31 jobs found

SailPoint IAM Engineer - SC Cleared Rate: £550 - £600 a day Location: Mainly remote with some travel to a location on the South West Duration: 6-12 months (Initial) Clearance: Current SC clearance You will join a global IT consultancy, delivering digital transformation to a public sector body. As a SailPoint IAM Engineer Contractor you will support the design, implementation, and enhancement of enterprise Identity Governance & Administration (IGA) capabilities across complex hybrid environments. The role will focus primarily on SailPoint IdentityIQ (IIQ) and Identity Security Cloud (ISC), delivering identity life cycle management, access governance, application onboarding, and integration capabilities across cloud and on-premise platforms. This is a hands-on technical delivery role suited to candidates with strong implementation and integration experience within large enterprise IAM programmes. Experience with Privileged Access Management (PAM) technologies such as CyberArk is desirable but not essential. Key Responsibilities Design, configure, and support SailPoint IIQ and ISC solutions Implement and enhance Joiner/Mover/Leaver (JML) processes Develop and support provisioning workflows, access requests, and certification campaigns Configure application onboarding and connector integrations Support RBAC and access governance initiatives Integrate SailPoint with enterprise applications, directories, HR systems, and cloud platforms Collaborate with security, infrastructure, and application teams to resolve IAM-related issues Support audit, compliance, and governance requirements Produce technical documentation and implementation artefacts Contribute to ongoing IAM transformation and optimisation initiatives Essential Skills & Experience Strong hands-on experience with SailPoint IdentityIQ (IIQ) and/or Identity Security Cloud (ISC) Proven delivery experience within enterprise IAM/IGA programmes Strong understanding of: Identity Governance & Administration (IGA) RBAC Least Privilege Segregation of Duties (SoD) Identity life cycle management Experience configuring: Access requests Approval workflows Certifications/recertifications Provisioning integrations Application connectors Experience integrating SailPoint with: Microsoft Entra ID/Azure AD LDAP/Active Directory HR platforms SaaS and cloud applications Strong Scripting and automation skills: PowerShell APIs Java/BeanShell Experience working in hybrid cloud environments

Cyber Security Engineer Glasgow - Hybrid Competitive salary - 12-month FTC VIQU is working with a leading global professional services organisation to recruit a Cyber Security Engineer to join their Security Operations team on a 12-month fixed term contract. This role will focus on the hands-on implementation, maintenance, and optimisation of security tooling and controls across a complex enterprise environment, alongside contributing to security governance, compliance, and best practice delivery. You will play a key role in strengthening detection and response capability across cloud and on-prem infrastructure, while supporting both BAU operations and ongoing transformation projects. Key Responsibilities of the Cyber Security Engineer: Deploy, configure, and maintain security tooling (SIEM, EDR, DLP, vulnerability management, PAM) across cloud and on-prem environments Monitor, investigate, and respond to security incidents, including root cause analysis and forensic support Manage vulnerability scanning and remediation tracking across infrastructure and cloud (Azure desirable) Support secure configuration, security best practices, and alignment to ISO27001 and NIST Contribute to security documentation (policies, SOPs, playbooks) and continuous improvement of controls Support BAU operations, projects, and penetration testing activities as required Key Requirements of the Cyber Security Engineer: Experience in a Cyber Security Engineer, SecOps, or similar hands-on security role Strong experience with enterprise security tooling including SIEM, EDR, DLP, and vulnerability management platforms Familiarity with tools such as CrowdStrike, Absolute, Sumo Logic, and Rapid7 (or similar technologies) Experience supporting cloud environments, ideally Azure, within a security operations context Strong understanding of security frameworks such as ISO27001 and NIST Experience across both BAU security operations and project delivery Strong incident response experience, including investigation, escalation, and root cause analysis Ability to produce clear technical documentation (SOPs, playbooks, and standards) Strong communication and stakeholder management skills across technical and non-technical teams Comfortable working in a fast-paced environment with multiple priorities Apply now to speak with VIQU IT in confidence, or reach out to Katie Dark via the VIQU IT website. Do you know someone great? We'll thank you with up to £1,000 if your referral is successful (terms apply). For more opportunities, follow us on IT Recruitment. Cyber Security Engineer Glasgow - Hybrid Competitive salary - 12-month FTC

Robert Half Technology are assisting a market leading financial services organisation to recruit a CyberArk SME on a contract basis. Hybrid working - London based (1 day per week onsite). June 2026 start through to the end of 2026. Role The CyberArk SME will plan, test, and implement major CyberArk platform releases and upgrades, including annual version upgrades (e.g. 14.x to 15.x). Plan, test, and implement monthly operating system patching for CyberArk Vault servers in line with internal patching schedules. Test and coordinate monthly patching activities across CyberArk underlying infrastructure with internal infrastructure and patching teams. Deploy CyberArk security patches to remediate critical vulnerabilities identified in CyberArk advisories. Maintain existing CyberArk integrations including SCIM integration with Saviynt and telemetry integration with Power BI. Support and maintain existing deployed CyberArk connectors and collaborate with permanent teams to deliver configuration changes and onboarding activities. Create up to 10 custom CPM and PSM connectors annually to support new platforms and applications. Drive the adoption and embeddedness of CyberArk controls across the organisation. Utilise CyberArk Discovery, PTA, Splunk dashboards, CrowdStrike, Saviynt and other repositories to identify privileged accounts not currently under CyberArk management. Produce monthly metrics and reporting covering privileged account coverage across CMDB assets, Active Directory, and LDAP environments. Drive BAU onboarding activities to close identified gaps across existing platform types. Create detailed technical documentation including HLDs, LLDs, Safe Design documents, Runbooks, Test Plans and BAU handover documentation. Deploy and integrate CyberArk CP/CCP platforms into pre-production and production environments. Install and configure CP agents on PoC and candidate servers. Define and deploy processes for end-to-end SSH key lifecycle management including rotation. Create and manage Safes, Platforms and application authentication configurations within CyberArk. Conduct discovery and assessment activities for application service accounts, SSH keys, certificates, and secrets across production and pre-production environments. Define remediation and treatment plans for secrets management including CP/CCP adoption, PKI, mTLS and SPIFFE approaches. Deliver monitoring, hypercare, prioritisation, and remediation planning activities for secrets onboarding initiatives. Profile The CyberArk SME will have strong experience administering and engineering CyberArk PAM solutions within enterprise-scale environments. Expert-level knowledge of CyberArk components including Vault, CPM, PSM, CP, CCP, PTA and Discovery. Experience planning and delivering CyberArk upgrades, patching, and vulnerability remediation activities. Strong understanding of privileged access management, secrets management, SSH key management, and certificate-based authentication. Experience integrating CyberArk with enterprise tooling including Saviynt, Splunk, CrowdStrike, Power BI, Active Directory and LDAP. Proven experience creating custom CPM and PSM connectors. Strong knowledge of Linux and Windows server administration and infrastructure patching processes. Experience producing technical documentation including HLDs, LLDs, test plans and operational runbooks. Excellent stakeholder engagement and communication skills with the ability to collaborate across technical and business teams. CyberArk Sentry certification or above highly desirable. Company Market leading financial services organisation with offices in London Hybrid working - 1 day per week onsite Salary & Benefits The salary range/rates of pay is dependent upon your experience, qualifications or training. Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to diversity, equity and inclusion. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data:

We are seeking an experienced Construction Solicitor 4+ years PQE with a strong track record in construction work. In return our Client offers flexible working, a high quality working environment with scope for growth plus more benefits. Essential experience for this Construction Solicitor vacancy: Advise clients on a wide range of non-contentious and contentious construction matters, including litigation, adjudication, arbitration, mediation, expert determination, and insurance-related claims. Work with developers, property owners, contractors, consultants, and insurers across both public and private sectors. Take ownership of your caseload, contribute to strategic direction, and build relationships with longstanding and new clients. Mentor junior colleagues and contribute to team development. Collaborate across the firm to deliver integrated, high-quality legal solutions. Work autonomously, supported by a culture that values excellence, openness, and ambition. Other experience required for this Construction Solicitor role: Experience in litigation in the Technology & Construction Court, adjudication, arbitrations, and ADR mechanisms. Proven knowledge of standard industry contracts: JCT, NEC, FIDIC. Demonstrable experience of interpreting, drafting and advising on both standard and bespoke contracts. Technical, analytical and drafting skills. Previous work with expert technical evidence (engineering, quantity surveying, etc.). Project management and case management skills, ability to manage multiple matters, deadlines, and budgets. Commercial awareness, giving advice that shows an appreciation of cost/benefit, risk, and client sensitivities, as well as a pragmatic approach to strategy. Excellent communication skills (written & oral), evident in your interactions with clients, colleagues, experts, counsel, etc. Benefits for this Construction Solicitor vacancy: Salary of between 70,000 to 90,000 DOE Pension scheme Flexible working A step up from your current firm, with more autonomy and responsibility A balanced, high-quality work environment, with scope for growth A role where your expertise is valued, and you can make a visible impact For more information regarding this Construction Solicitor role, please contact Marcus Stevens, quoting reference 37547. PLEASE CHECK YOUR EMAIL (INCLUDING SPAM FOLDER) FOR CONFIRMATION YOUR APPLICATION HAS BEEN RECEIVED. In accordance with The Conduct of Employment Agencies and Employment Businesses Regulations 2003

BeyondTrust Consultant - Remote - 7 months+/RATE: £530 per day inside IR35 (BeyondTrust, Beyond Trust, IAM, Security) One of our Blue Chip Clients is urgently looking for a BeyondTrust Consultant. For this role you can work remotely. Please find some details below: CONTRACTOR MUST BE ELIGIBLE FOR BPSS MUST BE PAYE THROUGH UMBRELLA Role Description: FOCUS OF THIS ROLE: The resource needs to be expert on Beyond Trust on two or more of its modules EPM,PWS,PMUL,PRA. Should be capable to deploy/install/configure Beyond Trust PAM Components ie PBPS,PRA, EPM, PMUL and having Archtectural level of knowledge on BT. Experience in Design, Installation, Implementation, User Policies, Certifications, Privilege account Provisioning, creating workflows, custom connectors, policies using BT. Experience in Design, Installation, Implementation, User Policies, Certifications, Privilege account Provisioning, creating workflows, custom connectors, policies Managing access to Windows, Unix/Linux, Web portals, and RDP Published applications. Should be capable to deploy/install/configure Beyond Trust PAM Components ie PBPS,PRA, EPM, PMUL In-depth understanding to use Account, Service, and task Discovery tools Target system On-boarding and Application on-boarding. Provide inputs into engineering and the architectural design of Access Control, User Entitlements, Application Credentials, User Access Policy Management, enhancing security related to Privileged Access Management, High availability and Disaster Resiliency Implement Application to Application clients. Serve as the subject matter expert (SME) for the Beyond Trust PAM toolset. Provide overall direction and oversight into the PAM functions across the organization, including Password Vaulting of elevated user and application service accounts. Well versed with automation scripts in Rest-API. Primary Skills Beyond Trust Implementation (PRA/Password Safe/EPM/PMUL) Privileged access management Please send CV for full details and immediate interviews. We are a preferred supplier to the client.

Location: Home Based If you would like to work for an organisation that demonstrates outstanding commitment to staff engagement, has gained a place on the Times Best 100 Companies to work for in the UK for the last eight consecutive years and that holds Investors in People Platinum accreditation we would love to hear from you! Please note: New starters are normally appointed at the bottom of the pay scale. A market uplift of up to £9,000 per annum (pro rata) may be available for suitably qualified candidates. At ACT, our behaviour framework shapes everything we do. We are looking for a Training Advisor who demonstrates genuine respect for every learner, communicates with openness and integrity, and brings creativity to engage learners who may have faced barriers to education. You will be motivated to inspire and empower learners to progress, while maintaining clarity in your planning, decision-making and communication. If you are resilient, adaptable and committed to making a meaningful difference through high-quality, inclusive delivery, we would love to hear from you. About the role Do you have experience in Aeronautical Engineering and enjoy helping others develop their skills? We're looking for a Training Advisor to support Apprenticeship learners across Aeronautical Engineering, helping them gain the skills, knowledge and confidence to succeed in their qualifications and careers. This is a field-based role where you'll visit learners in the workplace and deliver virtual support across England. What you'll do Deliver training, coaching and assessment to Apprenticeship learners Support learners in the workplace and virtually Develop and review Individual Learning Plans (ILPs) Track learner progress and provide feedback Manage your own caseload and diary Ensure compliance with awarding body and regulatory standards Build strong relationships with learners and employers Support safeguarding, quality and health & safety requirements When you join ACT, you'll benefit from: Generous annual leave (plus bank holidays) Annual salary reviews and progression opportunities Flexible and hybrid working options (where applicable) Healthcare cash plan and access to counselling services Pension scheme and life insurance Ongoing professional development, including funded qualifications Job shadowing opportunities to support career growth Staff recognition, wellbeing initiatives and celebration days Our Values: At ACT, we pride ourselves on fostering a culture of respect, fairness, and dignity for all. We believe in creating an inclusive environment where every individual feels valued and empowered to thrive. FREDIE has been central to promoting and recognising exceptional commitment to equality and diversity. FREDIE stands for Fairness, Respect, Equality, Diversity, Inclusion, and Engagement, and these values are at the heart of ACT's philosophy, shaping our approach to both staff and learners. Diversity statement ACT is dedicated to fair and safe recruitment practices, ensuring equality for all applicants and staff. We do not discriminate based on gender, sexual orientation, marital or civil partner status, gender reassignment, race, colour, nationality, ethnic or national origin, religion or belief, disability or age. Our questioning and collating of information are intended to help us maintain equal opportunities best practice and identify barriers to workforce equality and diversity. The information collated from you will not be used in any decision affecting you. We are happy to consider any reasonable adjustments that candidates may need during the recruitment process, please drop us an email with your requirements. What next? The advert will close 03rd July 2026. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Applicants will be notified via email of application process (please check junk or spam folders). Please note: The successful candidate will be required to attend our Head Office in Cardiff for pre-employment checks and induction/training prior to starting in role. An interview process consisting of: An interview with a work-based task (for example - a micro teach, or scenario based, full details will be provided before interview). We're keen to ensure our hiring process allows you to be at your best, so if you need us to make any adjustments, please just let us know. If you have any queries about the vacancy, please feel free to contact us. Safeguarding: Our organisation is deeply committed to safeguarding the welfare of all learners and staff. We expect all employees to uphold this commitment as part of their role. Please note that the successful candidate will be required to undergo an enhanced DBS check. If you're looking to join an organisation that genuinely values its people and makes a real difference, we'd love to hear from you. What you get in return: Excellent professional development opportunities Generous holiday package (up to 45 days per year) E-learning platform available to all staff. Annual salary increases Staff counselling sessions Mental Health First Aider Wellbeing initiatives Bi-annual performance reviews Staff Council Flexible and hybrid working (where applicable) Team building days Volunteering days Staff celebration days Length of service, birthday and yearly appreciation rewards Staff Recognition Awards Healthcare cash plan Contributory pension scheme Life assurance Our Values: At ACT, we pride ourselves on fostering a culture of respect, fairness, and dignity for all. We believe in creating an inclusive environment where every individual feels valued and empowered to thrive. FREDIE stands for Fairness, Respect, Equality, Diversity, Inclusion, and Engagement - values that lie at the heart of everything we do at ACT. From our interactions with staff to our engagement with learners, these principles guide our approach, ensuring that everyone has the opportunity to succeed.

Cyber Ark Engineer - Privileged Access Management (PAM) Up to £575 per day - Inside IR35 London/Hybrid - 1-2 days a week on site 12 months My client is an instantly recognisable consultancy who require a Cyber Ark Privileged Access Management Engineer for an end client within Financial Services. Key Requirements: Proven commercial experience working as a Cyber Ark Engineer with Privileged Access Management expertise, ideally within Financial Services. Hands-on with ISPSS, Secure Cloud Access (SCA) and Secure Infrastructure Access (SIA). Proven track record implementing privileged access in Azure and/or AWS. Strong access & security fundamentals experience ie Web console access (HTTPS), ephemeral/JIT access models, credential life cycle & password rotation. The ability to build and operate secure, audited access (console, CLI, RDP, SSH) with Zero Standing Privilege where possible. Strong policy & governance ownership experience with expertise designing access policies, approval workflows, and integrate with ServiceNow for audit and compliance. Strong Automation & Integration focus to enable dynamic onboarding, Terraform/API-driven workflows, and privileged access automation. Nice to have: Experience with SRS, SWS, database access (MSSQL/Oracle/Postgres), Scripting (PowerShell/Python), and regulated environments. Immediate availability. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found on our website.

Contract Network Engineer Oxford - 3 days per week Rate: 500 PD (Inside IR35) 6-12 Month Contract Overview We are seeking a skilled Network Engineer on a contract basis to join our clients IT Operations team. In this role, you will ensure the reliability, performance, and security of critical network infrastructure across the company, data center, and multi-cloud environments (AWS/GCP). While primarily focused on networking, you will also support occasionally on systems administration tasks as needed, making you a versatile contributor in a fast-paced, collaborative environment supporting cutting-edge technology. Role and Responsibilities Administer, operate, and maintain enterprise network infrastructure, including LAN/WLAN, VPNs, DNS/DHCP/IPAM, firewalls, and cloud networking (AWS, GCP). Proactively monitor and troubleshoot performance, availability, and connectivity issues, taking ownership of incident resolution end-to-end. Support systems administration tasks when required, including account provisioning, server patching, storage, and backup troubleshooting. Strengthen network security through policy enforcement, configuration audits, and adherence to best practices. Collaborate with IT Engineering on network design reviews, ensuring smooth handoffs into production. Document configurations, standard operating procedures, runbooks, and network diagrams to facilitate knowledge sharing. Participate in the UK on-call rotation for critical issues outside regular business hours. Skills and Experience Experience in enterprise network operations and troubleshooting. Proven ability to configure and support LAN/WLAN environments, routing/switching, VLANs, and DNS/DHCP. Knowledge of routing protocols and networking technologies such as BGP, VRRP/HSRP, TCP/UDP, LACP. Strong diagnostic skills using packet capture and other troubleshooting tools. Excellent communication and documentation skills, with a proactive problem-solving mindset. Willingness to assist with systems administration tasks when required. Beneficial: Experience with Arista EOS, CloudVision, or similar network platforms. Familiarity with firewalls (Palo Alto preferred), network access control (802.1x, RADIUS), or zero-trust security concepts. Exposure to infrastructure-as-code (Terraform, Ansible) and version control systems (Git). Experience with monitoring and observability tools (LogicMonitor, Grafana, Prometheus). Knowledge of hybrid cloud networking, including AWS Direct Connect or GCP Interconnect. Relevant certifications such as CCNP, AWS Advanced Networking Specialty, or Google Cloud Network Engineer.

Role Title: Beyond Trust SME Duration: contract to run until 30/12/2026 Location: Remote Rate: up to £598 p/d Umbrella inside IR35 Role purpose/summary Experience in Design, Installation, Implementation, User Policies, Certifications, Privilege account Provisioning, creating workflows, custom connectors, policies Managing access to Windows, Unix/Linux, Web portals, and RDP Published applications. Should be capable to deploy/install/configure Beyond Trust PAM Components ie PBPS,PRA, EPM, PMUL In-depth understanding to use Account, Service, and task Discovery tools Target system On-boarding and Application on-boarding. Provide inputs into engineering and the architectural design of Access Control, User Entitlements, Application Credentials, User Access Policy Management, enhancing security related to Privileged Access Management, High availability and Disaster Resiliency Implement Application to Application clients. Serve as the subject matter expert (SME) for the Beyond Trust PAM toolset. Provide overall direction and oversight into the PAM functions across the organization, including Password Vaulting of elevated user and application service accounts. Well versed with automation scripts in Rest-API. Primary Skills Beyond Trust Implementation (PRA/Password Safe/EPM/PMUL) Privileged access management All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply! If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.

BT SME Location: UK - Remote Duration: 31/12/2026 Total cost to Capgemini: 550£ MUST BE PAYE THROUGH UMBRELLA Role Description: FOCUS OF THIS ROLE: The resource needs to be expert on Beyond Trust on two or more of its modules EPM,PWS,PMUL,PRA. Should be capable to deploy/install/configure Beyond Trust PAM Components ie PBPS,PRA, EPM, PMUL and having Archtectural level of knowledge on BT. Experience in Design, Installation, Implementation, User Policies, Certifications, Privilege account Provisioning, creating workflows, custom connectors, policies using BT. Experience in Design, Installation, Implementation, User Policies, Certifications, Privilege account Provisioning, creating workflows, custom connectors, policies Managing access to Windows, Unix/Linux, Web portals, and RDP Published applications. Should be capable to deploy/install/configure Beyond Trust PAM Components ie PBPS,PRA, EPM, PMUL In-depth understanding to use Account, Service, and task Discovery tools Target system On-boarding and Application on-boarding. Provide inputs into engineering and the architectural design of Access Control, User Entitlements, Application Credentials, User Access Policy Management, enhancing security related to Privileged Access Management, High availability and Disaster Resiliency Implement Application to Application clients. Serve as the subject matter expert (SME) for the Beyond Trust PAM toolset. Provide overall direction and oversight into the PAM functions across the organization, including Password Vaulting of elevated user and application service accounts. Well versed with automation scripts in Rest-API. Primary Skills Beyond Trust Implementation (PRA/Password Safe/EPM/PMUL) Privileged access management

Mechanical Design Engineer - Spider is advertising for a long-established and highly respected manufacturing business based in Ipswich, supporting them with their search for a Mechanical Design Engineer. Renowned for designing and building specialist industrial machinery used across a wide range of sectors, they have built an excellent reputation for quality, innovation, and customer service. With a friendly and collaborative team culture, this is a fantastic opportunity for an experienced, Mechanical Design Engineer to join a business where your contribution will genuinely make a difference. As part of their continued growth and expansion, they are looking to recruit a Mechanical Design Engineer to support the successful delivery of customer projects from concept through to completion. The Role This is a varied and hands-on position that offers the opportunity to be involved throughout the full project lifecycle. Key responsibilities include: Creating detailed 3D CAD models using Autodesk Inventor, alongside 2D drawings in AutoCAD Assisting with the planning and coordination of engineering projects from sales order through to commissioning Working closely with customers to understand their requirements and develop tailored engineering solutions Producing technical drawings, specifications, and supporting documentation Contributing to the continuous improvement of machinery, products, and manufacturing processes Providing technical support and advice relating to consumable products About You We re looking for someone who is: Experienced within a mechanical engineering or design engineering environment Able to create detailed 3D CAD models using Autodesk Inventor, alongside 2D drawings in AutoCAD Comfortable working within a close-knit team where collaboration is key Highly organised, with the ability to manage multiple projects and priorities Confident communicating with customers, suppliers, and colleagues at all levels Practical, solutions-focused, and enjoys overcoming engineering challenges Passionate about delivering high-quality work and seeing projects through from design to completion If you have the relevant skills and experience for this Mechanical Design Engineer role and would like to be considered, please apply by forwarding an up-to-date CV as soon as possible. We look forward to hearing from you. Please check your email inbox and spam/junk mail folder for any email correspondence for this role. If you require any reasonable adjustments such as access or information in an alternative format, please inform us soon as you are able so that we can make the appropriate adjustments. This vacancy is being advertised and handled through Spider. We take your privacy seriously. When you apply, your details are processed and available for us to directly review for this vacancy. As you might expect you may be contacted by email, text, or telephone. For full Privacy Policy details please see email correspondences on receipt of your application.

SailPoint IAM Engineer - SC Cleared Rate: 550 - 600 a day Location: Mainly remote with some travel to a location on the South West Duration: 6-12 Months (Initial) Clearance: Current SC clearance You will join a global IT consultancy, delivering digital transformation to a public sector body. As a SailPoint IAM Engineer Contractor you will support the design, implementation, and enhancement of enterprise Identity Governance & Administration (IGA) capabilities across complex hybrid environments. The role will focus primarily on SailPoint IdentityIQ (IIQ) and Identity Security Cloud (ISC), delivering identity lifecycle management, access governance, application onboarding, and integration capabilities across cloud and on-premise platforms. This is a hands-on technical delivery role suited to candidates with strong implementation and integration experience within large enterprise IAM programmes. Experience with Privileged Access Management (PAM) technologies such as CyberArk is desirable but not essential. Key Responsibilities Design, configure, and support SailPoint IIQ and ISC solutions Implement and enhance Joiner / Mover / Leaver (JML) processes Develop and support provisioning workflows, access requests, and certification campaigns Configure application onboarding and connector integrations Support RBAC and access governance initiatives Integrate SailPoint with enterprise applications, directories, HR systems, and cloud platforms Collaborate with security, infrastructure, and application teams to resolve IAM-related issues Support audit, compliance, and governance requirements Produce technical documentation and implementation artefacts Contribute to ongoing IAM transformation and optimisation initiatives Essential Skills & Experience Strong hands-on experience with SailPoint IdentityIQ (IIQ) and/or Identity Security Cloud (ISC) Proven delivery experience within enterprise IAM / IGA programmes Strong understanding of: Identity Governance & Administration (IGA) RBAC Least Privilege Segregation of Duties (SoD) Identity lifecycle management Experience configuring: Access requests Approval workflows Certifications / recertifications Provisioning integrations Application connectors Experience integrating SailPoint with: Microsoft Entra ID / Azure AD LDAP / Active Directory HR platforms SaaS and cloud applications Strong scripting and automation skills: PowerShell APIs Java / BeanShell Experience working in hybrid cloud environments

SailPoint IAM Engineer - 6 -12 months - Mainly remote with some travel to a location on the South West - Market rates Inside ir35 Please note: Due to the nature of the project, successful applicants will be required to be SC cleared prior to appointment. Key Responsibilities Design, configure, and support SailPoint IIQ and ISC solutions Implement and enhance Joiner / Mover / Leaver (JML) processes Develop and support provisioning workflows, access requests, and certification campaigns Configure application onboarding and connector integrations Support RBAC and access governance initiatives Integrate SailPoint with enterprise applications, directories, HR systems, and cloud platforms Collaborate with security, infrastructure, and application teams to resolve IAM-related issues Support audit, compliance, and governance requirements Produce technical documentation and implementation artefacts Contribute to ongoing IAM transformation and optimisation initiatives Essential Skills & Experience Strong hands-on experience with SailPoint IdentityIQ (IIQ) and/or Identity Security Cloud (ISC) Proven delivery experience within enterprise IAM / IGA programmes Strong understanding of: o Identity Governance & Administration (IGA) o RBAC o Least Privilege o Segregation of Duties (SoD) o Identity lifecycle management Experience configuring: o Access requests o Approval workflows o Certifications / recertifications o Provisioning integrations o Application connectors Experience integrating SailPoint with: o Microsoft Entra ID / Azure AD o LDAP / Active Directory o HR platforms o SaaS and cloud applications Strong scripting and automation skills: o PowerShell o APIs o Java / BeanShell Experience working in hybrid cloud environments Desirable Skills Experience with CyberArk or other PAM technologies Experience with SailPoint ISC migrations or hybrid IIQ/ISC environments Experience across Azure, AWS, or GCP Understanding of Zero Trust security principles SailPoint certifications Security certifications such as SC-300, CISSP, or CCSP This temporary contract is inside IR35 and will require working under the direction of the client delivery manager as part of a multi-disciplinary team. The successful candidate will follow established delivery processes and working practices This role requires the successful candidate to undergo and be eligible for UK Security Vetting at SC/DV level. Clearance sponsorship will be provided where required. Due to the nature of the work, candidates should meet the relevant residency requirements. If applicable, reserved post nationality restrictions will be confirmed by the client. Damia is committed to inclusive recruitment and welcomes applicants from all backgrounds. Due to the secure nature of the position and working environment, you must have, or be eligible to obtain Security Clearance Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Should the role require the successful candidate to undergo and be eligible for UK Security Vetting. Clearance sponsorship will be provided where required. Due to the nature of the work, candidates should meet the relevant residency requirements. If applicable, Reserved Post nationality restrictions will be confirmed by the client. Damia is committed to inclusive recruitment and welcomes applicants from all backgrounds. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.

Summer-Browning Associates are currently supporting our consultancy client on a Central Government project for an initial 12 month contracted located in London (hybrid) Vacancy: Network Engineer What You'll Be Doing Network Architecture Design: Designing and implementing multi-tenant virtual private networks, including complex routing, peering, and internal IP address management (IPAM). Hybrid & Private Connectivity: Configuring resilient site-to-site connectivity, including encrypted tunnels and dedicated private interconnects between distributed locations and central data centers. Load Balancing & DNS Management: Implementing sophisticated load balancing solutions for high-traffic applications and managing secure, private DNS zones and forwarding policies. Containerised Networking: Setting up and securing networking for Kubernetes (GKE), including private control planes, network policies, and specialised alias IP ranges. In particular, Istio Service Mesh. Network Observability: Utilising advanced diagnostic tools and flow logs to monitor network health, visualise throughput, and perform deep-packet troubleshooting. What You'll Bring Proven experience in designing and managing complex, resilient network architectures in a cloud or hybrid context. Ability to adapt core networking expertise to the specific constraints of secure, air-gapped, or distributed environments. Strong interpersonal skills to build trust across technical and non-technical stakeholders. Desirables: Current, non-expired Professional Cloud Network Engineer certification. Background in technology delivery across cyber security, digital services, or infrastructure domains. Experience with tooling commonly used in secure government contexts (e.g., Jira, Confluence, Gitlab). Experience working in air-gapped or disconnected environments with little or no internet connectivity Working on OFFICIAL/SECRET/TOP SECRET projects. NB: Applicant should be willing/be eligible to undertake SC & DV level vetting. To Apply, please submit latest CV.

AWS Cloud Engineer (SC Cleared) Andover (Hybrid) 6 Month Contract £450/day (Outside IR35) AWS Cloud Engineer needed with active SC Security Clearance and strong experience of AWS Cloud administration. 6 Month Contract based in Andover (Hybrid). Hybrid Working - 3 days/week remote (WFH), and 2 days/week working on-site in Andover . Paying up to £450/day (Outside IR35). A chance to work with a leading global IT transformation on a large-scale Government project. Start ASAP in May/June 2026. Key skills, experience + tasks will include: Administration of new AWS Cloud environment, plus administration of Nginx + Cloudflare. Using Ansible + Terraform to build mail systems. Migrating apps/sites to the new architecture in partnership with external suppliers. Linux Administration (RedHat, Ubuntu, CentOS). Windows Administration (Windows Server 2012/2019, AD, ADFS, Group Policy, DNS, Trusts). SQL Server / MySQL Administration (Availability Groups, TDE, Backup & Restore). SharePoint Admin, Cisco/Juniper Firewall Admin, Load Balancer Configuration (BigIP F5, HAProxy). Scripting using PowerShell, Bash, YAML, and Python. Email Support (Dovecot, Postfix, Spam Prevention, Mail Routing) Web Server Support (IIS, Apache, Tomcat). Public Cloud (AWS/Azure) + HSM Administration. Active SC Security Clearance is essential for this contract.

Cloud Security Engineer 3-month contract London Outside of IR35 My client is seeking an experienced Cloud Security Engineer to play a key role in strengthening and maturing their cloud security posture across a Microsoft Azure environment. Having recently completed a comprehensive security audit, the organisation is now focused on implementing a series of security recommendations as part of a wider security improvement programme aligned to NIST and ISO27001 frameworks. This role will be instrumental in delivering those improvements and helping shape the future security architecture and governance standards across the business. Required Experience from the Cloud Security Engineer: Proven experience in a Cloud Security Engineer or similar cybersecurity role Strong hands-on experience securing Microsoft Azure environments Experience with Microsoft Security tools in needed for example: Microsoft Entra ID Microsoft Defender Azure Bastion Microsoft Sentinel Microsoft Purview Strong understanding of cloud security best practices and security frameworks Experience implementing security controls following audits or gap assessments Knowledge of NIST and/or ISO27001 Experience with: Conditional Access, Identity & Access Management (IAM), Privileged Access, Management (PAM), SIEM, monitoring, Endpoint security Key Responsibilities of the Cloud Security Engineer: Implement and remediate recommendations identified through recent security audits and assessments Support the organisation s ongoing alignment with NIST and ISO27001 security standards Design, configure, and enhance security controls across the Microsoft Azure estate Manage and optimise Microsoft Azure security tooling Strengthen identity and access management controls across cloud platforms Implement and manage Conditional Access policies and Zero Trust principles Support PAM and IAM initiatives, ensuring least privilege and secure access governance Monitor, investigate, and respond to cloud security incidents and threats The Cloud Security Engineer is required to work hybrid in London for the duration of the contract. Apply now to speak with VIQU IT in confidence. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.

AWS Technical Architect +6 months + +Fully remote +SC cleared role - current active clearance is essential As an AWS Technical Architect, you'll take high-level customer requirements and turn them into practical, secure, and production-ready AWS solutions. You'll work closely with CloudOps, DevOps, engineering teams, and customer stakeholders to design cloud platforms that are scalable, resilient, secure, and cost-effective. This is a hands-on role but also highly collaborative and strategic - ideal for someone who enjoys solving complex technical problems while guiding teams and influencing architecture decisions. Solution Design: Architecting cloud solutions on AWS according to business requirements, covering infrastructure design, application architecture, security, and integration patterns. DevOps Automation and IaC: Champion an automation-first mindset, ensuring all scalable architectures are driven by Terraform Infrastructure as Code (IaC) and modern automation tools. Cloud Migration: Assisting in migrating on-premises infrastructure and applications to AWS cloud with minimal disruption and optimal performance. Security and Compliance: Implementing security best practices and compliance standards within AWS environments, including identity and access management, encryption, and network security. Network Architecture: Establish central AWS transit and network infrastructure, acting as the core gateway for all inter-account communication and outbound traffic to external services. Cost Optimization: Designing cost-effective solutions by selecting appropriate AWS services and implementing cost management strategies. High Availability and Disaster Recovery: Designing architectures for high availability and disaster recovery using AWS services. Performance Optimization : Tuning configurations and leveraging AWS services for optimal performance of applications and infrastructure. Monitoring and Logging: Implementing monitoring, logging, and alerting solutions using AWS CloudWatch and CloudTrail to ensure the health, performance, and security of AWS environments. Technical Leadership and Collaboration: Providing leadership, guidance, and mentorship to team members, collaborating with cross-functional teams. Continuous Learning and Innovation: Staying updated with the latest AWS services and best practices, driving innovation for improved efficiency and reliability of AWS solutions. Experience required: Proven track record as an AWS Technical Architect Hands-on experience across AWS/public cloud environments Strong practical AWS knowledge across infrastructure, networking, security, and cloud operations Experience working closely with DevOps and CloudOps teams Proficiency in deploying Landing Zone, particularly Secure Landing Zone/PALZ and expertise in Control Tower and AWS Organizations. Practical experience in designing and implementing Continuous Integration and Deployment utilizing tools like GitHub Actions. Expertise in managing and maintaining secure AWS cloud environments and various AWS security services. Experience with authentication and authorization protocols such as OAUTH2, SAML2.0, and OIDC. Proficiency in designing and implementing cloud-native solutions, including serverless applications, containerised applications, CI/CD pipelines, Network Infrastructures like Transit Gateway and Direct Connect, Identity and Access Management, and programmable infrastructure. Knowledge and experience in infrastructure as code solutions using tools like Terraform, GitHub Actions, Python, Bash or PowerShell. Experience with network concepts such as VPC, Transit Gateways, Gateway Load Balancers, AWS Private Link, Endpoint Services, Route 53, IPAM, CIDR management, and hybrid networks. Proficiency in tools like Git/GitHub, Confluence, Jira, and ServiceNow. If you'd like to discuss the AWS Technical Architect role in more detail, please send your updated CV to (url removed) and I will get in touch.

Enterprise Architect - IAM Security Permanent - Up to 110k + strong benefits Location: Hybrid - Cambridge Your new company: A NASDAQ listed semiconductor organisation in the UK is currently looking for an Enterprise Architect focussing on IAM Security to join their ranks. The organisation is very well known in their world and offers strong benefits and hybrid working, as well as shares in the company, split over 4 years. The role responsibilities: You'll play a big role in architecting and designing the organisations' zero trust IAM infrastructure and policies, as well as guiding the strategy behind how they secure their global workforce. You'll work across IT and Security to define, design, and integrate. Some of the main elements of your roles, in the clients' words: Lead the design and implementation of enterprise Zero Trust IAM architecture across AD, Entra ID, SSO, MFA, PAM, and PKI. Create and maintain Zero Trust IAM security roadmaps, patterns, and reference designs. Supporting and partner with IT, GRC, and Engineering teams to ensure compliance and security standard processes. Evaluate and integrate new identity tools, authentication platforms and access capabilities. Drive continuous improvement through risk assessments, threat modelling, and automation. You will need: Whilst the business is looking for the below, a big part of what they're also looking for is the passion and desire to be at the forefront of security. You will want to keep up to date with the latest threats, you will want to find the next tool that can make a difference in an enterprise environment, you will want to push the boundaries and go outside the norm. You will be a part of a forward-thinking team, pushing to be the best around. Strong practical experience in designing and running Identity and Access Management (IAM) solutions within large-scale, complex environments. Deep knowledge of identity protocols (SAML, OAuth2, OIDC, SCIM, LDAP/AD, PKI). Strong zero-trust mindset. Expertise in at least two IAM product areas such as Okta, CyberArk, Ping, or preferably Microsoft Entra ID. Ability to define standards, partner cross-functionally (IT, GRC, Engineering), and drive risk reduction through threat modelling, compliance (NIST, ISO, GDPR), and ongoing optimisation of identity systems. Experience working with cloud identity (Azure, AWS, or GCP). What you'll get in return: This role is available for hybrid working with a typical requirement to work 2 days per week in the Cambridge office. Strong salary with decent benefits. 7% pension - employers contribution PMI and dental Shares option ( 60k+) And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)