Systems Engineer Location: Ringwood, Hampshire + non-contractual hybrid home working Hours: 37.5 hours per week Salary: £37,000 - £40,000 DoE + Benefits + Profit share (Potential £2-3k) The Role We are looking for an experienced Systems Engineer with a keen interest in building technical solutions to help us deliver outstanding service to our customers. You will consult directly with internal and external stakeholders to plan, implement and document technical solutions and assist in the transitions of solutions into live service. Duties Include: Consult with internal and external stakeholders to scope, define, and refine technical requirements. Design, plan, document, implement and configure technical solutions in line with project needs and industry best practice. Produce clear and detailed technical work packages to support successful project delivery. Provide technical input for estimating, scoping, Statements of Work, and both normal and emergency change requests. Support the transition of solutions into live service, including documentation, process development, training, and knowledge transfer. Maintain consistent deployment practices across customers and projects. Identify and escalate any serious issues, risks, or non conformities promptly. Collaborate closely with project managers, providing clear technical insight to support planning and delivery. Skills and Experience 2+ years of experience in a similar role, within large, diverse enterprise environments. Strong troubleshooting and problem-solving skills. Excellent working knowledge in IP Networking (WAN/LAN), including designing, planning, delivering, and optimising complex, distributed network solutions. Hands-on experience configuring and managing routers, switches, wireless solutions, and firewalls across multi vendor environments. Good cyber security awareness, with understanding of security best practices. Familiarity with Microsoft technologies such as Active Directory Domain Services, Microsoft System Center (e.g., MECM), Microsoft Azure, M365/Office 365, and Microsoft Intune (desirable). Operating system experience across Windows Server 2016/2019/2022 and associated technologies (Hyper V, Failover Clustering, Certificate Services, Windows Admin Center, SQL Server) (desirable). Knowledge of antivirus tools, including Microsoft Defender for Endpoint. Committed to continuous learning and actively pursuing vendor certifications Ability to follow and produce detailed technical documentation. Strong communication and stakeholder management skills. Able to work independently and collaboratively in a fast-paced environment High attention to detail with a proactive, ownership-driven approach. This role is subject to a clear standard DBS check being received. The Package Company Profit Share (first £3,600 is tax free) 22 days annual leave plus bank holidays, increasing with length of service Birthday as additional paid leave Additional paid leave (dependent on company performance) Company sick pay policy Pension Scheme Private Medical Insurance including dental Free Parking Hybrid Working Progression opportunities Fresh fruit, the occasional pizza and a posh coffee machine! Trusted Technology Partnership Trusted Technology Partnership has been a specialist IT Infrastructure and Support Services provider for over 25 years. We are an Employee Ownership Trust, a growing company. We are proud winners of Best Place to Work award and overall winner of the Ringwood Business Awards 2024. Our core services include support desk, on-site engineering, project management and delivery, storage and logistics, and technical consultancy. We encourage progression within Trusted Technology Partnership for our colleagues, offering opportunities in other teams and departments. Join our friendly company, where a great team and a positive culture await you.
Jun 21, 2026
Full time
Systems Engineer Location: Ringwood, Hampshire + non-contractual hybrid home working Hours: 37.5 hours per week Salary: £37,000 - £40,000 DoE + Benefits + Profit share (Potential £2-3k) The Role We are looking for an experienced Systems Engineer with a keen interest in building technical solutions to help us deliver outstanding service to our customers. You will consult directly with internal and external stakeholders to plan, implement and document technical solutions and assist in the transitions of solutions into live service. Duties Include: Consult with internal and external stakeholders to scope, define, and refine technical requirements. Design, plan, document, implement and configure technical solutions in line with project needs and industry best practice. Produce clear and detailed technical work packages to support successful project delivery. Provide technical input for estimating, scoping, Statements of Work, and both normal and emergency change requests. Support the transition of solutions into live service, including documentation, process development, training, and knowledge transfer. Maintain consistent deployment practices across customers and projects. Identify and escalate any serious issues, risks, or non conformities promptly. Collaborate closely with project managers, providing clear technical insight to support planning and delivery. Skills and Experience 2+ years of experience in a similar role, within large, diverse enterprise environments. Strong troubleshooting and problem-solving skills. Excellent working knowledge in IP Networking (WAN/LAN), including designing, planning, delivering, and optimising complex, distributed network solutions. Hands-on experience configuring and managing routers, switches, wireless solutions, and firewalls across multi vendor environments. Good cyber security awareness, with understanding of security best practices. Familiarity with Microsoft technologies such as Active Directory Domain Services, Microsoft System Center (e.g., MECM), Microsoft Azure, M365/Office 365, and Microsoft Intune (desirable). Operating system experience across Windows Server 2016/2019/2022 and associated technologies (Hyper V, Failover Clustering, Certificate Services, Windows Admin Center, SQL Server) (desirable). Knowledge of antivirus tools, including Microsoft Defender for Endpoint. Committed to continuous learning and actively pursuing vendor certifications Ability to follow and produce detailed technical documentation. Strong communication and stakeholder management skills. Able to work independently and collaboratively in a fast-paced environment High attention to detail with a proactive, ownership-driven approach. This role is subject to a clear standard DBS check being received. The Package Company Profit Share (first £3,600 is tax free) 22 days annual leave plus bank holidays, increasing with length of service Birthday as additional paid leave Additional paid leave (dependent on company performance) Company sick pay policy Pension Scheme Private Medical Insurance including dental Free Parking Hybrid Working Progression opportunities Fresh fruit, the occasional pizza and a posh coffee machine! Trusted Technology Partnership Trusted Technology Partnership has been a specialist IT Infrastructure and Support Services provider for over 25 years. We are an Employee Ownership Trust, a growing company. We are proud winners of Best Place to Work award and overall winner of the Ringwood Business Awards 2024. Our core services include support desk, on-site engineering, project management and delivery, storage and logistics, and technical consultancy. We encourage progression within Trusted Technology Partnership for our colleagues, offering opportunities in other teams and departments. Join our friendly company, where a great team and a positive culture await you.
Are you an experienced IT professional with a strong background in Microsoft 365 and infrastructure support? Join Transforming PLC as an IT Business Partner and play a key role in supporting and improving digital services that make a real difference across our social care operations. IT Business PartnerManchester Hybrid (with some travel) Full Time, Permanent £40,000 per year plus benefits Please note: you must be authorised to work in the UK Transforming PLC is a UK-based group with social care provider subsidiaries. We are committed to safe, high-quality care, strong governance, and operational excellence. Our Digital Services function enables secure, reliable technology services for colleagues across offices, care settings and hybrid working, supporting better outcomes for the people we support. About the role: We are looking for an experienced IT Business Partner to join our Digital Services team. A hybrid role based in Manchester with some travel, this is a great opportunity for a technically strong, business-focused IT professional to play a key role in supporting and improving technology across a multi-site organisation. You will act as a trusted partner to stakeholders, provide technical expertise across Microsoft 365 and infrastructure, and help ensure our services are secure, reliable and fit for purpose. What you'll be doing: Act as the subject matter expert for IT infrastructure, with a focus on Microsoft 365, connectivity and site-based technologies. Provide Level 3 support and lead technical problem resolution across the organisation. Build strong relationships with stakeholders and act as a trusted advisor on digital services. Support secure, resilient and effective IT services across multiple locations. Work with third-party suppliers and internal teams to improve systems and resolve major incidents. What we're looking for: Strong knowledge of the Microsoft 365 ecosystem and IT infrastructure support. Experience in a senior infrastructure, 3rd line or similar technical support role. Good understanding of networking fundamentals, cyber security and cloud technologies. Experience supporting multi-site environments and managing third-party suppliers. Excellent problem-solving skills and the ability to communicate clearly with technical and non-technical stakeholders. Experience in healthcare or social care environments would be an advantage. What we offer: Competitive salary and benefits package. Hybrid working with flexibility aligned to business needs. Opportunities for professional development and career growth. A collaborative and supportive working environment. If you are a proactive IT professional who enjoys combining technical expertise with stakeholder partnership, we would love to hear from you. Apply now to join us and help shape reliable, secure and effective digital services across the organisation. How to apply for the role: If you have the skills and experience required for this position, click "apply" today and check your inbox for an email providing more information on how to tailor your application and provide a cover letter or any supporting documents. You must be authorised to work in the UK. No agencies please. Other suitable skills and experience includes IT Infrastructure Engineer, Senior IT Support Engineer, 3rd Line Support Engineer, Technical Services Manager, IT Operations Engineer, Microsoft 365 Engineer, Infrastructure Support Analyst, Systems Administrator, IT Manager, Network and Infrastructure Engineer, Digital Services Partner, Technical Account Manager, Cloud Support Engineer, Service Delivery Analyst, End User Computing Engineer, IT Solutions Specialist, ICT Business Partner.
Jun 21, 2026
Full time
Are you an experienced IT professional with a strong background in Microsoft 365 and infrastructure support? Join Transforming PLC as an IT Business Partner and play a key role in supporting and improving digital services that make a real difference across our social care operations. IT Business PartnerManchester Hybrid (with some travel) Full Time, Permanent £40,000 per year plus benefits Please note: you must be authorised to work in the UK Transforming PLC is a UK-based group with social care provider subsidiaries. We are committed to safe, high-quality care, strong governance, and operational excellence. Our Digital Services function enables secure, reliable technology services for colleagues across offices, care settings and hybrid working, supporting better outcomes for the people we support. About the role: We are looking for an experienced IT Business Partner to join our Digital Services team. A hybrid role based in Manchester with some travel, this is a great opportunity for a technically strong, business-focused IT professional to play a key role in supporting and improving technology across a multi-site organisation. You will act as a trusted partner to stakeholders, provide technical expertise across Microsoft 365 and infrastructure, and help ensure our services are secure, reliable and fit for purpose. What you'll be doing: Act as the subject matter expert for IT infrastructure, with a focus on Microsoft 365, connectivity and site-based technologies. Provide Level 3 support and lead technical problem resolution across the organisation. Build strong relationships with stakeholders and act as a trusted advisor on digital services. Support secure, resilient and effective IT services across multiple locations. Work with third-party suppliers and internal teams to improve systems and resolve major incidents. What we're looking for: Strong knowledge of the Microsoft 365 ecosystem and IT infrastructure support. Experience in a senior infrastructure, 3rd line or similar technical support role. Good understanding of networking fundamentals, cyber security and cloud technologies. Experience supporting multi-site environments and managing third-party suppliers. Excellent problem-solving skills and the ability to communicate clearly with technical and non-technical stakeholders. Experience in healthcare or social care environments would be an advantage. What we offer: Competitive salary and benefits package. Hybrid working with flexibility aligned to business needs. Opportunities for professional development and career growth. A collaborative and supportive working environment. If you are a proactive IT professional who enjoys combining technical expertise with stakeholder partnership, we would love to hear from you. Apply now to join us and help shape reliable, secure and effective digital services across the organisation. How to apply for the role: If you have the skills and experience required for this position, click "apply" today and check your inbox for an email providing more information on how to tailor your application and provide a cover letter or any supporting documents. You must be authorised to work in the UK. No agencies please. Other suitable skills and experience includes IT Infrastructure Engineer, Senior IT Support Engineer, 3rd Line Support Engineer, Technical Services Manager, IT Operations Engineer, Microsoft 365 Engineer, Infrastructure Support Analyst, Systems Administrator, IT Manager, Network and Infrastructure Engineer, Digital Services Partner, Technical Account Manager, Cloud Support Engineer, Service Delivery Analyst, End User Computing Engineer, IT Solutions Specialist, ICT Business Partner.
Senior Security Engineer Salary: Up to 120,000 + Benefits Location: London (Hybrid - 2 days per week in the office) We are currently looking for a Senior Security Engineer to join a fast-growing, innovative technology business operating at the forefront of AI and data-driven products. This is an exciting opportunity to join a highly collaborative, engineering-led environment where security is viewed as a key enabler of innovation. Reporting to the Head of Engineering, the Senior Security Engineer will play a pivotal role in shaping the organisation's security posture, working closely with software engineers, platform teams and technical leadership to embed security throughout the software development lifecycle. This is not a traditional SOC or operational security position. Instead, the Senior Security Engineer will focus on securing applications, cloud infrastructure and development practices, helping the business build secure products at scale whilst influencing security strategy across the wider organisation. The Opportunity As the Senior Security Engineer, you'll work at the intersection of software engineering, cloud infrastructure and cyber security, helping to build and maintain a secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers to promote secure coding practices Reviewing cloud infrastructure and architecture from a security perspective Supporting incident response and remediation activities when required Defining and promoting security standards, policies and best practices Influencing technical decision-making across engineering and leadership teams This role offers the opportunity to make a genuine impact within a growing technology organisation where security is a strategic priority rather than an afterthought. What's in it for you? Salary up to 120,000 Hybrid working model Opportunity to work on cutting-edge AI and technology products High level of autonomy and influence Collaborative engineering culture Career progression opportunities as the business continues to scale Ongoing learning and professional development Pension scheme Generous holiday allowance Skills and Experience Commercial experience as a Security Engineer, Application Security Engineer, Product Security Engineer or DevSecOps Engineer Strong understanding of application security principles and secure software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note that candidates must have full, unrestricted right to work in the UK. Unfortunately, sponsorship is not available for this position. If you would like to be considered for the role and feel you would be an ideal fit, please submit your CV by clicking the Apply button below.
Jun 21, 2026
Full time
Senior Security Engineer Salary: Up to 120,000 + Benefits Location: London (Hybrid - 2 days per week in the office) We are currently looking for a Senior Security Engineer to join a fast-growing, innovative technology business operating at the forefront of AI and data-driven products. This is an exciting opportunity to join a highly collaborative, engineering-led environment where security is viewed as a key enabler of innovation. Reporting to the Head of Engineering, the Senior Security Engineer will play a pivotal role in shaping the organisation's security posture, working closely with software engineers, platform teams and technical leadership to embed security throughout the software development lifecycle. This is not a traditional SOC or operational security position. Instead, the Senior Security Engineer will focus on securing applications, cloud infrastructure and development practices, helping the business build secure products at scale whilst influencing security strategy across the wider organisation. The Opportunity As the Senior Security Engineer, you'll work at the intersection of software engineering, cloud infrastructure and cyber security, helping to build and maintain a secure-by-design culture across the business. Key responsibilities include: Driving application and product security initiatives across multiple engineering teams Conducting security reviews, threat modelling and risk assessments Implementing and improving vulnerability management processes Embedding security tooling into CI/CD pipelines and development workflows Partnering with developers to promote secure coding practices Reviewing cloud infrastructure and architecture from a security perspective Supporting incident response and remediation activities when required Defining and promoting security standards, policies and best practices Influencing technical decision-making across engineering and leadership teams This role offers the opportunity to make a genuine impact within a growing technology organisation where security is a strategic priority rather than an afterthought. What's in it for you? Salary up to 120,000 Hybrid working model Opportunity to work on cutting-edge AI and technology products High level of autonomy and influence Collaborative engineering culture Career progression opportunities as the business continues to scale Ongoing learning and professional development Pension scheme Generous holiday allowance Skills and Experience Commercial experience as a Security Engineer, Application Security Engineer, Product Security Engineer or DevSecOps Engineer Strong understanding of application security principles and secure software development practices Experience working closely with software engineering teams Hands-on experience securing cloud environments (AWS, GCP or Azure) Experience with vulnerability management, threat modelling and security reviews Knowledge of CI/CD security and modern development practices Excellent stakeholder management and communication skills Eligibility Please note that candidates must have full, unrestricted right to work in the UK. Unfortunately, sponsorship is not available for this position. If you would like to be considered for the role and feel you would be an ideal fit, please submit your CV by clicking the Apply button below.
IT & Security Operations Manager Edinburgh City Centre (Hybrid - 3 or 4 days onsite) Meraki Talent has partnered exclusively with an ambitious Scale Up who, after some recent investment, are looking to expand their operations in Edinburgh. This business is on an exciting journey and as part of the next stage, they are looking for to hire an IT & Security Operations Manager and as they onboard larger clients, this role takes dedicated, single-threaded ownership of corporate IT, information security operations, and IT resilience. This is a hands-on operations role, not a platform engineering role: the production platform, application services, infrastructure is owned by the engineering team. You own everything around it - the people, devices, identities, policies, evidence, and the security/compliance posture that lets them pass client due diligence and stand up to FCA scrutiny. You will own and run the Information Security Management System day to day and drive ISO 27001, SOC2 and Cyber Essentials certification and surveillance audits. Experience Experience running IT and Information Security operations in a regulated environment. Taken and organisation through ISO 27001 Certification - implementation, not just working within an existing ISMS. Experience achieving Cyber Essentials / CE Plus Strong identity and access management (SSO/IdP, MFA, access reviews). Practical backup and disaster-recovery experience, including running real restore tests. Endpoint/MDM and EDR experience across mixed OS estates, including Linux. Working knowledge of UK GDPR / DPA 2018 and the ability to produce audit evidence. Please note: As they scale the business and build out their engineering function, they are looking for people to be onsite regularly to bring the team together and allowing the team to work effectively and efficiently (3 / 4 days per week)
Jun 20, 2026
Full time
IT & Security Operations Manager Edinburgh City Centre (Hybrid - 3 or 4 days onsite) Meraki Talent has partnered exclusively with an ambitious Scale Up who, after some recent investment, are looking to expand their operations in Edinburgh. This business is on an exciting journey and as part of the next stage, they are looking for to hire an IT & Security Operations Manager and as they onboard larger clients, this role takes dedicated, single-threaded ownership of corporate IT, information security operations, and IT resilience. This is a hands-on operations role, not a platform engineering role: the production platform, application services, infrastructure is owned by the engineering team. You own everything around it - the people, devices, identities, policies, evidence, and the security/compliance posture that lets them pass client due diligence and stand up to FCA scrutiny. You will own and run the Information Security Management System day to day and drive ISO 27001, SOC2 and Cyber Essentials certification and surveillance audits. Experience Experience running IT and Information Security operations in a regulated environment. Taken and organisation through ISO 27001 Certification - implementation, not just working within an existing ISMS. Experience achieving Cyber Essentials / CE Plus Strong identity and access management (SSO/IdP, MFA, access reviews). Practical backup and disaster-recovery experience, including running real restore tests. Endpoint/MDM and EDR experience across mixed OS estates, including Linux. Working knowledge of UK GDPR / DPA 2018 and the ability to produce audit evidence. Please note: As they scale the business and build out their engineering function, they are looking for people to be onsite regularly to bring the team together and allowing the team to work effectively and efficiently (3 / 4 days per week)
Role: Senior Business Analyst (Cyber Resilience & Operational Transformation) Sector: Utilities / Critical National Infrastructure (CNI) Location: UK (Hybrid) Purpose of the Role Lead the business analysis, requirement elicitation, and governance frameworks for critical cyber resilience and operational transformation initiatives. This position bridges corporate technology and site-based industrial systems to translate complex cyber security, data protection, and business continuity expectations into executable, delivery-ready technical specifications. Key Responsibilities Cyber Security & Regulatory Alignment: Drive Cyber Assessment Framework (CAF) aligned activities, executing control mapping, evidence collation, gap analysis, and compilation of robust regulatory Evidence Packs (EP) to satisfy NIS compliance. Resilience & Disaster Recovery (DR): Elicit and define comprehensive end-to-end Business Continuity and Disaster Recovery (BCDR) requirements, focusing on ransomware resilience, data recovery governance, and secure operational restoration. IT/OT Integration Assurance: Collaborate with cross-functional architecture and engineering teams to govern system onboarding (e.g., SIEM/SOC infrastructure monitoring) across both corporate enterprise and industrial Operational Technology (OT/SCADA) environments. Requirements Governance: Create procurement-grade business analysis artifacts, including functional/non-functional specifications, process maps (BPMN), and strict Requirements Traceability Matrices (RTM). Requirements Extensive experience operating as a Senior, Lead, or Principal Business Analyst within a utility, regulated energy network, or CNI environment. Deep domain fluency in cybersecurity, industrial data protection frameworks, and complex disaster recovery structures. Proven exposure mapping technical systems to regulatory frameworks (such as NIS regulations or NCSC guidelines). Randstad Technologies is acting as an Employment Business in relation to this vacancy.
Jun 20, 2026
Contractor
Role: Senior Business Analyst (Cyber Resilience & Operational Transformation) Sector: Utilities / Critical National Infrastructure (CNI) Location: UK (Hybrid) Purpose of the Role Lead the business analysis, requirement elicitation, and governance frameworks for critical cyber resilience and operational transformation initiatives. This position bridges corporate technology and site-based industrial systems to translate complex cyber security, data protection, and business continuity expectations into executable, delivery-ready technical specifications. Key Responsibilities Cyber Security & Regulatory Alignment: Drive Cyber Assessment Framework (CAF) aligned activities, executing control mapping, evidence collation, gap analysis, and compilation of robust regulatory Evidence Packs (EP) to satisfy NIS compliance. Resilience & Disaster Recovery (DR): Elicit and define comprehensive end-to-end Business Continuity and Disaster Recovery (BCDR) requirements, focusing on ransomware resilience, data recovery governance, and secure operational restoration. IT/OT Integration Assurance: Collaborate with cross-functional architecture and engineering teams to govern system onboarding (e.g., SIEM/SOC infrastructure monitoring) across both corporate enterprise and industrial Operational Technology (OT/SCADA) environments. Requirements Governance: Create procurement-grade business analysis artifacts, including functional/non-functional specifications, process maps (BPMN), and strict Requirements Traceability Matrices (RTM). Requirements Extensive experience operating as a Senior, Lead, or Principal Business Analyst within a utility, regulated energy network, or CNI environment. Deep domain fluency in cybersecurity, industrial data protection frameworks, and complex disaster recovery structures. Proven exposure mapping technical systems to regulatory frameworks (such as NIS regulations or NCSC guidelines). Randstad Technologies is acting as an Employment Business in relation to this vacancy.
Cyber Threat Detection / SIEM Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst, you will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced SOC Analysts where threat hunting, investigations, and proactive detection have formed a significant part of their role, and who are looking to further develop in a more hunting-led environment. This position is well suited to analysts who enjoy thinking like an attacker, have worked alongside or supported red team or purple team activities, and want to deepen their expertise in threat detection and detection engineering. Skills & Experience We're Seeking Experience in threat hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals (TCP/IP, DNS, HTTP/S, Firewalls, VPNs, Proxy technologies) Experience analysing telemetry from Windows, Linux, identity, endpoint, and network sources Strong analytical mindset with the ability to clearly communicate findings, impact, and risk Key Responsibilities Conduct proactive threat hunting activities across log, endpoint, and network telemetry to identify suspicious, stealthy, or previously unknown threats Develop and execute hunt hypotheses aligned to MITRE ATT&CK TTPs, adversary behaviours, and emerging threat intelligence Write, refine, and optimise SIEM queries using KQL, SPL, Elastic/ESQL, and Kibana Query Language Perform IOC analysis, enrichment, and validation, integrating internal and external threat intelligence sources Lead investigations from initial detection through scoping, root cause analysis, and impact assessment Support incident management and incident response activities, including containment, remediation, escalation, and lessons learned Collaborate closely with SOC teams, incident responders, red teams, and purple teams to validate detections and improve defensive coverage Contribute to detection logic improvements, use-case development, and continuous enhancement of hunting methodologies Produce clear investigation write-ups, timelines, and recommendations for technical and non-technical stakeholders Security Certifications (Highly Beneficial) SANS/GIAC certifications, including but not limited to: GCIH - Incident Handler GCIA - Intrusion Analyst GCED - Enterprise Defender GCTI - Cyber Threat Intelligence GMON - Continuous Monitoring GDAT - Defending Advanced Threats GCAT - Advanced Threat Intelligence OSCP or equivalent offensive security qualifications Crest certifications, such as: Crest Practitioner Intrusion Analyst (CPIA) Crest Registered Intrusion Analyst (CRIA) Crest Certified Threat Intelligence Analyst (CCTIA) Crest Certified Blue Team Professional (CCBTP) Microsoft SC-200 or related detection and response certifications Other recognised cyber security or threat intelligence credentials
Jun 20, 2026
Full time
Cyber Threat Detection / SIEM Analyst - SANS/GIAC Cyber Threat Detection Analyst Location: Wokingham, Berkshire (On-site) Salary: Competitive (dependent on experience) + excellent benefits & training Security Clearance: Ideally SC Cleared or eligible for SC Role Overview As a Cyber Threat Detection Analyst, you will play a hands-on role within an advanced cyber defence function, focused on proactive threat hunting, adversary behaviour analysis, and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced SOC Analysts where threat hunting, investigations, and proactive detection have formed a significant part of their role, and who are looking to further develop in a more hunting-led environment. This position is well suited to analysts who enjoy thinking like an attacker, have worked alongside or supported red team or purple team activities, and want to deepen their expertise in threat detection and detection engineering. Skills & Experience We're Seeking Experience in threat hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security event life cycle, including detection, investigation, and incident management Hands-on experience with EDR/XDR technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black Strong knowledge of networking fundamentals (TCP/IP, DNS, HTTP/S, Firewalls, VPNs, Proxy technologies) Experience analysing telemetry from Windows, Linux, identity, endpoint, and network sources Strong analytical mindset with the ability to clearly communicate findings, impact, and risk Key Responsibilities Conduct proactive threat hunting activities across log, endpoint, and network telemetry to identify suspicious, stealthy, or previously unknown threats Develop and execute hunt hypotheses aligned to MITRE ATT&CK TTPs, adversary behaviours, and emerging threat intelligence Write, refine, and optimise SIEM queries using KQL, SPL, Elastic/ESQL, and Kibana Query Language Perform IOC analysis, enrichment, and validation, integrating internal and external threat intelligence sources Lead investigations from initial detection through scoping, root cause analysis, and impact assessment Support incident management and incident response activities, including containment, remediation, escalation, and lessons learned Collaborate closely with SOC teams, incident responders, red teams, and purple teams to validate detections and improve defensive coverage Contribute to detection logic improvements, use-case development, and continuous enhancement of hunting methodologies Produce clear investigation write-ups, timelines, and recommendations for technical and non-technical stakeholders Security Certifications (Highly Beneficial) SANS/GIAC certifications, including but not limited to: GCIH - Incident Handler GCIA - Intrusion Analyst GCED - Enterprise Defender GCTI - Cyber Threat Intelligence GMON - Continuous Monitoring GDAT - Defending Advanced Threats GCAT - Advanced Threat Intelligence OSCP or equivalent offensive security qualifications Crest certifications, such as: Crest Practitioner Intrusion Analyst (CPIA) Crest Registered Intrusion Analyst (CRIA) Crest Certified Threat Intelligence Analyst (CCTIA) Crest Certified Blue Team Professional (CCBTP) Microsoft SC-200 or related detection and response certifications Other recognised cyber security or threat intelligence credentials
MFA Technical Engineer Role ( Solid IAM and MFA experience) The role is for a MFA Technical Engineer with significant experience in delivery projects into large organisations with many stakeholders. The successful candidates must therefore have strong social skills across different mediums and ability to communicate a vision based on developing technology. The successful candidate will have a strong general technical background with hands on experience delivering IAM and infrastructure projects. Inside IR35 - Based in Sheffield 2-3 day a week - non-negotiable Key responsibilities Engineer and support MFA solutions across enterprise identity platforms (eg, Azure AD/Entra ID, iSeries, ADFS, etc). Deliver authentication patterns: OIDC/OAuth2, SAML2, Kerberos/LDAP, session management, token lifecycle. Integrate apps with enterprise IAM/SSO platforms (AD, ADLDS, ADFS, Entra). Integrate MFA with applications using standards and protocols (SAML 2.0, OAuth 2.0, OpenID Connect, RADIUS, LDAP). Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Implement and maintain authentication policies (conditional access, step-up authentication, risk-based controls, device posture). Manage MFA factors and lifecycle: push, OTP, FIDO2/WebAuthn, hardware tokens, SMS/voice (where permitted), backup codes, recovery flows. Monitor service health and security events; tune alerting and dashboards. Troubleshoot complex authentication issues (SSO/MFA failures, token/certificate issues, clock drift, network/proxy constraints). Partner with IAM, Cyber Security, Architecture, and application teams to deliver secure-by-design integrations. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Produce and maintain technical documentation, runbooks, and knowledge articles; contribute to operational readiness Support audits and control testing; evidence compliance with security and regulatory requirements. Participate in on-call/incident response, problem management, and continuous improvement. Essential Skills Knowledge of Multi-Factor Authentication/Passwordless Authentication technology is required. Strong hands-on experience with federated protocols (OIDC/OAuth2/SAML). Experience with at least one IdP platform and troubleshooting tools. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Support PoC/Pilot testing and planning for rollout for new authentication patterns. Work with Architecture on production infrastructure design. Present at stakeholder forums to provide updates on the project deliverables and achievements. Is technically versed on modern authentication protocols and can have technical discussion to support issues identified during implementations. Conduct reviews with service owners to complete/review technology assessments to determine suitable approach. Plan and support IAM Authentication implementation. Familiar with JIRA/Confluence and can support our journey to use these tools better. Hands-on experience engineering MFA/SSO within an enterprise IAM environment. Working knowledge of PKI, certificates, TLS, and key management concepts. Experience operating production services: monitoring, incident management, change/release processes. Desirable Skills Previous experience of working in financial services, ideally HSBC experience. EntraID/AzureAD experience. Scripting/automation skills (PowerShell and/or Python) and familiarity with APIs. Experience with FIDO2/WebAuthn and phishing-resistant MFA rollouts. Knowledge of Zero Trust and adaptive/risk-based authentication. Familiarity with privileged access controls (PAM) and strong authentication for admin workflows. Cloud identity experience (Azure/AWS/GCP) and hybrid identity (AD, ADFS). ITIL practices and experience in regulated environments (financial services). Understanding of regulatory/security expectations (least privilege, auditability). Qualifications Degree in Computer Science, Engineering, Cyber Security, or equivalent experience. Security/IAM certifications are a plus (eg, Microsoft Identity, Okta/Ping certs, CISSP/SSCP, GIAC-role dependent).
Jun 20, 2026
Contractor
MFA Technical Engineer Role ( Solid IAM and MFA experience) The role is for a MFA Technical Engineer with significant experience in delivery projects into large organisations with many stakeholders. The successful candidates must therefore have strong social skills across different mediums and ability to communicate a vision based on developing technology. The successful candidate will have a strong general technical background with hands on experience delivering IAM and infrastructure projects. Inside IR35 - Based in Sheffield 2-3 day a week - non-negotiable Key responsibilities Engineer and support MFA solutions across enterprise identity platforms (eg, Azure AD/Entra ID, iSeries, ADFS, etc). Deliver authentication patterns: OIDC/OAuth2, SAML2, Kerberos/LDAP, session management, token lifecycle. Integrate apps with enterprise IAM/SSO platforms (AD, ADLDS, ADFS, Entra). Integrate MFA with applications using standards and protocols (SAML 2.0, OAuth 2.0, OpenID Connect, RADIUS, LDAP). Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Implement and maintain authentication policies (conditional access, step-up authentication, risk-based controls, device posture). Manage MFA factors and lifecycle: push, OTP, FIDO2/WebAuthn, hardware tokens, SMS/voice (where permitted), backup codes, recovery flows. Monitor service health and security events; tune alerting and dashboards. Troubleshoot complex authentication issues (SSO/MFA failures, token/certificate issues, clock drift, network/proxy constraints). Partner with IAM, Cyber Security, Architecture, and application teams to deliver secure-by-design integrations. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Produce and maintain technical documentation, runbooks, and knowledge articles; contribute to operational readiness Support audits and control testing; evidence compliance with security and regulatory requirements. Participate in on-call/incident response, problem management, and continuous improvement. Essential Skills Knowledge of Multi-Factor Authentication/Passwordless Authentication technology is required. Strong hands-on experience with federated protocols (OIDC/OAuth2/SAML). Experience with at least one IdP platform and troubleshooting tools. Strong understanding of authentication vs authorisation, identity lifecycle, and trust boundaries. Support PoC/Pilot testing and planning for rollout for new authentication patterns. Work with Architecture on production infrastructure design. Present at stakeholder forums to provide updates on the project deliverables and achievements. Is technically versed on modern authentication protocols and can have technical discussion to support issues identified during implementations. Conduct reviews with service owners to complete/review technology assessments to determine suitable approach. Plan and support IAM Authentication implementation. Familiar with JIRA/Confluence and can support our journey to use these tools better. Hands-on experience engineering MFA/SSO within an enterprise IAM environment. Working knowledge of PKI, certificates, TLS, and key management concepts. Experience operating production services: monitoring, incident management, change/release processes. Desirable Skills Previous experience of working in financial services, ideally HSBC experience. EntraID/AzureAD experience. Scripting/automation skills (PowerShell and/or Python) and familiarity with APIs. Experience with FIDO2/WebAuthn and phishing-resistant MFA rollouts. Knowledge of Zero Trust and adaptive/risk-based authentication. Familiarity with privileged access controls (PAM) and strong authentication for admin workflows. Cloud identity experience (Azure/AWS/GCP) and hybrid identity (AD, ADFS). ITIL practices and experience in regulated environments (financial services). Understanding of regulatory/security expectations (least privilege, auditability). Qualifications Degree in Computer Science, Engineering, Cyber Security, or equivalent experience. Security/IAM certifications are a plus (eg, Microsoft Identity, Okta/Ping certs, CISSP/SSCP, GIAC-role dependent).
The Role The Senior Security Engineer is responsible for the day-to-day operation, maintenance, and optimisation of security platforms supporting a financial services client in a regulated environment. This is a hands-on engineering role where you will ensure security tooling is fully operational, integrated, and performing as expected. You will work closely with the 24/7 Security Analyst team, supporting investigations, resolving platform issues, and driving improvements across detection and response capabilities. This role is client-aligned with 3 days onsite in London . Key Responsibilities Maintain and configure security platforms including SIEM, XDR/EDR, vulnerability and cloud security tooling Perform lifecycle activities including patching, upgrades, and configuration changes Ensure security platforms are fully integrated across on-prem and cloud environments Monitor platform health, performance, and availability, resolving issues proactively Support service transitions, upgrades, and controlled change activities Act as escalation point for platform issues raised by the Security Analyst team Provide engineering support during complex incidents and investigations Implement platform-level changes to support incident response and remediation Support detection engineering including rule deployment, tuning, and validation Resolve data quality, alerting, and detection gaps impacting operational effectiveness Support automation and SOAR initiatives (e.g. Sentinel, Logic Apps) Collaborate with SOC providers to maintain SIEM configuration and log ingestion Maintain accurate engineering documentation, runbooks, and platform records Ensure all platforms meet regulatory, audit, and compliance requirements Contribute to governance, reporting, and continuous improvement initiatives Experience & Knowledge Essential: Strong experience in security engineering and platform management Experience supporting SOC tooling and security operations environments Hands-on experience with Microsoft Defender and Microsoft Sentinel Strong understanding of SIEM, XDR, and security platform integrations Experience in hybrid (on-prem and cloud) environments Strong troubleshooting skills across platforms, integrations, and data pipelines Experience with scripting/automation (PowerShell, Python or similar) Strong understanding of networking, cloud, and infrastructure fundamentals Experience in regulated environments (e.g. financial services) Strong documentation and communication skills Desirable: Experience with vulnerability and scanning tools (e.g. Qualys) Familiarity with exposure management and BAS tools (XM Cyber, AttackIQ) Knowledge of DLP, email security, and cloud security platforms Awareness of PAM and data security tools (e.g. CyberArk, Varonis)
Jun 20, 2026
Full time
The Role The Senior Security Engineer is responsible for the day-to-day operation, maintenance, and optimisation of security platforms supporting a financial services client in a regulated environment. This is a hands-on engineering role where you will ensure security tooling is fully operational, integrated, and performing as expected. You will work closely with the 24/7 Security Analyst team, supporting investigations, resolving platform issues, and driving improvements across detection and response capabilities. This role is client-aligned with 3 days onsite in London . Key Responsibilities Maintain and configure security platforms including SIEM, XDR/EDR, vulnerability and cloud security tooling Perform lifecycle activities including patching, upgrades, and configuration changes Ensure security platforms are fully integrated across on-prem and cloud environments Monitor platform health, performance, and availability, resolving issues proactively Support service transitions, upgrades, and controlled change activities Act as escalation point for platform issues raised by the Security Analyst team Provide engineering support during complex incidents and investigations Implement platform-level changes to support incident response and remediation Support detection engineering including rule deployment, tuning, and validation Resolve data quality, alerting, and detection gaps impacting operational effectiveness Support automation and SOAR initiatives (e.g. Sentinel, Logic Apps) Collaborate with SOC providers to maintain SIEM configuration and log ingestion Maintain accurate engineering documentation, runbooks, and platform records Ensure all platforms meet regulatory, audit, and compliance requirements Contribute to governance, reporting, and continuous improvement initiatives Experience & Knowledge Essential: Strong experience in security engineering and platform management Experience supporting SOC tooling and security operations environments Hands-on experience with Microsoft Defender and Microsoft Sentinel Strong understanding of SIEM, XDR, and security platform integrations Experience in hybrid (on-prem and cloud) environments Strong troubleshooting skills across platforms, integrations, and data pipelines Experience with scripting/automation (PowerShell, Python or similar) Strong understanding of networking, cloud, and infrastructure fundamentals Experience in regulated environments (e.g. financial services) Strong documentation and communication skills Desirable: Experience with vulnerability and scanning tools (e.g. Qualys) Familiarity with exposure management and BAS tools (XM Cyber, AttackIQ) Knowledge of DLP, email security, and cloud security platforms Awareness of PAM and data security tools (e.g. CyberArk, Varonis)
Systems Engineer Location: Ringwood, Hampshire + non-contractual hybrid home working Hours: 37.5 hours per week Salary: £37,000 - £40,000 DoE + Benefits + Profit share (Potential £2-3k) The Role We are looking for an experienced Systems Engineer with a keen interest in building technical solutions to help us deliver outstanding service to our customers. You will consult directly with internal and external stakeholders to plan, implement and document technical solutions and assist in the transitions of solutions into live service. Duties Include: Consult with internal and external stakeholders to scope, define, and refine technical requirements. Design, plan, document, implement and configure technical solutions in line with project needs and industry best practice. Produce clear and detailed technical work packages to support successful project delivery. Provide technical input for estimating, scoping, Statements of Work, and both normal and emergency change requests. Support the transition of solutions into live service, including documentation, process development, training, and knowledge transfer. Maintain consistent deployment practices across customers and projects. Identify and escalate any serious issues, risks, or non conformities promptly. Collaborate closely with project managers, providing clear technical insight to support planning and delivery. Skills and Experience 2+ years of experience in a similar role, within large, diverse enterprise environments. Strong troubleshooting and problem-solving skills. Excellent working knowledge in IP Networking (WAN/LAN), including designing, planning, delivering, and optimising complex, distributed network solutions. Hands-on experience configuring and managing routers, switches, wireless solutions, and firewalls across multi vendor environments. Good cyber security awareness, with understanding of security best practices. Familiarity with Microsoft technologies such as Active Directory Domain Services, Microsoft System Center (e.g., MECM), Microsoft Azure, M365/Office 365, and Microsoft Intune (desirable). Operating system experience across Windows Server 2016/2019/2022 and associated technologies (Hyper V, Failover Clustering, Certificate Services, Windows Admin Center, SQL Server) (desirable). Knowledge of antivirus tools, including Microsoft Defender for Endpoint. Committed to continuous learning and actively pursuing vendor certifications Ability to follow and produce detailed technical documentation. Strong communication and stakeholder management skills. Able to work independently and collaboratively in a fast-paced environment High attention to detail with a proactive, ownership-driven approach. This role is subject to a clear standard DBS check being received. The Package Company Profit Share (first £3,600 is tax free) 22 days annual leave plus bank holidays, increasing with length of service Birthday as additional paid leave Additional paid leave (dependent on company performance) Company sick pay policy Pension Scheme Private Medical Insurance including dental Free Parking Hybrid Working Progression opportunities Fresh fruit, the occasional pizza and a posh coffee machine! Trusted Technology Partnership Trusted Technology Partnership has been a specialist IT Infrastructure and Support Services provider for over 25 years. We are an Employee Ownership Trust, a growing company. We are proud winners of Best Place to Work award and overall winner of the Ringwood Business Awards 2024. Our core services include support desk, on-site engineering, project management and delivery, storage and logistics, and technical consultancy. We encourage progression within Trusted Technology Partnership for our colleagues, offering opportunities in other teams and departments. Join our friendly company, where a great team and a positive culture await you.
Jun 20, 2026
Full time
Systems Engineer Location: Ringwood, Hampshire + non-contractual hybrid home working Hours: 37.5 hours per week Salary: £37,000 - £40,000 DoE + Benefits + Profit share (Potential £2-3k) The Role We are looking for an experienced Systems Engineer with a keen interest in building technical solutions to help us deliver outstanding service to our customers. You will consult directly with internal and external stakeholders to plan, implement and document technical solutions and assist in the transitions of solutions into live service. Duties Include: Consult with internal and external stakeholders to scope, define, and refine technical requirements. Design, plan, document, implement and configure technical solutions in line with project needs and industry best practice. Produce clear and detailed technical work packages to support successful project delivery. Provide technical input for estimating, scoping, Statements of Work, and both normal and emergency change requests. Support the transition of solutions into live service, including documentation, process development, training, and knowledge transfer. Maintain consistent deployment practices across customers and projects. Identify and escalate any serious issues, risks, or non conformities promptly. Collaborate closely with project managers, providing clear technical insight to support planning and delivery. Skills and Experience 2+ years of experience in a similar role, within large, diverse enterprise environments. Strong troubleshooting and problem-solving skills. Excellent working knowledge in IP Networking (WAN/LAN), including designing, planning, delivering, and optimising complex, distributed network solutions. Hands-on experience configuring and managing routers, switches, wireless solutions, and firewalls across multi vendor environments. Good cyber security awareness, with understanding of security best practices. Familiarity with Microsoft technologies such as Active Directory Domain Services, Microsoft System Center (e.g., MECM), Microsoft Azure, M365/Office 365, and Microsoft Intune (desirable). Operating system experience across Windows Server 2016/2019/2022 and associated technologies (Hyper V, Failover Clustering, Certificate Services, Windows Admin Center, SQL Server) (desirable). Knowledge of antivirus tools, including Microsoft Defender for Endpoint. Committed to continuous learning and actively pursuing vendor certifications Ability to follow and produce detailed technical documentation. Strong communication and stakeholder management skills. Able to work independently and collaboratively in a fast-paced environment High attention to detail with a proactive, ownership-driven approach. This role is subject to a clear standard DBS check being received. The Package Company Profit Share (first £3,600 is tax free) 22 days annual leave plus bank holidays, increasing with length of service Birthday as additional paid leave Additional paid leave (dependent on company performance) Company sick pay policy Pension Scheme Private Medical Insurance including dental Free Parking Hybrid Working Progression opportunities Fresh fruit, the occasional pizza and a posh coffee machine! Trusted Technology Partnership Trusted Technology Partnership has been a specialist IT Infrastructure and Support Services provider for over 25 years. We are an Employee Ownership Trust, a growing company. We are proud winners of Best Place to Work award and overall winner of the Ringwood Business Awards 2024. Our core services include support desk, on-site engineering, project management and delivery, storage and logistics, and technical consultancy. We encourage progression within Trusted Technology Partnership for our colleagues, offering opportunities in other teams and departments. Join our friendly company, where a great team and a positive culture await you.
Cyber Security Operations Manager Liverpool (Hybrid) 70,000 - 75,000 Looking to take the next step in your cyber security career? We're looking for a Cyber Security Operations Manager to join a growing technology team and play a key role in strengthening and evolving the organisation's security capability. Whether you're already leading a Security Operations function or you're a Senior Security Engineer or Team Lead looking for more ownership, this is an opportunity to make a real impact within a business that is investing heavily in cyber security and resilience. The Opportunity You'll be responsible for helping shape the future of cyber security operations across the business, working closely with infrastructure, cloud and technology teams to improve security posture, strengthen detection and response capabilities, and ensure the organisation remains protected against emerging threats. This role offers a blend of leadership, technical oversight and strategic influence. What You'll Be Doing Leading and developing the Security Operations capability Managing cyber security incidents and coordinating effective responses Driving improvements across monitoring, threat detection and vulnerability management Working closely with technology teams to improve security across cloud, infrastructure and end-user environments Helping optimise security tools, processes and automation Supporting security audits, compliance initiatives and governance requirements Providing regular updates and insight to senior stakeholders on security risks and performance Contributing to the wider cyber security strategy and roadmap What We're Looking For We're interested in speaking with candidates from backgrounds such as: Security Operations Manager Lead Security Engineer Senior Security Engineer Senior SOC Analyst Detection & Response Lead Cyber Security Team Lead You'll ideally bring experience across some of the following: Security Operations and Incident Response SIEM, EDR/XDR and security monitoring tools Vulnerability Management Threat Detection and Threat Hunting Cloud Security (Azure, AWS or GCP) Security Frameworks such as ISO 27001, NIST or CIS Controls Most importantly, we're looking for someone who enjoys solving security challenges, improving processes and helping build a mature and effective cyber security function. Why Join? Opportunity to shape and influence the cyber security function High-profile role with strong visibility across the business Significant investment in cyber security and resilience Blend of leadership, technical oversight and strategic influence Supportive team environment with genuine opportunities for growth If you're looking for a role where you can take ownership, influence security strategy and make a real impact, we'd love to hear from you. Apply today or get in touch for a confidential conversation. BH36094
Jun 20, 2026
Full time
Cyber Security Operations Manager Liverpool (Hybrid) 70,000 - 75,000 Looking to take the next step in your cyber security career? We're looking for a Cyber Security Operations Manager to join a growing technology team and play a key role in strengthening and evolving the organisation's security capability. Whether you're already leading a Security Operations function or you're a Senior Security Engineer or Team Lead looking for more ownership, this is an opportunity to make a real impact within a business that is investing heavily in cyber security and resilience. The Opportunity You'll be responsible for helping shape the future of cyber security operations across the business, working closely with infrastructure, cloud and technology teams to improve security posture, strengthen detection and response capabilities, and ensure the organisation remains protected against emerging threats. This role offers a blend of leadership, technical oversight and strategic influence. What You'll Be Doing Leading and developing the Security Operations capability Managing cyber security incidents and coordinating effective responses Driving improvements across monitoring, threat detection and vulnerability management Working closely with technology teams to improve security across cloud, infrastructure and end-user environments Helping optimise security tools, processes and automation Supporting security audits, compliance initiatives and governance requirements Providing regular updates and insight to senior stakeholders on security risks and performance Contributing to the wider cyber security strategy and roadmap What We're Looking For We're interested in speaking with candidates from backgrounds such as: Security Operations Manager Lead Security Engineer Senior Security Engineer Senior SOC Analyst Detection & Response Lead Cyber Security Team Lead You'll ideally bring experience across some of the following: Security Operations and Incident Response SIEM, EDR/XDR and security monitoring tools Vulnerability Management Threat Detection and Threat Hunting Cloud Security (Azure, AWS or GCP) Security Frameworks such as ISO 27001, NIST or CIS Controls Most importantly, we're looking for someone who enjoys solving security challenges, improving processes and helping build a mature and effective cyber security function. Why Join? Opportunity to shape and influence the cyber security function High-profile role with strong visibility across the business Significant investment in cyber security and resilience Blend of leadership, technical oversight and strategic influence Supportive team environment with genuine opportunities for growth If you're looking for a role where you can take ownership, influence security strategy and make a real impact, we'd love to hear from you. Apply today or get in touch for a confidential conversation. BH36094
Scada Engineer - Onshore Substation 2-year contract Outside IR35 Key Qualifications Client witness/support the delivery of the HV/Substation and WTG SCADA systems during the construction and commissioning phase of the project supporting Onshore and/or Offshore systems. This will cover the hardware and software interfaces for the whole project, from HVDC systems to WTGs, which cover: LAN systems (Process, Scada, Server, Subsystem, Client, Operator, DMZ) Pole Control systems Converter control system DC protection DC Measuring system AC protection Bay control units HMI and fault reporting operation (design already finalised) Communication/LAN systems OT cyber security Systems such as fire alarm, PECG, Cooling system etc. Fibre Optic and other cable communication infrastructure - between onshore and offshore - overseeing installation of the cable, including hygiene, patching and correct install. Client witness/support for acceptance tests (FAT/SAT) to ensure they are performed to specification, provide required functionality and are documented correctly. Support investigations and report on HV Network and Ancillary system events during the commissioning phase. Provide SCADA/control system technical support to the wider Commissioning team and project organisation. Possible "hands-on" activities involved with testing and commissioning activities supporting the contractor with the various interfaces between contractors and RWE. Support the Engineering Team with issues relating to the Design Process. Support the Operations team with troubleshooting , training and/or maintaining associated systems as may be required. DELIVERABLES Accurate weekly reporting and record keeping on progress and issues to the Commissioning Package Manager. Maintain a commissioning file. Working very closely with the RWE Scada engineering team to ensure the installation matches the design. Oversee the SATs of equipment especially with regard to remaining OSS panels. Involved with the development, setup and operation of the Vanguard project from the Grimsby Control Room, GY and Necton. Working with the Contractor and oversee their execution of works, challenging the progress and quality of works where necessary. Responsible for troubleshooting relevant systems in the event of failures and coordinating the involvement of stakeholders and suppliers as/when required. Liaise with Engineering and Quality Departments to ensure outstanding Engineering/Quality Issues are resolved. Interface with the various packages which interface with Scada. Responsible for ensuring accurate 'As Built' Drawings and Commissioning Records are kept by the Subcontractor. Must have Qualification / Experience Relevant technical or engineering education, degree/HNC or equivalent. IOSH/NEBOSH Certification. All certificates required to work within/on Wind Turbines and Offshore are required - GWO Working at Height/Advanced Rescue, Enhanced First Aid, Sea Survival, Fire Awareness and Manual Handling. Experience in HV/WTG/Auxiliary SCADA systems and associated infrastructure. Experience of industrial control systems, automation, PLC's, RTU's and IED's. Experience in Industrial Communication Protocols (i.e. OPC-family, IEC-104, MMS, IEC61850, Modbus, Profibus). Knowledge of communication and Monitoring systems used within Offshore wind farms (Tetra, VHF, 4/5G, IP Telephony, CCTV, ICCP, CMS, DTS and Fire Alarm/Extinguishing Systems). Proven track record in a Client role. Self-starting with excellent planning/coordination and problem solving abilities. Fluent written and verbal English with good communication skills. ersg are an equal opportunities employer; we are committed to promoting equality of opportunity for all job applicants. We do not discriminate against applicants on the basis of age, sex, race, disability, pregnancy, marital status, sexual orientation, gender reassignment or religious background; all decisions are based on merit.
Jun 20, 2026
Contractor
Scada Engineer - Onshore Substation 2-year contract Outside IR35 Key Qualifications Client witness/support the delivery of the HV/Substation and WTG SCADA systems during the construction and commissioning phase of the project supporting Onshore and/or Offshore systems. This will cover the hardware and software interfaces for the whole project, from HVDC systems to WTGs, which cover: LAN systems (Process, Scada, Server, Subsystem, Client, Operator, DMZ) Pole Control systems Converter control system DC protection DC Measuring system AC protection Bay control units HMI and fault reporting operation (design already finalised) Communication/LAN systems OT cyber security Systems such as fire alarm, PECG, Cooling system etc. Fibre Optic and other cable communication infrastructure - between onshore and offshore - overseeing installation of the cable, including hygiene, patching and correct install. Client witness/support for acceptance tests (FAT/SAT) to ensure they are performed to specification, provide required functionality and are documented correctly. Support investigations and report on HV Network and Ancillary system events during the commissioning phase. Provide SCADA/control system technical support to the wider Commissioning team and project organisation. Possible "hands-on" activities involved with testing and commissioning activities supporting the contractor with the various interfaces between contractors and RWE. Support the Engineering Team with issues relating to the Design Process. Support the Operations team with troubleshooting , training and/or maintaining associated systems as may be required. DELIVERABLES Accurate weekly reporting and record keeping on progress and issues to the Commissioning Package Manager. Maintain a commissioning file. Working very closely with the RWE Scada engineering team to ensure the installation matches the design. Oversee the SATs of equipment especially with regard to remaining OSS panels. Involved with the development, setup and operation of the Vanguard project from the Grimsby Control Room, GY and Necton. Working with the Contractor and oversee their execution of works, challenging the progress and quality of works where necessary. Responsible for troubleshooting relevant systems in the event of failures and coordinating the involvement of stakeholders and suppliers as/when required. Liaise with Engineering and Quality Departments to ensure outstanding Engineering/Quality Issues are resolved. Interface with the various packages which interface with Scada. Responsible for ensuring accurate 'As Built' Drawings and Commissioning Records are kept by the Subcontractor. Must have Qualification / Experience Relevant technical or engineering education, degree/HNC or equivalent. IOSH/NEBOSH Certification. All certificates required to work within/on Wind Turbines and Offshore are required - GWO Working at Height/Advanced Rescue, Enhanced First Aid, Sea Survival, Fire Awareness and Manual Handling. Experience in HV/WTG/Auxiliary SCADA systems and associated infrastructure. Experience of industrial control systems, automation, PLC's, RTU's and IED's. Experience in Industrial Communication Protocols (i.e. OPC-family, IEC-104, MMS, IEC61850, Modbus, Profibus). Knowledge of communication and Monitoring systems used within Offshore wind farms (Tetra, VHF, 4/5G, IP Telephony, CCTV, ICCP, CMS, DTS and Fire Alarm/Extinguishing Systems). Proven track record in a Client role. Self-starting with excellent planning/coordination and problem solving abilities. Fluent written and verbal English with good communication skills. ersg are an equal opportunities employer; we are committed to promoting equality of opportunity for all job applicants. We do not discriminate against applicants on the basis of age, sex, race, disability, pregnancy, marital status, sexual orientation, gender reassignment or religious background; all decisions are based on merit.
Information Security Engineer London (Barbican) Hybrid Working (2 days per week onsite) 80,000 - 90,000 + 8% Bonus + Excellent Pension & Benefits Must be eligible for UK Security Clearance Are you an Information Security Engineer looking to work on technology that genuinely makes a difference? This is an opportunity to join one of the world's leading enterprise software organisations, delivering mission-critical technology used by major government agencies, emergency services, financial institutions and global enterprises. Their platforms help protect communities, combat financial crime, secure critical infrastructure and support public safety on a global scale. With significant investment in cloud, AI, cyber security and digital transformation, you'll be joining a highly regarded security team where your work will directly influence the protection of systems, services and data relied upon by millions of users worldwide. This is an excellent opportunity for a hands-on security professional who enjoys solving complex challenges, working with modern security tooling, and having real influence within a large-scale global technology environment. The Role As an Information Security Engineer, you'll play a key role in maintaining and enhancing the organisation's security posture across both corporate and production environments. You'll work with a wide range of security technologies, helping to detect, investigate and respond to threats whilst supporting security initiatives driven by regulatory, compliance and operational requirements. Skills & Experience We're interested in candidates who have: Experience working within a Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement abilities The ability to work independently and take ownership of security initiatives Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments What's On Offer? Salary of 80,000 - 85,000 8% Annual Bonus Generous Pension Scheme Hybrid Working (2 Days Per Week in Central London) Modern cloud and security technology stack Exposure to large-scale global systems and infrastructure Ongoing training and professional development Clear progression opportunities within a global technology leader Security Clearance Eligibility Due to the nature of the work, applicants must be eligible to obtain security clearance. This typically requires British Citizenship or a minimum of 5 years continuous residency and employment within the UK. If you're looking for a role where you can make a genuine impact, work with cutting-edge security technologies and develop your career within a globally recognised technology organisation, we'd love to hear from you. If you have the relevant skills for this role and are ready for the challenge, then please send your CV to (url removed) Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Jun 20, 2026
Full time
Information Security Engineer London (Barbican) Hybrid Working (2 days per week onsite) 80,000 - 90,000 + 8% Bonus + Excellent Pension & Benefits Must be eligible for UK Security Clearance Are you an Information Security Engineer looking to work on technology that genuinely makes a difference? This is an opportunity to join one of the world's leading enterprise software organisations, delivering mission-critical technology used by major government agencies, emergency services, financial institutions and global enterprises. Their platforms help protect communities, combat financial crime, secure critical infrastructure and support public safety on a global scale. With significant investment in cloud, AI, cyber security and digital transformation, you'll be joining a highly regarded security team where your work will directly influence the protection of systems, services and data relied upon by millions of users worldwide. This is an excellent opportunity for a hands-on security professional who enjoys solving complex challenges, working with modern security tooling, and having real influence within a large-scale global technology environment. The Role As an Information Security Engineer, you'll play a key role in maintaining and enhancing the organisation's security posture across both corporate and production environments. You'll work with a wide range of security technologies, helping to detect, investigate and respond to threats whilst supporting security initiatives driven by regulatory, compliance and operational requirements. Skills & Experience We're interested in candidates who have: Experience working within a Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement abilities The ability to work independently and take ownership of security initiatives Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments What's On Offer? Salary of 80,000 - 85,000 8% Annual Bonus Generous Pension Scheme Hybrid Working (2 Days Per Week in Central London) Modern cloud and security technology stack Exposure to large-scale global systems and infrastructure Ongoing training and professional development Clear progression opportunities within a global technology leader Security Clearance Eligibility Due to the nature of the work, applicants must be eligible to obtain security clearance. This typically requires British Citizenship or a minimum of 5 years continuous residency and employment within the UK. If you're looking for a role where you can make a genuine impact, work with cutting-edge security technologies and develop your career within a globally recognised technology organisation, we'd love to hear from you. If you have the relevant skills for this role and are ready for the challenge, then please send your CV to (url removed) Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
An Infrastructure Engineer role supporting a diverse hybrid IT environment, blending operational support with project delivery. You'll play a key role in modernising infrastructure, including a strategic migration to Azure, while maintaining secure and reliable services. Client Details Our client is a well-established, purpose-driven organisation committed to making a meaningful social impact. They operate within the charity sector, delivering vital services and leveraging technology to support their mission. Description You will design, implement, and maintain a hybrid infrastructure spanning on-premise and Azure environments. Working within the cyber security and infrastructure team, you'll manage Windows Server environments, virtualization platforms (VMware/Hyper-V), and contribute to a transition toward cloud-first solutions. Key responsibilities include: Managing and optimising virtualised environments Supporting Azure adoption and hybrid cloud solutions Maintaining core services (AD, DNS, DHCP) and planning Entra ID migration Ensuring infrastructure meets security and compliance standards (PCI DSS, ISO 27001, GDPR) Delivering 2nd/3rd line support and resolving complex issues Supporting disaster recovery, backup, and monitoring processes Acting as a design authority for infrastructure solutions Contributing to infrastructure strategy and continuous improvement Profile You will have: 3+ years' experience in infrastructure or systems administration Strong Windows Server and Active Directory expertise Experience with VMware or Hyper-V Knowledge of networking fundamentals (TCP/IP, VPNs, firewalls) Exposure to Azure and hybrid cloud environments Understanding of infrastructure security and compliance frameworks You'll also be: A strong problem-solver with attention to detail Comfortable working across both support and project work A collaborative team player with clear communication skills Proactive with a focus on continuous improvement Desirable experience includes Azure migrations, scripting/automation, PCI DSS environments, and working within the charity or public sector. Job Offer Opportunity to lead cloud transformation initiatives Remote working pattern, with occasional office visits (travel expenses are paid). Exposure to modern Azure technologies Collaborative and purpose-driven environment Ongoing learning and development opportunities A salary of 46,000 and a competitive benefits package
Jun 20, 2026
Full time
An Infrastructure Engineer role supporting a diverse hybrid IT environment, blending operational support with project delivery. You'll play a key role in modernising infrastructure, including a strategic migration to Azure, while maintaining secure and reliable services. Client Details Our client is a well-established, purpose-driven organisation committed to making a meaningful social impact. They operate within the charity sector, delivering vital services and leveraging technology to support their mission. Description You will design, implement, and maintain a hybrid infrastructure spanning on-premise and Azure environments. Working within the cyber security and infrastructure team, you'll manage Windows Server environments, virtualization platforms (VMware/Hyper-V), and contribute to a transition toward cloud-first solutions. Key responsibilities include: Managing and optimising virtualised environments Supporting Azure adoption and hybrid cloud solutions Maintaining core services (AD, DNS, DHCP) and planning Entra ID migration Ensuring infrastructure meets security and compliance standards (PCI DSS, ISO 27001, GDPR) Delivering 2nd/3rd line support and resolving complex issues Supporting disaster recovery, backup, and monitoring processes Acting as a design authority for infrastructure solutions Contributing to infrastructure strategy and continuous improvement Profile You will have: 3+ years' experience in infrastructure or systems administration Strong Windows Server and Active Directory expertise Experience with VMware or Hyper-V Knowledge of networking fundamentals (TCP/IP, VPNs, firewalls) Exposure to Azure and hybrid cloud environments Understanding of infrastructure security and compliance frameworks You'll also be: A strong problem-solver with attention to detail Comfortable working across both support and project work A collaborative team player with clear communication skills Proactive with a focus on continuous improvement Desirable experience includes Azure migrations, scripting/automation, PCI DSS environments, and working within the charity or public sector. Job Offer Opportunity to lead cloud transformation initiatives Remote working pattern, with occasional office visits (travel expenses are paid). Exposure to modern Azure technologies Collaborative and purpose-driven environment Ongoing learning and development opportunities A salary of 46,000 and a competitive benefits package
Operational Resilience Manager Edinburgh or Glasgow Relaxed Hybrid and Flexible Working Environment 62,114 - 77,232 per annum + 28.94% employer contributory pension and 42 days annual holiday Introduction to the Role Hays' Cyber practice have partnered exclusively with Registers of Scotland (RoS) on the search for an experienced Senior Operational Resilience Manager to lead the development and embedding of operational resilience capability across a complex, digitally-driven public sector organisation. This is a high-impact role focused on ensuring critical services remain available and recoverable during disruption. You will work at a strategic level to shape resilience frameworks, influence senior stakeholders, and build a culture of preparedness. This is an opportunity to establish and drive a resilience function with significant organisational visibility and influence. About the Organisation Registers of Scotland (RoS) manages 21 land, property and other legal registers which are a critical asset for the Scottish economy. They aim to provide the best public service for Scotland and are on a mission to make some of the oldest public land registers in the world into some of the most modern. You can get an idea of their mission and culture by viewing this short video: Registers of Scotland Promotional Video - YouTube ww(w).(url removed) Registers of Scotland (RoS) is an award-winning organisation recognised for its technology and innovation. Registers of Scotland is a world-leading pioneer in land and property registration. Their full-stack teams design, architect, and build all our registration products in-house, and they work to create digital solutions for the people of Scotland. You will get an opportunity to nurture your creativity and develop with RoS through access to the latest data, software engineering and product delivery techniques. In this role you will Lead the development and delivery of an organisation-wide operational resilience strategy Identify, map, and manage business-critical services and their dependencies Own and maintain Business Continuity Plans (BCPs) and service recovery playbooks, ensuring compliance with ISO 22301 and Scottish Government expectations Coordinate and deliver scenario testing and exercises (table-top, simulation, live), embedding lessons learned to strengthen service continuity. Establish and drive resilience governance forums and stakeholder engagement Collaborate across digital, cyber, risk, operations, and external partners to embed resilience practices Provide oversight of business continuity, disaster recovery, and service resilience planning Coordinate and deliver scenario testing (e.g. cyber incidents, supplier failures) and embed improvements Support or lead response activities during major incidents and drive post-incident reviews Produce reporting for senior leadership on resilience posture, risks, and performance Maintain resilience frameworks aligned to recognised standards and governance expectations Drive continuous improvement in resilience capability, supplier assurance, and recovery performance What I'm Looking For Significant experience in operational resilience, business continuity, or disaster recovery Experience aligning resilience, continuity, and recovery practices with relevant standards, including ISO 22301 and the NCSC Cyber Assessment Framework. Proven ability to operate as a subject matter expert and influence senior stakeholders Experience in complex digital or cloud-based environments Demonstrated experience leading or supporting responses to major incidents Strong analytical, problem-solving, and critical thinking capability Experience managing third-party or supply chain resilience and dependencies Relevant professional certifications (e.g. CBCI, MBCI, ISO standards) preferred Benefits Competitive salary package Pension contribution of 28.97% employer contribution 42 days annual leave Flexible and hybrid working arrangements Strong focus on professional development and career progression Inclusive and supportive working culture Opportunity to work in a highly impactful, strategic role shaping organisational resilience Further information For further information relating to RoS, including: Additional details on pay & benefits The Civil Service Code Complaints process Use of AI in the application/recruitment process, Please view our additional information page online: ww(w).(url removed) and immigration status In general, only nationals from the following countries (and associations of countries) are eligible for employment in the Civil Service: the United Kingdom, the Republic of Ireland, and the Commonwealth. EU nationals (with settled or pre-settled status), certain EEA nationals, Swiss and Turkish nationals are also eligible for employment. Detailed provisions on determining eligibility on the grounds of nationality and, where relevant, immigration status can be reviewed here. ww(w).(url removed) Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
Jun 20, 2026
Full time
Operational Resilience Manager Edinburgh or Glasgow Relaxed Hybrid and Flexible Working Environment 62,114 - 77,232 per annum + 28.94% employer contributory pension and 42 days annual holiday Introduction to the Role Hays' Cyber practice have partnered exclusively with Registers of Scotland (RoS) on the search for an experienced Senior Operational Resilience Manager to lead the development and embedding of operational resilience capability across a complex, digitally-driven public sector organisation. This is a high-impact role focused on ensuring critical services remain available and recoverable during disruption. You will work at a strategic level to shape resilience frameworks, influence senior stakeholders, and build a culture of preparedness. This is an opportunity to establish and drive a resilience function with significant organisational visibility and influence. About the Organisation Registers of Scotland (RoS) manages 21 land, property and other legal registers which are a critical asset for the Scottish economy. They aim to provide the best public service for Scotland and are on a mission to make some of the oldest public land registers in the world into some of the most modern. You can get an idea of their mission and culture by viewing this short video: Registers of Scotland Promotional Video - YouTube ww(w).(url removed) Registers of Scotland (RoS) is an award-winning organisation recognised for its technology and innovation. Registers of Scotland is a world-leading pioneer in land and property registration. Their full-stack teams design, architect, and build all our registration products in-house, and they work to create digital solutions for the people of Scotland. You will get an opportunity to nurture your creativity and develop with RoS through access to the latest data, software engineering and product delivery techniques. In this role you will Lead the development and delivery of an organisation-wide operational resilience strategy Identify, map, and manage business-critical services and their dependencies Own and maintain Business Continuity Plans (BCPs) and service recovery playbooks, ensuring compliance with ISO 22301 and Scottish Government expectations Coordinate and deliver scenario testing and exercises (table-top, simulation, live), embedding lessons learned to strengthen service continuity. Establish and drive resilience governance forums and stakeholder engagement Collaborate across digital, cyber, risk, operations, and external partners to embed resilience practices Provide oversight of business continuity, disaster recovery, and service resilience planning Coordinate and deliver scenario testing (e.g. cyber incidents, supplier failures) and embed improvements Support or lead response activities during major incidents and drive post-incident reviews Produce reporting for senior leadership on resilience posture, risks, and performance Maintain resilience frameworks aligned to recognised standards and governance expectations Drive continuous improvement in resilience capability, supplier assurance, and recovery performance What I'm Looking For Significant experience in operational resilience, business continuity, or disaster recovery Experience aligning resilience, continuity, and recovery practices with relevant standards, including ISO 22301 and the NCSC Cyber Assessment Framework. Proven ability to operate as a subject matter expert and influence senior stakeholders Experience in complex digital or cloud-based environments Demonstrated experience leading or supporting responses to major incidents Strong analytical, problem-solving, and critical thinking capability Experience managing third-party or supply chain resilience and dependencies Relevant professional certifications (e.g. CBCI, MBCI, ISO standards) preferred Benefits Competitive salary package Pension contribution of 28.97% employer contribution 42 days annual leave Flexible and hybrid working arrangements Strong focus on professional development and career progression Inclusive and supportive working culture Opportunity to work in a highly impactful, strategic role shaping organisational resilience Further information For further information relating to RoS, including: Additional details on pay & benefits The Civil Service Code Complaints process Use of AI in the application/recruitment process, Please view our additional information page online: ww(w).(url removed) and immigration status In general, only nationals from the following countries (and associations of countries) are eligible for employment in the Civil Service: the United Kingdom, the Republic of Ireland, and the Commonwealth. EU nationals (with settled or pre-settled status), certain EEA nationals, Swiss and Turkish nationals are also eligible for employment. Detailed provisions on determining eligibility on the grounds of nationality and, where relevant, immigration status can be reviewed here. ww(w).(url removed) Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)
IT Security Manager Location: Wembley - 5 days on-site Type: Permanent Salary: (phone number removed) per annum + permanent benefits We're partnered with a large organisation undergoing a major digital and data transformation, and we're looking for an experienced Cyber Security Manager to lead and mature their cybersecurity function. This is a strategic and governance-focused role, sitting at the intersection of security operations, risk management, and data protection. You'll take ownership of security oversight, working closely with external security providers while ensuring internal teams are aligned to best practice frameworks and regulatory requirements. Responsibilities Security Operations & Vendor Oversight Own and manage relationships with outsourced 24/7 SOC / MDR providers Monitor performance against SLAs and ensure proactive threat detection across cloud environments Manage security incident escalations and coordinate response activities across internal and external teams Drive value and accountability from third-party security partners Governance, Risk & Compliance Own and maintain the Information Security Policy, Cyber Risk Register, and Risk Appetite framework Lead internal and external audits, ensuring compliance with UK GDPR and relevant security standards Oversee regulatory reporting and ensure adherence to industry frameworks (e.g., ISO 27001, NIST) Focus on practical risk reduction aligned to business priorities Data Security & Transformation Lead the implementation of data security capabilities to discover, classify, and protect sensitive data Support broader digital and AI initiatives by ensuring robust data protection practices Collaborate with engineering and architecture teams to embed security controls into platforms Stakeholder Engagement Translate complex technical risks and alerts into clear, business-facing insights for senior leadership Act as a trusted advisor to the IT Director and wider leadership team on cyber risk and resilience Ensure security policies are embedded into delivery through automated controls and best practice frameworks Skills & Experience Required Proven experience managing external MSSPs, SOC, or MDR providers Strong knowledge of security frameworks such as ISO 27001, NIST, and UK GDPR Experience maintaining enterprise-level risk registers and governance frameworks Familiarity with data security posture management (DSPM) tools and data classification platforms Good understanding of cloud security (Azure/AWS) and identity protocols (OIDC, SAML, MFA / Entra ID) Experience coordinating incident response across multiple stakeholders, including external forensic teams Strong commercial awareness with the ability to link security decisions to business outcomes Excellent communication skills, with the ability to translate technical risk into business impact
Jun 20, 2026
Full time
IT Security Manager Location: Wembley - 5 days on-site Type: Permanent Salary: (phone number removed) per annum + permanent benefits We're partnered with a large organisation undergoing a major digital and data transformation, and we're looking for an experienced Cyber Security Manager to lead and mature their cybersecurity function. This is a strategic and governance-focused role, sitting at the intersection of security operations, risk management, and data protection. You'll take ownership of security oversight, working closely with external security providers while ensuring internal teams are aligned to best practice frameworks and regulatory requirements. Responsibilities Security Operations & Vendor Oversight Own and manage relationships with outsourced 24/7 SOC / MDR providers Monitor performance against SLAs and ensure proactive threat detection across cloud environments Manage security incident escalations and coordinate response activities across internal and external teams Drive value and accountability from third-party security partners Governance, Risk & Compliance Own and maintain the Information Security Policy, Cyber Risk Register, and Risk Appetite framework Lead internal and external audits, ensuring compliance with UK GDPR and relevant security standards Oversee regulatory reporting and ensure adherence to industry frameworks (e.g., ISO 27001, NIST) Focus on practical risk reduction aligned to business priorities Data Security & Transformation Lead the implementation of data security capabilities to discover, classify, and protect sensitive data Support broader digital and AI initiatives by ensuring robust data protection practices Collaborate with engineering and architecture teams to embed security controls into platforms Stakeholder Engagement Translate complex technical risks and alerts into clear, business-facing insights for senior leadership Act as a trusted advisor to the IT Director and wider leadership team on cyber risk and resilience Ensure security policies are embedded into delivery through automated controls and best practice frameworks Skills & Experience Required Proven experience managing external MSSPs, SOC, or MDR providers Strong knowledge of security frameworks such as ISO 27001, NIST, and UK GDPR Experience maintaining enterprise-level risk registers and governance frameworks Familiarity with data security posture management (DSPM) tools and data classification platforms Good understanding of cloud security (Azure/AWS) and identity protocols (OIDC, SAML, MFA / Entra ID) Experience coordinating incident response across multiple stakeholders, including external forensic teams Strong commercial awareness with the ability to link security decisions to business outcomes Excellent communication skills, with the ability to translate technical risk into business impact
Position Summary The Senior Security Analyst is a dedicated security operations role providing continuous security coverage for a client operating in a regulated industry. You are embedded within a small, senior team delivering operational security services across detection, investigation, response, and proactive security operations, with direct responsibility for outcomes. You own security incidents end-to-end, from initial detection through investigation, containment, and coordination of remediation with internal and third-party teams. When the incident queue is clear, you carry out proactive security operations work including vulnerability scanning, web application scanning, breach and attack simulation, and validation of security tooling, actively maintaining and improving the client's security posture. Beyond incident response, you liaise directly with the client's IT and cloud teams to ensure remediation actions are completed, and you coordinate across teams to drive issues through to resolution. You bridge the gap between security operations and engineering, escalating platform issues to the security engineering team and supporting engineers during major incidents. The tooling scope has a strong Microsoft orientation. You work alongside the client's SOC provider where applicable, receiving escalated SIEM alerts while also monitoring and operating endpoint, vulnerability, and simulation tooling directly. You have direct access for investigation and threat hunting purposes. You bring experience beyond security tooling, with the ability to navigate the infrastructure and application technologies within the client's hybrid (on-premise and cloud) environment. Role Mission To deliver reliable, high-quality operational security for the client by owning detection, investigation, and response, while proactively strengthening the security environment through hands-on security operations work and cross-team coordination. Objectives & Key Results The key objectives will be to: Maintain SLA compliance for incident detection, investigation, and response across all priority levels Own security incidents through to resolution, ensuring remediation actions are completed Operate and validate proactive security tooling (e.g. Qualys, XM Cyber, AttackIQ) to an agreed schedule, identifying and acting on findings Reduce detection gaps by contributing to detection rule tuning, false-positive reduction, and threat hunting activities Share insights that improve SOC response times, detection accuracy, and coverage Maintain high standards of documentation, communication, and compliance to audit standards Support the security engineering team during major incidents and platform changes Complete a minimum of 40 hours of professional training per year, aligned to client requirements Duties and Responsibilities Essential Roles & Responsibilities Incident Detection, Investigation & Response Monitor and investigate alerts from Microsoft Defender and related email, endpoint and cloud security tooling Receive and act on escalated alerts from the client's SOC provider or SIEM platform Take ownership of all security incidents, validating indicators of compromise and determining impact Perform detailed investigations using KQL queries in Microsoft Sentinel and telemetry from across the security stack, going beyond initial triage to full root-cause analysis Reconstruct event chains and identify root causes, including correlation across endpoint, identity, cloud, and network data sources Determine credibility and severity of threats in the context of the client's risk profile and regulatory obligations Investigate potential IOCs using multi-source telemetry and threat intelligence Make evidence-based decisions on containment actions and remediation plans, coordinating response actions with the client's IT, cloud, and workplace teams Recommend immediate defensive or containment actions where appropriate, and support teams across the business in the resolution of incidents and post-event analysis and reporting Handle incidents end-to-end where tooling and access allow, escalating to the security engineering team or client security leadership when required Operate within tight SLAs appropriate to a regulated client environment
Jun 20, 2026
Full time
Position Summary The Senior Security Analyst is a dedicated security operations role providing continuous security coverage for a client operating in a regulated industry. You are embedded within a small, senior team delivering operational security services across detection, investigation, response, and proactive security operations, with direct responsibility for outcomes. You own security incidents end-to-end, from initial detection through investigation, containment, and coordination of remediation with internal and third-party teams. When the incident queue is clear, you carry out proactive security operations work including vulnerability scanning, web application scanning, breach and attack simulation, and validation of security tooling, actively maintaining and improving the client's security posture. Beyond incident response, you liaise directly with the client's IT and cloud teams to ensure remediation actions are completed, and you coordinate across teams to drive issues through to resolution. You bridge the gap between security operations and engineering, escalating platform issues to the security engineering team and supporting engineers during major incidents. The tooling scope has a strong Microsoft orientation. You work alongside the client's SOC provider where applicable, receiving escalated SIEM alerts while also monitoring and operating endpoint, vulnerability, and simulation tooling directly. You have direct access for investigation and threat hunting purposes. You bring experience beyond security tooling, with the ability to navigate the infrastructure and application technologies within the client's hybrid (on-premise and cloud) environment. Role Mission To deliver reliable, high-quality operational security for the client by owning detection, investigation, and response, while proactively strengthening the security environment through hands-on security operations work and cross-team coordination. Objectives & Key Results The key objectives will be to: Maintain SLA compliance for incident detection, investigation, and response across all priority levels Own security incidents through to resolution, ensuring remediation actions are completed Operate and validate proactive security tooling (e.g. Qualys, XM Cyber, AttackIQ) to an agreed schedule, identifying and acting on findings Reduce detection gaps by contributing to detection rule tuning, false-positive reduction, and threat hunting activities Share insights that improve SOC response times, detection accuracy, and coverage Maintain high standards of documentation, communication, and compliance to audit standards Support the security engineering team during major incidents and platform changes Complete a minimum of 40 hours of professional training per year, aligned to client requirements Duties and Responsibilities Essential Roles & Responsibilities Incident Detection, Investigation & Response Monitor and investigate alerts from Microsoft Defender and related email, endpoint and cloud security tooling Receive and act on escalated alerts from the client's SOC provider or SIEM platform Take ownership of all security incidents, validating indicators of compromise and determining impact Perform detailed investigations using KQL queries in Microsoft Sentinel and telemetry from across the security stack, going beyond initial triage to full root-cause analysis Reconstruct event chains and identify root causes, including correlation across endpoint, identity, cloud, and network data sources Determine credibility and severity of threats in the context of the client's risk profile and regulatory obligations Investigate potential IOCs using multi-source telemetry and threat intelligence Make evidence-based decisions on containment actions and remediation plans, coordinating response actions with the client's IT, cloud, and workplace teams Recommend immediate defensive or containment actions where appropriate, and support teams across the business in the resolution of incidents and post-event analysis and reporting Handle incidents end-to-end where tooling and access allow, escalating to the security engineering team or client security leadership when required Operate within tight SLAs appropriate to a regulated client environment
Role: Technical Pre-Sales Consultant Location: Office based in the East Midlands Working Arrangement: REMOTE AND ON CLIENT SITES ACOUND THE M4 CORRIDOR. WITH TEAM VISITS TO EAST MIDLANDS OCCASSIONALLY Salary: Up to £110k (wiggle room for the right candidate We are seeking an experienced Technical Pre-Sales Consultant to bridge the gap between customer requirements, cyber security challenges, and technical solution delivery. This role combines cyber security consultancy, solution architecture, technical leadership, and business development, supporting customers throughout the early stages of complex technology programmes. Working closely with senior customer stakeholders, architects, engineering teams, and business leaders, you will act as a trusted technical advisor, helping organisations define requirements, shape secure architectures, and develop solutions that address operational and business objectives. The position requires a strong blend of technical credibility, customer engagement skills, and commercial awareness. You will lead technical pre-sales engagements across cyber security, networking, cloud, and information assurance domains, engaging confidently with senior responsible owners, programme directors, chief architects, and technical decision-makers. Capture, analyse, and translate customer business and technical requirements into solution architectures, technical proposals, statements of work, and bid responses. Provide technical leadership throughout the sales lifecycle, ensuring proposed solutions are technically robust, commercially viable, and aligned with customer objectives. Develop high-level and detailed solution architectures encompassing secure systems integration, interoperability, cross-domain information sharing, cloud infrastructure, network design, and security controls. Work closely with engineering and product teams to ensure customer requirements are clearly understood and reflected in solution delivery. Provide technical oversight and assurance for bids, proposals, and customer-facing documentation, ensuring accuracy, consistency, and alignment with industry standards and best practices. Support security accreditation and assurance activities, collaborating with security authorities, accrediting bodies, and customer security teams to address technical risks and define compliant architectures. Maintain a detailed understanding of cyber security technologies, market trends, emerging threats, and competitor capabilities, using this knowledge to identify opportunities, influence product direction, and support strategic growth initiatives. Represent the organisation at customer meetings, industry events, workshops, demonstrations, and technical presentations, acting as a recognised subject matter expert across security architecture, secure information exchange, and systems integration. The successful candidate will demonstrate experience in technical pre-sales, solution architecture, cyber security consulting, or systems engineering within complex enterprise, defence, government, or critical national infrastructure environments. You should have a proven ability to engage with both business and technical stakeholders, produce high-quality technical documentation, and communicate complex concepts at multiple levels of technical detail. Strong knowledge of cyber security principles, information assurance frameworks, secure systems design, networking technologies, and cloud infrastructure is essential. Experience designing and integrating secure solutions across heterogeneous environments is highly desirable. The role requires excellent communication and presentation skills, strong stakeholder management capabilities, and the ability to lead technical discussions from initial discovery through to solution definition and customer approval. Desirable Knowledge Experience with security accreditation processes, risk management frameworks, secure-by-design methodologies, and government or defence security environments. Understanding of enterprise networking technologies, including segmentation, VLAN design, routing, fibre-optic infrastructure, and secure communications. Familiarity with Agile delivery methodologies and the challenges associated with integrating complex technology solutions across multi-vendor environments. We welcome diverse applicants and are dedicated to treating all applicants with dignity and respect, regardless of background.
Jun 19, 2026
Full time
Role: Technical Pre-Sales Consultant Location: Office based in the East Midlands Working Arrangement: REMOTE AND ON CLIENT SITES ACOUND THE M4 CORRIDOR. WITH TEAM VISITS TO EAST MIDLANDS OCCASSIONALLY Salary: Up to £110k (wiggle room for the right candidate We are seeking an experienced Technical Pre-Sales Consultant to bridge the gap between customer requirements, cyber security challenges, and technical solution delivery. This role combines cyber security consultancy, solution architecture, technical leadership, and business development, supporting customers throughout the early stages of complex technology programmes. Working closely with senior customer stakeholders, architects, engineering teams, and business leaders, you will act as a trusted technical advisor, helping organisations define requirements, shape secure architectures, and develop solutions that address operational and business objectives. The position requires a strong blend of technical credibility, customer engagement skills, and commercial awareness. You will lead technical pre-sales engagements across cyber security, networking, cloud, and information assurance domains, engaging confidently with senior responsible owners, programme directors, chief architects, and technical decision-makers. Capture, analyse, and translate customer business and technical requirements into solution architectures, technical proposals, statements of work, and bid responses. Provide technical leadership throughout the sales lifecycle, ensuring proposed solutions are technically robust, commercially viable, and aligned with customer objectives. Develop high-level and detailed solution architectures encompassing secure systems integration, interoperability, cross-domain information sharing, cloud infrastructure, network design, and security controls. Work closely with engineering and product teams to ensure customer requirements are clearly understood and reflected in solution delivery. Provide technical oversight and assurance for bids, proposals, and customer-facing documentation, ensuring accuracy, consistency, and alignment with industry standards and best practices. Support security accreditation and assurance activities, collaborating with security authorities, accrediting bodies, and customer security teams to address technical risks and define compliant architectures. Maintain a detailed understanding of cyber security technologies, market trends, emerging threats, and competitor capabilities, using this knowledge to identify opportunities, influence product direction, and support strategic growth initiatives. Represent the organisation at customer meetings, industry events, workshops, demonstrations, and technical presentations, acting as a recognised subject matter expert across security architecture, secure information exchange, and systems integration. The successful candidate will demonstrate experience in technical pre-sales, solution architecture, cyber security consulting, or systems engineering within complex enterprise, defence, government, or critical national infrastructure environments. You should have a proven ability to engage with both business and technical stakeholders, produce high-quality technical documentation, and communicate complex concepts at multiple levels of technical detail. Strong knowledge of cyber security principles, information assurance frameworks, secure systems design, networking technologies, and cloud infrastructure is essential. Experience designing and integrating secure solutions across heterogeneous environments is highly desirable. The role requires excellent communication and presentation skills, strong stakeholder management capabilities, and the ability to lead technical discussions from initial discovery through to solution definition and customer approval. Desirable Knowledge Experience with security accreditation processes, risk management frameworks, secure-by-design methodologies, and government or defence security environments. Understanding of enterprise networking technologies, including segmentation, VLAN design, routing, fibre-optic infrastructure, and secure communications. Familiarity with Agile delivery methodologies and the challenges associated with integrating complex technology solutions across multi-vendor environments. We welcome diverse applicants and are dedicated to treating all applicants with dignity and respect, regardless of background.
OT Cyber Security Analyst Culham, Oxfordshire (2 days onsite per week) 50/hour Umbrella 36.43/hour PAYE Contract until 18th December 2026 Active SC Clearance Required (or lapsed within last 12 months) A government backed organisation is hiring an OT Cyber Security Analyst with industry experience in Oil & Gas or Chemical. You must a strong background in SIEM & SOC integration coupled with OT security frameworks IEC 62443, NIST CSF, CAF, ISO 27001 to support the protection and continuous improvement of Operational Technology (OT) environments across critical infrastructure and industrial systems. This is an exciting opportunity to join a highly secure and technically advanced environment working on large-scale, mission-critical infrastructure programmes. The Role You will play a key role in implementing, operating, and improving OT cyber security controls across complex ICS and critical infrastructure environments. The role combines hands-on security engineering with governance, policy creation, monitoring, and operational support. Working closely with engineering teams, SOC providers, and managed service partners, you will help ensure OT systems remain secure, compliant, and aligned to industry frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001. Key Responsibilities Implement and maintain OT security controls across industrial environments Support OT network segmentation and secure remote access solutions Integrate OT environments into SIEM/SOC platforms Develop and tune OT threat detection rules Conduct OT security assessments, gap analysis, and remediation planning Support OT incident response and investigation activities Collaborate with engineering and operations teams to implement secure changes Produce governance documentation, standards, and reporting artefacts Track OT security maturity and continuous improvement initiatives Essential Experience Previous experience within OT/ICS or critical infrastructure environments Background within sectors such as oil & gas, rail, utilities, manufacturing, or chemical processing Strong understanding of OT security frameworks including IEC 62443, NIST CSF, CAF, and ISO 27001 Experience implementing OT security strategies, controls, and standards Knowledge of industrial networks, segmentation, and OT protocols Experience working with engineering and operational technology teams Strong documentation and stakeholder communication skills Familiarity with SIEM/SOC integration within OT environments Active SC Clearance (or lapsed within the last 12 months) Maximum 2 week notice period Desirable OT asset discovery and monitoring tool experience Exposure to NIS regulations / UK CAF compliance Experience with ITSM and service delivery processes One stage interview process, via MS Teams.
Jun 19, 2026
Contractor
OT Cyber Security Analyst Culham, Oxfordshire (2 days onsite per week) 50/hour Umbrella 36.43/hour PAYE Contract until 18th December 2026 Active SC Clearance Required (or lapsed within last 12 months) A government backed organisation is hiring an OT Cyber Security Analyst with industry experience in Oil & Gas or Chemical. You must a strong background in SIEM & SOC integration coupled with OT security frameworks IEC 62443, NIST CSF, CAF, ISO 27001 to support the protection and continuous improvement of Operational Technology (OT) environments across critical infrastructure and industrial systems. This is an exciting opportunity to join a highly secure and technically advanced environment working on large-scale, mission-critical infrastructure programmes. The Role You will play a key role in implementing, operating, and improving OT cyber security controls across complex ICS and critical infrastructure environments. The role combines hands-on security engineering with governance, policy creation, monitoring, and operational support. Working closely with engineering teams, SOC providers, and managed service partners, you will help ensure OT systems remain secure, compliant, and aligned to industry frameworks such as IEC 62443, NIST CSF, CAF, and ISO 27001. Key Responsibilities Implement and maintain OT security controls across industrial environments Support OT network segmentation and secure remote access solutions Integrate OT environments into SIEM/SOC platforms Develop and tune OT threat detection rules Conduct OT security assessments, gap analysis, and remediation planning Support OT incident response and investigation activities Collaborate with engineering and operations teams to implement secure changes Produce governance documentation, standards, and reporting artefacts Track OT security maturity and continuous improvement initiatives Essential Experience Previous experience within OT/ICS or critical infrastructure environments Background within sectors such as oil & gas, rail, utilities, manufacturing, or chemical processing Strong understanding of OT security frameworks including IEC 62443, NIST CSF, CAF, and ISO 27001 Experience implementing OT security strategies, controls, and standards Knowledge of industrial networks, segmentation, and OT protocols Experience working with engineering and operational technology teams Strong documentation and stakeholder communication skills Familiarity with SIEM/SOC integration within OT environments Active SC Clearance (or lapsed within the last 12 months) Maximum 2 week notice period Desirable OT asset discovery and monitoring tool experience Exposure to NIS regulations / UK CAF compliance Experience with ITSM and service delivery processes One stage interview process, via MS Teams.
Senior Cyber Security Operations Centre (CSOC) Consultant DV Cleared Corsham / Hybrid Rate: 700 - 750pd (Inside IR35) We're supporting a major national security programme seeking an experienced Cyber Security Operations Centre (CSOC) Consultant to join a growing cyber security function delivering services within a highly secure environment. This is an opportunity to play a key role in protecting critical systems and services, working alongside security, infrastructure, and cloud teams to enhance security monitoring, incident response, threat detection, and operational resilience. The successful candidate will bring a strong background in cyber security operations, ideally gained within Defence, Government, or other highly regulated environments. Responsibilities Support the operation and continual improvement of cyber security monitoring and incident response capabilities. Investigate and manage cyber security incidents, ensuring appropriate containment, remediation, and reporting. Analyse security alerts, events, and threat intelligence to identify potential risks and vulnerabilities. Develop and refine detection use cases, correlation rules, and security monitoring processes. Work closely with cloud, infrastructure, and engineering teams to improve security posture across complex environments. Contribute to threat hunting activities and proactive identification of emerging threats. Support security assurance, risk management, and compliance activities. Produce technical documentation, reports, and recommendations for both technical and non-technical stakeholders. Provide subject matter expertise on security operations best practice within secure government environments. Experience Required Current UK Developed Vetting (DV) clearance. Strong experience within a Security Operations Centre (SOC) or Cyber Security Operations Centre (CSOC) environment. Experience investigating and responding to cyber security incidents. Knowledge of SIEM platforms and security monitoring technologies. Understanding of threat detection, threat hunting, vulnerability management, and incident response methodologies. Experience working within Defence, Central Government, or other secure environments. Strong stakeholder engagement and communication skills. Desirable Experience Experience supporting cloud-hosted environments, particularly Google Cloud Platform (GCP). Experience of MOD Cloud (MODCloud) programmes or secure cloud transformation initiatives. Familiarity with NCSC guidance and secure-by-design principles. Knowledge of security frameworks including JSP 440, JSP 604, NIST, ISO27001, or Cyber Assessment Framework (CAF). Relevant certifications such as CISSP, CCSP, GCIH, GCIA, Security+, or similar. We are looking to have someone in position by 1st July 2026, so if you meet the criteria outlined and want to know more, please get in touch ASAP. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
Jun 19, 2026
Contractor
Senior Cyber Security Operations Centre (CSOC) Consultant DV Cleared Corsham / Hybrid Rate: 700 - 750pd (Inside IR35) We're supporting a major national security programme seeking an experienced Cyber Security Operations Centre (CSOC) Consultant to join a growing cyber security function delivering services within a highly secure environment. This is an opportunity to play a key role in protecting critical systems and services, working alongside security, infrastructure, and cloud teams to enhance security monitoring, incident response, threat detection, and operational resilience. The successful candidate will bring a strong background in cyber security operations, ideally gained within Defence, Government, or other highly regulated environments. Responsibilities Support the operation and continual improvement of cyber security monitoring and incident response capabilities. Investigate and manage cyber security incidents, ensuring appropriate containment, remediation, and reporting. Analyse security alerts, events, and threat intelligence to identify potential risks and vulnerabilities. Develop and refine detection use cases, correlation rules, and security monitoring processes. Work closely with cloud, infrastructure, and engineering teams to improve security posture across complex environments. Contribute to threat hunting activities and proactive identification of emerging threats. Support security assurance, risk management, and compliance activities. Produce technical documentation, reports, and recommendations for both technical and non-technical stakeholders. Provide subject matter expertise on security operations best practice within secure government environments. Experience Required Current UK Developed Vetting (DV) clearance. Strong experience within a Security Operations Centre (SOC) or Cyber Security Operations Centre (CSOC) environment. Experience investigating and responding to cyber security incidents. Knowledge of SIEM platforms and security monitoring technologies. Understanding of threat detection, threat hunting, vulnerability management, and incident response methodologies. Experience working within Defence, Central Government, or other secure environments. Strong stakeholder engagement and communication skills. Desirable Experience Experience supporting cloud-hosted environments, particularly Google Cloud Platform (GCP). Experience of MOD Cloud (MODCloud) programmes or secure cloud transformation initiatives. Familiarity with NCSC guidance and secure-by-design principles. Knowledge of security frameworks including JSP 440, JSP 604, NIST, ISO27001, or Cyber Assessment Framework (CAF). Relevant certifications such as CISSP, CCSP, GCIH, GCIA, Security+, or similar. We are looking to have someone in position by 1st July 2026, so if you meet the criteria outlined and want to know more, please get in touch ASAP. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.
Alexander Mann Solutions - Contingency
City, Derby
AMS is a global workforce solutions partner committed to creating inclusive, dynamic, and future-ready workplaces. We help organisations adapt, grow, and thrive in an ever-evolving world by building, shaping, and optimising diverse talent strategies. Our Contingent Workforce Solution (CWS) is one way we support our clients. Acting as an extension of their recruitment teams, we connect them with skilled interim and temporary professionals, fostering workplaces where everyone can contribute and succeed. On behalf of our globally respected client who develop cutting-edge technologies that deliver clean, safe and competitive solutions to meet the planet's vital power needs we are looking for a Information Assurance Specialist for a 12 month contract based in Derby . Please note this role is hybrid position in which you would be required to work onsite 3 days per week and work from home 2 days per week. Purpose of the role: In this role you will be providing Information Assurance through the application of policy, standards and best practice to support the IT product teams. You will also be required to work with other IA specialists to ensure a common approach to cyber security issues is developed and documented. What you'll do: Reporting into the Lead Information Assurance Specialist, your primary responsibilities will be to: Support the development and continual improvement of Information Security policies, standards and procedures in line with ISO/IEC 27000, promoting a secure by design culture informed by business impact assessments, risk appetite and regulatory requirements. Serve as the Cyber Security representative on major programmes and product teams, providing authoritative guidance and approvals to ensure secure design, build and operation across IT, OT and AI enabled systems. Represent Cyber Security across strategic initiative including research collaborations, joint ventures and supply chain engagements ensuring security requirements and secure by design principles are embedded from concept through delivery. Assess organisational and technical compliance with security policies and standards, conduct configuration and architecture reviews, and evaluate adherence to legal, regulatory and industry obligations. Prioritise remediation using business impact assessments. Provide expert advice on the selection, implementation and assurance of security controls, ensuring alignment with NIS2, aerospace standards, export controls and emerging AI regulatory expectations. Advise stakeholders on risk reduction strategies, promote secure behaviours and support security awareness initiatives to strengthen secure by design engineering and decision making. Identify, assess and manage cyber security risks and concessions, ensuring decisions are guided by business impact assessments and integrated into enterprise risk and operational safety processes. Contribute to broader cyber security initiatives and capability uplifts, including OT security maturity, AI assurance, supply chain resilience and secure development lifecycle improvements. Apply and oversee security controls required by policy, risk assessment and regulatory drivers, ensuring the confidentiality, integrity and availability of business systems, including ICS, connected manufacturing platforms and AI supported operational systems. The skills you'll need: Strong overall understanding of information systems, their applications and lifecycle practices, with solid grounding in information security principles and governance. Proven ability to interpret and apply IT security compliance requirements while maintaining a pragmatic, risk based approach to standards implementation. Effective communicator with the ability to influence stakeholders and build consensus in formal and cross functional environments. Broad knowledge of cyber and information security, supported by relevant professional qualifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer/Lead Auditor). Experience or strong awareness of enterprise cloud technologies, architectures and capabilities (e.g., Azure, AWS, GCP). Understanding of Operational Technology (OT) environments and the unique security considerations associated with industrial control systems. Experience with Governance, Risk and Compliance (GRC) tooling (e.g., Zen, Archer, ServiceNow GRC, OneTrust, MetricStream), including managing risk registers, control frameworks and compliance workflows at scale. Next steps We will only accept workers operating via an Umbrella or PAYE engagement model. If you are interested in applying for this position and meet the criteria outlined above, please click the link to apply and we will contact you with an update in due course. AMS, a Recruitment Process Outsourcing Company, may in the delivery of some of its services be deemed to operate as an Employment Agency or an Employment Business
Jun 19, 2026
Contractor
AMS is a global workforce solutions partner committed to creating inclusive, dynamic, and future-ready workplaces. We help organisations adapt, grow, and thrive in an ever-evolving world by building, shaping, and optimising diverse talent strategies. Our Contingent Workforce Solution (CWS) is one way we support our clients. Acting as an extension of their recruitment teams, we connect them with skilled interim and temporary professionals, fostering workplaces where everyone can contribute and succeed. On behalf of our globally respected client who develop cutting-edge technologies that deliver clean, safe and competitive solutions to meet the planet's vital power needs we are looking for a Information Assurance Specialist for a 12 month contract based in Derby . Please note this role is hybrid position in which you would be required to work onsite 3 days per week and work from home 2 days per week. Purpose of the role: In this role you will be providing Information Assurance through the application of policy, standards and best practice to support the IT product teams. You will also be required to work with other IA specialists to ensure a common approach to cyber security issues is developed and documented. What you'll do: Reporting into the Lead Information Assurance Specialist, your primary responsibilities will be to: Support the development and continual improvement of Information Security policies, standards and procedures in line with ISO/IEC 27000, promoting a secure by design culture informed by business impact assessments, risk appetite and regulatory requirements. Serve as the Cyber Security representative on major programmes and product teams, providing authoritative guidance and approvals to ensure secure design, build and operation across IT, OT and AI enabled systems. Represent Cyber Security across strategic initiative including research collaborations, joint ventures and supply chain engagements ensuring security requirements and secure by design principles are embedded from concept through delivery. Assess organisational and technical compliance with security policies and standards, conduct configuration and architecture reviews, and evaluate adherence to legal, regulatory and industry obligations. Prioritise remediation using business impact assessments. Provide expert advice on the selection, implementation and assurance of security controls, ensuring alignment with NIS2, aerospace standards, export controls and emerging AI regulatory expectations. Advise stakeholders on risk reduction strategies, promote secure behaviours and support security awareness initiatives to strengthen secure by design engineering and decision making. Identify, assess and manage cyber security risks and concessions, ensuring decisions are guided by business impact assessments and integrated into enterprise risk and operational safety processes. Contribute to broader cyber security initiatives and capability uplifts, including OT security maturity, AI assurance, supply chain resilience and secure development lifecycle improvements. Apply and oversee security controls required by policy, risk assessment and regulatory drivers, ensuring the confidentiality, integrity and availability of business systems, including ICS, connected manufacturing platforms and AI supported operational systems. The skills you'll need: Strong overall understanding of information systems, their applications and lifecycle practices, with solid grounding in information security principles and governance. Proven ability to interpret and apply IT security compliance requirements while maintaining a pragmatic, risk based approach to standards implementation. Effective communicator with the ability to influence stakeholders and build consensus in formal and cross functional environments. Broad knowledge of cyber and information security, supported by relevant professional qualifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer/Lead Auditor). Experience or strong awareness of enterprise cloud technologies, architectures and capabilities (e.g., Azure, AWS, GCP). Understanding of Operational Technology (OT) environments and the unique security considerations associated with industrial control systems. Experience with Governance, Risk and Compliance (GRC) tooling (e.g., Zen, Archer, ServiceNow GRC, OneTrust, MetricStream), including managing risk registers, control frameworks and compliance workflows at scale. Next steps We will only accept workers operating via an Umbrella or PAYE engagement model. If you are interested in applying for this position and meet the criteria outlined above, please click the link to apply and we will contact you with an update in due course. AMS, a Recruitment Process Outsourcing Company, may in the delivery of some of its services be deemed to operate as an Employment Agency or an Employment Business
