our success, and as such, we offer a range of flexible employee benefits, including: Participation in an Annual Bonus Scheme Private Medical Cover 25 days holiday (plus Bank Holidays) with the option to buy an extra 5 days Pension Contribution 4 x Life Assurance Cover Flexible working hours with opportunity for a 1pm finish on a Friday Flexible benefits including cycle to work scheme, will writing and more Security Clearance Allowance where relevant and subject to you holding the required security clearance Diversity, Equity & Inclusion Statement At Ultra I&C, we are an equal opportunity employer and value diversity and inclusivity. Underpinned by our values, behaviours, and policies, we want you to feel empowered to be the best version of yourself. We also believe that people from different backgrounds and cultures will increase our diversity of thinking, ensuring we successfully deliver to our customers. We, therefore, do not discriminate based on race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We also support requests for flexible working arrangements wherever possible.
May 15, 2026
Full time
Quality Manager Based at our Cyber Centre of Excellence in Maidenhead. Ultra I&C's Cyber business are seeking an experienced individual to join the team as Quality Manager. In the role, you will lead and manage the operational performance of the Quality team in Cyber; equipping and enabling the business to achieve its objectives, whilst ensuring products, services and projects consistently meet the highest standards of quality and compliance. Candidates must be able to obtain and maintain SC security clearance. Key Responsibilities: Serve as technical lead for Quality activities across the Cyber business. Develop and implement best practice Quality policies and processes that enhance business performance using recognised process performance methodologies. Provide expert guidance and operational support to maintain ongoing certification to AS9100 and ISO9001 standards. Lead audits and inspections, ensuring timely identification and closure of findings. Oversee the execution of corrective actions and ensure resolution of non-compliance issues within agreed timelines. Regularly report Quality metrics and activities to the Senior Leadership Team, delivering accurate and timely updates on key performance indicators. Design and promote quality training programs and awareness initiatives across the organisation. Manage audits and assessments of production processes, products, and suppliers to verify adherence to quality standards and specifications. Advise Senior Leadership on quality concerns, process improvements, and performance optimisation opportunities. Champion the standardisation of processes across the Cyber business while ensuring compliance with UK legal and Customer specifications and standards. Lead the development and management of all Quality aspects within the Cyber supply chain Oversee quality management for Software, Firmware, and Hardware products. Collaborate effectively with key stakeholders to support delivery and ensure alignment with Quality and Cyber business strategies. Manage and mentor direct reports (Quality Engineers), fostering a high-performing team committed to continuous improvement. Required Skills & Experience: Essential: Demonstrable Quality management experience within the Aerospace / Defence industry. Demonstrable experience of ERP systems (preferably IFS) Demonstrable experience of supporting organisations to achieve compliance to the AS 9100 series of Standards and ISO9001 standards Skilled in implementing and maintaining Quality Management Systems (QMS) the BMS Strong leadership skills with the ability to motivate and develop a small quality team. Excellent communicator and collaborator, capable of influencing stakeholders and promoting quality initiatives. Proficient in data analysis, root cause identification, and problem-solving to resolve quality issues. Track record of identifying improvement opportunities and implementing changes to enhance quality, reduce costs, and improve productivity. Champion of continuous improvement, applying methodologies to drive operational excellence and process enhancements. Desirable: Experience of APQP and PPAP methodologies Understanding of the engineering lifecycle to align quality practices with development stages, ensuring effective integration of quality checkpoints. Membership or progress towards membership of the Chartered Quality Institute (CQI). AS9100 Lead Auditor certification, specific to aerospace and defence quality standards. Notice Due to the nature of the programs we deliver for our customers, candidates may need to obtain the relevant security clearance or handle export-controlled material as defined by the role's requirements. Applicants must be able to obtain and maintain the appropriate level of security clearance for the role. Due to the nature of our work, you must be a British Citizen who has been resident in the UK for the past 5 years in order to apply for SC clearance and 10 years for DV. For more information, please visit the UKSV website. Our Benefits Every employee is critical to our success, and as such, we offer a range of flexible employee benefits, including: Participation in an Annual Bonus Scheme Private Medical Cover 25 days holiday (plus Bank Holidays) with the option to buy an extra 5 days Pension Contribution 4 x Life Assurance Cover Flexible working hours with opportunity for a 1pm finish on a Friday Flexible benefits including cycle to work scheme, will writing and more Security Clearance Allowance where relevant and subject to you holding the required security clearance Diversity, Equity & Inclusion Statement At Ultra I&C, we are an equal opportunity employer and value diversity and inclusivity. Underpinned by our values, behaviours, and policies, we want you to feel empowered to be the best version of yourself. We also believe that people from different backgrounds and cultures will increase our diversity of thinking, ensuring we successfully deliver to our customers. We, therefore, do not discriminate based on race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We also support requests for flexible working arrangements wherever possible.
Cyber Security Engineer -Risk & Assurance Christchurch 50,000- 60,000+Over time & Benefits My client are looking for a Cyber Security Engineer to join their Christchurch site in Dorset The cyber security engineers work closely with security stakeholders from both the business and the customer communities, throughout the whole project lifecycle and at all classifications. Core Duties: Help projects to understand the cyber security risk context Work closely with stakeholders to identify and propose architectures, develop secure designs and identify and implement security controls which provide value driven risk reduction Produce clear and concise technical documentation Occasional travel to customer sites to support meetings and investigations Identify cyber security risks and the commensurate controls and achieving assurance / accreditation at the highest classifications and within the UK defence domain Understand the current trends and developments in cyber security Ensure compliance with the NIST Risk Management Framework and NIST Cyber Security Framework or similar frameworks and be responsible for planning or participating in CHECK/penetration tests Essential Skills: You will have experience of MOD policy in JSP440 and knowledge of NCSC guidance You will have experience of working on MoD Secure by Design (SbD) projects You will have knowledge in one or more security processes - such as security risk assessment, risk treatment using security control baselines etc You will have experience in applying security architecture principles to small or large integration projects The Cyber Security Team: The Cyber Security Team supports the project and complements the existing 45 strong development team that provides support to a fully integrated command and control system for the MoD. This exciting systems & software programme covers many disciplines including design, development, installation, implementation, integration, acceptance, training and logistics support - it is run solely from our Christchurch site for delivery to our customer at various MoD locations. To apply for this role please send your CV to Peter Bibby on the email address below
May 15, 2026
Full time
Cyber Security Engineer -Risk & Assurance Christchurch 50,000- 60,000+Over time & Benefits My client are looking for a Cyber Security Engineer to join their Christchurch site in Dorset The cyber security engineers work closely with security stakeholders from both the business and the customer communities, throughout the whole project lifecycle and at all classifications. Core Duties: Help projects to understand the cyber security risk context Work closely with stakeholders to identify and propose architectures, develop secure designs and identify and implement security controls which provide value driven risk reduction Produce clear and concise technical documentation Occasional travel to customer sites to support meetings and investigations Identify cyber security risks and the commensurate controls and achieving assurance / accreditation at the highest classifications and within the UK defence domain Understand the current trends and developments in cyber security Ensure compliance with the NIST Risk Management Framework and NIST Cyber Security Framework or similar frameworks and be responsible for planning or participating in CHECK/penetration tests Essential Skills: You will have experience of MOD policy in JSP440 and knowledge of NCSC guidance You will have experience of working on MoD Secure by Design (SbD) projects You will have knowledge in one or more security processes - such as security risk assessment, risk treatment using security control baselines etc You will have experience in applying security architecture principles to small or large integration projects The Cyber Security Team: The Cyber Security Team supports the project and complements the existing 45 strong development team that provides support to a fully integrated command and control system for the MoD. This exciting systems & software programme covers many disciplines including design, development, installation, implementation, integration, acceptance, training and logistics support - it is run solely from our Christchurch site for delivery to our customer at various MoD locations. To apply for this role please send your CV to Peter Bibby on the email address below
At Workstreet, we're on an exciting journey to help businesses scale securely by designing and implementing cutting edge security and compliance programs. As a fast growing startup, we specialize in a wide range of frameworks-including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP-empowering companies to meet regulatory requirements and enhance their cybersecurity posture from day one. The Opportunity We are seeking a Manager, GRC Engineering who leads with a client first mindset and brings exceptional relationship management skills to every engagement. The ideal candidate is an experienced client manager who knows how to build trust, navigate complex accounts, and deliver an outstanding client experience - while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take on clients within your first 15 days. You will serve as the primary point of contact for a portfolio of clients, leading engagements end to end, managing escalations with composure and urgency, and ensuring every client interaction reflects the highest standard of service. What You'll Do Client Relationship Management (Primary Focus) Own the Client Experience: Serve as the primary point of contact for a portfolio of client accounts, building strong, trusted relationships and ensuring clients feel supported, informed, and valued throughout every engagement. Lead Client Engagements: Guide clients through compliance initiatives end to end - from kickoff through certification - providing clear communication, proactive updates, and expert guidance at every milestone. Handle Escalations with Professionalism: Resolve complex client issues and requests with urgency, composure, and a solution oriented approach that reinforces confidence and long term retention. Be a Trusted Advisor: Understand each client's unique business context and deliver compliance guidance that is practical, actionable, and tailored to their needs. Collaborate Cross Functionally: Partner with internal teams and client stakeholders to embed security and compliance best practices and resolve issues quickly. Manage and Develop a Pod of Analysts: Lead a team of 3-5 analysts through coaching, mentorship, and performance management, fostering accountability, quality, and professional growth. Drive Consistent Delivery: Ensure the team meets deadlines and delivers high quality work across all active client engagements, stepping in to support where needed. GRC & Compliance Execution Develop and Maintain Compliance Frameworks: Create, update, and align compliance policies, procedures, and technical controls with SOC 2 (Type 1 & 2), ISO 27001, HIPAA, and PCI DSS standards. Lead Compliance Certifications: Oversee and execute SOC 2 and ISO 27001 implementation and certification projects across multi cloud environments (AWS, GCP, Azure). Conduct Risk and Security Audits: Perform regular risk assessments and audits to identify vulnerabilities and enhance overall security posture. Monitor Regulatory Developments: Stay informed on evolving regulations and frameworks to maintain the relevance and accuracy of compliance controls. Leverage Compliance Automation Tools: Utilize platforms such as Drata, Vanta, and SecureFrame to track compliance metrics and ensure continuous audit readiness. Who You Are Required Demonstrated experience managing client relationships directly - you are comfortable owning accounts, leading difficult conversations, and being the trusted face of an engagement. Exceptional professionalism in all client facing communication, with outstanding written and verbal English skills. 5+ years of experience managing or leading a team. Proven experience managing compliance programs with hands on familiarity with SOC 2 and ISO 27001 frameworks. Strong knowledge of technical control implementation in cloud platforms (AWS, GCP, Azure). Ability to manage multiple compliance projects simultaneously without sacrificing client experience or quality. Bachelor's degree in Information Technology, Cybersecurity, or a related field. Ability to work independently with a strong sense of initiative. Amenable to working US time zone hours. Nice to Have Experience at a Big 4 firm (e.g., Deloitte, PwC, EY, KPMG) in an advisory or assurance capacity. Consulting experience. Familiarity with additional frameworks and regulations (e.g., HiTRUST, PCI DSS, NIST, GDPR, HIPAA). What We Offer Career Development: Clear growth path with mentorship and training opportunities. Technical Training: Comprehensive onboarding on security and compliance frameworks. Competitive Compensation: Competitive base salary with regular performance reviews, merit based appraisals, and bonus opportunities. Growth Opportunity: Early stage company with significant room for career advancement. Remote First Culture: Flexibility to work from anywhere while collaborating with a global team. Reliable high speed internet connection. Quiet, professional home office setup. Must be amenable to working UK time zone hours. Fluency in written and verbal English communication skills. Workstreet Is An Equal Opportunity Employer As an equal opportunity employer, Workstreet is committed to providing employment opportunities to all individuals. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.
May 15, 2026
Full time
At Workstreet, we're on an exciting journey to help businesses scale securely by designing and implementing cutting edge security and compliance programs. As a fast growing startup, we specialize in a wide range of frameworks-including SOC 2, ISO 27001, GDPR, CMMC, NIST 800-171, NIST 800-53, and FedRAMP-empowering companies to meet regulatory requirements and enhance their cybersecurity posture from day one. The Opportunity We are seeking a Manager, GRC Engineering who leads with a client first mindset and brings exceptional relationship management skills to every engagement. The ideal candidate is an experienced client manager who knows how to build trust, navigate complex accounts, and deliver an outstanding client experience - while also bringing deep expertise in cybersecurity compliance frameworks such as SOC 2, ISO 27001, and NIST CSF. The successful candidate will be able to come up to speed quickly, integrate into the organization, and take on clients within your first 15 days. You will serve as the primary point of contact for a portfolio of clients, leading engagements end to end, managing escalations with composure and urgency, and ensuring every client interaction reflects the highest standard of service. What You'll Do Client Relationship Management (Primary Focus) Own the Client Experience: Serve as the primary point of contact for a portfolio of client accounts, building strong, trusted relationships and ensuring clients feel supported, informed, and valued throughout every engagement. Lead Client Engagements: Guide clients through compliance initiatives end to end - from kickoff through certification - providing clear communication, proactive updates, and expert guidance at every milestone. Handle Escalations with Professionalism: Resolve complex client issues and requests with urgency, composure, and a solution oriented approach that reinforces confidence and long term retention. Be a Trusted Advisor: Understand each client's unique business context and deliver compliance guidance that is practical, actionable, and tailored to their needs. Collaborate Cross Functionally: Partner with internal teams and client stakeholders to embed security and compliance best practices and resolve issues quickly. Manage and Develop a Pod of Analysts: Lead a team of 3-5 analysts through coaching, mentorship, and performance management, fostering accountability, quality, and professional growth. Drive Consistent Delivery: Ensure the team meets deadlines and delivers high quality work across all active client engagements, stepping in to support where needed. GRC & Compliance Execution Develop and Maintain Compliance Frameworks: Create, update, and align compliance policies, procedures, and technical controls with SOC 2 (Type 1 & 2), ISO 27001, HIPAA, and PCI DSS standards. Lead Compliance Certifications: Oversee and execute SOC 2 and ISO 27001 implementation and certification projects across multi cloud environments (AWS, GCP, Azure). Conduct Risk and Security Audits: Perform regular risk assessments and audits to identify vulnerabilities and enhance overall security posture. Monitor Regulatory Developments: Stay informed on evolving regulations and frameworks to maintain the relevance and accuracy of compliance controls. Leverage Compliance Automation Tools: Utilize platforms such as Drata, Vanta, and SecureFrame to track compliance metrics and ensure continuous audit readiness. Who You Are Required Demonstrated experience managing client relationships directly - you are comfortable owning accounts, leading difficult conversations, and being the trusted face of an engagement. Exceptional professionalism in all client facing communication, with outstanding written and verbal English skills. 5+ years of experience managing or leading a team. Proven experience managing compliance programs with hands on familiarity with SOC 2 and ISO 27001 frameworks. Strong knowledge of technical control implementation in cloud platforms (AWS, GCP, Azure). Ability to manage multiple compliance projects simultaneously without sacrificing client experience or quality. Bachelor's degree in Information Technology, Cybersecurity, or a related field. Ability to work independently with a strong sense of initiative. Amenable to working US time zone hours. Nice to Have Experience at a Big 4 firm (e.g., Deloitte, PwC, EY, KPMG) in an advisory or assurance capacity. Consulting experience. Familiarity with additional frameworks and regulations (e.g., HiTRUST, PCI DSS, NIST, GDPR, HIPAA). What We Offer Career Development: Clear growth path with mentorship and training opportunities. Technical Training: Comprehensive onboarding on security and compliance frameworks. Competitive Compensation: Competitive base salary with regular performance reviews, merit based appraisals, and bonus opportunities. Growth Opportunity: Early stage company with significant room for career advancement. Remote First Culture: Flexibility to work from anywhere while collaborating with a global team. Reliable high speed internet connection. Quiet, professional home office setup. Must be amenable to working UK time zone hours. Fluency in written and verbal English communication skills. Workstreet Is An Equal Opportunity Employer As an equal opportunity employer, Workstreet is committed to providing employment opportunities to all individuals. All applicants for positions at Workstreet will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.
About the Role As an experienced Penetration Tester at Starling, you'll be joining an established team, working with talented cyber security professionals to ensure our services are designed, developed and operated securely. This is a collaborative role - you'll directly interact with multiple areas of the business to understand requirements, conduct research, perform security testing, and report issues aligned to our risk framework. Being an internal tester, you'll gain a strong understanding of how technology works at Starling to enable in depth testing. You'll also support remediation processes, seeing your findings lead to tangible security improvements. We understand the importance of knowledge and expertise remaining current, so we'll actively support your advancement through research and training. In turn, you'll help us continuously improve our processes, methodologies and tools to maintain the highest standard of testing. We're open minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Responsibilities Scoping and performing mobile, web application, cloud and infrastructure penetration tests. Collaborating with engineering teams to facilitate secure development, including: Reviewing and analysing proposed technical solutions to identify appropriate security controls. Conducting code reviews of features and critical security components. Performing in depth practical security testing. Advising on the remediation of security issues and identifying solutions to address root causes. Automating security testing and developing internal tooling to achieve continuous assurance. Identifying and implementing improvements to the team's internal processes and procedures. Mentoring less experienced team members, leading by example in technical assessments, and promoting a collaborative approach to security across Starling. Qualifications 5+ years technical information security experience. Experience in mobile, web application, cloud and infrastructure penetration testing. Technical knowledge - a good foundation in mobile security (iOS and Android), web application security, networking and associated protocols, cloud security (AWS and GCP), containers and Kubernetes. A desire to learn, and the ability to apply technical security knowledge to new and unfamiliar areas. Penetration testing qualifications (e.g. CREST Certified Tester, OSCP) or equivalent industry experience. Experience performing code reviews or code assisted testing, particularly in Java and Go. Experience in automation of security testing (e.g. using Python or Go). Excellent verbal and written communication skills. Interview Process First stage with the Penetration Testing Team Lead. Second stage with additional members of the Penetration Testing team. Final stage with Infosec Director and CISO. Benefits 25 days holiday (plus public holiday allowance). Extra day's holiday for your birthday. Annual leave increased with length of service, and you can choose to buy or sell up to five extra days off. 16 hours paid volunteering time a year. Salary sacrifice, company enhanced pension scheme. Life insurance at 4 your salary & group income protection. Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr & Mrs Smith and Peloton. Generous family friendly policies. Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks. Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing. Equal Opportunities Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law.
May 15, 2026
Full time
About the Role As an experienced Penetration Tester at Starling, you'll be joining an established team, working with talented cyber security professionals to ensure our services are designed, developed and operated securely. This is a collaborative role - you'll directly interact with multiple areas of the business to understand requirements, conduct research, perform security testing, and report issues aligned to our risk framework. Being an internal tester, you'll gain a strong understanding of how technology works at Starling to enable in depth testing. You'll also support remediation processes, seeing your findings lead to tangible security improvements. We understand the importance of knowledge and expertise remaining current, so we'll actively support your advancement through research and training. In turn, you'll help us continuously improve our processes, methodologies and tools to maintain the highest standard of testing. We're open minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Responsibilities Scoping and performing mobile, web application, cloud and infrastructure penetration tests. Collaborating with engineering teams to facilitate secure development, including: Reviewing and analysing proposed technical solutions to identify appropriate security controls. Conducting code reviews of features and critical security components. Performing in depth practical security testing. Advising on the remediation of security issues and identifying solutions to address root causes. Automating security testing and developing internal tooling to achieve continuous assurance. Identifying and implementing improvements to the team's internal processes and procedures. Mentoring less experienced team members, leading by example in technical assessments, and promoting a collaborative approach to security across Starling. Qualifications 5+ years technical information security experience. Experience in mobile, web application, cloud and infrastructure penetration testing. Technical knowledge - a good foundation in mobile security (iOS and Android), web application security, networking and associated protocols, cloud security (AWS and GCP), containers and Kubernetes. A desire to learn, and the ability to apply technical security knowledge to new and unfamiliar areas. Penetration testing qualifications (e.g. CREST Certified Tester, OSCP) or equivalent industry experience. Experience performing code reviews or code assisted testing, particularly in Java and Go. Experience in automation of security testing (e.g. using Python or Go). Excellent verbal and written communication skills. Interview Process First stage with the Penetration Testing Team Lead. Second stage with additional members of the Penetration Testing team. Final stage with Infosec Director and CISO. Benefits 25 days holiday (plus public holiday allowance). Extra day's holiday for your birthday. Annual leave increased with length of service, and you can choose to buy or sell up to five extra days off. 16 hours paid volunteering time a year. Salary sacrifice, company enhanced pension scheme. Life insurance at 4 your salary & group income protection. Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr & Mrs Smith and Peloton. Generous family friendly policies. Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks. Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing. Equal Opportunities Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law.
Senior IT Project Manager (must hold or be eligible for SC clearance) 6 month contract 450pd Outside IR35 Hybrid - 3 days a week in Stevenage The Company Akkodis is a global leader in engineering, technology, and R&D, harnessing the power of connected data to drive digital transformation and innovation for a smarter, more sustainable future. As part of the Adecco Group, Akkodis employs over 50,000 engineers and digital specialists across 30 countries in North America, EMEA, and APAC. Our teams bring extensive cross-sector knowledge in critical technology areas such as mobility, software services, robotics, simulations, cybersecurity, AI, and data analytics, enabling clients to tackle complex challenges in today's rapidly evolving markets. The Role The Senior IT Project Manager will lead complex IT and Digital transformation initiatives within large-scale, publicly funded programmes and government-owned organisations. The ideal candidate will have demonstrable experience working across ministerial departments or central government environments, with a strong understanding of public sector governance, compliance, and delivery frameworks. This role requires a proven ability to deliver technology-driven change through Agile methodologies, ensuring that outcomes align with strategic objectives and stakeholder priorities. The Senior IT Project Manager will act as a trusted leader, driving collaboration across internal teams, government clients, and delivery partners to achieve measurable results in high-profile programmes. This is a hybrid role with the successful candidate required to be in the Stevenage head office 3 days a week. You must either hold or be eligible for SC clearance. Skills and Experience Extensive experience in project or programme management, delivering IT and Digital transformation across large-scale, publicly funded, or government-owned programmes. Must have experience working within ministerial departments or central government, with knowledge of public sector governance and assurance frameworks (e.g., Cabinet Office, GDS). Proven record of managing complex, multi-stakeholder initiatives and achieving measurable delivery outcomes. Strong background in Agile delivery within structured, regulated, or high-security environments. Experience leading supplier and partner delivery teams across diverse technology domains. Must already hold or be eligible for SC clearance Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
May 15, 2026
Contractor
Senior IT Project Manager (must hold or be eligible for SC clearance) 6 month contract 450pd Outside IR35 Hybrid - 3 days a week in Stevenage The Company Akkodis is a global leader in engineering, technology, and R&D, harnessing the power of connected data to drive digital transformation and innovation for a smarter, more sustainable future. As part of the Adecco Group, Akkodis employs over 50,000 engineers and digital specialists across 30 countries in North America, EMEA, and APAC. Our teams bring extensive cross-sector knowledge in critical technology areas such as mobility, software services, robotics, simulations, cybersecurity, AI, and data analytics, enabling clients to tackle complex challenges in today's rapidly evolving markets. The Role The Senior IT Project Manager will lead complex IT and Digital transformation initiatives within large-scale, publicly funded programmes and government-owned organisations. The ideal candidate will have demonstrable experience working across ministerial departments or central government environments, with a strong understanding of public sector governance, compliance, and delivery frameworks. This role requires a proven ability to deliver technology-driven change through Agile methodologies, ensuring that outcomes align with strategic objectives and stakeholder priorities. The Senior IT Project Manager will act as a trusted leader, driving collaboration across internal teams, government clients, and delivery partners to achieve measurable results in high-profile programmes. This is a hybrid role with the successful candidate required to be in the Stevenage head office 3 days a week. You must either hold or be eligible for SC clearance. Skills and Experience Extensive experience in project or programme management, delivering IT and Digital transformation across large-scale, publicly funded, or government-owned programmes. Must have experience working within ministerial departments or central government, with knowledge of public sector governance and assurance frameworks (e.g., Cabinet Office, GDS). Proven record of managing complex, multi-stakeholder initiatives and achieving measurable delivery outcomes. Strong background in Agile delivery within structured, regulated, or high-security environments. Experience leading supplier and partner delivery teams across diverse technology domains. Must already hold or be eligible for SC clearance Please apply via the link or contact (url removed) for more information Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
MERITUS are recruiting for a Security Architect to join our client supporting critical Central Government and Defence programmes, delivering secure, resilient, and high-quality architecture solutions across complex enterprise and cloud environments. SECURITY ARCHITECT - 10 MONTH CONTRACT - 900 PER DAY (OUTSIDE IR35) - ANDOVER - SC CLEARANCE REQUIRED As a Security Architect, you will play a key role in designing and assuring secure technology solutions across large-scale programmes within highly regulated environments. You will work closely with engineering, architecture, delivery, and client teams to ensure security is embedded throughout the full solution lifecycle, applying secure-by-design principles and modern cyber security best practice. This is an excellent opportunity for an experienced Security Architect with expertise across enterprise security architecture, cloud security, DevSecOps, secure software development, and risk management within government or defence sectors. Key Responsibilities: Lead security architecture activities across complex projects and programmes within Central Government and Defence environments. Design and assure secure enterprise, cloud, hybrid, and on-premises architectures aligned to business and technical requirements. Collaborate with multidisciplinary teams to ensure security considerations are embedded across the entire delivery lifecycle. Conduct security threat modelling, risk assessments, and security architecture reviews for critical systems and services. Develop and maintain security reference architectures, standards, principles, and best practices. Support IT Health Checks (ITHC), penetration testing exercises, and remediation activities. Provide technical security leadership and governance across development, integration, and delivery teams. Work with customers, stakeholders, and accreditors to define security requirements and advise on risk mitigation strategies. Ensure adherence to security frameworks, regulatory requirements, and industry standards including GDPR, OWASP, and NCSC principles. Support the design and implementation of DevSecOps pipelines, secure CI/CD processes, and automated security tooling. Contribute to enterprise security strategy, architecture governance, and continuous improvement initiatives. Support business development activities including bids, proposals, pre-sales engagements, and client demonstrations. Identify emerging cyber security trends, technologies, vulnerabilities, and assess their relevance to customer solutions. Provide mentoring, leadership, and guidance to junior architects and engineering teams. Communicate complex security concepts effectively to both technical and non-technical stakeholders. Skills & Experience: Proven experience working as a Security Architect within Central Government, Defence, or highly regulated environments. Strong understanding of enterprise security architecture principles, methodologies, and frameworks. Hands-on experience performing threat modelling, security risk assessments, and secure solution assurance. Experience designing secure cloud and hybrid architectures using Microsoft Azure and/or AWS. Strong understanding of DevSecOps, CI/CD security, and secure software development lifecycle (SSDLC) practices. Knowledge of secure architecture patterns, secure web application development, and API security. Experience implementing and governing security controls aligned to OWASP, NCSC Cloud Security Principles, and GDPR. Strong understanding of authentication and authorisation technologies including SAML, OAuth2, OpenID Connect, Active Directory, ADFS, and LDAP. Experience supporting penetration testing, vulnerability remediation, and IT Health Check activities. Experience working with multidisciplinary Agile delivery teams across complex technical programmes. Ability to engage with senior stakeholders and communicate security risks and architectural decisions clearly. Strong understanding of enterprise integration, infrastructure, and data security principles. Got your attention? If you believe that you have the skills and experience for this Security Architect opportunity, then please get in touch. We also offer a referral scheme for any candidates whose details are passed to us that we successfully place. For further information, please contact the MERITUS team today.
May 14, 2026
Contractor
MERITUS are recruiting for a Security Architect to join our client supporting critical Central Government and Defence programmes, delivering secure, resilient, and high-quality architecture solutions across complex enterprise and cloud environments. SECURITY ARCHITECT - 10 MONTH CONTRACT - 900 PER DAY (OUTSIDE IR35) - ANDOVER - SC CLEARANCE REQUIRED As a Security Architect, you will play a key role in designing and assuring secure technology solutions across large-scale programmes within highly regulated environments. You will work closely with engineering, architecture, delivery, and client teams to ensure security is embedded throughout the full solution lifecycle, applying secure-by-design principles and modern cyber security best practice. This is an excellent opportunity for an experienced Security Architect with expertise across enterprise security architecture, cloud security, DevSecOps, secure software development, and risk management within government or defence sectors. Key Responsibilities: Lead security architecture activities across complex projects and programmes within Central Government and Defence environments. Design and assure secure enterprise, cloud, hybrid, and on-premises architectures aligned to business and technical requirements. Collaborate with multidisciplinary teams to ensure security considerations are embedded across the entire delivery lifecycle. Conduct security threat modelling, risk assessments, and security architecture reviews for critical systems and services. Develop and maintain security reference architectures, standards, principles, and best practices. Support IT Health Checks (ITHC), penetration testing exercises, and remediation activities. Provide technical security leadership and governance across development, integration, and delivery teams. Work with customers, stakeholders, and accreditors to define security requirements and advise on risk mitigation strategies. Ensure adherence to security frameworks, regulatory requirements, and industry standards including GDPR, OWASP, and NCSC principles. Support the design and implementation of DevSecOps pipelines, secure CI/CD processes, and automated security tooling. Contribute to enterprise security strategy, architecture governance, and continuous improvement initiatives. Support business development activities including bids, proposals, pre-sales engagements, and client demonstrations. Identify emerging cyber security trends, technologies, vulnerabilities, and assess their relevance to customer solutions. Provide mentoring, leadership, and guidance to junior architects and engineering teams. Communicate complex security concepts effectively to both technical and non-technical stakeholders. Skills & Experience: Proven experience working as a Security Architect within Central Government, Defence, or highly regulated environments. Strong understanding of enterprise security architecture principles, methodologies, and frameworks. Hands-on experience performing threat modelling, security risk assessments, and secure solution assurance. Experience designing secure cloud and hybrid architectures using Microsoft Azure and/or AWS. Strong understanding of DevSecOps, CI/CD security, and secure software development lifecycle (SSDLC) practices. Knowledge of secure architecture patterns, secure web application development, and API security. Experience implementing and governing security controls aligned to OWASP, NCSC Cloud Security Principles, and GDPR. Strong understanding of authentication and authorisation technologies including SAML, OAuth2, OpenID Connect, Active Directory, ADFS, and LDAP. Experience supporting penetration testing, vulnerability remediation, and IT Health Check activities. Experience working with multidisciplinary Agile delivery teams across complex technical programmes. Ability to engage with senior stakeholders and communicate security risks and architectural decisions clearly. Strong understanding of enterprise integration, infrastructure, and data security principles. Got your attention? If you believe that you have the skills and experience for this Security Architect opportunity, then please get in touch. We also offer a referral scheme for any candidates whose details are passed to us that we successfully place. For further information, please contact the MERITUS team today.
This role is based from our office in Breedon on the Hill in Derbyshire, circa 3 days per week, therefore you must live within a commutable distance of this location. Breedon is continuing to modernise its IT landscape and is looking for an Infrastructure Engineer to support and help shape this journey. You'll be part of a small, collaborative infrastructure team, responsible for keeping our core platforms running smoothly while also supporting a number of improvement and transformation initiatives. A key part of the role will be supporting our transition away from a third-party private cloud provider to a self-hosted Hyper-Converged Infrastructure (HCI) platform housed in a datacentre, alongside greater use of Microsoft Azure. The role offers a good balance between day-to-day operational support and project work, with opportunities to get involved in design decisions, automation, security improvements, and closer working with teams across the business. Key Responsibilities Infrastructure & Platform Support Support and maintain on-premises and hybrid infrastructure, including our move to a self-hosted HCI environment. Manage and support Windows Server and virtualised platforms, ensuring they remain reliable, secure, and fit for purpose. Ensure Windows security updates are applied within a 14-day compliance window, aligned with internal standards. Support and enhance our Azure environment, helping ensure cloud services are well managed and aligned to business needs. Azure & Internal Collaboration Work closely with the Data & Analytics team, providing infrastructure support for Azure-based tools and platforms. Assist with ongoing optimisation of cloud resources, including availability, security, and cost awareness. Act as an infrastructure point of contact for cloud-related projects and changes. Specialist Platforms Provide light-touch operational support for a small Kubernetes environment, primarily from a platform and reliability perspective. Assist with the maintenance of Docker containers used by internal teams, including supporting packaged applications and data-driven tooling (such as KNIME). Support workloads running on Linux, with a practical, support-focused approach alongside the wider Windows estate Experience in deploying end user application access via Parallels, or similar VDI platforms. Automation & Continuous Improvement Use Infrastructure as Code and scripting (ARM, Bicep, PowerShell or similar) to improve consistency and reduce manual effort. Help automate repeatable tasks and standard builds where it makes sense. Security, Compliance & Resilience Support infrastructure security controls across both on-prem and cloud platforms. Contribute towards Breedon's goal of achieving Cyber Essentials Plus, including preparation, remediation, and evidence gathering. Track and remediate findings from ongoing penetration testing. Assist with patch management, certificate renewals, backups, and disaster recovery processes. Support, Change & Documentation Provide 3rd-line infrastructure support and help resolve complex technical issues. Participate in change management activities, ensuring risks are understood and changes are well communicated. Produce clear documentation covering configurations, standards, and run-books. Skills, Knowledge & Expertise Around 3+ years' experience in an Infrastructure Engineer (or similar) role. Hands-on experience with Microsoft Azure. Strong working knowledge of: Microsoft 365 and Exchange Online Windows Server () Entra, Active Directory and Group Policy Virtualisation platforms Core networking (DNS, DHCP, VLANs, VPNs, firewalls) A solid understanding of infrastructure security fundamentals (patching, monitoring, certificates). Well organised, able to manage multiple tasks and priorities. Comfortable working with both technical teams and non-technical stakeholders. Desirable Experience Experience supporting organisations moving services into Azure. ITIL Foundational Accreditation Some exposure to Linux environments, containers, or Kubernetes from a support perspective. Experience working alongside data or analytics platforms. Previous involvement in Cyber Essentials Plus or similar security standards. Azure certifications (e.g. Azure Solutions Architect) are beneficial but not essential. Job Benefits Car Allowance 25 days holiday plus bank holidays Contributory Pension Scheme Free on-site Parking Holiday Buy Scheme Volunteer Scheme Share Save Scheme Life Assurance Enhanced Maternity, Adoption & Paternity Scheme Health & Wellbeing Initiatives Discount Scheme
May 14, 2026
Full time
This role is based from our office in Breedon on the Hill in Derbyshire, circa 3 days per week, therefore you must live within a commutable distance of this location. Breedon is continuing to modernise its IT landscape and is looking for an Infrastructure Engineer to support and help shape this journey. You'll be part of a small, collaborative infrastructure team, responsible for keeping our core platforms running smoothly while also supporting a number of improvement and transformation initiatives. A key part of the role will be supporting our transition away from a third-party private cloud provider to a self-hosted Hyper-Converged Infrastructure (HCI) platform housed in a datacentre, alongside greater use of Microsoft Azure. The role offers a good balance between day-to-day operational support and project work, with opportunities to get involved in design decisions, automation, security improvements, and closer working with teams across the business. Key Responsibilities Infrastructure & Platform Support Support and maintain on-premises and hybrid infrastructure, including our move to a self-hosted HCI environment. Manage and support Windows Server and virtualised platforms, ensuring they remain reliable, secure, and fit for purpose. Ensure Windows security updates are applied within a 14-day compliance window, aligned with internal standards. Support and enhance our Azure environment, helping ensure cloud services are well managed and aligned to business needs. Azure & Internal Collaboration Work closely with the Data & Analytics team, providing infrastructure support for Azure-based tools and platforms. Assist with ongoing optimisation of cloud resources, including availability, security, and cost awareness. Act as an infrastructure point of contact for cloud-related projects and changes. Specialist Platforms Provide light-touch operational support for a small Kubernetes environment, primarily from a platform and reliability perspective. Assist with the maintenance of Docker containers used by internal teams, including supporting packaged applications and data-driven tooling (such as KNIME). Support workloads running on Linux, with a practical, support-focused approach alongside the wider Windows estate Experience in deploying end user application access via Parallels, or similar VDI platforms. Automation & Continuous Improvement Use Infrastructure as Code and scripting (ARM, Bicep, PowerShell or similar) to improve consistency and reduce manual effort. Help automate repeatable tasks and standard builds where it makes sense. Security, Compliance & Resilience Support infrastructure security controls across both on-prem and cloud platforms. Contribute towards Breedon's goal of achieving Cyber Essentials Plus, including preparation, remediation, and evidence gathering. Track and remediate findings from ongoing penetration testing. Assist with patch management, certificate renewals, backups, and disaster recovery processes. Support, Change & Documentation Provide 3rd-line infrastructure support and help resolve complex technical issues. Participate in change management activities, ensuring risks are understood and changes are well communicated. Produce clear documentation covering configurations, standards, and run-books. Skills, Knowledge & Expertise Around 3+ years' experience in an Infrastructure Engineer (or similar) role. Hands-on experience with Microsoft Azure. Strong working knowledge of: Microsoft 365 and Exchange Online Windows Server () Entra, Active Directory and Group Policy Virtualisation platforms Core networking (DNS, DHCP, VLANs, VPNs, firewalls) A solid understanding of infrastructure security fundamentals (patching, monitoring, certificates). Well organised, able to manage multiple tasks and priorities. Comfortable working with both technical teams and non-technical stakeholders. Desirable Experience Experience supporting organisations moving services into Azure. ITIL Foundational Accreditation Some exposure to Linux environments, containers, or Kubernetes from a support perspective. Experience working alongside data or analytics platforms. Previous involvement in Cyber Essentials Plus or similar security standards. Azure certifications (e.g. Azure Solutions Architect) are beneficial but not essential. Job Benefits Car Allowance 25 days holiday plus bank holidays Contributory Pension Scheme Free on-site Parking Holiday Buy Scheme Volunteer Scheme Share Save Scheme Life Assurance Enhanced Maternity, Adoption & Paternity Scheme Health & Wellbeing Initiatives Discount Scheme
About CACI From our headquarters in London, we're busy empowering organisations to make bold, strategic moves with the power of data and technology. Founded in 1975, our operations take place from multiple offices across the UK, Europe and India with over 1600 Full time employees and an annual turnover of £179m. Our expertise spans industries, from retail and education to public sector and transport - delivering intelligent solutions that drive progress and create measurable impact. Whether it's business intelligence, customer marketing, cloud infrastructure, cybersecurity, critical national infrastructure or data management, our approach is never one-size-fits-all. We don't just deliver solutions; we build for the tomorrow's world, all while fostering a culture that allows employees to be their authentic selves and succeed in their careers. About Network Services CACI Network Services is a rapidly expanding specialist IT and Networks consultancy offering a wide variety of opportunities to work within challenging and exciting environments with our major clients in Global Media, Banking, Government, Telecoms & Utilities Business Architect Job Purpose/Overview The Business Architect is responsible for supporting the Business Architecture Lead in formulating, directing, and the delivery of Business Architecture projects undertaken by the CLIENT Construction Project. They work in partnership with Senior Managers deploying expert business analysis skill, broad business knowledge and specialist expertise to create solutions that deliver an effective and efficient business operating model. They remain engaged throughout development and implementation to manage requirements change, validate the solution, and prepare the business for implementation. For this role, knowledge and experience of IT Infrastructure projects will be preferred. Operating Environment The Business Architecture function is one of the 6 functions reporting into the CIO and is delivering a range of architecture services to both CLIENT and CLIENT. Within this context, the Business Architect will focus on diagnosing, scoping, delivering the pipeline of work in their assigned area, keeping the Business Architecture Lead aware of progress and activities. Framework & Boundaries The Business Architect is given Business Architecture delivery services ownership by the Business Architecture Lead. They may work autonomously or as part of a team on projects. They may have a particular specialism either in Process, IT or Management Information. However, they will be expected to have a good awareness and working knowledge of the other disciplines to be able to identify interdependencies between activities and to be able to seek out the relevant expertise from within the team to support a piece of work within their area of responsibility. The Business Architect will develop Investment Cases and lead the initial phase of projects working closely with NNB Architects and 3rd party delivery partners to identify potential solutions to business problems and opportunities. As part of this phase the Business Architect will structure and plan the work, manage its execution, and lead presentation of proposals to project boards. Towards the end of this phase the Business Architect will work with the CLIENT Digital Portfolio Delivery teams to plan the next phase of the project in detail based on the agreed scope. Through the project life cycle they will oversee the activities of 3rd party Business Architects, quality assuring relevant deliverables. The boundaries of the role are typically defined by the CLIENT Project's governance structure including policies and procedures related to data management, technology procurement, and project management. The Business Architect operates within these boundaries to ensure that their function aligns with regulatory requirements and industry standards. Principal Accountabilities Engage with relevant stakeholders as the key contact to develop the initial project concept, elaborating the primary business objectives, clarifying the scope and impacts of the proposed change and identifying the initial risks, issues, assumptions and dependencies that affect the successful outcome of the project Consult with senior management and other key stakeholders to capture, evaluate, challenge and prioritise business requirements and success measures Collaborate with 3rd party delivery partners to identify the best solution options including structured evaluation and appraisal of options that ensure user-friendly and efficient solutions Develop robust mandates and investment cases for business architecture projects. Challenge suggested benefits, translate intangible benefits into tangible benefits and identify additional benefits to maximise the extracted value of the proposed change Act as custodian for the business requirements through the project life cycle to ensure consistency with the defined solution and delivery of the identified business outcomes Use knowledge of current and emerging trends to enable continuous business improvement that employ the latest best practice methods and best in breed technical solutions Support business acceptance of developed solutions, including process and system walkthrough and business acceptance testing Manage the projects adherence to core delivery assurance principles Dimensions The Business Architect is reporting into one of the Business Architecture Lead and collaborating with the wider Business Architects network of circa 12 Architects. They will work aligned to projects within a delivery function (eg, Engineering, Construction, Project Delivery and Business Services), led by a Business Architecture Lead who holds accountability for the entire pipeline of work within the function Knowledge & Skills Essential Knowledge of successful business architecture change in complex and evolving environment. In depth knowledge of business process analysis and design techniques, including the use of modelling and collaborative tools. Strong workshop facilitation and interview skills, including negotiation, influence, mediation, and conflict management skills. Flexibility The key to our success is our teamwork and collaboration. We take a hybrid approach - working remotely and coming into the office depending on the business demand and collaboration required as part of the delivery process. Equal opportunities CACI is proud to be an equal employer. Embracing the diversity of our people, we are on a journey to build a truly inclusive work environment where no one is treated less favorably due to ethnic origin, age, gender, veteran status, religion or belief, sexual orientation, marital status, and disability or health condition, actively working to prevent discrimination. As a Disability Confident employer, we will: Provide reasonable adjustments in the recruitment process where requested (contact a member of the recruitment team to discuss individual requirements further). Offer people with health conditions and disabilities, meeting the minimum criteria for a role, an interview. Our people are unique, and we encourage, and support them, to be confident in contributing to our inclusion journey.
May 14, 2026
Full time
About CACI From our headquarters in London, we're busy empowering organisations to make bold, strategic moves with the power of data and technology. Founded in 1975, our operations take place from multiple offices across the UK, Europe and India with over 1600 Full time employees and an annual turnover of £179m. Our expertise spans industries, from retail and education to public sector and transport - delivering intelligent solutions that drive progress and create measurable impact. Whether it's business intelligence, customer marketing, cloud infrastructure, cybersecurity, critical national infrastructure or data management, our approach is never one-size-fits-all. We don't just deliver solutions; we build for the tomorrow's world, all while fostering a culture that allows employees to be their authentic selves and succeed in their careers. About Network Services CACI Network Services is a rapidly expanding specialist IT and Networks consultancy offering a wide variety of opportunities to work within challenging and exciting environments with our major clients in Global Media, Banking, Government, Telecoms & Utilities Business Architect Job Purpose/Overview The Business Architect is responsible for supporting the Business Architecture Lead in formulating, directing, and the delivery of Business Architecture projects undertaken by the CLIENT Construction Project. They work in partnership with Senior Managers deploying expert business analysis skill, broad business knowledge and specialist expertise to create solutions that deliver an effective and efficient business operating model. They remain engaged throughout development and implementation to manage requirements change, validate the solution, and prepare the business for implementation. For this role, knowledge and experience of IT Infrastructure projects will be preferred. Operating Environment The Business Architecture function is one of the 6 functions reporting into the CIO and is delivering a range of architecture services to both CLIENT and CLIENT. Within this context, the Business Architect will focus on diagnosing, scoping, delivering the pipeline of work in their assigned area, keeping the Business Architecture Lead aware of progress and activities. Framework & Boundaries The Business Architect is given Business Architecture delivery services ownership by the Business Architecture Lead. They may work autonomously or as part of a team on projects. They may have a particular specialism either in Process, IT or Management Information. However, they will be expected to have a good awareness and working knowledge of the other disciplines to be able to identify interdependencies between activities and to be able to seek out the relevant expertise from within the team to support a piece of work within their area of responsibility. The Business Architect will develop Investment Cases and lead the initial phase of projects working closely with NNB Architects and 3rd party delivery partners to identify potential solutions to business problems and opportunities. As part of this phase the Business Architect will structure and plan the work, manage its execution, and lead presentation of proposals to project boards. Towards the end of this phase the Business Architect will work with the CLIENT Digital Portfolio Delivery teams to plan the next phase of the project in detail based on the agreed scope. Through the project life cycle they will oversee the activities of 3rd party Business Architects, quality assuring relevant deliverables. The boundaries of the role are typically defined by the CLIENT Project's governance structure including policies and procedures related to data management, technology procurement, and project management. The Business Architect operates within these boundaries to ensure that their function aligns with regulatory requirements and industry standards. Principal Accountabilities Engage with relevant stakeholders as the key contact to develop the initial project concept, elaborating the primary business objectives, clarifying the scope and impacts of the proposed change and identifying the initial risks, issues, assumptions and dependencies that affect the successful outcome of the project Consult with senior management and other key stakeholders to capture, evaluate, challenge and prioritise business requirements and success measures Collaborate with 3rd party delivery partners to identify the best solution options including structured evaluation and appraisal of options that ensure user-friendly and efficient solutions Develop robust mandates and investment cases for business architecture projects. Challenge suggested benefits, translate intangible benefits into tangible benefits and identify additional benefits to maximise the extracted value of the proposed change Act as custodian for the business requirements through the project life cycle to ensure consistency with the defined solution and delivery of the identified business outcomes Use knowledge of current and emerging trends to enable continuous business improvement that employ the latest best practice methods and best in breed technical solutions Support business acceptance of developed solutions, including process and system walkthrough and business acceptance testing Manage the projects adherence to core delivery assurance principles Dimensions The Business Architect is reporting into one of the Business Architecture Lead and collaborating with the wider Business Architects network of circa 12 Architects. They will work aligned to projects within a delivery function (eg, Engineering, Construction, Project Delivery and Business Services), led by a Business Architecture Lead who holds accountability for the entire pipeline of work within the function Knowledge & Skills Essential Knowledge of successful business architecture change in complex and evolving environment. In depth knowledge of business process analysis and design techniques, including the use of modelling and collaborative tools. Strong workshop facilitation and interview skills, including negotiation, influence, mediation, and conflict management skills. Flexibility The key to our success is our teamwork and collaboration. We take a hybrid approach - working remotely and coming into the office depending on the business demand and collaboration required as part of the delivery process. Equal opportunities CACI is proud to be an equal employer. Embracing the diversity of our people, we are on a journey to build a truly inclusive work environment where no one is treated less favorably due to ethnic origin, age, gender, veteran status, religion or belief, sexual orientation, marital status, and disability or health condition, actively working to prevent discrimination. As a Disability Confident employer, we will: Provide reasonable adjustments in the recruitment process where requested (contact a member of the recruitment team to discuss individual requirements further). Offer people with health conditions and disabilities, meeting the minimum criteria for a role, an interview. Our people are unique, and we encourage, and support them, to be confident in contributing to our inclusion journey.
Network Security Architect Our client is urgently looking for an experienced Network Security Architect to join their team on a permanent basis. Please note, the role is on-site 5 days per week in Oxfordshire. There is flexible working hours and an earlier finish on a Friday. Remote working may be granted on occasion. This is a global role with an initial focus around Network segmentation. You will improve standards across the business and lead technical projects and work closely with technical colleagues and vendors. The current tech stack includes but is not limited to Fortigate, Cisco, SD-Wan and Palo Alto. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus (15%), annual leave, flexible working hours, pension scheme (matched up top 9%), life assurance, private medical, income protection, on-ste canteen and gym and many, many more perks! Network Security Architect - Key Skills: 10+ years hands on experience in network engineering and architecture, with at least 3+ years specialising in large-scale network segmentation 5+ years hands on experience implementing and managing industry leading network security solutions (NGFWs, NDR, SASE, CASB, WAF, NAC, ZTNA) Deep expertise in core networking technologies (SDWAN, MPLS, VPN, IPSec, VLANs etc) Detailed understanding of enterprise network transport protocols (TCP, UDP, ICMP, ARP), infrastructure protocols (DNS, DHCP, BGP, SNMP), common application protocols (SMB, RDP, HTTP, FTP etc) and security protocols (TLS/SSL, IPSec, SSH, SAML, OAuth etc) Proven history of identifying, assessing and remediating network related security risks/misconfigurations Strong technical knowledge of a Microsoft based enterprise IT infrastructure Experience as an architect or lead on large projects spanning multiple countries and cultures Background of defining security standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks/methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
May 14, 2026
Full time
Network Security Architect Our client is urgently looking for an experienced Network Security Architect to join their team on a permanent basis. Please note, the role is on-site 5 days per week in Oxfordshire. There is flexible working hours and an earlier finish on a Friday. Remote working may be granted on occasion. This is a global role with an initial focus around Network segmentation. You will improve standards across the business and lead technical projects and work closely with technical colleagues and vendors. The current tech stack includes but is not limited to Fortigate, Cisco, SD-Wan and Palo Alto. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus (15%), annual leave, flexible working hours, pension scheme (matched up top 9%), life assurance, private medical, income protection, on-ste canteen and gym and many, many more perks! Network Security Architect - Key Skills: 10+ years hands on experience in network engineering and architecture, with at least 3+ years specialising in large-scale network segmentation 5+ years hands on experience implementing and managing industry leading network security solutions (NGFWs, NDR, SASE, CASB, WAF, NAC, ZTNA) Deep expertise in core networking technologies (SDWAN, MPLS, VPN, IPSec, VLANs etc) Detailed understanding of enterprise network transport protocols (TCP, UDP, ICMP, ARP), infrastructure protocols (DNS, DHCP, BGP, SNMP), common application protocols (SMB, RDP, HTTP, FTP etc) and security protocols (TLS/SSL, IPSec, SSH, SAML, OAuth etc) Proven history of identifying, assessing and remediating network related security risks/misconfigurations Strong technical knowledge of a Microsoft based enterprise IT infrastructure Experience as an architect or lead on large projects spanning multiple countries and cultures Background of defining security standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks/methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Senior Network Hosting Architect - freelance - hybrid, London, UK Contract Comgent United Kingdom Posted On 04/18/2026 Job Information Standard Business working Hours Yes Work Experience 8-10 City London State/Province City of London N/A Special Considerations We are committed to building an inclusive workplace and encourage applications from women and other under-represented groups in tech. All qualified candidates are welcome. Start date: May/ June 2026 Location: London, UK (Hybrid - minimum 2 days per week in office) Job Description Reports to Head of Data Centre and Network Services. A highly skilled Senior Network Hosting Architect with extensive experience designing, delivering, and optimising large-scale enterprise, internet-facing, cloud, and market-data-driven hosting environments. This role is accountable for shaping end-to-end hosting network architectures supporting internal enterprise workloads, external internet services, regulated payment platforms, and real time market data distribution, ensuring resilience, security, scalability, and operational excellence in performance critical and regulated environments. deep expertise across traditional networking, multi cloud connectivity, low latency market data platforms, payment systems, and SaaS integrated infrastructure. strong architectural leadership, stakeholder engagement, and structured delivery capabilities are essential, with the ability to influence both technical teams and senior business leadership. The ideal candidate is proactive, able to be detail orientated when required, and comfortable operating in regulated environments. Requirements Hosting Network Architecture & Strategy Lead the architecture of secure, scalable, and resilient network hosting platforms across: On premise data centres and colocation Hybrid and multi cloud platforms (AWS, Azure, GCP/GSP, Oracle Cloud) SaaS integrated services (e.g. Microsoft 365, infrastructure SaaS platforms) Define hosting strategies supporting market data platforms, payment systems, enterprise applications, and customer facing internet services. Develop multi year network hosting roadmaps aligned to business growth, regulatory expectations, and technology evolution. Technical Governance & Engineering Leadership Act as the senior technical authority for complex hosting, connectivity, and L2-L7 network challenges across enterprise, internet, and SaaS integrated environments. Own architectural governance for market data, payment platform, and cloud hosting designs, ensuring compliance with internal standards and external regulation. Provide design assurance for secure inbound/outbound internet connectivity, DDoS protected architectures, and Zero Trust access models. Cloud, SaaS & Internet Connectivity Architect and operate cloud networking across: AWS, Azure, Google Cloud / GSP, and Oracle Cloud Hybrid connectivity using ExpressRoute, Direct Connect, Partner Interconnect, and equivalent services Design resilient connectivity models for Microsoft 365 and key infrastructure SaaS services, including identity aware routing, secure egress, and performance optimisation. Define internet hosting patterns covering DMZs, ingress/egress, load balancing, DNS, CDN integration, and secure access. Market Data & Low Latency Platforms Architect, optimise, and support market data hosting environments including: Bloomberg, Reuters, and other exchange / data vendor platforms Low latency multicast and unicast distribution Cross connects within colocation and exchange venues Design deterministic, high availability network paths for latency sensitive trading and analytics workloads. Partner with vendors and internal platform teams to ensure performance, resilience, and change control for market data services. Payment Systems & Regulated Hosting Design hosting network architectures for payment systems and transactional platforms, ensuring: High availability and fault tolerance Secure segmentation and encryption Compliance with financial and regulatory requirements Support connectivity to payment gateways, clearing systems, and third party providers, including resilience testing and failure scenarios. Project & Transformation Delivery Lead major hosting and network transformation initiatives, including: Data centre and ACI modernisation Cloud and SaaS adoption Internet hosting and perimeter redesign Market data and payment platform migrations Drive structured planning, risk management, stakeholder coordination, and controlled delivery. Operations Excellence & Automation Champion continuous optimisation across performance, capacity, routing efficiency, internet ingress/egress, and cloud cost efficiency. Lead resolution of high severity incidents across enterprise, market data, payment, and internet facing platforms. Implement automation, observability, and tooling using Infrastructure as Code and API driven platforms. Act as the technical interface with: SaaS providers (e.g. Microsoft 365) Telcos, ISPs, exchanges, and market data vendors (Bloomberg, Reuters) Review and influence technical solutions, SLAs, contracts, and support models. Provide clear architectural updates and risk assessments to senior stakeholders. Security, Resilience & Compliance Embed Zero Trust, segmentation, encryption, and secure connectivity across hosting platforms. Ensure internet facing, cloud, market data, and payment environments meet regulatory, audit, and operational resilience standards. Maintain high quality architecture artefacts, runbooks, and audit evidence. Qualifications, Skills, and Experience 8-12+ years in network engineering and hosting architecture, with senior or lead responsibility. Deep knowledge across L2-L7 enterprise, internet, and cloud networking. Payment systems and regulated transactional environments. Internet facing services and SaaS integration. Proven multi cloud expertise across AWS, Azure, GCP/GSP, and Oracle Cloud. Experience supporting Microsoft 365 and infrastructure SaaS connectivity models. Advanced routing (BGP, OSPF), low latency design, multicast, and high availability patterns. Comfortable operating in regulated financial services environments with audit ready practices. Architectural rigor: ensures all designs follow structured governance, secure patterns, and best practice frameworks. Cross Team influence: communicates technical concepts clearly to cybersecurity, infrastructure, and business stakeholders. Operational excellence: drives stability, repeatability, and continuous improvement in security operations. Innovation & forward thinking: identifies emerging threats, technologies, and solutions relevant to enterprise environments.
May 14, 2026
Full time
Senior Network Hosting Architect - freelance - hybrid, London, UK Contract Comgent United Kingdom Posted On 04/18/2026 Job Information Standard Business working Hours Yes Work Experience 8-10 City London State/Province City of London N/A Special Considerations We are committed to building an inclusive workplace and encourage applications from women and other under-represented groups in tech. All qualified candidates are welcome. Start date: May/ June 2026 Location: London, UK (Hybrid - minimum 2 days per week in office) Job Description Reports to Head of Data Centre and Network Services. A highly skilled Senior Network Hosting Architect with extensive experience designing, delivering, and optimising large-scale enterprise, internet-facing, cloud, and market-data-driven hosting environments. This role is accountable for shaping end-to-end hosting network architectures supporting internal enterprise workloads, external internet services, regulated payment platforms, and real time market data distribution, ensuring resilience, security, scalability, and operational excellence in performance critical and regulated environments. deep expertise across traditional networking, multi cloud connectivity, low latency market data platforms, payment systems, and SaaS integrated infrastructure. strong architectural leadership, stakeholder engagement, and structured delivery capabilities are essential, with the ability to influence both technical teams and senior business leadership. The ideal candidate is proactive, able to be detail orientated when required, and comfortable operating in regulated environments. Requirements Hosting Network Architecture & Strategy Lead the architecture of secure, scalable, and resilient network hosting platforms across: On premise data centres and colocation Hybrid and multi cloud platforms (AWS, Azure, GCP/GSP, Oracle Cloud) SaaS integrated services (e.g. Microsoft 365, infrastructure SaaS platforms) Define hosting strategies supporting market data platforms, payment systems, enterprise applications, and customer facing internet services. Develop multi year network hosting roadmaps aligned to business growth, regulatory expectations, and technology evolution. Technical Governance & Engineering Leadership Act as the senior technical authority for complex hosting, connectivity, and L2-L7 network challenges across enterprise, internet, and SaaS integrated environments. Own architectural governance for market data, payment platform, and cloud hosting designs, ensuring compliance with internal standards and external regulation. Provide design assurance for secure inbound/outbound internet connectivity, DDoS protected architectures, and Zero Trust access models. Cloud, SaaS & Internet Connectivity Architect and operate cloud networking across: AWS, Azure, Google Cloud / GSP, and Oracle Cloud Hybrid connectivity using ExpressRoute, Direct Connect, Partner Interconnect, and equivalent services Design resilient connectivity models for Microsoft 365 and key infrastructure SaaS services, including identity aware routing, secure egress, and performance optimisation. Define internet hosting patterns covering DMZs, ingress/egress, load balancing, DNS, CDN integration, and secure access. Market Data & Low Latency Platforms Architect, optimise, and support market data hosting environments including: Bloomberg, Reuters, and other exchange / data vendor platforms Low latency multicast and unicast distribution Cross connects within colocation and exchange venues Design deterministic, high availability network paths for latency sensitive trading and analytics workloads. Partner with vendors and internal platform teams to ensure performance, resilience, and change control for market data services. Payment Systems & Regulated Hosting Design hosting network architectures for payment systems and transactional platforms, ensuring: High availability and fault tolerance Secure segmentation and encryption Compliance with financial and regulatory requirements Support connectivity to payment gateways, clearing systems, and third party providers, including resilience testing and failure scenarios. Project & Transformation Delivery Lead major hosting and network transformation initiatives, including: Data centre and ACI modernisation Cloud and SaaS adoption Internet hosting and perimeter redesign Market data and payment platform migrations Drive structured planning, risk management, stakeholder coordination, and controlled delivery. Operations Excellence & Automation Champion continuous optimisation across performance, capacity, routing efficiency, internet ingress/egress, and cloud cost efficiency. Lead resolution of high severity incidents across enterprise, market data, payment, and internet facing platforms. Implement automation, observability, and tooling using Infrastructure as Code and API driven platforms. Act as the technical interface with: SaaS providers (e.g. Microsoft 365) Telcos, ISPs, exchanges, and market data vendors (Bloomberg, Reuters) Review and influence technical solutions, SLAs, contracts, and support models. Provide clear architectural updates and risk assessments to senior stakeholders. Security, Resilience & Compliance Embed Zero Trust, segmentation, encryption, and secure connectivity across hosting platforms. Ensure internet facing, cloud, market data, and payment environments meet regulatory, audit, and operational resilience standards. Maintain high quality architecture artefacts, runbooks, and audit evidence. Qualifications, Skills, and Experience 8-12+ years in network engineering and hosting architecture, with senior or lead responsibility. Deep knowledge across L2-L7 enterprise, internet, and cloud networking. Payment systems and regulated transactional environments. Internet facing services and SaaS integration. Proven multi cloud expertise across AWS, Azure, GCP/GSP, and Oracle Cloud. Experience supporting Microsoft 365 and infrastructure SaaS connectivity models. Advanced routing (BGP, OSPF), low latency design, multicast, and high availability patterns. Comfortable operating in regulated financial services environments with audit ready practices. Architectural rigor: ensures all designs follow structured governance, secure patterns, and best practice frameworks. Cross Team influence: communicates technical concepts clearly to cybersecurity, infrastructure, and business stakeholders. Operational excellence: drives stability, repeatability, and continuous improvement in security operations. Innovation & forward thinking: identifies emerging threats, technologies, and solutions relevant to enterprise environments.
SC Cleared Security Consultant - 3 days a week on site As a Security Consultant , you'll assist in the design, build, and delivery of secure digital solutions in highly secure environments. You'll work alongside engineers, architects, and delivery specialists. You work will include cyber risk management, providing strategic security direction of projects and producing evidence to meet various MOD regulations. What We're Looking For skills/experience in: Working on risk assessments using industry approved methodologies (such as NIST 800-30, ISO 27005). Identification of suitable risk management activities (technical, physical, or procedural) to treat/mitigate the identified risks. Creation of security documentation to support the development of an information system, these could include: Security Aspects of Design, Risk Assessments, Risk Management Plans, Security Policies, Security Test Plans/Results. Support development in a secure-by-design methodology. Experience working on technical low-level security designs. Knowledge of Legal and regulatory topics that merit consideration when conducting various activities in the field of cyber security. Knowledge of MOD policies (JSP 440, 453/604, 892) Knowledge and experience of Agile, DevSecOps, CI/CD principles and their application in secure environments Appreciation of the constraints and requirements imposed on development within secure, safety critical environments. Experience of working with MOD Cyber Assurance/Accreditors. Security Clearance Due to the nature of the work, candidates must be UK sole nationals and hold current SC clearance
May 13, 2026
Full time
SC Cleared Security Consultant - 3 days a week on site As a Security Consultant , you'll assist in the design, build, and delivery of secure digital solutions in highly secure environments. You'll work alongside engineers, architects, and delivery specialists. You work will include cyber risk management, providing strategic security direction of projects and producing evidence to meet various MOD regulations. What We're Looking For skills/experience in: Working on risk assessments using industry approved methodologies (such as NIST 800-30, ISO 27005). Identification of suitable risk management activities (technical, physical, or procedural) to treat/mitigate the identified risks. Creation of security documentation to support the development of an information system, these could include: Security Aspects of Design, Risk Assessments, Risk Management Plans, Security Policies, Security Test Plans/Results. Support development in a secure-by-design methodology. Experience working on technical low-level security designs. Knowledge of Legal and regulatory topics that merit consideration when conducting various activities in the field of cyber security. Knowledge of MOD policies (JSP 440, 453/604, 892) Knowledge and experience of Agile, DevSecOps, CI/CD principles and their application in secure environments Appreciation of the constraints and requirements imposed on development within secure, safety critical environments. Experience of working with MOD Cyber Assurance/Accreditors. Security Clearance Due to the nature of the work, candidates must be UK sole nationals and hold current SC clearance
I'm looking for an experienced Cyber Security Engineer to join a highly capable Cyber Security Team supporting a major UK MoD integrated command and control programme based in Dorset. This is an exciting opportunity to work on complex, mission-critical defence systems at the highest classifications, contributing to the delivery of secure solutions across the full project lifecycle. About the Role As a Cyber Security Engineer, you will work closely with both internal stakeholders and customer communities to identify, assess, and reduce cyber security risks across a large-scale defence environment. You will play a key role in shaping secure architectures, implementing effective security controls, and supporting assurance and accreditation activities in line with UK defence standards and frameworks. Key Responsibilities Support projects in understanding cyber security risks and assurance requirements Collaborate with stakeholders to develop secure architectures and security-by-design solutions Identify and implement proportionate security controls that deliver effective risk reduction Produce high-quality technical security documentation and assurance artefacts Support security investigations, meetings, and occasional customer site visits Conduct security risk assessments and support accreditation activities within the UK defence domain Ensure compliance with frameworks such as the NIST Risk Management Framework (RMF) and NIST Cyber Security Framework (CSF) Plan, coordinate, or participate in CHECK/penetration testing activities Maintain awareness of emerging cyber security threats, trends, and best practices Essential Skills & Experience Experience working with MoD security policy, including JSP440 Strong knowledge of NCSC guidance and UK defence security standards Experience supporting MoD Secure by Design (SbD) projects Practical experience in security risk assessment and risk treatment methodologies Understanding of security control baselines and assurance processes Experience applying security architecture principles across integration or enterprise-scale projects Strong written and verbal communication skills with the ability to produce clear technical documentation About the Team The Cyber Security Team works alongside a 45-strong engineering and development team delivering support to a fully integrated command and control system for the UK Ministry of Defence. The wider programme covers: Systems and software design Development and integration Installation and implementation Acceptance and assurance Training and logistics support All programme activities are managed from Dorset, supporting delivery to multiple MoD customer locations across the UK. Why Join Us? Work on nationally important defence programmes Join a collaborative and highly skilled engineering environment Influence secure system design from concept through to delivery Engage with cutting-edge cyber security technologies and frameworks Opportunities for professional growth and development within the defence sector Due to the nature of the work, candidates must be eligible to obtain and maintain appropriate UK security clearance. The salary is 50,000 to 60,000 plus benefits and is a 5x day per week in the office role due to the security clearance level.
May 12, 2026
Full time
I'm looking for an experienced Cyber Security Engineer to join a highly capable Cyber Security Team supporting a major UK MoD integrated command and control programme based in Dorset. This is an exciting opportunity to work on complex, mission-critical defence systems at the highest classifications, contributing to the delivery of secure solutions across the full project lifecycle. About the Role As a Cyber Security Engineer, you will work closely with both internal stakeholders and customer communities to identify, assess, and reduce cyber security risks across a large-scale defence environment. You will play a key role in shaping secure architectures, implementing effective security controls, and supporting assurance and accreditation activities in line with UK defence standards and frameworks. Key Responsibilities Support projects in understanding cyber security risks and assurance requirements Collaborate with stakeholders to develop secure architectures and security-by-design solutions Identify and implement proportionate security controls that deliver effective risk reduction Produce high-quality technical security documentation and assurance artefacts Support security investigations, meetings, and occasional customer site visits Conduct security risk assessments and support accreditation activities within the UK defence domain Ensure compliance with frameworks such as the NIST Risk Management Framework (RMF) and NIST Cyber Security Framework (CSF) Plan, coordinate, or participate in CHECK/penetration testing activities Maintain awareness of emerging cyber security threats, trends, and best practices Essential Skills & Experience Experience working with MoD security policy, including JSP440 Strong knowledge of NCSC guidance and UK defence security standards Experience supporting MoD Secure by Design (SbD) projects Practical experience in security risk assessment and risk treatment methodologies Understanding of security control baselines and assurance processes Experience applying security architecture principles across integration or enterprise-scale projects Strong written and verbal communication skills with the ability to produce clear technical documentation About the Team The Cyber Security Team works alongside a 45-strong engineering and development team delivering support to a fully integrated command and control system for the UK Ministry of Defence. The wider programme covers: Systems and software design Development and integration Installation and implementation Acceptance and assurance Training and logistics support All programme activities are managed from Dorset, supporting delivery to multiple MoD customer locations across the UK. Why Join Us? Work on nationally important defence programmes Join a collaborative and highly skilled engineering environment Influence secure system design from concept through to delivery Engage with cutting-edge cyber security technologies and frameworks Opportunities for professional growth and development within the defence sector Due to the nature of the work, candidates must be eligible to obtain and maintain appropriate UK security clearance. The salary is 50,000 to 60,000 plus benefits and is a 5x day per week in the office role due to the security clearance level.
Job Title: DV Cleared Technical Author Location: Cheltenham Duration: 6 months with likely extension Rate: Up to 650 per day via an approved umbrella company Must be willing and able to go through highest security clearance process Our client, a leading organisation in the Defence sector, is hiring an experienced Technical Author. This is a unique opportunity to contribute to critical systems and operational processes within a secure environment. What you'll be doing: Producing, maintaining, and managing high-quality technical documentation for classified systems Translating complex technical concepts into clear, concise, and accurate written materials suitable for secure audiences Developing system documentation including architecture, design documents, user guides, operational manuals, and SOPs Supporting accreditation, assurance, and compliance documentation Collaborating closely with engineers, architects, cyber specialists, and stakeholders to validate content Ensuring all documentation aligns with security policies, governance frameworks, and information assurance standards Managing document control, versioning, and configuration throughout system lifecycles Preparing materials for both technical and non-technical audiences What you'll bring: Proven experience as a Technical Author or Documentation Specialist in highly secure or classified environments Strong ability to document complex technical systems clearly and accurately Experience producing documentation for IT, cyber, data, or engineering systems Excellent written communication skills with keen attention to detail Familiarity with formal documentation standards and structured authoring methods Ability to work collaboratively with technical teams and security professionals Strong understanding of information security and handling requirements Desirable skills: Background supporting UK defence, intelligence, or national security projects Experience documenting cyber security, data platforms, or software-based systems Familiarity with accreditation, risk management, or assurance documentation Experience with document management tools and markup languages such as Confluence, SharePoint, Markdown, or XML This role offers a chance to work on vital projects within a dynamic, secure environment. If you hold the necessary clearance and are passionate about producing impactful technical documentation, we encourage you to apply today!
May 12, 2026
Contractor
Job Title: DV Cleared Technical Author Location: Cheltenham Duration: 6 months with likely extension Rate: Up to 650 per day via an approved umbrella company Must be willing and able to go through highest security clearance process Our client, a leading organisation in the Defence sector, is hiring an experienced Technical Author. This is a unique opportunity to contribute to critical systems and operational processes within a secure environment. What you'll be doing: Producing, maintaining, and managing high-quality technical documentation for classified systems Translating complex technical concepts into clear, concise, and accurate written materials suitable for secure audiences Developing system documentation including architecture, design documents, user guides, operational manuals, and SOPs Supporting accreditation, assurance, and compliance documentation Collaborating closely with engineers, architects, cyber specialists, and stakeholders to validate content Ensuring all documentation aligns with security policies, governance frameworks, and information assurance standards Managing document control, versioning, and configuration throughout system lifecycles Preparing materials for both technical and non-technical audiences What you'll bring: Proven experience as a Technical Author or Documentation Specialist in highly secure or classified environments Strong ability to document complex technical systems clearly and accurately Experience producing documentation for IT, cyber, data, or engineering systems Excellent written communication skills with keen attention to detail Familiarity with formal documentation standards and structured authoring methods Ability to work collaboratively with technical teams and security professionals Strong understanding of information security and handling requirements Desirable skills: Background supporting UK defence, intelligence, or national security projects Experience documenting cyber security, data platforms, or software-based systems Familiarity with accreditation, risk management, or assurance documentation Experience with document management tools and markup languages such as Confluence, SharePoint, Markdown, or XML This role offers a chance to work on vital projects within a dynamic, secure environment. If you hold the necessary clearance and are passionate about producing impactful technical documentation, we encourage you to apply today!
Job Title: Technical Laboratory Facility Manager Location: Malvern, England, United Kingdom Role Type: Permanent - Full Time Package: Competitive Salary + Benefits Role ID: SF19817 Are you ready to be part of the future? At QinetiQ, we're not just imagining tomorrow we are creating it. From cutting edge defence technology to ground breaking innovations our mission is to empower and protect lives. Join us as an Technical Laboratory Facility Manager at our Malvern site, where you will have the opportunity to work with cutting edge technology in partnership with some of the most brilliant minds. The Role We are looking for an Technical Laboratory Facility Manager to join the Operations Group on a permanent basis. In this role, you will make a vital contribution to national defence and scientific capability by ensuring the safe, compliant, and effective operation of multiple laboratories and specialist facilities at the QinetiQ Malvern site. Day to day, you'll be responsible for the operational management of several laboratories and facilities, ensuring they are safe, secure, and fully functional to support critical research and defence activities. Reporting to the Team Leader and working without direct line management responsibility, you will coordinate and deconflict the use of facilities and equipment across a wide range of internal and external customers and contractors. You'll oversee how facilities are operated, maintained, improved, and reconfigured, taking ownership of non engineering assurance activities and contributing to the implementation of security and IT procedures. The role also involves ensuring compliance with corporate, statutory, and regulatory requirements, working collaboratively with stakeholders to embed QinetiQ standards, processes, and governance across laboratory operations. Your responsibilities will include: Managing the safe and effective operation of laboratories and specialist facilities Ensuring compliance with health and safety, security, governance and regulatory requirements Coordinating and deconflicting facility and equipment use for internal and external customers and contractors Overseeing non engineering assurance activities and maintaining governance documentation Supporting the maintenance, improvement and reconfiguration of laboratory facilities Working with stakeholders to deliver operational, IT and security processes across facilities Essential experience of the Technical Laboratory Facility Manager: Experience managing laboratories or technical facilities in a regulated environment Strong working knowledge of health and safety, governance and security requirements Experience coordinating facilities, equipment or resources across multiple stakeholders Proven experience in hazard management, risk assessment and assurance activities Experience working within a laboratory, workshop or research facility environment Ability to manage operational change, facility improvements and reconfiguration activities Essential qualifications for the Technical Laboratory Facility Manager: Technical qualification such as a recognised apprenticeship or equivalent City and Guilds, BTEC or Foundation Degree in an engineering, science or facilities related discipline Health and Safety qualification such as NEBOSH or IOSH (or equivalent) We value difference and we don't have a fixed idea when it comes to background or education, provided you can show the required level of experience and willingness to learn then we would like to hear from you. This role is 37 hours per week based onsite at Malvern. Malvern The Malvern facility is noted for its work in electronic warfare, surveillance and complex system integration, contributing significantly to the UK's defence capabilities. Developing technologies for military and civilian applications, including sensors, communications and cyber security. Why Join QinetiQ? As we continue to grow into new markets around the world, there's never been a more exciting time to join QinetiQ. The formula for success is our appetite for innovation and having the courage to take on a wide variety of complex challenges. As a QinetiQ employee, you'll experience a unique working environment where teams from different backgrounds, disciplines and experiences enjoy collaborating widely and openly as we undertake this exciting and rewarding journey. Through effective teamwork, and pulling together, you'll get to experience what happens when we all share different perspectives, blend disciplines, and link technologies; constantly discovering new ways of solving complex problems in a diverse and inclusive environment where you can be authentic, feel valued and realise your full potential. Visit our website to read more about our diverse and inclusive workplace culture. Matched contribution pension scheme, with life assurance Generous holiday allowance, with the option to purchase additional days Options to join Health Cash Plan, Private Medical Insurance and Dental Insurance Employee discount portal: Personal Accident Insurance, Travel Insurance, Restaurants, Cinema Tickets and much more We are proud to support the Armed Forces community by honouring the Armed Forces Covenant and maintaining our Gold Award standard in the Defence Employer Recognition Scheme Volunteering Opportunities - helping charities and local community Please note that all applicants for this role must be eligible for SC clearance, as a minimum.
May 12, 2026
Full time
Job Title: Technical Laboratory Facility Manager Location: Malvern, England, United Kingdom Role Type: Permanent - Full Time Package: Competitive Salary + Benefits Role ID: SF19817 Are you ready to be part of the future? At QinetiQ, we're not just imagining tomorrow we are creating it. From cutting edge defence technology to ground breaking innovations our mission is to empower and protect lives. Join us as an Technical Laboratory Facility Manager at our Malvern site, where you will have the opportunity to work with cutting edge technology in partnership with some of the most brilliant minds. The Role We are looking for an Technical Laboratory Facility Manager to join the Operations Group on a permanent basis. In this role, you will make a vital contribution to national defence and scientific capability by ensuring the safe, compliant, and effective operation of multiple laboratories and specialist facilities at the QinetiQ Malvern site. Day to day, you'll be responsible for the operational management of several laboratories and facilities, ensuring they are safe, secure, and fully functional to support critical research and defence activities. Reporting to the Team Leader and working without direct line management responsibility, you will coordinate and deconflict the use of facilities and equipment across a wide range of internal and external customers and contractors. You'll oversee how facilities are operated, maintained, improved, and reconfigured, taking ownership of non engineering assurance activities and contributing to the implementation of security and IT procedures. The role also involves ensuring compliance with corporate, statutory, and regulatory requirements, working collaboratively with stakeholders to embed QinetiQ standards, processes, and governance across laboratory operations. Your responsibilities will include: Managing the safe and effective operation of laboratories and specialist facilities Ensuring compliance with health and safety, security, governance and regulatory requirements Coordinating and deconflicting facility and equipment use for internal and external customers and contractors Overseeing non engineering assurance activities and maintaining governance documentation Supporting the maintenance, improvement and reconfiguration of laboratory facilities Working with stakeholders to deliver operational, IT and security processes across facilities Essential experience of the Technical Laboratory Facility Manager: Experience managing laboratories or technical facilities in a regulated environment Strong working knowledge of health and safety, governance and security requirements Experience coordinating facilities, equipment or resources across multiple stakeholders Proven experience in hazard management, risk assessment and assurance activities Experience working within a laboratory, workshop or research facility environment Ability to manage operational change, facility improvements and reconfiguration activities Essential qualifications for the Technical Laboratory Facility Manager: Technical qualification such as a recognised apprenticeship or equivalent City and Guilds, BTEC or Foundation Degree in an engineering, science or facilities related discipline Health and Safety qualification such as NEBOSH or IOSH (or equivalent) We value difference and we don't have a fixed idea when it comes to background or education, provided you can show the required level of experience and willingness to learn then we would like to hear from you. This role is 37 hours per week based onsite at Malvern. Malvern The Malvern facility is noted for its work in electronic warfare, surveillance and complex system integration, contributing significantly to the UK's defence capabilities. Developing technologies for military and civilian applications, including sensors, communications and cyber security. Why Join QinetiQ? As we continue to grow into new markets around the world, there's never been a more exciting time to join QinetiQ. The formula for success is our appetite for innovation and having the courage to take on a wide variety of complex challenges. As a QinetiQ employee, you'll experience a unique working environment where teams from different backgrounds, disciplines and experiences enjoy collaborating widely and openly as we undertake this exciting and rewarding journey. Through effective teamwork, and pulling together, you'll get to experience what happens when we all share different perspectives, blend disciplines, and link technologies; constantly discovering new ways of solving complex problems in a diverse and inclusive environment where you can be authentic, feel valued and realise your full potential. Visit our website to read more about our diverse and inclusive workplace culture. Matched contribution pension scheme, with life assurance Generous holiday allowance, with the option to purchase additional days Options to join Health Cash Plan, Private Medical Insurance and Dental Insurance Employee discount portal: Personal Accident Insurance, Travel Insurance, Restaurants, Cinema Tickets and much more We are proud to support the Armed Forces community by honouring the Armed Forces Covenant and maintaining our Gold Award standard in the Defence Employer Recognition Scheme Volunteering Opportunities - helping charities and local community Please note that all applicants for this role must be eligible for SC clearance, as a minimum.
Cyber Security Engineer Outside IR35 Location: London / Hybrid Overview VIQU IT are looking for a Cyber Security Engineer who thrives on turning strategy into real-world protection. This is a hands-on role focused on strengthening and evolving the customer s security landscape across identity, endpoints, and cloud platforms. You ll play a key part in making sure security controls are not just designed but fully implemented, optimised, and delivering measurable impact. Working closely with the Global VP of IT, you ll take ownership of executing security initiatives at pace, ensuring risks are addressed effectively and controls are embedded into everyday operations. Cyber Security Engineer responsibilities: Implement and evolve Zero Trust controls across identity, endpoints, and cloud Design, deploy, and optimise MFA and Conditional Access policies, including privileged access Strengthen security posture using Microsoft Defender and industry best practices Lead remediation of vulnerabilities from audits, penetration tests, and assessments Ensure timely closure of findings with clear, audit-ready evidence Deliver and maintain technical controls aligned with SOC 2 and ISO 27001 Support customer, supplier, and contractual security assurance activities Own and enhance the security awareness programme, including phishing simulations Manage and improve security across Entra ID, endpoints, and Microsoft 365 Collaborate with IT, MSPs, and stakeholders to embed sustainable security controls Cyber Security Engineer requirements: Proven hands-on experience in cyber security engineering or security management Strong expertise in Microsoft security tools (Entra ID, Defender, M365) Experience implementing Zero Trust, identity, and endpoint security controls Track record of remediating audit and penetration test findings Solid understanding of SOC 2, ISO 27001, and security control frameworks A proactive, delivery-focused mindset with confidence to challenge and influence stakeholders The successful Cyber Security Engineer will be required to work 2-3 days per week onsite in London. Apply now to speak with VIQU IT in confidence. Or reach out to Phoebe Thompson via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.
May 11, 2026
Contractor
Cyber Security Engineer Outside IR35 Location: London / Hybrid Overview VIQU IT are looking for a Cyber Security Engineer who thrives on turning strategy into real-world protection. This is a hands-on role focused on strengthening and evolving the customer s security landscape across identity, endpoints, and cloud platforms. You ll play a key part in making sure security controls are not just designed but fully implemented, optimised, and delivering measurable impact. Working closely with the Global VP of IT, you ll take ownership of executing security initiatives at pace, ensuring risks are addressed effectively and controls are embedded into everyday operations. Cyber Security Engineer responsibilities: Implement and evolve Zero Trust controls across identity, endpoints, and cloud Design, deploy, and optimise MFA and Conditional Access policies, including privileged access Strengthen security posture using Microsoft Defender and industry best practices Lead remediation of vulnerabilities from audits, penetration tests, and assessments Ensure timely closure of findings with clear, audit-ready evidence Deliver and maintain technical controls aligned with SOC 2 and ISO 27001 Support customer, supplier, and contractual security assurance activities Own and enhance the security awareness programme, including phishing simulations Manage and improve security across Entra ID, endpoints, and Microsoft 365 Collaborate with IT, MSPs, and stakeholders to embed sustainable security controls Cyber Security Engineer requirements: Proven hands-on experience in cyber security engineering or security management Strong expertise in Microsoft security tools (Entra ID, Defender, M365) Experience implementing Zero Trust, identity, and endpoint security controls Track record of remediating audit and penetration test findings Solid understanding of SOC 2, ISO 27001, and security control frameworks A proactive, delivery-focused mindset with confidence to challenge and influence stakeholders The successful Cyber Security Engineer will be required to work 2-3 days per week onsite in London. Apply now to speak with VIQU IT in confidence. Or reach out to Phoebe Thompson via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.
Bolton We have an opportunity working on behalf of UK Facilities Management, the Operational Technology (OT) Risk Manager will act as the deployed local security leader and expert in all elements of security for General Infrastructure Management Systems (GIMS) policy. Salary: Circa£60,000 depending on experience Dynamic (hybrid) working: 3-4 days per week on-site due to workload classification and frequent travel to all sites across the UK Security Clearance: British Citizen or a Dual UK national with British citizenship/Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security Team. What we can offer you: Company Bonus: Bonus of up to 21% of base salary Pension: maximum total (employer and employee) contribution of up to 14% Flexible working: We welcome applicants who are looking for flexible working arrangements Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave -enhancements are available for paternity leave, neonatal leave and fertility testing and treatments Facilities: Fantastic site facilities including subsidised meals, free car parking and much more Healthcare Cash Plan: The Healthcare Cash Plan benefit provides the option to claim cash back on everyday healthcare expenses such as optical, dental, health and wellbeing and more . The opportunity: The main focus is the creation, execution and maintenance of a framework to identify and address risks associated with the devices which support MBDA's Building and Infrastructure across the UK. This will also include input into the wider group structures as and when required. The OT Risk Manager will act as the point of contact for all new, existing and legacy GIMS installations, providing advice, guidance and direction to address the multiple security risks associated with them. This includes liaising with cross business teams outside of FM, such as Cyber and InfoSec, IM and Product Cyber. The OT Risk Manager will oversee all change management activities related to the connectivity and digital interfaces of the relevant infrastructure, ensuring all change remains appropriate and complaint with policy; ensuring an evidenced position is constantly maintained by MBDA UK of continued compliance with all relevant standards which may be subject no-notice audits by MBDA Group, MOD and other customers. They will deliver technical security consultancy to the business including architecture and solution suitability to meet a complex suite of business requirements. They will create and update ISO 27001 compliant policies to specifically address the GIMS policy ensuring that all policies, processes, procedures and technical infrastructure remains compliant with MBDA UKs wider ISO 27001 ISMS as well as other certifications as appropriate. The OT Risk Manager will be a critical leader in any new infrastructure projects within MBDA UK and for reducing cyber risk to the business as part of a wider team. The OT Risk Manager will also coordinate all technical security testing within their allocated area of operations, as well as maintaining upward reporting to MBDA UK FM Director, UK Security Director and UK CISO on results and remediation progressions. They will proactively coordinate with the Principle Cyber and Information Security Advisor for all required assurance activity and evidence based reporting. They will work with FM and wider business stakeholders to create a network of Asset Owners and formally document the asset registers for their areas of operation. What we're looking for from you: CISSP, InfoSec/Cyber Degree or equivalent (Essential) Experience or relevant certifications in network security or industrial control system hardening (Essential) Knowledge of security surrounding systems enabling critical services within business (ICS/SCADA/BMS/BEMS) Comfortable with establishing and maintaining relationships with national security authorities, internal stakeholders and industry partners. Expert in security concepts for IT network architectures, applications, cloud services and hardening of operating systems within ICS and SCADA context. Ability to present risk balanced security solutions to complex problems and provide clear advice directly to key stakeholders at all levels Experience of managing and developing inexperienced IT/FM Engineers to maintain security Experience of system accreditation processes and documentation. Experience of security risk management Knowledge of business IT processes and associated approval systems Expert knowledge of modern hacking Tactics, Techniques and Procedures including impacts affecting GIMS/ICS/SCADA. Our company: Peace is not a given, Freedom is not a given, Sovereignty is not a given MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom. We are proud of our employee-led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process. Follow us on LinkedIn (MBDA), X Instagram (MBDA_UK) and Glassdoor or visit our MBDA Careers website for more information.
May 10, 2026
Full time
Bolton We have an opportunity working on behalf of UK Facilities Management, the Operational Technology (OT) Risk Manager will act as the deployed local security leader and expert in all elements of security for General Infrastructure Management Systems (GIMS) policy. Salary: Circa£60,000 depending on experience Dynamic (hybrid) working: 3-4 days per week on-site due to workload classification and frequent travel to all sites across the UK Security Clearance: British Citizen or a Dual UK national with British citizenship/Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS), which are managed by the MBDA Personnel Security Team. What we can offer you: Company Bonus: Bonus of up to 21% of base salary Pension: maximum total (employer and employee) contribution of up to 14% Flexible working: We welcome applicants who are looking for flexible working arrangements Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave -enhancements are available for paternity leave, neonatal leave and fertility testing and treatments Facilities: Fantastic site facilities including subsidised meals, free car parking and much more Healthcare Cash Plan: The Healthcare Cash Plan benefit provides the option to claim cash back on everyday healthcare expenses such as optical, dental, health and wellbeing and more . The opportunity: The main focus is the creation, execution and maintenance of a framework to identify and address risks associated with the devices which support MBDA's Building and Infrastructure across the UK. This will also include input into the wider group structures as and when required. The OT Risk Manager will act as the point of contact for all new, existing and legacy GIMS installations, providing advice, guidance and direction to address the multiple security risks associated with them. This includes liaising with cross business teams outside of FM, such as Cyber and InfoSec, IM and Product Cyber. The OT Risk Manager will oversee all change management activities related to the connectivity and digital interfaces of the relevant infrastructure, ensuring all change remains appropriate and complaint with policy; ensuring an evidenced position is constantly maintained by MBDA UK of continued compliance with all relevant standards which may be subject no-notice audits by MBDA Group, MOD and other customers. They will deliver technical security consultancy to the business including architecture and solution suitability to meet a complex suite of business requirements. They will create and update ISO 27001 compliant policies to specifically address the GIMS policy ensuring that all policies, processes, procedures and technical infrastructure remains compliant with MBDA UKs wider ISO 27001 ISMS as well as other certifications as appropriate. The OT Risk Manager will be a critical leader in any new infrastructure projects within MBDA UK and for reducing cyber risk to the business as part of a wider team. The OT Risk Manager will also coordinate all technical security testing within their allocated area of operations, as well as maintaining upward reporting to MBDA UK FM Director, UK Security Director and UK CISO on results and remediation progressions. They will proactively coordinate with the Principle Cyber and Information Security Advisor for all required assurance activity and evidence based reporting. They will work with FM and wider business stakeholders to create a network of Asset Owners and formally document the asset registers for their areas of operation. What we're looking for from you: CISSP, InfoSec/Cyber Degree or equivalent (Essential) Experience or relevant certifications in network security or industrial control system hardening (Essential) Knowledge of security surrounding systems enabling critical services within business (ICS/SCADA/BMS/BEMS) Comfortable with establishing and maintaining relationships with national security authorities, internal stakeholders and industry partners. Expert in security concepts for IT network architectures, applications, cloud services and hardening of operating systems within ICS and SCADA context. Ability to present risk balanced security solutions to complex problems and provide clear advice directly to key stakeholders at all levels Experience of managing and developing inexperienced IT/FM Engineers to maintain security Experience of system accreditation processes and documentation. Experience of security risk management Knowledge of business IT processes and associated approval systems Expert knowledge of modern hacking Tactics, Techniques and Procedures including impacts affecting GIMS/ICS/SCADA. Our company: Peace is not a given, Freedom is not a given, Sovereignty is not a given MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom. We are proud of our employee-led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process. Follow us on LinkedIn (MBDA), X Instagram (MBDA_UK) and Glassdoor or visit our MBDA Careers website for more information.
