Security Testing Analyst | London (Hybrid) | £30-35k We are working with a well-established cyber security consultancy that is looking for a Security Testing Analyst to join their growing security testing team. This is a hands-on role with a clear development path - ideal for someone with around one to two years of experience in vulnerability assessment or junior penetration testing who wants structured progression toward deeper VAPT capability in a real client environment. The consultancy works with clients across regulated industries and PE-backed businesses, delivering penetration testing, VAPT, GRC advisory, and AI security services. You'll be joining a team that invests in its people: mentoring, funded certifications, and a performance-based progression model, not a time-served one. About the Role: The primary focus of the role is vulnerability assessment, external attack surface management, scan management, finding validation, and remediation follow-up. Alongside that, you'll be carrying out practical penetration testing activity - particularly across external infrastructure and Internet-facing services - with direct mentoring from senior testers as you build out your capability. This isn't a role where you run a scan, export the report, and move on. You'll be expected to investigate findings properly, understand exploitability, reduce false positives, and produce technical summaries that hold up to scrutiny. The testing team operates to Crest methodology throughout. Early on the role will be office weighted so you can get comfortable with the team. Hybrid working will then be available once you are settled in. What You'll be Doing: Deliver VAPT, vulnerability assessment, and attack surface management services across a range of clients Conduct security testing of external infrastructure and Internet-facing services, including reconnaissance, enumeration, and vulnerability validation Configure, schedule, and monitor vulnerability scans, maintaining accurate asset inventories and scope records Triage and prioritise vulnerability findings, focusing on critical and high-severity issues Validate findings using approved methods, assessing exploitability and business impact Perform basic penetration testing activities under guidance, including reconnaissance and controlled validation Support external attack surface reviews, identifying exposed assets and prioritising remediation Produce clear summaries and documentation for internal teams, clients, and formal reports Assist senior penetration testers with research, evidence collection, and report writing Adhere to internal methodologies and industry frameworks, including NIST, OWASP, and Crest best practices What They're Looking For: 1-2 years' experience in vulnerability assessment, security testing, or junior penetration testing Good understanding of networking, operating systems, and web technologies (TCP/IP, DNS, HTTP/S, Linux, Windows) Hands-on experience with vulnerability scanning tools such as Nessus, OpenVAS, AppCheck, or Qualys Familiarity with penetration testing tools including Kali Linux, Nmap, Burp Suite, Metasploit, Nikto, and Gobuster Understanding of CVEs, CVSS scoring, vulnerability prioritisation, and the OWASP Top 10 Ability to perform reconnaissance, enumeration, service analysis, and controlled validation of findings Strong written communication skills with the ability to produce clear technical reports Able to work methodically within defined scope and rules of engagement Certs like CPSA, PenTest+, eJPT or PNPT are a nice bonus, as is lab time on HTB or TryHackMe. Why This Role? Funded certs, direct mentoring from experienced testers, real client exposure from day one, and progression that's based on what you deliver - not how long you've been there. Apply now for immediate consideration! Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Jun 12, 2026
Full time
Security Testing Analyst | London (Hybrid) | £30-35k We are working with a well-established cyber security consultancy that is looking for a Security Testing Analyst to join their growing security testing team. This is a hands-on role with a clear development path - ideal for someone with around one to two years of experience in vulnerability assessment or junior penetration testing who wants structured progression toward deeper VAPT capability in a real client environment. The consultancy works with clients across regulated industries and PE-backed businesses, delivering penetration testing, VAPT, GRC advisory, and AI security services. You'll be joining a team that invests in its people: mentoring, funded certifications, and a performance-based progression model, not a time-served one. About the Role: The primary focus of the role is vulnerability assessment, external attack surface management, scan management, finding validation, and remediation follow-up. Alongside that, you'll be carrying out practical penetration testing activity - particularly across external infrastructure and Internet-facing services - with direct mentoring from senior testers as you build out your capability. This isn't a role where you run a scan, export the report, and move on. You'll be expected to investigate findings properly, understand exploitability, reduce false positives, and produce technical summaries that hold up to scrutiny. The testing team operates to Crest methodology throughout. Early on the role will be office weighted so you can get comfortable with the team. Hybrid working will then be available once you are settled in. What You'll be Doing: Deliver VAPT, vulnerability assessment, and attack surface management services across a range of clients Conduct security testing of external infrastructure and Internet-facing services, including reconnaissance, enumeration, and vulnerability validation Configure, schedule, and monitor vulnerability scans, maintaining accurate asset inventories and scope records Triage and prioritise vulnerability findings, focusing on critical and high-severity issues Validate findings using approved methods, assessing exploitability and business impact Perform basic penetration testing activities under guidance, including reconnaissance and controlled validation Support external attack surface reviews, identifying exposed assets and prioritising remediation Produce clear summaries and documentation for internal teams, clients, and formal reports Assist senior penetration testers with research, evidence collection, and report writing Adhere to internal methodologies and industry frameworks, including NIST, OWASP, and Crest best practices What They're Looking For: 1-2 years' experience in vulnerability assessment, security testing, or junior penetration testing Good understanding of networking, operating systems, and web technologies (TCP/IP, DNS, HTTP/S, Linux, Windows) Hands-on experience with vulnerability scanning tools such as Nessus, OpenVAS, AppCheck, or Qualys Familiarity with penetration testing tools including Kali Linux, Nmap, Burp Suite, Metasploit, Nikto, and Gobuster Understanding of CVEs, CVSS scoring, vulnerability prioritisation, and the OWASP Top 10 Ability to perform reconnaissance, enumeration, service analysis, and controlled validation of findings Strong written communication skills with the ability to produce clear technical reports Able to work methodically within defined scope and rules of engagement Certs like CPSA, PenTest+, eJPT or PNPT are a nice bonus, as is lab time on HTB or TryHackMe. Why This Role? Funded certs, direct mentoring from experienced testers, real client exposure from day one, and progression that's based on what you deliver - not how long you've been there. Apply now for immediate consideration! Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Penetration Tester Position Description CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities An opportunity for an experienced penetration testers has become available due to growth, joining the CGI Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Experience of the assessment of bespoke applications, cloud technologies and mobile applications (on diverse mobile platforms) would be of an advantage. You would join our established team of penetration testers with the possibility of progressing to team leader or principal tester positions. You would be able to work flexibly, undertaking work at home and at client sites across the UK. Required qualifications to be successful in this role - CHECK Team Leader (CTL) - CHECK Team Member (CTM) - CREST Certified Simulated Attack Specialist (CCSAS) - CREST Certified Tester (CCT). Sometimes known as CREST Certified Infrastructure Tester (CCT Inf) or CREST Certified Web Application Tester (CCT App) - Cyber Scheme Team Leader (CSTL) - TigerScheme Qualified Security Team Leader (QSTL) - Crest Registered Tester (CRT) - Cyber Scheme Team Member (CSTM) - TigerScheme Qualified Security Team Member (QSTM) - CREST Practitioner Security Analyst (CPSA) - Offensive Security Certified Professional (OSCP) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Jun 12, 2026
Full time
Penetration Tester Position Description CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities An opportunity for an experienced penetration testers has become available due to growth, joining the CGI Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Experience of the assessment of bespoke applications, cloud technologies and mobile applications (on diverse mobile platforms) would be of an advantage. You would join our established team of penetration testers with the possibility of progressing to team leader or principal tester positions. You would be able to work flexibly, undertaking work at home and at client sites across the UK. Required qualifications to be successful in this role - CHECK Team Leader (CTL) - CHECK Team Member (CTM) - CREST Certified Simulated Attack Specialist (CCSAS) - CREST Certified Tester (CCT). Sometimes known as CREST Certified Infrastructure Tester (CCT Inf) or CREST Certified Web Application Tester (CCT App) - Cyber Scheme Team Leader (CSTL) - TigerScheme Qualified Security Team Leader (QSTL) - Crest Registered Tester (CRT) - Cyber Scheme Team Member (CSTM) - TigerScheme Qualified Security Team Member (QSTM) - CREST Practitioner Security Analyst (CPSA) - Offensive Security Certified Professional (OSCP) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Principal Security Engineer Our client, a leading global supplier for IT services, requires Principal Security Engineer to be based at their client's office in London, UK. This is a hybrid role - you can work remotely in the UK and attend the London office 4 days per week . This is a 6+ month temporary contract to start ASAP Day rate: Competitive Market rate Senior hands-on secure engineer responsible for secure-by-design and operational security across the programme. Validate every delivery activity from a cyber security perspective - from threat model at requirements capture, through architecture and design approval, build assurance, security testing, live validation, hyper-care, and operational handover to BAU and external assurance. The principal authority on threat modelling, control validation, and security evidence across the CIS Controls v8.1 IG3 scope. Key Responsibilities Operate as senior cyber architect and SME within the programme's structured operating model - actively engaged from requirements capture through to BAU handover, owning Definition-of-Done evidence at every gate. Break down each Master Programme Plan activity into discrete People/Process/Technology tasks viewed through a cyber security lens - define the validation and assurance criteria, embed them as DoD acceptance criteria, and evidence them before status can advance. Requirements: author threat model v1, control intent statement, and compensating controls; validate requirements against current operational baseline and monitoring posture. Architecture (LEAD): author security architecture, safeguard mapping, and trust boundaries; approve the threat model; chair Security Council review of the architecture pack. Design (LEAD): approve detailed security design, evidence template, and telemetry specification; validate operational controls in the design; confirm evidence-capture feasibility before build commences. Build: run periodic build-vs-design reviews, architecture drift checks, and re-approve changes; configure operational controls, prepare security testing, support agent rollout, validate log feeds. Test (LEAD): sign off that the security architecture is proven by test evidence; revalidate the threat model; lead security testing, penetration testing, control validation, and evidence pack creation. Deploy: provide production architecture sign-off; confirm final control mapping in Continuous Control Monitoring (CCM); run live security validation, monitoring tuning, alert calibration, and IR playbook readiness. Hyper-care (LEAD): address security-architecture defects, approve in-warranty changes; lead control monitoring and tuning; produce security evidence and establish Key Risk Indicator (KRI) baselines. Handover: hand architecture over to the Security Council, lodge the final threat model, ensure the CCM tile goes live; transition operational controls to L1 SOC operations with a complete evidence pack to external assurance. Liaise directly with external assurance providers on threat-model defensibility, control effectiveness, and evidence chain across the CIS Controls v8.1 IG3 scope. Chair or jointly chair the Security Council review at the architecture stage gate; participate in TDA decisions at the design stage gate. People: Led security engineering across the programme; senior peer to Security Solution Architects, Cyber Operations, and the MSSP L1 SOC interface. Process: Embedded structured operating-model discipline into every security validation and assurance step; Definition-of-Done evidence at every gate, no exceptions. Technology: Delivered secure-by-design as bui personally signed off every architecture and operational handover, with an audit-traceable evidence chain from threat model to live monitoring Key Requirements Essential Skills: 12+ years cyber engineering and security architecture experience at enterprise scale. 5+ years hands-on security design AND validation - comfortable both as architect (design authority) and as engineer (hands-on implementer). Direct experience with CIS Controls v8.1, NIST CSF, ISO 27001/27002 control frameworks. Threat modelling at scale - proven authorship using STRIDE, MITRE ATT&CK, OWASP - across multiple in-scope controls. Hands-on penetration testing, security testing, and control validation track record. Workflow discipline - operates comfortably within Definition-of-Done, evidence-at-gate frameworks. Exceptional executive-level interactions, presentation, and engagement - proven ability to influence CISO, Security Council, External Assurance, and cross-functional senior stakeholders across Procurement, Architecture, and Technology heads. Retail or large dispersed-estate enterprise experience strongly preferred. CISSP (Certified Information Systems Security Professional) One of: CISM, CISA, CCSP, SABSA Practitioner, or CRISC One penetration-testing certification: OSCP, GIAC GPEN, or CEH (or equivalent demonstrable experience) Tooling & Methodology Proficiency: Hands-on with leading enterprise PM tools - Jira, Azure DevOps, MS Project, or equivalent - and willing to adopt (the programme's tool) on the job at senior architect and SME level. End-to-end Agile delivery - Scrum/Kanban - combined with DevSecOps deep hands-on practice (security gates Embedded in CI/CD). SAFe PI Planning participation as the cyber security representative. Executive-grade MS PowerPoint - Security Council paper authoring, threat-model presentation, design narrative for Programme Board. Advanced dashboards and modelling - one or more of Advanced MS Excel, PowerBI, Python, or Copilot - for KRI baselines, control-effectiveness analytics, and risk reporting. Budgeting awareness - security control cost shaping and total-cost-of-ownership analysis . Desirable Skills: Direct hands-on experience at senior architect/SME level. Practical DevSecOps Foundation or SANS GIAC GCSA. SABSA for Architects. Microsoft Threat Modeling Tool/OWASP Threat Dragon authorship. PowerBI Data Analyst (PL-300) for KRI and risk dashboards. CompTIA CASP+ or PenTest+ GIAC GCIH, GCFA, GCIA, or GREM AWS Security Specialty or Azure Security Engineer/Security Architect Expert BMC Helix Certified Professional (SecOps) ISO 27001 Lead Auditor or Lead Implementer TOGAF 9.2 awareness Due to the volume of applications received, unfortunately we cannot respond to everyone. If you do not hear back from us within 7 days of sending your application, please assume that you have not been successful on this occasion.
Jun 12, 2026
Contractor
Principal Security Engineer Our client, a leading global supplier for IT services, requires Principal Security Engineer to be based at their client's office in London, UK. This is a hybrid role - you can work remotely in the UK and attend the London office 4 days per week . This is a 6+ month temporary contract to start ASAP Day rate: Competitive Market rate Senior hands-on secure engineer responsible for secure-by-design and operational security across the programme. Validate every delivery activity from a cyber security perspective - from threat model at requirements capture, through architecture and design approval, build assurance, security testing, live validation, hyper-care, and operational handover to BAU and external assurance. The principal authority on threat modelling, control validation, and security evidence across the CIS Controls v8.1 IG3 scope. Key Responsibilities Operate as senior cyber architect and SME within the programme's structured operating model - actively engaged from requirements capture through to BAU handover, owning Definition-of-Done evidence at every gate. Break down each Master Programme Plan activity into discrete People/Process/Technology tasks viewed through a cyber security lens - define the validation and assurance criteria, embed them as DoD acceptance criteria, and evidence them before status can advance. Requirements: author threat model v1, control intent statement, and compensating controls; validate requirements against current operational baseline and monitoring posture. Architecture (LEAD): author security architecture, safeguard mapping, and trust boundaries; approve the threat model; chair Security Council review of the architecture pack. Design (LEAD): approve detailed security design, evidence template, and telemetry specification; validate operational controls in the design; confirm evidence-capture feasibility before build commences. Build: run periodic build-vs-design reviews, architecture drift checks, and re-approve changes; configure operational controls, prepare security testing, support agent rollout, validate log feeds. Test (LEAD): sign off that the security architecture is proven by test evidence; revalidate the threat model; lead security testing, penetration testing, control validation, and evidence pack creation. Deploy: provide production architecture sign-off; confirm final control mapping in Continuous Control Monitoring (CCM); run live security validation, monitoring tuning, alert calibration, and IR playbook readiness. Hyper-care (LEAD): address security-architecture defects, approve in-warranty changes; lead control monitoring and tuning; produce security evidence and establish Key Risk Indicator (KRI) baselines. Handover: hand architecture over to the Security Council, lodge the final threat model, ensure the CCM tile goes live; transition operational controls to L1 SOC operations with a complete evidence pack to external assurance. Liaise directly with external assurance providers on threat-model defensibility, control effectiveness, and evidence chain across the CIS Controls v8.1 IG3 scope. Chair or jointly chair the Security Council review at the architecture stage gate; participate in TDA decisions at the design stage gate. People: Led security engineering across the programme; senior peer to Security Solution Architects, Cyber Operations, and the MSSP L1 SOC interface. Process: Embedded structured operating-model discipline into every security validation and assurance step; Definition-of-Done evidence at every gate, no exceptions. Technology: Delivered secure-by-design as bui personally signed off every architecture and operational handover, with an audit-traceable evidence chain from threat model to live monitoring Key Requirements Essential Skills: 12+ years cyber engineering and security architecture experience at enterprise scale. 5+ years hands-on security design AND validation - comfortable both as architect (design authority) and as engineer (hands-on implementer). Direct experience with CIS Controls v8.1, NIST CSF, ISO 27001/27002 control frameworks. Threat modelling at scale - proven authorship using STRIDE, MITRE ATT&CK, OWASP - across multiple in-scope controls. Hands-on penetration testing, security testing, and control validation track record. Workflow discipline - operates comfortably within Definition-of-Done, evidence-at-gate frameworks. Exceptional executive-level interactions, presentation, and engagement - proven ability to influence CISO, Security Council, External Assurance, and cross-functional senior stakeholders across Procurement, Architecture, and Technology heads. Retail or large dispersed-estate enterprise experience strongly preferred. CISSP (Certified Information Systems Security Professional) One of: CISM, CISA, CCSP, SABSA Practitioner, or CRISC One penetration-testing certification: OSCP, GIAC GPEN, or CEH (or equivalent demonstrable experience) Tooling & Methodology Proficiency: Hands-on with leading enterprise PM tools - Jira, Azure DevOps, MS Project, or equivalent - and willing to adopt (the programme's tool) on the job at senior architect and SME level. End-to-end Agile delivery - Scrum/Kanban - combined with DevSecOps deep hands-on practice (security gates Embedded in CI/CD). SAFe PI Planning participation as the cyber security representative. Executive-grade MS PowerPoint - Security Council paper authoring, threat-model presentation, design narrative for Programme Board. Advanced dashboards and modelling - one or more of Advanced MS Excel, PowerBI, Python, or Copilot - for KRI baselines, control-effectiveness analytics, and risk reporting. Budgeting awareness - security control cost shaping and total-cost-of-ownership analysis . Desirable Skills: Direct hands-on experience at senior architect/SME level. Practical DevSecOps Foundation or SANS GIAC GCSA. SABSA for Architects. Microsoft Threat Modeling Tool/OWASP Threat Dragon authorship. PowerBI Data Analyst (PL-300) for KRI and risk dashboards. CompTIA CASP+ or PenTest+ GIAC GCIH, GCFA, GCIA, or GREM AWS Security Specialty or Azure Security Engineer/Security Architect Expert BMC Helix Certified Professional (SecOps) ISO 27001 Lead Auditor or Lead Implementer TOGAF 9.2 awareness Due to the volume of applications received, unfortunately we cannot respond to everyone. If you do not hear back from us within 7 days of sending your application, please assume that you have not been successful on this occasion.
Production Support Analyst Position Description The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. CGI are looking for a Production Support Analyst to join a strong existing In Service Support team in a client facing capacity to provide a wide range of software and hardware support to the client and end user. This position will be a hybrid position, based out of our Leatherhead office three days per week (Tues-Thurs). Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. Your future duties and responsibilities FC BISA is a long running programme developing bespoke software solutions in Fire Control and Battlespace Management for the British Army. Currently developing several major software releases concurrently and supporting operational systems, the project team is currently around 55 members. Key Duties: • Contribute to a range of support tasks including the installation, configuration, operation and maintenance of CGI s FCA and FC BISA products. • Produce user guide documentation in the form of Army Equipment Support Publications (AESP), Train the Trainer (T3) packs and deliver T3 courses for both FC BISA and FCA. • Support programmes of test, trials and training both in-house and occasionally on-site (non-operational). • Monitor E-Classroom equipment usage, repairs and spares availability and identify trends. • Monitor software issues passed by users or user representatives to CGI and identify trends. • Support availability to users, and user representatives, of equipment and material supplied by CGI under the FC BISA programme. Required qualifications to be successful in this role Required Competencies: • Team player with ability & willingness to work collectively and as an individual with minimal supervision. • Able to represent CGI with the client team and senior users. • Ability to reprioritize workload, according to programme priorities. • Attention to detail for documentation production and reviews. • Good communication skills (both oral & written) and the ability to work with multiple teams across the programme. • Ability to work to tight timescales within budget • Willingness to get involved in other tasks as and when required. Desired Competencies: • Army/Artillery communications knowledge, background, or experience. Ideally holding Qualified Gunnery Instructor (QGI) qualification, but not essential. • Technical Author qualifications • Ideally some prior experience of operating FC BISA and/or FCA. • UK MOD procurement processes or providing Support. • Working knowledge of Defence Standards. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Jun 12, 2026
Full time
Production Support Analyst Position Description The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. CGI are looking for a Production Support Analyst to join a strong existing In Service Support team in a client facing capacity to provide a wide range of software and hardware support to the client and end user. This position will be a hybrid position, based out of our Leatherhead office three days per week (Tues-Thurs). Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. Your future duties and responsibilities FC BISA is a long running programme developing bespoke software solutions in Fire Control and Battlespace Management for the British Army. Currently developing several major software releases concurrently and supporting operational systems, the project team is currently around 55 members. Key Duties: • Contribute to a range of support tasks including the installation, configuration, operation and maintenance of CGI s FCA and FC BISA products. • Produce user guide documentation in the form of Army Equipment Support Publications (AESP), Train the Trainer (T3) packs and deliver T3 courses for both FC BISA and FCA. • Support programmes of test, trials and training both in-house and occasionally on-site (non-operational). • Monitor E-Classroom equipment usage, repairs and spares availability and identify trends. • Monitor software issues passed by users or user representatives to CGI and identify trends. • Support availability to users, and user representatives, of equipment and material supplied by CGI under the FC BISA programme. Required qualifications to be successful in this role Required Competencies: • Team player with ability & willingness to work collectively and as an individual with minimal supervision. • Able to represent CGI with the client team and senior users. • Ability to reprioritize workload, according to programme priorities. • Attention to detail for documentation production and reviews. • Good communication skills (both oral & written) and the ability to work with multiple teams across the programme. • Ability to work to tight timescales within budget • Willingness to get involved in other tasks as and when required. Desired Competencies: • Army/Artillery communications knowledge, background, or experience. Ideally holding Qualified Gunnery Instructor (QGI) qualification, but not essential. • Technical Author qualifications • Ideally some prior experience of operating FC BISA and/or FCA. • UK MOD procurement processes or providing Support. • Working knowledge of Defence Standards. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
OT Cyber Security Analyst Culham, Oxfordshire (2 days onsite per week) 50/hour Umbrella 36.43/hour PAYE Contract until 18th December 2026 Active SC Clearance Required (or lapsed within last 12 months) A government backed organisation is hiring an OT Cyber Security Analyst with industry experience in Oil & Gas or Chemical. You must a strong background in SIEM & SOC integration coupled with OT security frameworks IEC 62443, NIST CSF, CAF, ISO 27001 to support the protection and continuous improvement of Operational Technology (OT) environments across critical infrastructure and industrial systems. This is an exciting opportunity to join a highly secure and technically advanced environment working on large-scale, mission-critical infrastructure programmes. The Role You will play a key role in implementing, operating, and improving OT cyber security controls across complex ICS and critical infrastructure environments. The role combines hands-on security engineering with governance, policy creation, monitoring, and operational support. Working closely with engineering teams, SOC providers, and managed service partners, you will help ensure OT systems remain secure, compliant, and aligned to industry frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001. Key Responsibilities Implement and maintain OT security controls across industrial environments Support OT network segmentation and secure remote access solutions Integrate OT environments into SIEM/SOC platforms Develop and tune OT threat detection rules Conduct OT security assessments, gap analysis, and remediation planning Support OT incident response and investigation activities Collaborate with engineering and operations teams to implement secure changes Produce governance documentation, standards, and reporting artefacts Track OT security maturity and continuous improvement initiatives Essential Experience Previous experience within OT/ICS or critical infrastructure environments Background within sectors such as oil & gas, rail, utilities, manufacturing, or chemical processing Strong understanding of OT security frameworks including IEC 62443, NIST CSF, CAF, and ISO 27001 Experience implementing OT security strategies, controls, and standards Knowledge of industrial networks, segmentation, and OT protocols Experience working with engineering and operational technology teams Strong documentation and stakeholder communication skills Familiarity with SIEM/SOC integration within OT environments Active SC Clearance (or lapsed within the last 12 months) Maximum 2 week notice period Desirable OT asset discovery and monitoring tool experience Exposure to NIS regulations / UK CAF compliance Experience with ITSM and service delivery processes One stage interview process, via MS Teams.
Jun 12, 2026
Contractor
OT Cyber Security Analyst Culham, Oxfordshire (2 days onsite per week) 50/hour Umbrella 36.43/hour PAYE Contract until 18th December 2026 Active SC Clearance Required (or lapsed within last 12 months) A government backed organisation is hiring an OT Cyber Security Analyst with industry experience in Oil & Gas or Chemical. You must a strong background in SIEM & SOC integration coupled with OT security frameworks IEC 62443, NIST CSF, CAF, ISO 27001 to support the protection and continuous improvement of Operational Technology (OT) environments across critical infrastructure and industrial systems. This is an exciting opportunity to join a highly secure and technically advanced environment working on large-scale, mission-critical infrastructure programmes. The Role You will play a key role in implementing, operating, and improving OT cyber security controls across complex ICS and critical infrastructure environments. The role combines hands-on security engineering with governance, policy creation, monitoring, and operational support. Working closely with engineering teams, SOC providers, and managed service partners, you will help ensure OT systems remain secure, compliant, and aligned to industry frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001. Key Responsibilities Implement and maintain OT security controls across industrial environments Support OT network segmentation and secure remote access solutions Integrate OT environments into SIEM/SOC platforms Develop and tune OT threat detection rules Conduct OT security assessments, gap analysis, and remediation planning Support OT incident response and investigation activities Collaborate with engineering and operations teams to implement secure changes Produce governance documentation, standards, and reporting artefacts Track OT security maturity and continuous improvement initiatives Essential Experience Previous experience within OT/ICS or critical infrastructure environments Background within sectors such as oil & gas, rail, utilities, manufacturing, or chemical processing Strong understanding of OT security frameworks including IEC 62443, NIST CSF, CAF, and ISO 27001 Experience implementing OT security strategies, controls, and standards Knowledge of industrial networks, segmentation, and OT protocols Experience working with engineering and operational technology teams Strong documentation and stakeholder communication skills Familiarity with SIEM/SOC integration within OT environments Active SC Clearance (or lapsed within the last 12 months) Maximum 2 week notice period Desirable OT asset discovery and monitoring tool experience Exposure to NIS regulations / UK CAF compliance Experience with ITSM and service delivery processes One stage interview process, via MS Teams.
Junior Penetration Tester Position Description CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 1700 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. This is a good opportunity for a junior penetration tester to work alongside and learn from experienced penetration testers (CHECK Team Members and CHECK Team Leaders) at CGI, joining the Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long-established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. Your future duties and responsibilities • Deliver end to end penetration testing engagements across web applications and infrastructure domains, from initial client engagement and scoping through to reporting and client aftercare. • Participate in client interactions including scoping discussions, requirements gathering, and contribution to proposals and statements of work. • Conduct penetration tests using structured methodologies and industry recognised approaches. • Deliver engagements as part of a collaborative team rather than individually, leveraging shared expertise to enhance assessment quality and support continuous learning. • Produce high quality technical documents (including reports and technical proposals), covering detailed technical content and executive level summaries, in line with internal standards. • Engage with the internal QA process to support report quality and ongoing development. • Maintain strong communication throughout engagements, including client calls, progress updates, and formal debrief sessions. Required qualifications to be successful in this role Essential: • Hack the Box Certified Penetration Testing Specialist (CPTS) or OffSec Certified Professional (OSCP) • Commitment to working towards NCSC CHECK Team Member (CTM) status Desirable: • CREST Practitioner Security Analyst (CPSA) • CREST Registered Penetration Tester (CRT) • Cyber Scheme Team Member (CSTM) • Certified Red Team Operator (CRTO) • Practitioner Cyber Security Professional (PraCSP) • Previous penetration testing experience is advantageous but not mandatory. Structured training and mentoring will be provided. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Jun 12, 2026
Full time
Junior Penetration Tester Position Description CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 1700 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. This is a good opportunity for a junior penetration tester to work alongside and learn from experienced penetration testers (CHECK Team Members and CHECK Team Leaders) at CGI, joining the Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long-established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. Your future duties and responsibilities • Deliver end to end penetration testing engagements across web applications and infrastructure domains, from initial client engagement and scoping through to reporting and client aftercare. • Participate in client interactions including scoping discussions, requirements gathering, and contribution to proposals and statements of work. • Conduct penetration tests using structured methodologies and industry recognised approaches. • Deliver engagements as part of a collaborative team rather than individually, leveraging shared expertise to enhance assessment quality and support continuous learning. • Produce high quality technical documents (including reports and technical proposals), covering detailed technical content and executive level summaries, in line with internal standards. • Engage with the internal QA process to support report quality and ongoing development. • Maintain strong communication throughout engagements, including client calls, progress updates, and formal debrief sessions. Required qualifications to be successful in this role Essential: • Hack the Box Certified Penetration Testing Specialist (CPTS) or OffSec Certified Professional (OSCP) • Commitment to working towards NCSC CHECK Team Member (CTM) status Desirable: • CREST Practitioner Security Analyst (CPSA) • CREST Registered Penetration Tester (CRT) • Cyber Scheme Team Member (CSTM) • Certified Red Team Operator (CRTO) • Practitioner Cyber Security Professional (PraCSP) • Previous penetration testing experience is advantageous but not mandatory. Structured training and mentoring will be provided. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Salary: £43,090 - £46,500 Contract Type: Permanent Working Pattern: This post is available on a full-time, part-time or job-share basis, and flexible working hours can be accommodated. Location: Darlington The Resilience & Resolution team is hiring a policy adviser to support the team's work in identifying and managing emerging risks to the financial stability of the UK, and preparing and responding where risks crystalise. About the Team The Resilience & Resolution (R&R) team works at the heart of government, partnering with the Bank of England, financial regulators and departments across Whitehall to spot risks to the financial sector and lead the Treasury's response when issues arise. It's a fast-paced, high-profile team with regular exposure to senior officials and ministers. We're a friendly and inclusive team that genuinely prioritises wellbeing, supporting you to deliver while maintaining a healthy work/life balance. About the Job This is a varied and stretching role, offering the chance to work across a broad range of high-profile policy issues and build strong stakeholder relationships. Your work will directly support UK national security, reflecting HMT's role as Lead Government Department for the finance sector. In this role, you will: Provide expert advice on cyber security issues in the financial sector, shaping policy across HMT and wider government. You'll develop and own policy in areas such as cyber legislation, ransomware and artificial intelligence. Build and maintain strong relationships with key stakeholders across the Bank of England, regulators, national security partners and government departments to help deliver HMT's objectives. Represent HMT internationally, including at G7 Cyber Experts' Group workstreams, and lead engagement with key partners such as the Five Eyes to influence the global resilience agenda. Play an active role in responding to operational incidents, including cyber attacks, to help minimise impacts on the financial sector and consumers. The team's work is fast-moving and diverse - from designing policy, to running war-game exercises, to working with international partners. You'll also have regular opportunities to contribute to advice for senior officials and ministers, making this a great role for someone curious, proactive and keen to make an impact. About You We're looking for someone who can build strong relationships across teams and use those connections to move work forward. You'll be confident working with complex information, able to weigh up different options and clearly explain your recommendations. You'll also be comfortable delivering at pace, managing competing priorities and staying focused when demands shift. Some of the Benefits our people love! 25 days annual leave (rising to 30 after 5 years), plus 8 public holidays and the King's birthday (unless you have a legacy arrangement as an existing Civil Servant). Additionally, we operate flexitime systems, allowing employees to take up to an additional 2 days off each month Flexible working patterns (part-time, job-share, condensed hours) Generous parental and adoption leave packages Access to a generous Defined Benefit pension scheme with employer contributions of 28.97% Access to a cycle-to-work salary sacrifice scheme and season ticket advances A range of active staff networks, based around interests (e.g. analysts, music society, sports and social club) and diversity For more information about the role and how to apply, please follow the apply link. If you need any reasonable adjustments to take part in the selection process, please tell us about this in your online application form, or speak to the recruitment team at .
Jun 12, 2026
Full time
Salary: £43,090 - £46,500 Contract Type: Permanent Working Pattern: This post is available on a full-time, part-time or job-share basis, and flexible working hours can be accommodated. Location: Darlington The Resilience & Resolution team is hiring a policy adviser to support the team's work in identifying and managing emerging risks to the financial stability of the UK, and preparing and responding where risks crystalise. About the Team The Resilience & Resolution (R&R) team works at the heart of government, partnering with the Bank of England, financial regulators and departments across Whitehall to spot risks to the financial sector and lead the Treasury's response when issues arise. It's a fast-paced, high-profile team with regular exposure to senior officials and ministers. We're a friendly and inclusive team that genuinely prioritises wellbeing, supporting you to deliver while maintaining a healthy work/life balance. About the Job This is a varied and stretching role, offering the chance to work across a broad range of high-profile policy issues and build strong stakeholder relationships. Your work will directly support UK national security, reflecting HMT's role as Lead Government Department for the finance sector. In this role, you will: Provide expert advice on cyber security issues in the financial sector, shaping policy across HMT and wider government. You'll develop and own policy in areas such as cyber legislation, ransomware and artificial intelligence. Build and maintain strong relationships with key stakeholders across the Bank of England, regulators, national security partners and government departments to help deliver HMT's objectives. Represent HMT internationally, including at G7 Cyber Experts' Group workstreams, and lead engagement with key partners such as the Five Eyes to influence the global resilience agenda. Play an active role in responding to operational incidents, including cyber attacks, to help minimise impacts on the financial sector and consumers. The team's work is fast-moving and diverse - from designing policy, to running war-game exercises, to working with international partners. You'll also have regular opportunities to contribute to advice for senior officials and ministers, making this a great role for someone curious, proactive and keen to make an impact. About You We're looking for someone who can build strong relationships across teams and use those connections to move work forward. You'll be confident working with complex information, able to weigh up different options and clearly explain your recommendations. You'll also be comfortable delivering at pace, managing competing priorities and staying focused when demands shift. Some of the Benefits our people love! 25 days annual leave (rising to 30 after 5 years), plus 8 public holidays and the King's birthday (unless you have a legacy arrangement as an existing Civil Servant). Additionally, we operate flexitime systems, allowing employees to take up to an additional 2 days off each month Flexible working patterns (part-time, job-share, condensed hours) Generous parental and adoption leave packages Access to a generous Defined Benefit pension scheme with employer contributions of 28.97% Access to a cycle-to-work salary sacrifice scheme and season ticket advances A range of active staff networks, based around interests (e.g. analysts, music society, sports and social club) and diversity For more information about the role and how to apply, please follow the apply link. If you need any reasonable adjustments to take part in the selection process, please tell us about this in your online application form, or speak to the recruitment team at .
SOC Analyst Position Description At CGI, you will play a vital role in protecting critical systems and enabling secure digital transformation for high-profile clients. Working within our Cyber Security Service, you will help detect, analyse, and respond to evolving threats, contributing to resilient, high-performing environments. We combine proven tools with advanced technologies to deliver measurable impact, while fostering a culture where you are trusted to take ownership, encouraged to innovate, and supported to grow your expertise. This is an opportunity to develop hands-on capability, influence security outcomes, and be part of a collaborative team shaping the future of cyber defence. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. The SOC Analyst will be joining an established SOC Team of eight years. The SOC analyst will be the first to respond to cyber security incidents. They will be required to report on cyber threats and will work as part of an expanding security team, working alongside security managers and cybersecurity engineers The SOC utilise both tried and tested tooling and state of the art technologies and methods to ensure we provide the best level of service and protection to our prestigious list of clients. Our client base covers a wide range of verticals from Government, MOD and CNI through to companies that are easily recognisable as household names. The SOC is a 24x7x365 operation therefore the SOC Analyst Team works shifts on a 2 Days, 2 Nights 4 Rest Days. This is a Hybrid Working position where the dayshift is operated from a CGI office. Therefore it is expected that two days per week will be spent in an office with colleagues. Security Clearance Required. Due to the nature of the work and the security clearance required we can only accept UK Nationals with single nationality Your future duties and responsibilities The role will require someone with an analytical mindset and a keen eye for detail to investigate alerts, piece together information to build a bigger picture and provide suitable remediation steps for customers. Monitoring our SIEM (Security Incident and Event Management) and SOAR (Security Orchestration, Automation and Response) tools to detect suspicious events and abnormal activities. . Triaging events through validating suspicious events and incidents by use of dedicated tools. . Ability to escalate with effective reporting to level 3 SOC Analyst or Seniors Stakeholders. . Documenting and managing incident cases to utilise information for stakeholder engagement to provide insight and intelligent recommendations. . Providing incident management through effective monitoring, reporting and technical guidance for successful resolution. . Production of the monthly security reports. Required qualifications to be successful in this role Be willing to learn how to resolve technical issues. . Demonstrate an interest in Cyber Security. . Be detail orientated and show the ability to take a structured approach to procedures and working instructions. . Have an aptitude for understanding and analysing data for troubleshooting purposes. . Strong written communication, critical thinking, and analysis skills. . Understanding of key security concepts and attack types such as phishing, malware, vulnerabilities, Cyber Kill Chain, and attack stages. . Understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP . An analytical mindset, capable of digesting a wide range of information and making practical judgements based on available data and context. . A desire to keep learning with a curious and creative mindset. . Knowledge of Security Tooling (ArcSight, Splunk, MS Sentinel, FortiSIEM, SwimLane, QRadar LogPoint) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Jun 12, 2026
Full time
SOC Analyst Position Description At CGI, you will play a vital role in protecting critical systems and enabling secure digital transformation for high-profile clients. Working within our Cyber Security Service, you will help detect, analyse, and respond to evolving threats, contributing to resilient, high-performing environments. We combine proven tools with advanced technologies to deliver measurable impact, while fostering a culture where you are trusted to take ownership, encouraged to innovate, and supported to grow your expertise. This is an opportunity to develop hands-on capability, influence security outcomes, and be part of a collaborative team shaping the future of cyber defence. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. The SOC Analyst will be joining an established SOC Team of eight years. The SOC analyst will be the first to respond to cyber security incidents. They will be required to report on cyber threats and will work as part of an expanding security team, working alongside security managers and cybersecurity engineers The SOC utilise both tried and tested tooling and state of the art technologies and methods to ensure we provide the best level of service and protection to our prestigious list of clients. Our client base covers a wide range of verticals from Government, MOD and CNI through to companies that are easily recognisable as household names. The SOC is a 24x7x365 operation therefore the SOC Analyst Team works shifts on a 2 Days, 2 Nights 4 Rest Days. This is a Hybrid Working position where the dayshift is operated from a CGI office. Therefore it is expected that two days per week will be spent in an office with colleagues. Security Clearance Required. Due to the nature of the work and the security clearance required we can only accept UK Nationals with single nationality Your future duties and responsibilities The role will require someone with an analytical mindset and a keen eye for detail to investigate alerts, piece together information to build a bigger picture and provide suitable remediation steps for customers. Monitoring our SIEM (Security Incident and Event Management) and SOAR (Security Orchestration, Automation and Response) tools to detect suspicious events and abnormal activities. . Triaging events through validating suspicious events and incidents by use of dedicated tools. . Ability to escalate with effective reporting to level 3 SOC Analyst or Seniors Stakeholders. . Documenting and managing incident cases to utilise information for stakeholder engagement to provide insight and intelligent recommendations. . Providing incident management through effective monitoring, reporting and technical guidance for successful resolution. . Production of the monthly security reports. Required qualifications to be successful in this role Be willing to learn how to resolve technical issues. . Demonstrate an interest in Cyber Security. . Be detail orientated and show the ability to take a structured approach to procedures and working instructions. . Have an aptitude for understanding and analysing data for troubleshooting purposes. . Strong written communication, critical thinking, and analysis skills. . Understanding of key security concepts and attack types such as phishing, malware, vulnerabilities, Cyber Kill Chain, and attack stages. . Understanding of networking principles including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP . An analytical mindset, capable of digesting a wide range of information and making practical judgements based on available data and context. . A desire to keep learning with a curious and creative mindset. . Knowledge of Security Tooling (ArcSight, Splunk, MS Sentinel, FortiSIEM, SwimLane, QRadar LogPoint) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
OT Cyber Security Analyst Culham, Oxfordshire (2 days onsite per week) £50/hour Umbrella | £36.43/hour PAYE Contract until 18th December 2026 Active SC Clearance Required (or lapsed within last 12 months) A government backed organisation is hiring an OT Cyber Security Analyst with industry experience in Oil & Gas or Chemical. You must a strong background in SIEM & SOC integration coupled with OT security frameworks IEC 62443, NIST CSF, CAF, ISO 27001 to support the protection and continuous improvement of Operational Technology (OT) environments across critical infrastructure and industrial systems. This is an exciting opportunity to join a highly secure and technically advanced environment working on large-scale, mission-critical infrastructure programmes. The Role You will play a key role in implementing, operating, and improving OT cyber security controls across complex ICS and critical infrastructure environments. The role combines hands-on security engineering with governance, policy creation, monitoring, and operational support. Working closely with engineering teams, SOC providers, and managed service partners, you will help ensure OT systems remain secure, compliant, and aligned to industry frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001. Key Responsibilities Implement and maintain OT security controls across industrial environments Support OT network segmentation and secure remote access solutions Integrate OT environments into SIEM/SOC platforms Develop and tune OT threat detection rules Conduct OT security assessments, gap analysis, and remediation planning Support OT incident response and investigation activities Collaborate with engineering and operations teams to implement secure changes Produce governance documentation, standards, and reporting artefacts Track OT security maturity and continuous improvement initiatives Essential Experience Previous experience within OT/ICS or critical infrastructure environments Background within sectors such as oil & gas, rail, utilities, manufacturing, or chemical processing Strong understanding of OT security frameworks including IEC 62443, NIST CSF, CAF, and ISO 27001 Experience implementing OT security strategies, controls, and standards Knowledge of industrial networks, segmentation, and OT protocols Experience working with engineering and operational technology teams Strong documentation and stakeholder communication skills Familiarity with SIEM/SOC integration within OT environments Active SC Clearance (or lapsed within the last 12 months) Maximum 2 week notice period Desirable OT asset discovery and monitoring tool experience Exposure to NIS regulations/UK CAF compliance Experience with ITSM and service delivery processes One stage interview process, via MS Teams.
Jun 12, 2026
Contractor
OT Cyber Security Analyst Culham, Oxfordshire (2 days onsite per week) £50/hour Umbrella | £36.43/hour PAYE Contract until 18th December 2026 Active SC Clearance Required (or lapsed within last 12 months) A government backed organisation is hiring an OT Cyber Security Analyst with industry experience in Oil & Gas or Chemical. You must a strong background in SIEM & SOC integration coupled with OT security frameworks IEC 62443, NIST CSF, CAF, ISO 27001 to support the protection and continuous improvement of Operational Technology (OT) environments across critical infrastructure and industrial systems. This is an exciting opportunity to join a highly secure and technically advanced environment working on large-scale, mission-critical infrastructure programmes. The Role You will play a key role in implementing, operating, and improving OT cyber security controls across complex ICS and critical infrastructure environments. The role combines hands-on security engineering with governance, policy creation, monitoring, and operational support. Working closely with engineering teams, SOC providers, and managed service partners, you will help ensure OT systems remain secure, compliant, and aligned to industry frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001. Key Responsibilities Implement and maintain OT security controls across industrial environments Support OT network segmentation and secure remote access solutions Integrate OT environments into SIEM/SOC platforms Develop and tune OT threat detection rules Conduct OT security assessments, gap analysis, and remediation planning Support OT incident response and investigation activities Collaborate with engineering and operations teams to implement secure changes Produce governance documentation, standards, and reporting artefacts Track OT security maturity and continuous improvement initiatives Essential Experience Previous experience within OT/ICS or critical infrastructure environments Background within sectors such as oil & gas, rail, utilities, manufacturing, or chemical processing Strong understanding of OT security frameworks including IEC 62443, NIST CSF, CAF, and ISO 27001 Experience implementing OT security strategies, controls, and standards Knowledge of industrial networks, segmentation, and OT protocols Experience working with engineering and operational technology teams Strong documentation and stakeholder communication skills Familiarity with SIEM/SOC integration within OT environments Active SC Clearance (or lapsed within the last 12 months) Maximum 2 week notice period Desirable OT asset discovery and monitoring tool experience Exposure to NIS regulations/UK CAF compliance Experience with ITSM and service delivery processes One stage interview process, via MS Teams.
Solus Accident Repair Centres
Birchanger, Hertfordshire
Overview At Solus, we are strengthening our technology governance and cyber resilience as we continue to grow. We are looking for an IT Governance, Risk and Compliance (GRC) Analyst to help us maintain a secure, well governed and compliant technology environment across the business. This is a great role for someone who enjoys analysing detail, challenging constructively, influencing stakeholders and helping teams make confident, risk-based decisions. About the role As our IT GRC Analyst, you will support the Cyber Security, Risk and Assurance function with a mixture of governance activity, assurance reviews, supplier assessments and compliance oversight. You will help us meet Aviva Group requirements, regulatory expectations and industry standards while ensuring our technology risks are understood and well managed. Location: Hybrid (Stansted - 3 days per week, 2 days remote) Responsibilities Maintain and improve our IT risk register, ensuring risks are clear, evidenced and tracked Support risk owners with guidance on controls, remediation and governance requirements Complete compliance reviews, control testing and assurance activities Produce risk and compliance reporting for leadership forums Carry out supplier assurance assessments, recommend improvements and escalate risk where needed Keep IT policies and standards up to date and aligned with Aviva and recognised frameworks Provide clear insight to non technical colleagues on risk, controls and potential impacts Support Group assurance activity and represent Solus in relevant forums This is an individual contributor role with a high level of ownership and plenty of opportunity to influence how we operate. Qualifications You will thrive in this role if you have: Knowledge of GRC frameworks such as ISO 27001, NIST CSF, Cyber Essentials or DPA Experience in risk management, governance or cyber/security assurance The ability to analyse complex information and turn it into clear, meaningful insight Confidence challenging and advising colleagues at all levels Strong communication and stakeholder management skills Certifications such as CISM, CRISC or CGRC are desirable but not essential. Who are Solus? Solus, who are owned by Aviva, are one of the UK leaders in vehicle repairs, returning cars to the road in just 11 days on average and a 4.6/5 star customer rating. With an award-winning apprenticeship programme and winners of other recognised industry awards Solus are proud to be shaping the future of vehicle repair. Why Join Solus? We have so much to offer when it comes to being a Solus colleague: Competitive salary based on location, skills, experience, and qualifications. Bonus opportunity tied to your performance and the overall success of Solus. Company pension scheme with employer contributions. 33 days' holiday (including bank holidays), with the option to buy or sell up to 5 days. Save money with up to 40% discount on Aviva products and other retailer discounts. Share in Aviva's success through the Aviva Save As You Earn scheme. Supportive policies including parental and carer's leave. Wellbeing focus with tools like Group Income Protection and 24/7 GP access. At Solus, we value inclusivity and welcome all applicants. If you're excited but don't tick every box, we encourage you to apply-your unique skills might be just what we need. We guarantee an interview for disabled applicants meeting the minimum criteria-just email us after applying to let us know. Ready to join us? Apply online today, and our team will be in touch within 14 days.
Jun 12, 2026
Full time
Overview At Solus, we are strengthening our technology governance and cyber resilience as we continue to grow. We are looking for an IT Governance, Risk and Compliance (GRC) Analyst to help us maintain a secure, well governed and compliant technology environment across the business. This is a great role for someone who enjoys analysing detail, challenging constructively, influencing stakeholders and helping teams make confident, risk-based decisions. About the role As our IT GRC Analyst, you will support the Cyber Security, Risk and Assurance function with a mixture of governance activity, assurance reviews, supplier assessments and compliance oversight. You will help us meet Aviva Group requirements, regulatory expectations and industry standards while ensuring our technology risks are understood and well managed. Location: Hybrid (Stansted - 3 days per week, 2 days remote) Responsibilities Maintain and improve our IT risk register, ensuring risks are clear, evidenced and tracked Support risk owners with guidance on controls, remediation and governance requirements Complete compliance reviews, control testing and assurance activities Produce risk and compliance reporting for leadership forums Carry out supplier assurance assessments, recommend improvements and escalate risk where needed Keep IT policies and standards up to date and aligned with Aviva and recognised frameworks Provide clear insight to non technical colleagues on risk, controls and potential impacts Support Group assurance activity and represent Solus in relevant forums This is an individual contributor role with a high level of ownership and plenty of opportunity to influence how we operate. Qualifications You will thrive in this role if you have: Knowledge of GRC frameworks such as ISO 27001, NIST CSF, Cyber Essentials or DPA Experience in risk management, governance or cyber/security assurance The ability to analyse complex information and turn it into clear, meaningful insight Confidence challenging and advising colleagues at all levels Strong communication and stakeholder management skills Certifications such as CISM, CRISC or CGRC are desirable but not essential. Who are Solus? Solus, who are owned by Aviva, are one of the UK leaders in vehicle repairs, returning cars to the road in just 11 days on average and a 4.6/5 star customer rating. With an award-winning apprenticeship programme and winners of other recognised industry awards Solus are proud to be shaping the future of vehicle repair. Why Join Solus? We have so much to offer when it comes to being a Solus colleague: Competitive salary based on location, skills, experience, and qualifications. Bonus opportunity tied to your performance and the overall success of Solus. Company pension scheme with employer contributions. 33 days' holiday (including bank holidays), with the option to buy or sell up to 5 days. Save money with up to 40% discount on Aviva products and other retailer discounts. Share in Aviva's success through the Aviva Save As You Earn scheme. Supportive policies including parental and carer's leave. Wellbeing focus with tools like Group Income Protection and 24/7 GP access. At Solus, we value inclusivity and welcome all applicants. If you're excited but don't tick every box, we encourage you to apply-your unique skills might be just what we need. We guarantee an interview for disabled applicants meeting the minimum criteria-just email us after applying to let us know. Ready to join us? Apply online today, and our team will be in touch within 14 days.
Cyber Security Analyst Permanent - 42k - 48k + strong benefits Location: Hybrid - South Wales Your new company: I am looking to recruit a Cyber Security Analyst to join a leader in the utilities space. The business has been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback. The role responsibilities: This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day-to-day assistance with security tasks. You will help deliver a strategy which will enhance the organisations security resilience, proactively contributing to mitigating threats, at a good time when the company are expanding and investing in their IT and cyber security estate. Key parts of the role: You will require knowledge and understanding of attack and exploitation techniques and adversarial TTP's. Help to provide resilience to our threat monitoring and response capabilities. Handle security incident response with internal teams and other third parties to ensure that the incident response life cycle is undertaken to a high standard. Monitor and respond to security incidents, alerts and breaches Monitor and track remediation to all identified vulnerabilities Monitor the risks using security tooling to carry out routine checks. Monitor and report on user behavioural analysis such as awareness training and social engineering campaigns. Stay informed about emerging cyber threats and vulnerabilities. You will need: Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and threat management products and managing their operation. Good knowledge and awareness of global Information Security Standards, including ISO27k, CIS, CAF, NIST CSF. Ability to work independently and as part of a team. Excellent communication and interpersonal skills. Ability to obtain UK Security Clearance What you'll get in return: Salary of between 42k- 48k Hybrid working 2/3 days in South Wales per week Possible bonus 5% pension contribution from you, the company pays 10% Enhanced pay for parental leave And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Jun 11, 2026
Full time
Cyber Security Analyst Permanent - 42k - 48k + strong benefits Location: Hybrid - South Wales Your new company: I am looking to recruit a Cyber Security Analyst to join a leader in the utilities space. The business has been investing in their cyber security and IT estate and are continuing to grow and enhance their security posture. The company has a strong reputation, and we have placed numerous people into careers there, with strong feedback. The role responsibilities: This is an interesting opportunity where you will work with the cyber resilience team and assist with the Security Operations function, including EDR, SIEM, gathering security control framework evidence and general day-to-day assistance with security tasks. You will help deliver a strategy which will enhance the organisations security resilience, proactively contributing to mitigating threats, at a good time when the company are expanding and investing in their IT and cyber security estate. Key parts of the role: You will require knowledge and understanding of attack and exploitation techniques and adversarial TTP's. Help to provide resilience to our threat monitoring and response capabilities. Handle security incident response with internal teams and other third parties to ensure that the incident response life cycle is undertaken to a high standard. Monitor and respond to security incidents, alerts and breaches Monitor and track remediation to all identified vulnerabilities Monitor the risks using security tooling to carry out routine checks. Monitor and report on user behavioural analysis such as awareness training and social engineering campaigns. Stay informed about emerging cyber threats and vulnerabilities. You will need: Good knowledge and understanding of SOC processes and procedures. Basic experience using SIEM systems such as MS Sentinel, LogRhythm, AlienVault, Splunk Good understanding of incident response stages and handling. Basic knowledge and experience using leading endpoint detection and threat management products and managing their operation. Good knowledge and awareness of global Information Security Standards, including ISO27k, CIS, CAF, NIST CSF. Ability to work independently and as part of a team. Excellent communication and interpersonal skills. Ability to obtain UK Security Clearance What you'll get in return: Salary of between 42k- 48k Hybrid working 2/3 days in South Wales per week Possible bonus 5% pension contribution from you, the company pays 10% Enhanced pay for parental leave And more! Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
We re Hiring: Senior Cyber Security Analyst Corsham I m currently looking for a Senior Cyber Security Analyst to join our SOC team at Computer Network Defence Ltd (CND). This is a key hire within our MSSP Security Operations Centre, offering the opportunity to take a lead role in incident analysis, client engagement, and mentoring junior analysts, while shaping how the SOC continues to evolve. The Role As a Senior Cyber Security Analyst, you will support the SOC Team Lead and play a central role in monitoring, triaging, and investigating security events across a range of client environments. You ll be working across SIEM platforms, vulnerability management tools, threat intelligence sources, and network telemetry to deliver effective detection and response. You will also take on client-facing responsibilities, presenting findings, trends, and insights, as well as contributing to reporting and continuous improvement within the SOC. Key Responsibilities Monitor, triage and investigate security alerts across multiple platforms Conduct in-depth incident analysis and support ongoing client investigations Act as deputy to the SOC Team Lead when required Review and assess escalated Tier 2 alerts for urgency and impact Deliver weekly and monthly reporting to clients and stakeholders Communicate security findings and trends directly to clients Support vulnerability management analysis and remediation efforts Lead false-positive reduction and SIEM tuning activities Mentor and support development of Tier 1 and junior analysts Contribute to SOC process improvement and operational efficiency Participate in incident response activities as part of the wider team Lead internal SOC initiatives and projects where required Create and deliver presentations for clients and internal teams What We re Looking For Strong experience within a SOC or cyber security operations environment Proven ability to investigate and analyse complex security incidents Experience with SIEM platforms, threat intelligence, and security tooling Strong stakeholder and client communication skills Ability to mentor and develop junior team members Proactive approach to problem-solving and continuous improvement Good understanding of current cyber threats, tactics and trends Package & Details Location: Isle of Man (relocation package)/Corsham Hours: 37.5 hours per week, plus on-call rota Working pattern: Monday to Friday, 09 00 (early Friday finish at 16:00, workload permitting) Clearance: SC Cleared This is a great opportunity for someone looking to step into a more senior, visible role within a growing SOC, with real influence over both technical delivery and team development.
Jun 11, 2026
Full time
We re Hiring: Senior Cyber Security Analyst Corsham I m currently looking for a Senior Cyber Security Analyst to join our SOC team at Computer Network Defence Ltd (CND). This is a key hire within our MSSP Security Operations Centre, offering the opportunity to take a lead role in incident analysis, client engagement, and mentoring junior analysts, while shaping how the SOC continues to evolve. The Role As a Senior Cyber Security Analyst, you will support the SOC Team Lead and play a central role in monitoring, triaging, and investigating security events across a range of client environments. You ll be working across SIEM platforms, vulnerability management tools, threat intelligence sources, and network telemetry to deliver effective detection and response. You will also take on client-facing responsibilities, presenting findings, trends, and insights, as well as contributing to reporting and continuous improvement within the SOC. Key Responsibilities Monitor, triage and investigate security alerts across multiple platforms Conduct in-depth incident analysis and support ongoing client investigations Act as deputy to the SOC Team Lead when required Review and assess escalated Tier 2 alerts for urgency and impact Deliver weekly and monthly reporting to clients and stakeholders Communicate security findings and trends directly to clients Support vulnerability management analysis and remediation efforts Lead false-positive reduction and SIEM tuning activities Mentor and support development of Tier 1 and junior analysts Contribute to SOC process improvement and operational efficiency Participate in incident response activities as part of the wider team Lead internal SOC initiatives and projects where required Create and deliver presentations for clients and internal teams What We re Looking For Strong experience within a SOC or cyber security operations environment Proven ability to investigate and analyse complex security incidents Experience with SIEM platforms, threat intelligence, and security tooling Strong stakeholder and client communication skills Ability to mentor and develop junior team members Proactive approach to problem-solving and continuous improvement Good understanding of current cyber threats, tactics and trends Package & Details Location: Isle of Man (relocation package)/Corsham Hours: 37.5 hours per week, plus on-call rota Working pattern: Monday to Friday, 09 00 (early Friday finish at 16:00, workload permitting) Clearance: SC Cleared This is a great opportunity for someone looking to step into a more senior, visible role within a growing SOC, with real influence over both technical delivery and team development.
About the opportunity Complete the free training, gain a qualification and career guidance - no brainer! Are you ready to launch a career in cyber security? Netcom Training s fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. Our learners have gone on to roles such as IT support, second line support, junior development, cyber security analysis and business analyst positions, working with companies across tech, logistics, public services and digital sectors. Complete the with, helping you start your career protecting businesses, data and digital systems. Course Details Duration: 5 weeks Format: Online, practical workshops Schedule: Mon-Fri 9:45AM - 2:45PM What you ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills and behaviours for the sector Protection: Gain practical knowledge to protect and secure digital environments Potential Roles: Cyber Security Analyst IT Support Technician Junior Penetration Tester SOC Analyst Eligibility To apply, you must: Live in the Sheffield area Be aged 19 or over Earn below the gross annual wage cap of £24,570 Not currently be undertaking other government-funded training Not be in the UK on a student, graduate, postgraduate, or sponsored visa, or as a dependent Cost This is a fully-funded course with no fees complete the training, gain essential cyber security skills.
Jun 11, 2026
Full time
About the opportunity Complete the free training, gain a qualification and career guidance - no brainer! Are you ready to launch a career in cyber security? Netcom Training s fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. Our learners have gone on to roles such as IT support, second line support, junior development, cyber security analysis and business analyst positions, working with companies across tech, logistics, public services and digital sectors. Complete the with, helping you start your career protecting businesses, data and digital systems. Course Details Duration: 5 weeks Format: Online, practical workshops Schedule: Mon-Fri 9:45AM - 2:45PM What you ll learn Principles: Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills and behaviours for the sector Protection: Gain practical knowledge to protect and secure digital environments Potential Roles: Cyber Security Analyst IT Support Technician Junior Penetration Tester SOC Analyst Eligibility To apply, you must: Live in the Sheffield area Be aged 19 or over Earn below the gross annual wage cap of £24,570 Not currently be undertaking other government-funded training Not be in the UK on a student, graduate, postgraduate, or sponsored visa, or as a dependent Cost This is a fully-funded course with no fees complete the training, gain essential cyber security skills.
Cyber Security Officer Based in Broxbourne, Hertfordshire Permanent, full-time, 37 hours per week Salary: £46,631 - £51,813 We have an exciting opportunity for a cybersecurity professional with experience in information security, risk management, and compliance, along with the ability to communicate complex security matters to a range of stakeholders. In this role, you ll help protect our systems, data and people by supporting and enhancing our cybersecurity framework. Working closely with colleagues, suppliers and senior stakeholders, you ll co-ordinate cyber risk management activities, maintain key security controls and ensure compliance with relevant standards and best practice. You ll play an important role in strengthening our cyber resilience, leading security awareness initiatives, supporting incident response and helping to embed a security-first culture across the business. Through your work, you ll help ensure security considerations are integrated into projects, processes and decision-making, enabling us to operate safely and confidently in an evolving threat landscape. We re looking for someone with - Experience in an information security and/or cybersecurity role - Experience producing clear policies, procedures, risk registers and reports for non-technical audiences - Good working knowledge of Microsoft 365 and/or Azure AD (Entra ID), endpoint security, email security and core network concepts - An understanding of UK data protection principles and how security controls support compliance - Strong stakeholder management skills - A relevant qualification(s) or evidence of continuous professional development (e.g., Cyber Essentials/Plus familiarity, CompTIA Security+, SC-900, ISO 27001 Foundation, or equivalent experience) A basic DBS check will be required for this role, which we will pay for. We re a social business, based in Turnford and across southeast Hertfordshire, helping local people by renting or selling affordable homes. We offer services designed to help our customers live comfortably in their homes, and we work to keep our buildings and estates maintained, offering support when money becomes an issue or when people get older. Our mission is to make a sustainable, positive change to the housing crisis for our customers and communities. We enjoy a benefits package that offers something for everyone, including - 27 days holiday per year plus bank holidays (pro rata for part-time colleagues). - Buy and sell holiday scheme. - Cross-organisational bonus scheme. - Up to 12% pension contribution. - Life assurance cover. - Funded health cash plan or subsidised private medical insurance. - Discount vouchers. - Enhanced family leave. - Range of special leave. - Car loans, cycle to work and electric car lease scheme. The closing date for this vacancy is 15th June 2026. We are a Disability Confident employer, which means that we offer an interview to a fair and proportionate number of disabled applicants who meet the minimum selection criteria for the job. Other organisations may call this role Cyber Security Analyst, Information Security Officer, Information Security Analyst, Cyber Security Specialist, IT Security Officer, IT Security Analyst, Cyber Risk Officer, or Security and Compliance Officer. We re committed to building an inclusive workplace where equity, diversity and inclusion are part of our culture, as we recognise the benefits of a diverse workforce. Our 3-year EDI strategy outlines how we ll achieve this. We strongly welcome applications from underrepresented groups and groups which are identified as a priority within our strategy, including LGBTQIA+, Black, Asian and Minority Ethnic communities, applicants with disabilities and people under 30. We understand that some candidates, particularly from certain groups, may hesitate to apply unless they meet every requirement. While we re looking for people with the right skills and experience, we also value diverse backgrounds and transferable skills. If you meet most of the criteria and believe you d thrive in the role, we encourage you to apply. All our vacancies are open to flexible working arrangements, something we are really proud of. The extent to which flexible working is possible will vary between jobs according to the needs of the business and our customers. So, if you d like to join us as a Cyber Security Officer, please apply via the button shown. This vacancy is being advertised by Webrecruit. The services advertised by Webrecruit are those of an Employment Agency.
Jun 11, 2026
Full time
Cyber Security Officer Based in Broxbourne, Hertfordshire Permanent, full-time, 37 hours per week Salary: £46,631 - £51,813 We have an exciting opportunity for a cybersecurity professional with experience in information security, risk management, and compliance, along with the ability to communicate complex security matters to a range of stakeholders. In this role, you ll help protect our systems, data and people by supporting and enhancing our cybersecurity framework. Working closely with colleagues, suppliers and senior stakeholders, you ll co-ordinate cyber risk management activities, maintain key security controls and ensure compliance with relevant standards and best practice. You ll play an important role in strengthening our cyber resilience, leading security awareness initiatives, supporting incident response and helping to embed a security-first culture across the business. Through your work, you ll help ensure security considerations are integrated into projects, processes and decision-making, enabling us to operate safely and confidently in an evolving threat landscape. We re looking for someone with - Experience in an information security and/or cybersecurity role - Experience producing clear policies, procedures, risk registers and reports for non-technical audiences - Good working knowledge of Microsoft 365 and/or Azure AD (Entra ID), endpoint security, email security and core network concepts - An understanding of UK data protection principles and how security controls support compliance - Strong stakeholder management skills - A relevant qualification(s) or evidence of continuous professional development (e.g., Cyber Essentials/Plus familiarity, CompTIA Security+, SC-900, ISO 27001 Foundation, or equivalent experience) A basic DBS check will be required for this role, which we will pay for. We re a social business, based in Turnford and across southeast Hertfordshire, helping local people by renting or selling affordable homes. We offer services designed to help our customers live comfortably in their homes, and we work to keep our buildings and estates maintained, offering support when money becomes an issue or when people get older. Our mission is to make a sustainable, positive change to the housing crisis for our customers and communities. We enjoy a benefits package that offers something for everyone, including - 27 days holiday per year plus bank holidays (pro rata for part-time colleagues). - Buy and sell holiday scheme. - Cross-organisational bonus scheme. - Up to 12% pension contribution. - Life assurance cover. - Funded health cash plan or subsidised private medical insurance. - Discount vouchers. - Enhanced family leave. - Range of special leave. - Car loans, cycle to work and electric car lease scheme. The closing date for this vacancy is 15th June 2026. We are a Disability Confident employer, which means that we offer an interview to a fair and proportionate number of disabled applicants who meet the minimum selection criteria for the job. Other organisations may call this role Cyber Security Analyst, Information Security Officer, Information Security Analyst, Cyber Security Specialist, IT Security Officer, IT Security Analyst, Cyber Risk Officer, or Security and Compliance Officer. We re committed to building an inclusive workplace where equity, diversity and inclusion are part of our culture, as we recognise the benefits of a diverse workforce. Our 3-year EDI strategy outlines how we ll achieve this. We strongly welcome applications from underrepresented groups and groups which are identified as a priority within our strategy, including LGBTQIA+, Black, Asian and Minority Ethnic communities, applicants with disabilities and people under 30. We understand that some candidates, particularly from certain groups, may hesitate to apply unless they meet every requirement. While we re looking for people with the right skills and experience, we also value diverse backgrounds and transferable skills. If you meet most of the criteria and believe you d thrive in the role, we encourage you to apply. All our vacancies are open to flexible working arrangements, something we are really proud of. The extent to which flexible working is possible will vary between jobs according to the needs of the business and our customers. So, if you d like to join us as a Cyber Security Officer, please apply via the button shown. This vacancy is being advertised by Webrecruit. The services advertised by Webrecruit are those of an Employment Agency.
Role: DV-Cleared Cyber Security Analyst / SOC Analyst Salary/Rate: £540-640 per day inside IR35 Location: on site Corsham 5x pw Contract Duration: contract until April 2027 We are currently looking for a Cyber Security Analyst / SOC Analyst for our government client. This Cyber Security Analyst / SOC Analyst role is based fully on site, 5 days per week in Corsham, over 13-hour shifts spanning days and nights, including weekends, 4 on 5 off, then 5 on 4 off. There is no further flexibility with the on-site requirement or office location. Security Clearance: Developed Vetting (DV Clearance) + sole UK national + Sensitive Post Check (which can take 3 months) The contract for this Cyber Security Analyst / SOC Analyst position is until April 2027, with potential to extend, operating inside IR35. This role is inside IR35 - Due to the service of the role, it will now be based on an Umbrella solution. Essential Skills / Experience required: Industry standard SOC Security qualifications (SANS, ISC2, etc.) Proven Tier 2/3 SOC Analyst experience (2 years+) Perform triage of security events ; determine scope, priority and impact, and make recommendations that enable expeditious remediation. Demonstratable experience working with SIEM technology and SIEM engineering (including tool configuration) i.e. ArcSight within an enterprise SOC. Experience in creation of use-cases, analytics and playbooks . An understanding of cloud Conduct real-time management of security incidents from detection to resolution. Technical Knowledge within anti-virus, networking, vulnerability management, encryption, Microsoft technologies, Linux. Knowledge of Information Security standards , legislation and practices, including GDPR & Data Protection Act 2018. Experience in dealing with a wide range of Information Security matters and operating in an ITIL based environment. Strong problem-solving ability, with flexibility to think creatively and adapt to and implement rapidly changing systems and services. Incident management experience and an ability to quickly tailor responses to deal with fast-moving situations. Highly desirable: Degree level qualification; preferably in technical, engineering or computing subject. Lead experience but would take a Tier 2 Analyst. Defence experience Role / Responsibilities: Responsible for supporting information security delivery work, including the development and implementation of Information Security Policies, Standards, processes and guidance. Responsibility for the security of Digital infrastructure by proactively analysing security threats/challenges/risks to the environment, including conducting penetration testing and compliance reviews monitoring of Information Security and information management to ensure compliance including reviewing and monitoring system and network logs for malicious activity or unacceptable use. If you are interested in the above role, please click Apply Now and send a CV for quick review. As a member of the Disability Confident Scheme, Circle and our Client guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group. Our client is proud to support the Armed Forces Covenant and as such, they guarantee to interview all veterans, spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where they have a high volume of ex-military candidates / military spouses, partners, who meet all of the essential criteria, they will interview the best candidates from within that group. If you qualify, please notify us on igs at circlerecruitment dot com. We will be in touch to discuss your suitability and arrange your guaranteed interview. Should you require reasonable adjustments at any point during the recruitment process, if there is a better way for us to communicate, please do let us know. Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
Jun 11, 2026
Contractor
Role: DV-Cleared Cyber Security Analyst / SOC Analyst Salary/Rate: £540-640 per day inside IR35 Location: on site Corsham 5x pw Contract Duration: contract until April 2027 We are currently looking for a Cyber Security Analyst / SOC Analyst for our government client. This Cyber Security Analyst / SOC Analyst role is based fully on site, 5 days per week in Corsham, over 13-hour shifts spanning days and nights, including weekends, 4 on 5 off, then 5 on 4 off. There is no further flexibility with the on-site requirement or office location. Security Clearance: Developed Vetting (DV Clearance) + sole UK national + Sensitive Post Check (which can take 3 months) The contract for this Cyber Security Analyst / SOC Analyst position is until April 2027, with potential to extend, operating inside IR35. This role is inside IR35 - Due to the service of the role, it will now be based on an Umbrella solution. Essential Skills / Experience required: Industry standard SOC Security qualifications (SANS, ISC2, etc.) Proven Tier 2/3 SOC Analyst experience (2 years+) Perform triage of security events ; determine scope, priority and impact, and make recommendations that enable expeditious remediation. Demonstratable experience working with SIEM technology and SIEM engineering (including tool configuration) i.e. ArcSight within an enterprise SOC. Experience in creation of use-cases, analytics and playbooks . An understanding of cloud Conduct real-time management of security incidents from detection to resolution. Technical Knowledge within anti-virus, networking, vulnerability management, encryption, Microsoft technologies, Linux. Knowledge of Information Security standards , legislation and practices, including GDPR & Data Protection Act 2018. Experience in dealing with a wide range of Information Security matters and operating in an ITIL based environment. Strong problem-solving ability, with flexibility to think creatively and adapt to and implement rapidly changing systems and services. Incident management experience and an ability to quickly tailor responses to deal with fast-moving situations. Highly desirable: Degree level qualification; preferably in technical, engineering or computing subject. Lead experience but would take a Tier 2 Analyst. Defence experience Role / Responsibilities: Responsible for supporting information security delivery work, including the development and implementation of Information Security Policies, Standards, processes and guidance. Responsibility for the security of Digital infrastructure by proactively analysing security threats/challenges/risks to the environment, including conducting penetration testing and compliance reviews monitoring of Information Security and information management to ensure compliance including reviewing and monitoring system and network logs for malicious activity or unacceptable use. If you are interested in the above role, please click Apply Now and send a CV for quick review. As a member of the Disability Confident Scheme, Circle and our Client guarantees to interview all candidates who have a disability and who meet all the essential criteria for the vacancy. In cases where we have a high volume of candidates who have a disability who meet all the essential criteria, we will interview the best candidates from within that group. Our client is proud to support the Armed Forces Covenant and as such, they guarantee to interview all veterans, spouses / partners of military personnel who meet all the essential criteria for the vacancy. In cases where they have a high volume of ex-military candidates / military spouses, partners, who meet all of the essential criteria, they will interview the best candidates from within that group. If you qualify, please notify us on igs at circlerecruitment dot com. We will be in touch to discuss your suitability and arrange your guaranteed interview. Should you require reasonable adjustments at any point during the recruitment process, if there is a better way for us to communicate, please do let us know. Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
Junior Cyber Security Consultant / Analyst An exciting opportunity for a Junior Cyber Security Consultant / Analyst to join a growing technology consultancy delivering cyber security, Microsoft 365 security, Azure cloud and IT support solutions. Ideal for candidates passionate about cyber security compliance, cloud computing and client advisory services. If you've also worked in the following roles, we'd also like to hear from you: Cyber Security Consultant, IT Security Analyst, Information Security Analyst, Cyber Security Advisor, Microsoft Security Analyst, Cyber Security Analyst, Information Security Consultant Recent Graduates and Experience Candidates Considered If you're a smart, driven, problem-solver, with a passion for technology, a hunger for continuous learning, and a desire to add value to clients, you could be exactly who the organisation is looking for. SALARY: £30,000 - £35,000 per annum (DOE) + Benefits LOCATION: Hybrid working 3 days from the City of London office (Faringdon / Chancery Lane) (EC1N) and 2 days from home JOB TYPE: Full-Time, Permanent WORKING HOURS: 35 hours per week, Monday to Friday JOB OVERVIEW We have a fantastic new job opportunity for a Junior Cyber Security Consultant / Analyst to join a supportive and forward-thinking technology consultancy based in Central London. As a Junior Cyber Security Consultant / Analyst you will support professional service clients with cyber security audits, Microsoft 365 and Azure security controls, security compliance and cloud-based risk management. You will work across Cyber Essentials, ISO27001 and security awareness programmes while building strong client relationships. The successful Junior Cyber Security Consultant / Analyst will combine technical knowledge with excellent communication skills, delivering high-quality consultancy, security reporting and customer-focused support within a fast-paced managed services environment. DUTIES Your duties as a Junior Cyber Security Consultant / Analyst will include: Conducting Security Audits: Undertaking audits of client systems to assess cyber security compliance and identify areas for improvement Producing Client Reports: Creating detailed security reports with practical recommendations and remediation guidance Supporting Security Compliance: Assisting clients with Cyber Essentials, Cyber Essentials Plus, LOCS:23 and ISO27001 accreditation processes Implementing Security Controls: Configuring and maintaining cyber security controls across Microsoft 365 and cloud-based environments Delivering Client Meetings: Engaging with technical and non-technical stakeholders to review security posture and recommend improvements Managing Awareness Programmes: Supporting phishing simulations and security awareness training campaigns for client organisations Completing Vendor Assessments: Conducting vendor security reviews and cyber insurance audits relating to client systems Collaborating with Teams: Working closely with internal technical teams to deliver high-quality consultancy and support services CANDIDATE REQUIREMENTS Have a Cyber Security, IT or Computer Science related degree (or relevant experience) Have previous experience in a technology or consultancy role (desirable) Have strong interpersonal and communication skills and be able to communicate technical information to non-technical stakeholders Be passionate about delivering excellent customer service through professional communication Have a strong knowledge of cybersecurity frameworks and fundamental concepts Foundational technical knowledge in networking and cloud services Experience with Microsoft 365, Azure, and scripting with PowerShell is beneficial Be a self-starter and a proud tech geek who loves to dig deep until the problem is solved Communicate clearly without the tech jargon, ensuring clients understand every step along the way Be driven by growth - actively seeking learning opportunities, certifications and new cloud technologies Deliver top-notch client service in a fast-paced environment, balancing urgency with precision and quality Be a team player and collaborate closely within an inclusive and supportive team culture Have a strong work ethic BENEFITS Learning and development opportunities including Microsoft certifications and training programmes Career progression opportunities 21 days holiday increasing with length of service plus public holidays Birthday day off Private healthcare after probation Discounted gym membership Pension scheme from day one Cycle to work scheme Eyecare vouchers Regular social events Electric car scheme after qualifying service Recruitment referral scheme To be considered for this role, please ensure you complete your application on the company's careers portal. Incomplete applications will not be reviewed . APPLY TODAY By submitting your job application to us you are hereby giving us your express consent to submit your details to our Client for this purpose. JOB REF: AWDO-P14730 Full-Time, Permanent IT Jobs, Careers and Vacancies. Find a new job and work in City of London / Hybrid. Multi-Job Board Advertising and CV Sourcing Recruitment Services provided by AWD online. AWD online specialise in sourcing candidates and advertising vacancies on multiple job boards for companies on a non-commission basis. AWD online operates as an employment agency. AWD-IN-SPJ
Jun 11, 2026
Full time
Junior Cyber Security Consultant / Analyst An exciting opportunity for a Junior Cyber Security Consultant / Analyst to join a growing technology consultancy delivering cyber security, Microsoft 365 security, Azure cloud and IT support solutions. Ideal for candidates passionate about cyber security compliance, cloud computing and client advisory services. If you've also worked in the following roles, we'd also like to hear from you: Cyber Security Consultant, IT Security Analyst, Information Security Analyst, Cyber Security Advisor, Microsoft Security Analyst, Cyber Security Analyst, Information Security Consultant Recent Graduates and Experience Candidates Considered If you're a smart, driven, problem-solver, with a passion for technology, a hunger for continuous learning, and a desire to add value to clients, you could be exactly who the organisation is looking for. SALARY: £30,000 - £35,000 per annum (DOE) + Benefits LOCATION: Hybrid working 3 days from the City of London office (Faringdon / Chancery Lane) (EC1N) and 2 days from home JOB TYPE: Full-Time, Permanent WORKING HOURS: 35 hours per week, Monday to Friday JOB OVERVIEW We have a fantastic new job opportunity for a Junior Cyber Security Consultant / Analyst to join a supportive and forward-thinking technology consultancy based in Central London. As a Junior Cyber Security Consultant / Analyst you will support professional service clients with cyber security audits, Microsoft 365 and Azure security controls, security compliance and cloud-based risk management. You will work across Cyber Essentials, ISO27001 and security awareness programmes while building strong client relationships. The successful Junior Cyber Security Consultant / Analyst will combine technical knowledge with excellent communication skills, delivering high-quality consultancy, security reporting and customer-focused support within a fast-paced managed services environment. DUTIES Your duties as a Junior Cyber Security Consultant / Analyst will include: Conducting Security Audits: Undertaking audits of client systems to assess cyber security compliance and identify areas for improvement Producing Client Reports: Creating detailed security reports with practical recommendations and remediation guidance Supporting Security Compliance: Assisting clients with Cyber Essentials, Cyber Essentials Plus, LOCS:23 and ISO27001 accreditation processes Implementing Security Controls: Configuring and maintaining cyber security controls across Microsoft 365 and cloud-based environments Delivering Client Meetings: Engaging with technical and non-technical stakeholders to review security posture and recommend improvements Managing Awareness Programmes: Supporting phishing simulations and security awareness training campaigns for client organisations Completing Vendor Assessments: Conducting vendor security reviews and cyber insurance audits relating to client systems Collaborating with Teams: Working closely with internal technical teams to deliver high-quality consultancy and support services CANDIDATE REQUIREMENTS Have a Cyber Security, IT or Computer Science related degree (or relevant experience) Have previous experience in a technology or consultancy role (desirable) Have strong interpersonal and communication skills and be able to communicate technical information to non-technical stakeholders Be passionate about delivering excellent customer service through professional communication Have a strong knowledge of cybersecurity frameworks and fundamental concepts Foundational technical knowledge in networking and cloud services Experience with Microsoft 365, Azure, and scripting with PowerShell is beneficial Be a self-starter and a proud tech geek who loves to dig deep until the problem is solved Communicate clearly without the tech jargon, ensuring clients understand every step along the way Be driven by growth - actively seeking learning opportunities, certifications and new cloud technologies Deliver top-notch client service in a fast-paced environment, balancing urgency with precision and quality Be a team player and collaborate closely within an inclusive and supportive team culture Have a strong work ethic BENEFITS Learning and development opportunities including Microsoft certifications and training programmes Career progression opportunities 21 days holiday increasing with length of service plus public holidays Birthday day off Private healthcare after probation Discounted gym membership Pension scheme from day one Cycle to work scheme Eyecare vouchers Regular social events Electric car scheme after qualifying service Recruitment referral scheme To be considered for this role, please ensure you complete your application on the company's careers portal. Incomplete applications will not be reviewed . APPLY TODAY By submitting your job application to us you are hereby giving us your express consent to submit your details to our Client for this purpose. JOB REF: AWDO-P14730 Full-Time, Permanent IT Jobs, Careers and Vacancies. Find a new job and work in City of London / Hybrid. Multi-Job Board Advertising and CV Sourcing Recruitment Services provided by AWD online. AWD online specialise in sourcing candidates and advertising vacancies on multiple job boards for companies on a non-commission basis. AWD online operates as an employment agency. AWD-IN-SPJ
Cyber Security Engineer up to £60,000 Bromley, Kent Permanent Full-Time We are looking for Two Cyber Security Engineers to play a key, hands-on role in protecting our organisation from cyber threats. This is an operational security role, ideal for someone who enjoys investigating incidents, working across multiple security platforms, and making a tangible impact on an organisation's cyber resilience. You will sit at the heart of our cyber defence operations, working daily with technologies including Microsoft O365 Defender, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. You'll be responsible for monitoring security events, investigating suspicious activity, responding to incidents, and continuously improving our security posture. This is a genuinely hands-on cyber security role with real responsibility and impact; you will have exposure to a broad security tooling landscape and real-world incidents. At Foresters we are a supportive, collaborative working environment and you will have on-going opportunities to develop your technical skills and grow within cyber security What you will do: Security Monitoring & Incident Response Actively monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos AV. Investigate suspected cyber attacks including malware infections, phishing campaigns, identity compromise, and unauthorised access attempts. Perform triage, root cause analysis, containment, and remediation of security incidents. Lead or support incident response activities in line with internal policies and procedures. Escalate significant incidents appropriately and provide clear, timely updates to stakeholders. Threat Detection & Prevention Proactively identify emerging threats, vulnerabilities, and attack patterns affecting the organisation. Tune and optimise security tools to reduce false positives and improve detection accuracy. Implement, manage, and maintain endpoint protection and security policies. Support vulnerability management activities, including remediation planning and risk tracking. Security Operations & Continuous Improvement Maintain and enhance security monitoring rules, alerts, and dashboards. Contribute to the development and maintenance of security runbooks and incident response playbooks. Support security audits, compliance activities, and risk assessments. Actively contribute to improving the organisation's overall cyber security maturity. Collaboration & Communication Work closely with IT, infrastructure, and service desk teams to resolve security-related issues. Produce clear, structured technical and non-technical incident reports. Identify trends in phishing or risky user behaviour and support security awareness initiatives. Assist with security-related projects and new technology deployments. Working hours are 40 hours a week Monday to Friday. Start times are flexible from 7.30am to 9.30am. After a successful training period there is flexibility to work from home for 1 day a week. What we require: Experience in a Cyber Security Engineer, SOC Analyst, or similar security-focused role. Hands-on experience with Microsoft Defender (Endpoint and/or O365 security). Experience using Rapid7 SIEM or a comparable SIEM platform for alerting and investigations. Experience managing or supporting Sophos Antivirus or other endpoint protection solutions. Strong understanding of common cyber threats, attack vectors, and incident response processes. Ability to analyse logs, alerts, and endpoint activity to determine scope, impact, and root cause. Good working knowledge of Windows environments and basic networking concepts. Strong documentation, reporting, and communication skills. Practical experience with security tools such as IDS/IPS, Metasploit, Nexpose, Nmap, Nessus, Wireshark, L0phtCrack, John the Ripper, or similar. Familiarity with recognised information security frameworks such as ISO 27001 and the NIST Cybersecurity Framework. What we offer you: Basic salary up to £60000 per annum Discretionary annual bonus dependent on your performance and company performance provided you are employed on bonus payment date. Annual holiday allowance of 25 days holiday plus bank holidays Life Assurance (based on pensionable earnings) Generous contributory Pension scheme 1 days paid charitable workday Employee Assistance Programme About us Foresters Financial is not your typical financial services provider. Those who join our purpose-driven organisation enjoy a culture of collaboration, creativity, and mutual respect and are challenged to do their best to make a difference every day. We help everyday families achieve their financial goals and make a lasting difference in their lives and communities. What we do We help everyday families achieve their financial goals and make a lasting difference in their lives and communities. We will continue to do this by employing enthusiastic and talented Financial Advisers working across the country and equally talented people to be based at our Head Office in Bromley.
Jun 11, 2026
Full time
Cyber Security Engineer up to £60,000 Bromley, Kent Permanent Full-Time We are looking for Two Cyber Security Engineers to play a key, hands-on role in protecting our organisation from cyber threats. This is an operational security role, ideal for someone who enjoys investigating incidents, working across multiple security platforms, and making a tangible impact on an organisation's cyber resilience. You will sit at the heart of our cyber defence operations, working daily with technologies including Microsoft O365 Defender, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. You'll be responsible for monitoring security events, investigating suspicious activity, responding to incidents, and continuously improving our security posture. This is a genuinely hands-on cyber security role with real responsibility and impact; you will have exposure to a broad security tooling landscape and real-world incidents. At Foresters we are a supportive, collaborative working environment and you will have on-going opportunities to develop your technical skills and grow within cyber security What you will do: Security Monitoring & Incident Response Actively monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos AV. Investigate suspected cyber attacks including malware infections, phishing campaigns, identity compromise, and unauthorised access attempts. Perform triage, root cause analysis, containment, and remediation of security incidents. Lead or support incident response activities in line with internal policies and procedures. Escalate significant incidents appropriately and provide clear, timely updates to stakeholders. Threat Detection & Prevention Proactively identify emerging threats, vulnerabilities, and attack patterns affecting the organisation. Tune and optimise security tools to reduce false positives and improve detection accuracy. Implement, manage, and maintain endpoint protection and security policies. Support vulnerability management activities, including remediation planning and risk tracking. Security Operations & Continuous Improvement Maintain and enhance security monitoring rules, alerts, and dashboards. Contribute to the development and maintenance of security runbooks and incident response playbooks. Support security audits, compliance activities, and risk assessments. Actively contribute to improving the organisation's overall cyber security maturity. Collaboration & Communication Work closely with IT, infrastructure, and service desk teams to resolve security-related issues. Produce clear, structured technical and non-technical incident reports. Identify trends in phishing or risky user behaviour and support security awareness initiatives. Assist with security-related projects and new technology deployments. Working hours are 40 hours a week Monday to Friday. Start times are flexible from 7.30am to 9.30am. After a successful training period there is flexibility to work from home for 1 day a week. What we require: Experience in a Cyber Security Engineer, SOC Analyst, or similar security-focused role. Hands-on experience with Microsoft Defender (Endpoint and/or O365 security). Experience using Rapid7 SIEM or a comparable SIEM platform for alerting and investigations. Experience managing or supporting Sophos Antivirus or other endpoint protection solutions. Strong understanding of common cyber threats, attack vectors, and incident response processes. Ability to analyse logs, alerts, and endpoint activity to determine scope, impact, and root cause. Good working knowledge of Windows environments and basic networking concepts. Strong documentation, reporting, and communication skills. Practical experience with security tools such as IDS/IPS, Metasploit, Nexpose, Nmap, Nessus, Wireshark, L0phtCrack, John the Ripper, or similar. Familiarity with recognised information security frameworks such as ISO 27001 and the NIST Cybersecurity Framework. What we offer you: Basic salary up to £60000 per annum Discretionary annual bonus dependent on your performance and company performance provided you are employed on bonus payment date. Annual holiday allowance of 25 days holiday plus bank holidays Life Assurance (based on pensionable earnings) Generous contributory Pension scheme 1 days paid charitable workday Employee Assistance Programme About us Foresters Financial is not your typical financial services provider. Those who join our purpose-driven organisation enjoy a culture of collaboration, creativity, and mutual respect and are challenged to do their best to make a difference every day. We help everyday families achieve their financial goals and make a lasting difference in their lives and communities. What we do We help everyday families achieve their financial goals and make a lasting difference in their lives and communities. We will continue to do this by employing enthusiastic and talented Financial Advisers working across the country and equally talented people to be based at our Head Office in Bromley.
If you love making systems work brilliantly for the people who use them, this is your kind of role. As a Business systems Analyst, you'll help our teams get the right information at the right time, support them in using our systems confidently, and champion improvements that make everyday tasks easier and smarter. You'll be hands-on with everything from system configuration to data reporting, all while helping us build a stronger, more connected digital foundation for the future. As a Business Systems analyst Analyst, a typical day might include: Supporting and developing Acis Group's core IT business systems, primarily but not exclusively housing management (people, tenancy and property), CRM, asset and repairs management systems Assisting with managing and maintaining security access levels within information systems Working as part of the IT systems team and with subject matter experts across the business, to configure, design and improve workflow processes and case management within systems. Also working to ensure that all of our people are suitably trained in system use and processes Enhance quality, and development of systems and support improvement projects, identifying methods and solutions to provide a high level of service to the business. Supporting and developing Acis Group's Knowledge Information Management (KIM) with data insight reporting and the creation of Microsoft Power BI data analytic dashboards. Assisting with the development of the data architecture for our central data reporting repository, eventually migrating to a new Data Warehouse/Data Lake. Ensuring that all system users are kept up to date with relevant information and are made aware of any relevant changes. Assisting in the management of the regular interfacing and exchange of data between core systems. Assisting with the monitoring of systems, integration and perform testing of business / web systems / applications As part of the systems team, liaison with our providers/partners on all matters relating to the above systems including development improvements and the correction of any problems. Assisting to ensure that all software releases received from providers are thoroughly tested prior to being loaded onto the live systems Maintaining system statutory and regulatory requirements ensuring Acis Group is compliant with its responsibilities and GPDR/data protection regulations. Some of the experience/skills we need to consider you: Educated to degree level or have equivalent relevant IT systems and data work experience, with a suitable qualification in an IT related field. Substantial knowledge and experience of supporting both SaaS and client business systems, databases Experience of delivering systems training in either a formal or informal way. Confident user of IT systems with the ability to share this confidence and knowledge with others to develop their capability. Data analytical and reporting skills Experienced in creating technical and process documentation Demonstrable practical experience of at least some of the following: Data Manipulation, Batch Processing, case flow management Power BI, Power Automate, SQL, Microsoft Fabric, ETL/ELT Pipelines Housing Management and/or large database systems management MS Windows Server, Active Directory MS Excel and Office suite What will make you stand out from the crowd: Specific systems/data analysis experience and/or related qualification. The ability to support, train and motivate colleagues Experience of Social Housing Management Systems and or CRM. Good knowledge of the Social housing sector. Technical knowledge of Power BI, Power Automate, SQL and Server operating systems / Active Directory / web technologies / APIs An understanding of user interface / interaction design as applicable to enterprise software and web-based applications. Good understanding of GDPR and cyber security. Being part of the Acis team, you'll get: Generous holiday entitlement - 25 days annual leave rising by 1 per year to a max of 30 plus bank holidays Pension contributions up to 10% The opportunity to undertake professional training, funded by us. One days paid leave a year for volunteering work (in addition to your Annual leave entitlement) Staff benefits with Paycare - A health and benefits scheme giving you support and contributions towards various health benefits such as counselling, eye tests, vaccinations and much more Benefits with Acis Perkz - a discount scheme giving you savings off hundreds of schemes including discounts on your coffee, weekly shop, days out and much more! Employee recognition scheme , where we celebrate and award our Stars within Acis, including gift vouchers Long service awards for our loyal employees Cycle to work scheme Employee Assistance Programme to give you confidential advice and support, when you need it Professional membership subscription to support your continuous professional development Death in service benefit as part of our pension scheme As soon as a suitable candidate is found for this role we reserve the right to close the job advert ahead of the closing date, so please do not delay in submitting your application. Acis are committed to equality and diversity, are a proud member of disability confident and welcome applications from any applicant who feel they hold the essential skills to fulfil the role. We recognise that people need flexibility in their role and we're happy to discuss flexible working options with the successful candidate in addition to any aid with interviewing that you might need.REF-
Jun 11, 2026
Full time
If you love making systems work brilliantly for the people who use them, this is your kind of role. As a Business systems Analyst, you'll help our teams get the right information at the right time, support them in using our systems confidently, and champion improvements that make everyday tasks easier and smarter. You'll be hands-on with everything from system configuration to data reporting, all while helping us build a stronger, more connected digital foundation for the future. As a Business Systems analyst Analyst, a typical day might include: Supporting and developing Acis Group's core IT business systems, primarily but not exclusively housing management (people, tenancy and property), CRM, asset and repairs management systems Assisting with managing and maintaining security access levels within information systems Working as part of the IT systems team and with subject matter experts across the business, to configure, design and improve workflow processes and case management within systems. Also working to ensure that all of our people are suitably trained in system use and processes Enhance quality, and development of systems and support improvement projects, identifying methods and solutions to provide a high level of service to the business. Supporting and developing Acis Group's Knowledge Information Management (KIM) with data insight reporting and the creation of Microsoft Power BI data analytic dashboards. Assisting with the development of the data architecture for our central data reporting repository, eventually migrating to a new Data Warehouse/Data Lake. Ensuring that all system users are kept up to date with relevant information and are made aware of any relevant changes. Assisting in the management of the regular interfacing and exchange of data between core systems. Assisting with the monitoring of systems, integration and perform testing of business / web systems / applications As part of the systems team, liaison with our providers/partners on all matters relating to the above systems including development improvements and the correction of any problems. Assisting to ensure that all software releases received from providers are thoroughly tested prior to being loaded onto the live systems Maintaining system statutory and regulatory requirements ensuring Acis Group is compliant with its responsibilities and GPDR/data protection regulations. Some of the experience/skills we need to consider you: Educated to degree level or have equivalent relevant IT systems and data work experience, with a suitable qualification in an IT related field. Substantial knowledge and experience of supporting both SaaS and client business systems, databases Experience of delivering systems training in either a formal or informal way. Confident user of IT systems with the ability to share this confidence and knowledge with others to develop their capability. Data analytical and reporting skills Experienced in creating technical and process documentation Demonstrable practical experience of at least some of the following: Data Manipulation, Batch Processing, case flow management Power BI, Power Automate, SQL, Microsoft Fabric, ETL/ELT Pipelines Housing Management and/or large database systems management MS Windows Server, Active Directory MS Excel and Office suite What will make you stand out from the crowd: Specific systems/data analysis experience and/or related qualification. The ability to support, train and motivate colleagues Experience of Social Housing Management Systems and or CRM. Good knowledge of the Social housing sector. Technical knowledge of Power BI, Power Automate, SQL and Server operating systems / Active Directory / web technologies / APIs An understanding of user interface / interaction design as applicable to enterprise software and web-based applications. Good understanding of GDPR and cyber security. Being part of the Acis team, you'll get: Generous holiday entitlement - 25 days annual leave rising by 1 per year to a max of 30 plus bank holidays Pension contributions up to 10% The opportunity to undertake professional training, funded by us. One days paid leave a year for volunteering work (in addition to your Annual leave entitlement) Staff benefits with Paycare - A health and benefits scheme giving you support and contributions towards various health benefits such as counselling, eye tests, vaccinations and much more Benefits with Acis Perkz - a discount scheme giving you savings off hundreds of schemes including discounts on your coffee, weekly shop, days out and much more! Employee recognition scheme , where we celebrate and award our Stars within Acis, including gift vouchers Long service awards for our loyal employees Cycle to work scheme Employee Assistance Programme to give you confidential advice and support, when you need it Professional membership subscription to support your continuous professional development Death in service benefit as part of our pension scheme As soon as a suitable candidate is found for this role we reserve the right to close the job advert ahead of the closing date, so please do not delay in submitting your application. Acis are committed to equality and diversity, are a proud member of disability confident and welcome applications from any applicant who feel they hold the essential skills to fulfil the role. We recognise that people need flexibility in their role and we're happy to discuss flexible working options with the successful candidate in addition to any aid with interviewing that you might need.REF-
IT Systems Manager - North Birmingham - Aston Chapman Tate Associates are proud to be partnering with a leading organisation to recruit an experienced and forward-thinking IT Systems Manager. This is a fantastic opportunity for a motivated technology leader to take ownership of a modern IT environment, drive Cyber Security initiatives, and lead a well-established team to the next level. As the IT Manager, you will: Lead and develop a team of four (Infrastructure x2, Business Analyst, Developer) Oversee a fully virtualised Windows Server 2025 environment Manage and optimise Hyper-V virtualisation platforms Hold full responsibility for Cyber Security across all sites and services Maintain and enhance network infrastructure (VLANs, switches, firewalls) Deliver key IT projects such as upgrades, migrations and integrations Develop and enforce IT policies, governance and best practices Work with senior stakeholders to translate business needs into technical solutions Manage third-party suppliers and provide occasional end-user support Support reporting and data management initiatives across the business What We're Looking For Essential: 5+ years' experience in IT Management or Senior Technical Leadership Demonstrable Cyber Security experience Strong Windows Server background Hands-on experience with Hyper-V Networking knowledge including VLANs, routing and switching Proven track record delivering IT infrastructure projects Strong SQL experience, particularly from a reporting, data analysis, and business reporting perspective Experience creating, optimising, and supporting SQL-based reports and data queries Excellent leadership, communication and problem-solving skills Desirable: Experience with ERP systems Manufacturing industry background Knowledge of .NET development Experience with Power BI, SSRS, or similar reporting tools Salary & Benefits Up to £65,000, DOE Comprehensive benefits package Excellent career progression and professional development opportunities Apply Through Chapman Tate Associates If you're ready to take the next step in your IT leadership career, we'd love to hear from you. Applications are reviewed on a rolling basis - early interest is encouraged.
Jun 11, 2026
Full time
IT Systems Manager - North Birmingham - Aston Chapman Tate Associates are proud to be partnering with a leading organisation to recruit an experienced and forward-thinking IT Systems Manager. This is a fantastic opportunity for a motivated technology leader to take ownership of a modern IT environment, drive Cyber Security initiatives, and lead a well-established team to the next level. As the IT Manager, you will: Lead and develop a team of four (Infrastructure x2, Business Analyst, Developer) Oversee a fully virtualised Windows Server 2025 environment Manage and optimise Hyper-V virtualisation platforms Hold full responsibility for Cyber Security across all sites and services Maintain and enhance network infrastructure (VLANs, switches, firewalls) Deliver key IT projects such as upgrades, migrations and integrations Develop and enforce IT policies, governance and best practices Work with senior stakeholders to translate business needs into technical solutions Manage third-party suppliers and provide occasional end-user support Support reporting and data management initiatives across the business What We're Looking For Essential: 5+ years' experience in IT Management or Senior Technical Leadership Demonstrable Cyber Security experience Strong Windows Server background Hands-on experience with Hyper-V Networking knowledge including VLANs, routing and switching Proven track record delivering IT infrastructure projects Strong SQL experience, particularly from a reporting, data analysis, and business reporting perspective Experience creating, optimising, and supporting SQL-based reports and data queries Excellent leadership, communication and problem-solving skills Desirable: Experience with ERP systems Manufacturing industry background Knowledge of .NET development Experience with Power BI, SSRS, or similar reporting tools Salary & Benefits Up to £65,000, DOE Comprehensive benefits package Excellent career progression and professional development opportunities Apply Through Chapman Tate Associates If you're ready to take the next step in your IT leadership career, we'd love to hear from you. Applications are reviewed on a rolling basis - early interest is encouraged.
SOC Analyst Daily Rate: Inside IR35 Location: Sheffield Job Type: Hybrid (2-3 days on-site) Join our Cyber Defence Centre (CDC) as a SOC Analyst. This is a crucial hands-on operational role within Security Operations, focused on incident detection, investigation, and response. You will play a pivotal role in ensuring effective monitoring, triage, and response to security events, while also driving continuous improvement and detection engineering initiatives. Day-to-day of the role: Incident Detection & Response: Investigate and respond to security incidents and alerts escalated from Tier 1 / Tier 2 SOC. Perform in-depth analysis and triage of security events, identifying threats and determining impact. Support high-severity incident response as required, working closely with Incident Responders. Operational Monitoring: Manage and resolve security tickets within agreed SLAs. Review alerts from multiple security tools and platforms. Ensure accurate documentation and tracking of incidents within ServiceNow. Detection Engineering: Contribute to detection engineering activities on a rotational basis. Develop and tune detection rules to improve alert quality and reduce false positives. Write and optimise queries (e.g., KQL) across SIEM platforms. Collaboration & Support: Work closely with internal teams and third-party providers to investigate and resolve incidents. Support MSSP interactions and escalations where required. Participate in incident bridge calls during major incidents. Continuous Improvement: Identify lessons learned from incidents and contribute to improving processes and controls. Provide feedback on detection gaps and opportunities for enhancement. Focus on delivering value from incidents, not just ticket closure. Required Skills & Qualifications: Core Experience: Proven experience working within a SOC environment (Tier 2 / Tier 3 preferred). Strong background in incident investigation and response. Experience handling escalated alerts and security tickets. Technical Skills: Experience with SIEM platforms (e.g., Microsoft Sentinel). Experience with EDR/XDR tools (e.g., CrowdStrike). ServiceNow or similar ITSM/SecOps platforms. Ability to write and optimise KQL queries (essential). Knowledge of scripting/query languages (e.g., Falcon Query Language) is advantageous. Analytical Capability: Strong investigative and problem-solving skills. Ability to correlate data across multiple sources. Understanding of common attack techniques and threat vectors. Soft Skills: Strong communication and collaboration skills. Ability to work effectively in a fast-paced operational environment. Proactive mindset with focus on continuous improvement and quality outcomes. To apply for this SOC Analyst position, please submit your CV and a member of the Talent Team will be in touch.
Jun 11, 2026
Contractor
SOC Analyst Daily Rate: Inside IR35 Location: Sheffield Job Type: Hybrid (2-3 days on-site) Join our Cyber Defence Centre (CDC) as a SOC Analyst. This is a crucial hands-on operational role within Security Operations, focused on incident detection, investigation, and response. You will play a pivotal role in ensuring effective monitoring, triage, and response to security events, while also driving continuous improvement and detection engineering initiatives. Day-to-day of the role: Incident Detection & Response: Investigate and respond to security incidents and alerts escalated from Tier 1 / Tier 2 SOC. Perform in-depth analysis and triage of security events, identifying threats and determining impact. Support high-severity incident response as required, working closely with Incident Responders. Operational Monitoring: Manage and resolve security tickets within agreed SLAs. Review alerts from multiple security tools and platforms. Ensure accurate documentation and tracking of incidents within ServiceNow. Detection Engineering: Contribute to detection engineering activities on a rotational basis. Develop and tune detection rules to improve alert quality and reduce false positives. Write and optimise queries (e.g., KQL) across SIEM platforms. Collaboration & Support: Work closely with internal teams and third-party providers to investigate and resolve incidents. Support MSSP interactions and escalations where required. Participate in incident bridge calls during major incidents. Continuous Improvement: Identify lessons learned from incidents and contribute to improving processes and controls. Provide feedback on detection gaps and opportunities for enhancement. Focus on delivering value from incidents, not just ticket closure. Required Skills & Qualifications: Core Experience: Proven experience working within a SOC environment (Tier 2 / Tier 3 preferred). Strong background in incident investigation and response. Experience handling escalated alerts and security tickets. Technical Skills: Experience with SIEM platforms (e.g., Microsoft Sentinel). Experience with EDR/XDR tools (e.g., CrowdStrike). ServiceNow or similar ITSM/SecOps platforms. Ability to write and optimise KQL queries (essential). Knowledge of scripting/query languages (e.g., Falcon Query Language) is advantageous. Analytical Capability: Strong investigative and problem-solving skills. Ability to correlate data across multiple sources. Understanding of common attack techniques and threat vectors. Soft Skills: Strong communication and collaboration skills. Ability to work effectively in a fast-paced operational environment. Proactive mindset with focus on continuous improvement and quality outcomes. To apply for this SOC Analyst position, please submit your CV and a member of the Talent Team will be in touch.
