37 jobs found

Network DNS Architect Location: Wokingham, UK Work Mode: Office based (5 days per week) Contract Type: Contract Duration: 6 months Rate: 510 per day (Inside IR35) We are seeking an experienced Network DNS Architect to design, implement, and manage enterprise-scale DNS infrastructure within a large, complex environment. This role is ideal for a senior networking professional with deep expertise in DNS architecture, network design, and security, ideally with experience working in regulated or secure environments. You will take ownership of DNS strategy across on-premises, cloud, and hybrid infrastructures, ensuring high availability, resilience, and strong security controls. The role requires close collaboration with network, security, and cloud engineering teams, along with the ability to provide technical leadership and mentorship. Key Responsibilities Design and architect scalable and resilient DNS solutions across enterprise environments Define DNS strategy including high availability, redundancy, and disaster recovery Manage and optimise enterprise DNS platforms such as Infoblox, BIND, BlueCat, or Microsoft DNS Implement DNS security controls including DNSSEC, DDoS mitigation, and threat protection Troubleshoot complex DNS and network infrastructure issues Work closely with network, security, and cloud teams on integration and optimisation Produce technical documentation, standards, and operational procedures Provide technical leadership and guidance to engineering teams Required Skills and Experience Strong background in DNS architecture and enterprise network design Deep understanding of DNS protocols (UDP/TCP, recursive and authoritative DNS) Strong IP networking knowledge including TCP/IP, routing, and switching Hands-on experience with enterprise DNS platforms (Infoblox, BIND, BlueCat, or Microsoft DNS) Experience with cloud DNS solutions such as AWS Route 53, Azure DNS, or Google Cloud DNS Knowledge of network security principles and DNS protection mechanisms Experience designing highly available and resilient systems Strong troubleshooting and analytical skills Preferred Experience Security clearance or eligibility for security clearance Certifications such as CCNP, CCIE, Infoblox certification, or cloud certifications Experience in government, utilities, or other regulated sectors Soft Skills Strong stakeholder communication and collaboration skills Ability to work effectively in secure environments Leadership and mentoring capability Strong problem-solving mindset

Senior Cloud Platform Engineer (Azure & AWS) Location: Milton Keynes/Hybrid (3 days in office p/w) Rate: 500 - 550 per day Contract: 6 months initial IR35: Inside IR35/Umbrella Clearance: Active SC/DV preferred Are you a Senior Cloud Platform Engineer with strong Azure experience and good exposure to AWS? This is an immediately available contract role working on a secure cloud programme. The role will involve supporting the build, migration and day-to-day operation of cloud platforms across Azure and AWS. You will be working across cloud readiness, platform build, Infrastructure as Code, DevSecOps tooling and ongoing cloud support. There will also be a strong focus on migrating legacy applications into cloud environments, improving platform reliability and making sure services are secure, compliant and fit for purpose. This would suit a hands-on cloud engineer who has built and supported Azure platforms, worked with IaC tools such as Terraform or Bicep, and is comfortable operating in secure, regulated or public sector environments. This is a strong opportunity for a Senior Cloud Platform Engineer to join a secure cloud programme and work across Azure, AWS, IaC, DevSecOps, migration and platform operations. The Role: Build, configure and support cloud platforms across Azure and AWS Work on cloud readiness, application discovery and migration activity Build and maintain cloud landing zones Develop and maintain Infrastructure as Code using Terraform, Bicep or AWS tooling Support CI/CD pipelines and DevSecOps tooling Configure cloud networking, including VNets, service endpoints, firewalls, DNS and VPN connectivity Support monitoring, alerting, logging, backup, restore and cost optimisation Work across cloud security, IAM, Zero Trust principles and compliance requirements Act as a senior escalation point for complex cloud infrastructure issues Explain technical options clearly to senior stakeholders and non-technical teams The Person: Strong hands-on Azure platform experience Good AWS experience within multi-cloud or hybrid environments Strong Terraform, Bicep or wider IaC experience Experience with CI/CD pipelines and DevSecOps tooling Cloud migration experience, ideally using Azure Migrate or AWS migration tooling Strong understanding of cloud networking, monitoring, logging and IAM Experience working in secure, regulated, government or public sector environments Knowledge of NCSC, GDS, Secure by Design or UK Government technology standards would be useful Active SC or DV clearance preferred Relevant certifications: Candidates should ideally hold at least one of the following: Microsoft Azure Administrator, AZ-104 Microsoft DevOps Engineer, AZ-400 AWS Certified Associate level or above Azure Solutions Architect Expert, AZ-305, would be beneficial Rise Technical Recruitment Ltd acts an employment agency for permanent roles and an employment business for temporary roles. The salary advertised is the bracket available for this position. The actual salary paid will be dependent on your level of experience, qualifications and skill set and will be decided by our client, the employer. Rise are not responsible or liable for any hiring decisions made by the end client. We are an equal opportunities company and welcome applications from all suitable candidates.

Location Bristol, London, Newcastle-upon-Tyne, Reading, Warrington, York About the job Job summary Defra is the UK government department responsible for safeguarding our natural environment, supporting our world-leading food and farming industry, and sustaining a thriving rural economy. Our broad remit means we play a major role in people's day-to-day life, from the food we eat, and the air we breathe, to the water we drink. Digital, Data, Technology and Security (DDTS) is the trusted team for digital across the entire Defra Group. We have around 1000 colleagues across DDTS and our ambition is to make it easier and faster than ever for people to interact with Defra. If you are ready to drive innovation and push boundaries, we want to hear from you. Join us and together we will create a great place for living, and a green and healthy future for all. Find out more about DDTS: Defra digital, data and technology blog LinkedIn Defra Jobs We are Government Digital and Data Candidate Information Pack V3 - 1 Job description Defra is delivering large-scale transformation across its digital, data and technology estate, including the Future Network Procurement Project (FNPP), identity modernisation initiatives, and hosting and cloud transformation. Within the Digital, Data and Technology Services (DDTS) function, the Architecture and Governance team provides technical authority, design leadership, and assurance across enterprise services. We are recruiting multiple Lead Technical Specialist Architects to provide domain leadership in: Network & Connectivity (FNPP) Identity & Access (Active Directory) Hosting, Cloud & Service Architecture These roles operate at the centre of complex, multi-supplier programmes, ensuring designs are secure, operable, aligned to strategy, and deliverable at scale. As a Lead Technical Specialist Architect, you will act as the technical authority within your domain, providing leadership across programmes and services. You will shape strategy, assure complex designs, and guide delivery teams and suppliers in a federated environment. You will work across security, operations, and delivery to ensure coherent end-to-end architectures, balancing strategic direction with hands-on design leadership. Please note these posts require Security Check (SC) clearance. To gain (SC) clearance all applicants are required to have been a UK resident for a minimum of 5 years. If this requirement is not met, the individual will not be able to progress their application further. Person specification Across all roles, you will: Act as the technical authority for your domain, supporting critical architectural decisions Lead and assure technical designs across the full lifecycle (HLD, LLD, transition and implementation) Ensure alignment to enterprise architecture principles, security standards, and operational requirements Challenge supplier designs and drive technical quality and consistency Identify, manage, and communicate architectural risks and dependencies Represent your domain in governance forums, providing clear recommendations to senior stakeholders Ensure solutions are secure, resilient, operable, and supportable Contribute to domain standards, patterns, and architectural roadmaps Support knowledge transfer to internal teams to build long-term capability Domain Focus Areas: Network & Connectivity (FNPP) SD-WAN, DIA, LAN, Wi Fi and network foundation services (DNS, DHCP, NTP) Secure access patterns (e.g. internet/private access) Supplier-led delivery and transition (including WITO) Identity & Access (Active Directory) Active Directory architecture (legacy and target state) Domain consolidation and identity modernisation Identity dependencies across applications and services Hosting, Cloud & Service Architecture Hybrid and multi-cloud (on-prem, Azure, AWS) Hosting and storage strategy and datacentre migration CMDB/CSDM modelling and service architecture governance Technical input to procurement and supplier evaluation Person Specification Responsibilities You will: Define and maintain domain architecture (principles, standards, patterns, roadmaps) Lead technical design for high-impact, complex services and programmes Guide and assure architects, delivery teams, and suppliers Use governance and assurance to support decision-making and manage risk Contribute to the architecture community through mentoring and leadership Skills and Experience Essential Significant experience in enterprise architecture within a large, complex organisation Proven ability to act as a technical authority across programmes or services Strong experience of architectural governance, assurance, and risk management Experience working in multi-supplier environments, including design challenge Ability to lead complex design decisions across the delivery lifecycle Strong stakeholder engagement, including influencing at senior levels Ability to communicate complex technical issues clearly to technical and non-technical audiences Domain-Specific Experience (one or more) Network & Connectivity Enterprise network architecture (WAN/LAN/Wi Fi) SD-WAN and modern network/security architectures Identity & Access Active Directory architecture (including legacy environments) Identity modernisation and dependency management Hosting, Cloud & Service Architecture Hybrid/multi-cloud architecture (Azure, AWS, on-prem) Service modelling (CMDB/CSDM) and enterprise service architecture One or more of the following: Experience of large-scale transformation, transition, or procurement programmes Understanding of secure-by-design and government security expectations Experience mentoring and developing architects or technical specialists Experience of ServiceNow or equivalent platforms (for hosting/service roles) Experience of modern identity platforms (e.g. Entra ID)

DV Cleared Infrastructure Test Engineers x 2 Location: Onsite in Hamsphire Contract Length: Initial 12 Months Rate: 480 to 530 per day - Outside IR35 Clearance: Active DV Clearance Required We are seeking experienced DV Cleared Infrastructure Test SMEs to support a major secure infrastructure programme. Working within a complex technical environment, you will be responsible for the planning, execution and assurance of infrastructure testing activities across critical platforms and services. The successful candidates will provide hands-on testing expertise, ensuring infrastructure components are validated against functional, performance and operational requirements while supporting defect management and stakeholder reporting throughout the test lifecycle. Key Responsibilities Develop, review and execute Infrastructure Test Plans, Test Scripts and Test Cases. Perform functional, integration, system and performance testing across infrastructure environments. Manage defects through their full lifecycle, including identification, logging, tracking and resolution validation. Produce comprehensive test evidence, reports and assurance documentation. Validate infrastructure deployments against technical and business requirements. Support test readiness reviews, test execution activities and operational acceptance processes. Work closely with Infrastructure Engineers, Architects, Service Delivery teams and third-party suppliers. Identify testing risks, issues and dependencies and provide mitigation recommendations. Contribute to continuous improvement of testing processes, methodologies and tooling. Essential Experience Active DV Clearance. Proven experience delivering infrastructure testing within secure, complex or enterprise-scale environments. Strong understanding of the full test lifecycle, including planning, execution, defect management and reporting. Experience producing test strategies, plans, scripts and test evidence. Hands-on experience conducting functional, non-functional and performance testing. Ability to work independently within highly secure environments. Strong stakeholder engagement and communication skills. Desirable Technical Experience We are particularly interested in candidates with expertise in one or more of the following areas: Infrastructure Test SME - Virtual Desktop & Windows Technologies Virtual Desktop Infrastructure (VDI) environments. Windows Server administration and testing. Proxy services and proxy chaining technologies. Enterprise authentication and access management. End-user computing and desktop service validation. Infrastructure Test SME - DNS & Virtualisation DNS infrastructure and associated services. VMware vSphere and virtualisation platforms. Infrastructure services testing and validation. Network services and enterprise platform testing. Performance and resilience testing of virtualised environments.

About The Role: The Crowd is partnering with a globally renowned, mid-sized architecture and interior design studio celebrated for its high-end hospitality and residential projects who are seeking a new IT Manager for their West London studio. This is a standalone IT role in London within a medium-sized studio, with close collaboration across international offices. You will take ownership of the London IT infrastructure while liaising with global IT teams to ensure systems, security, and processes align with global standards. Alongside leadership and strategy, you will take a hands-on approach, working closely with the wider studio to ensure all technical issues and troubleshooting are resolved promptly, securely, and effectively. The ideal candidate will have proven experience leading an IT function, be a confident problem-solver, excellent communicator and bring a personable, approachable style to your work. With a strong international footprint and a talented team of creatives, the studio delivers sophisticated, design-led spaces across global destinations. You'll be joining a collaborative, motivated team in a workplace that values growth and support, offering professional development, social events, private medical and dental insurance, hybrid working, bonuses, and more. Key Responsibilities: Lead and oversee day-to-day IT operations, including infrastructure, servers, networks, cybersecurity, systems and applications Design, implement and maintain secure, scalable IT and cybersecurity solutions aligned with business needs Develop and enforce IT policies, procedures and security standards in line with global requirements Manage system upgrades, server virtualisation, patching, monitoring and disaster recovery planning Provide 1st-3rd line support, escalating issues to vendors when necessary and ensuring timely resolution. Drive continuous improvement through automation, process optimisation and technology enhancements Oversee IT assets, vendor relationships, contracts and cost control Support the evaluation, implementation and ongoing performance of new systems and technologies Collaborate closely with international IT teams across time zones Key Skills / Requirements: Degree-qualified in IT, Computer Science or a related discipline Extensive IT experience with a strong track record in senior or managerial roles, preferably within an architecture or design studio Deep technical knowledge of network infrastructure and cybersecurity, including cloud platforms and enterprise systems Experience managing IT security audits, risk assessments and compliance frameworks Proficient with cloud software such as Azure, migration & upgrade of Active Directory, GPO, DNS, DHCP, etc Confident leader with experience managing teams and third-party providers Strong troubleshooting, analytical and problem-solving skills Excellent communication skills with the ability to engage both technical and non-technical stakeholders Highly organised, proactive and able to manage multiple priorities in a fast-paced environment To apply for this position please click on the apply button to attach your CV (and portfolio for design positions). By applying for this role, you are confirming that you agree to our Privacy Policy (full details are shown at the bottom of our website), and that all details submitted by you are correct and to the best of your knowledge. The Crowd is an equal opportunities employer and agency.

Azure Technical Architect (SC Security Cleared) Preston - (1-2 days a month onsite/the rest remote) 12 Months £519.16pd inside IR35/Umbrella Due to the urgent nature of the role candidates must have valid and transferrable SC security clearance. Role Description The Azure Architect is responsible for designing secure, scalable, and resilient cloud architectures on Microsoft Azure that align with organisational strategy, governance, and security requirements. This role provides architectural leadership across cloud infrastructure, networking, identity, security, data services, and application platforms. The Azure Architect develops reference architectures, ensures engineering quality, and leads cloud transformation initiatives, partnering with security, operations, development, and leadership teams to deliver compliant and modern cloud solutions. Core Duties Define and maintain Azure cloud architecture and ensure alignment with organisational strategy and cloud governance. Lead the design of secure, scalable, and cost optimised Azure solutions across IaaS, PaaS, and container platforms. Provide architectural oversight, assurance, and guidance for cloud engineering teams and delivery partners. Own Azure landing zone patterns, governance models, and enterprise cloud standards. Drive adoption of cloud native capabilities, automation, and modern platform engineering practices. Partner with cybersecurity teams to embed Zero Trust, network segmentation, and least privilege identity models. Engage with stakeholders across the business to translate requirements into actionable cloud architectures. Guide complex cloud migrations, re platforming efforts, and application modernisation programmes. Maintain architectural artefacts such as HLDs, reference architectures, diagrams, and standards. Enhance platform reliability, security, and operational readiness through architectural improvements. Design enterprise Azure landing zones, network topology, identity integrations, governance, and operational models. Architect Azure compute solutions including VMs, VMSS, App Services, Functions, and AKS. Define storage, backup, BCDR, and data protection strategies using Azure native capabilities. Lead the design of Azure network infrastructure including VNets, Firewalls, Private Link, routing, and secure connectivity. Establish governance baseline with Azure Policy, RBAC, tagging standards, and cost management principles. Support CI/CD and DevOps patterns using GitHub Actions, DevOps pipelines, Infrastructure as Code, and automation. Define observability standards using Azure Monitor, Log Analytics, alerts, dashboards, and diagnostics. Review and validate engineering designs, ensuring alignment to standards and architectural patterns. Provide expert guidance for hybrid cloud, express routes, VPN gateways, and identity integrations with Entra ID. Lead cloud security architecture including encryption, key management, privileged access, and workload protections. Support capacity planning, environment design, life cycle management, and platform scalability. Engage in incident reviews, risk assessments, and continuous platform improvements. Knowledge, Skills & Qualifications Knowledge: In depth understanding of Azure architecture across IaaS, PaaS, networking, identity, and security services. Knowledge of Azure landing zone design, Cloud Adoption Framework, and Architected Framework principles. Strong understanding of Azure networking including virtual networks, segmentations, Firewalls, DNS, routing, and connectivity patterns. Familiarity with container architecture, AKS, registries, and cloud?native deployment patterns. Understanding of hybrid cloud, identity federation, Entra ID, service principals, and managed identities. Knowledge of storage architectures, resiliency patterns, backups, and Azure Site Recovery. Understanding of monitoring, observability, and operational readiness within Azure environments. Familiarity with DevOps, CI/CD, and Infrastructure?as?Code concepts and tooling. Knowledge of cloud security concepts including Zero Trust, workload protection, encryption, and compliance controls. Awareness of cost management, optimisation techniques, and cloud financial governance. Skills: Ability to design enterprise?grade Azure solutions using architectural best practices and security frameworks. Strong communication skills to articulate architectural decisions to engineers, leaders, and business stakeholders. Skilled in reviewing technical designs and providing actionable architectural guidance. Ability to work across multiple teams including engineering, security, networking, and development. Strong diagramming and documentation skills using Visio, Lucidchart, or similar tools. Ability to lead workshops, architectural reviews, and design sessions. Skilled in interpreting business requirements and translating them into technical architecture. Strong analytical and diagnostic capabilities for complex cloud problems. Hands on familiarity with IaC (eg, Bicep, Terraform), Scripting, and automation. Ability to drive cloud adoption, standardisation, and operational maturity. Qualifications: Microsoft Certified: Azure Solutions Architect Expert (AZ-305) (highly desirable). Additional certifications such as Azure Administrator, Azure Security Engineer, or DevOps Engineer Expert. Architecture frameworks such as TOGAF, SABSA, or cloud-centric equivalents (beneficial). Proven experience delivering large'scale Azure transformations or migrations. Strong background in cloud engineering, infrastructure architecture, or platform engineering. Experience working in complex enterprise environments or regulated industries. ITIL Foundation or similar operational governance exposure. Evidence of continuous learning in cloud, architecture, and security disciplines. Degree in Computer Science, Engineering, or equivalent industry experience (preferred but not required).

An exciting opportunity for a passionate Network Security Engineer to join a unique, multi-national Information Management function. Ideal candidates should be committed to protecting our critical systems and ensuring the integrity and security of our network infrastructure. Salary: Circa £50,000depending on experience+ shift allowance Dynamic (hybrid) working: 5 days per week on-site due to workload classification, working a 24/7 Shift Pattern Security Clearance: British Citizen This role will require DV Clearance. Restrictions and/or limitations relating to nationality and/or rights to work may apply. As a minimum and after offer stage, all successful candidates will need to undergo HMG Basic Personnel Security Standard checks (BPSS) and a Security Check (SC) clearance, which are managed by the MBDA Personnel Security Team. What we can offer you: Company bonus: Up to £2,500 (based on company performance and will vary year to year) Pension: maximum total (employer and employee) contribution of up to 14% Overtime: opportunity for paid overtime Flexi Leave: Up to 15 additional days Enhanced parental leave: offers up to 26 weeks for maternity, adoption and shared parental leave -enhancements are available for paternity leave, neonatal leave and fertility testing and treatments Facilities: Fantastic site facilities including subsidised meals, free car parking and much more The opportunity: Join our forward thinking team as a Network Security Engineer, where you will play a key role in safeguarding our organisations' network infrastructure as part of the 24x7 Internal Security Response (ISR) team. When not involved in incident response and triage activity with the SOC team, you will be responsible for designing, implementing and maintaining robust security solutions to protect against evolving threats. Collaborating with cross-functional teams, you will work on implementing changes securely, identifying vulnerabilities, managing security incidents and ensuring compliance with industry best practices. The role will be involved in the optimisation of network security tools to remediate "purple team" highlighted areas identified for improvement. You will also have the opportunity to immerse your time into the standardisation of network tools. This is a dynamic opportunity to contribute to security initiatives, solve complex challenges, and have a direct impact on the overall resilience of our IT environment. If you are passionate about security and proactive defence, this role is the perfect fit. If you are looking to leverage your technical skills in a values-led company that values innovation and diversity, this is the place to make an impact. What we're looking for from you: ESSENTIALS Solid understanding of networking principles (TCP/IP, DNS, routing, switching, VLANS and load balancing) Strong expertise in configuring, maintaining and troubleshooting firewalls e.g. Cisco, Checkpoint, Palo Alto Demonstrable hands-on experience in next-gen firewalls and advancing security features like IPS/IDS, SSL decryption and deep packet inspection. Proven experience in managing secure proxy solutions (e.g. Bluecoat, F5) and the ability to implement policies for content filtering, SSL inspection and network traffic monitoring. In depth knowledge of security protocols such as IPSec, SSL / TLS, VPNs and two factor authentication. Understanding of network architectures and security zones (DMZ, internal networks). Proficient in monitoring technologies e.g. PRTG, Nagios. DESIRABLES Understanding of cyber security capabilities and their integrations to networks infrastructure. Existing knowledge of / aptitude to learn Darktrace Antigena and Respond, Splunk ES or Log Rhythm tools. Strong ability to interpret complex information via use of packet capture in order to identify malicious traffic in detail, revealing attacker behaviours like C2, exploitation, lateral movement, or data exfiltration. Proven ability to review SOC alerting in collaboration with SOC analysts to effectively triage and manage Tier 1 SOC alerts to the appropriate outcome. Experience with LDAP, and application traffic flow root cause analysis. Previous experience to identify root cause from (TBC for review - Demonstrable understanding of the OSI Reference Model and the network communication protocols, including but not limited to DNS, HTTP/S, SSL, SMTP, FTP/S, LDAP/S. Demonstrable experience with Security Information Event Monitoring Tools and/or Network Packet Capture tools). Our company: Peace is not a given, Freedom is not a given, Sovereignty is not a given MBDA is a leading defence organisation. We are proud of the role we play in supporting the Armed Forces who protect our nations. We partner with governments to work together towards a common goal, defending our freedom. We are proud of our employee-led networks, examples include: Gender Equality, Pride, Menopause Matters, Parents and Carers, Armed Forces, Ethnic Diversity, Neurodiversity, Disability and more We recognise that everyone is unique, and we encourage you to speak to us should you require any advice, support or adjustments throughout our recruitment process. Follow us on LinkedIn (MBDA), X Instagram (MBDA_UK) and Glassdoor or visit our MBDA Careers website for more information.

MOD DV Cleared Network Security Architect Location: Basingstoke, Hampshire (Full-time onsite) Contract: 12-Month Rolling Contract Rate: 600- 700 per day (Outside IR35) Clearance: Active UK MOD DV Clearance Required The Opportunity We are seeking an experienced MOD DV Cleared Network Security Architect to support a high-profile government programme delivering secure and resilient enterprise capabilities within a highly regulated environment. This is an excellent opportunity for an architect with a strong background across both network and infrastructure security domains , capable of translating security requirements into robust technical designs. The successful candidate will play a pivotal role in developing security architectures, producing High-Level Designs (HLDs), conducting control mapping activities, and ensuring solutions align with MOD and government security standards. Due to the nature of the programme, this role requires full-time onsite presence in Basingstoke and an active MOD DV clearance . Key Responsibilities Develop and own High-Level Security Designs (HLDs) for complex network and infrastructure solutions. Define end-to-end security architectures supporting programme objectives and operational requirements. Produce and maintain security design documentation, architectural artefacts and technical decision records. Conduct security control mapping against applicable frameworks and standards. Translate business, operational and security requirements into pragmatic technical solutions. Work closely with infrastructure, network, delivery and security teams to ensure secure-by-design principles are embedded throughout delivery. Review existing environments and identify architectural improvements, risks and remediation activities. Support design governance activities including technical reviews, risk assessments and design authorities. Provide security guidance throughout the project lifecycle, from concept through to implementation. Liaise with stakeholders across engineering, programme management and customer teams to ensure alignment of security objectives. Contribute to accreditation and assurance activities where required. Essential Skills & Experience Security Architecture Proven experience operating as a Security Architect or Network Security Architect within secure government or defence environments. Strong understanding of secure architectural principles and secure-by-design methodologies. Demonstrable experience producing: High-Level Designs (HLDs) Security design documentation Architectural decision records Technical standards and guidance Control Mapping & Assurance Hands-on experience conducting control mapping against recognised security frameworks. Ability to interpret security requirements and demonstrate how technical controls satisfy them. Experience supporting assurance, governance and accreditation activities. Familiarity with: NIST 800-53 NCSC guidance MOD security policies JSP 440 principles Defence assurance processes Network Security TCP/IP, routing and switching VLANs and segmentation Firewalls and security zoning IDS/IPS technologies VPN technologies Load balancing concepts Proxy technologies Network Access Control (NAC) Secure remote access DNS and DHCP services Zero Trust networking concepts

MOD DV Cleared Network Security Architect Location: Basingstoke, Hampshire (Full-time onsite) Contract: 12-Month Rolling Contract Rate: £600-£700 per day (Outside IR35) Clearance: Active UK MOD DV Clearance Required The Opportunity We are seeking an experienced MOD DV Cleared Network Security Architect to support a high-profile government programme delivering secure and resilient enterprise capabilities within a highly regulated environment. This is an excellent opportunity for an architect with a strong background across both network and infrastructure security domains , capable of translating security requirements into robust technical designs. The successful candidate will play a pivotal role in developing security architectures, producing High-Level Designs (HLDs), conducting control mapping activities, and ensuring solutions align with MOD and government security standards. Due to the nature of the programme, this role requires full-time onsite presence in Basingstoke and an active MOD DV clearance . Key Responsibilities Develop and own High-Level Security Designs (HLDs) for complex network and infrastructure solutions. Define end-to-end security architectures supporting programme objectives and operational requirements. Produce and maintain security design documentation, architectural artefacts and technical decision records. Conduct security control mapping against applicable frameworks and standards. Translate business, operational and security requirements into pragmatic technical solutions. Work closely with infrastructure, network, delivery and security teams to ensure secure-by-design principles are Embedded throughout delivery. Review existing environments and identify architectural improvements, risks and remediation activities. Support design governance activities including technical reviews, risk assessments and design authorities. Provide security guidance throughout the project life cycle, from concept through to implementation. Liaise with stakeholders across engineering, programme management and customer teams to ensure alignment of security objectives. Contribute to accreditation and assurance activities where required. Essential Skills & Experience Security Architecture Proven experience operating as a Security Architect or Network Security Architect within secure government or defence environments. Strong understanding of secure architectural principles and secure-by-design methodologies. Demonstrable experience producing: High-Level Designs (HLDs) Security design documentation Architectural decision records Technical standards and guidance Control Mapping & Assurance Hands-on experience conducting control mapping against recognised security frameworks. Ability to interpret security requirements and demonstrate how technical controls satisfy them. Experience supporting assurance, governance and accreditation activities. Familiarity with: NIST 800-53 NCSC guidance MOD security policies JSP 440 principles Defence assurance processes Network Security TCP/IP, routing and switching VLANs and segmentation Firewalls and security zoning IDS/IPS technologies VPN technologies Load balancing concepts Proxy technologies Network Access Control (NAC) Secure remote access DNS and DHCP services Zero Trust networking concepts

About the Role We are seeking an experienced Senior Platform Engineer to join a high-performing technology team responsible for designing, building, and maintaining secure, scalable, and reliable cloud platform solutions. The successful candidate will play a key role in managing AWS-based infrastructure, implementing automation and CI/CD pipelines, supporting API platform services, and driving engineering best practices across the organisation. This role requires close collaboration with development, infrastructure, architecture, and product teams to deliver robust platform solutions and improve software delivery processes. Clearance: Must have active Security Clearance. Key Responsibilities Design, build, maintain, and optimise cloud-based platform solutions within AWS environments. Monitor, manage, and enhance platform reliability, performance, and security. Develop and maintain Infrastructure as Code (IaC) using CloudFormation and/or Terraform. Build and manage CI/CD pipelines using Jenkins and GitHub Actions. Support application deployments and operational activities across multiple environments. Work closely with development and infrastructure teams to understand requirements and implement scalable solutions. Contribute engineering expertise to architecture and strategy discussions. Document platform procedures, standards, and operational processes. Troubleshoot complex infrastructure, deployment, networking, and application issues. Drive automation initiatives to improve software delivery and operational efficiency. Essential Skills & Experience Proven experience as a Senior Platform Engineer or similar role. Strong AWS cloud experience, including services such as EC2, API Gateway, Network Load Balancers (NLB), Auto Scaling Groups (ASG), and related platform services. Strong hands-on experience with the Kong Konnect API Platform. Experience with Infrastructure as Code (IaC) using CloudFormation and/or Terraform. Strong Scripting and automation experience. Experience building and maintaining Jenkins pipelines, including multibranch pipelines and Groovy Scripting. Experience with GitHub Actions and CI/CD automation. Hands-on experience with Docker and Kubernetes. Strong Linux administration and troubleshooting skills. Experience with Python Scripting and debugging. Knowledge of Chef configuration management. Strong troubleshooting skills across web services, cloud infrastructure, and deployment pipelines. Understanding of networking concepts including DNS, TLS, routing, VPNs, and edge platforms such as Cloudflare. Preferred Experience Experience working in Agile delivery environments. Experience collaborating with product managers, analysts, designers, and engineering teams. Experience supporting large-scale enterprise platforms and cloud-native environments. Experience driving automation and continuous improvement initiatives.

Network Security Architect Our client is urgently looking for an experienced Network Security Architect to join their team on a permanent basis. Please note, the role is on-site 5 days per week in Oxfordshire. There is flexible working hours and an earlier finish on a Friday. Remote working may be granted on occasion. This is a global role with an initial focus around Network segmentation. You will improve standards across the business and lead technical projects and work closely with technical colleagues and vendors. The current tech stack includes but is not limited to Fortigate, Cisco, SD-Wan and Palo Alto. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus (15%), annual leave, flexible working hours, pension scheme (matched up top 9%), life assurance, private medical, income protection, on-ste canteen and gym and many, many more perks! Network Security Architect - Key Skills: 10+ years hands on experience in network engineering and architecture, with at least 3+ years specialising in large-scale network segmentation 5+ years hands on experience implementing and managing industry leading network security solutions (NGFWs, NDR, SASE, CASB, WAF, NAC, ZTNA) Deep expertise in core networking technologies (SDWAN, MPLS, VPN, IPSec, VLANs etc) Detailed understanding of enterprise network transport protocols (TCP, UDP, ICMP, ARP), infrastructure protocols (DNS, DHCP, BGP, SNMP), common application protocols (SMB, RDP, HTTP, FTP etc) and security protocols (TLS/SSL, IPSec, SSH, SAML, OAuth etc) Proven history of identifying, assessing and remediating network related security risks/misconfigurations Strong technical knowledge of a Microsoft based enterprise IT infrastructure Experience as an architect or lead on large projects spanning multiple countries and cultures Background of defining security standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks/methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website

Should work 2days onsite per week from one of these locations - Edinburgh, Manchester or Leeds In-scope technologies/products: F5 Skillsets required: "Expertise: F5 Big-IP (LTM, GTM/DNS, APM, AWAF), Jenkins, GitHub Proficiencent: DO, AS3, Python and enterprise integrations Familiarity: AppViewX ADC+ Strong understanding: Network technologies, IP Routing protocols, and Firewalls. Experience: Cloud based architectures, CaaS, IaaS. Knowledge: Traditional datacentre hosted architectures Understanding: Operational Resilience and Security Agile methodologies and tooling such as Jira and CI/CD pipelines." Scope of services: "Seeking an Infrastructure engineer with exposure to F5 Networking services. The Study Engineer sits at the front end of delivery. Their job is to take a customer or programme requirement and turn it into a clear, build-ready technical solution for the Delivery and Service teams. The Study Engineer is responsible for the technical discovery and design that happens before build and implementation. Understand application, traffic, security, and resilience requirements. Determine whether an existing F5 pattern can be used or whether a bespoke design is required. Produce design and handover artefacts: A key output of the Study Engineer is documentation that enables delivery without ambiguity. - Approved F5 pattern selection or design alignment. - Completed Study Delivery handover details (VIPs, SSL, persistence, policies, routing, etc.). - Identification of risks, assumptions, and dependencies before build. This ensures Delivery engineers can execute without rework or clarification loops: - Bridges architecture, security, and delivery. - Study Engineers act as a technical translator across teams. - Align solutions with security and governance expectations. - Ensure designs are compatible with the current F5 estate and tooling. - Validate that what's being requested is achievable within platform standards. Needs strong F5 & networking expertise: Although they may not always build configurations themselves, Study Engineers need deep technical understanding to design effectively. - F5 BIG-IP modules (LTM, DNS/GTM, APM, AWAF). - SSL/TLS, traffic management, persistence, health monitoring. - Network fundamentals (routing, firewalls, segmentation). - Automation and tooling awareness (e.g. AppViewX, AS3/DO)."

Cloud Infrastructure Engineer 6-month contract Warwick My Customer is looking for a Platform / Infrastructure Engineer to take ownership of a hybrid technology estate spanning cloud and on-premise environments. This role combines hands-on operational support with technical leadership, driving platform improvements, modernisation initiatives, and ensuring a secure, stable, and scalable infrastructure. Key Skills from the Cloud Infrastructure Engineer: Hybrid Platform Operations : Proven experience managing and supporting production environments across both cloud and on-premise infrastructure. Cloud Platforms & Services : Hands-on experience with major cloud providers (e.g., Azure, AWS, or GCP). Exposure to decommissioning landing Zones. On-Premise Infrastructure Strong background in Windows Server environments and core services such as Active Directory, DNS, and DHCP. Experience with virtualisation technologies such as VMware vSphere/ESXi or Microsoft Hyper-V. Operational Support & Incident Management Governance & Cost Management - Azure Understanding of governance frameworks, cost optimisation strategies, and usage monitoring across cloud and hybrid platforms. Experience with Infrastructure as a code would be beneficial Key Responsibilities from the Cloud Infrastructure Engineer: Manage day-to-day operations of hybrid cloud and on-prem environments, ensuring performance and reliability. Drive cloud modernisation, including migration from legacy Azure environments. Administer and optimise cloud platforms (accounts, networking, identity, security, services). Support on-prem infrastructure, including Windows Server, core services, virtualisation, and connectivity. Act as an escalation point for incidents, leading troubleshooting and root cause analysis. Apply security best practices using automation and Infrastructure as Code. Implement and improve governance, cost control, and compliance standards. Promote best practices in monitoring, backup, resilience, and disaster recovery. Collaborate with architecture and security teams to align with organisational standards. Maintain documentation, procedures, and platform standards. Resolve complex hybrid infrastructure and connectivity issues with cross-team support. The Cloud Infrastructure Engineer is required to work on a basis hybrid in Warwick. Apply now to speak with VIQU IT in confidence. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.

DevOps Engineer - Kubernetes, TerraForm, CI / CD, GCP - Fareham. This role is fully on site. - Salary circa 60,000 plus benefits Build the Infrastructure Behind Critical Payment Systems! On the lookout for a hands-on DevOps Engineer to take ownership of the infrastructure, deployment pipelines and production environments that power my clients growing suite of payment technology products. This is an opportunity to join a business where infrastructure is central to the success of the product. Reporting directly to the CIO, you'll have genuine influence over technical decisions and the autonomy to shape how systems are deployed, secured and operated. The Role You'll be responsible for ensuring software can be deployed quickly, safely and reliably, while maintaining the high levels of security and compliance required within payment processing environments. This is a highly technical, hands-on position where you'll spend your time building, improving and operating infrastructure rather than sitting in meetings discussing it. Working closely with software engineers, you'll help create a seamless developer experience while ensuring production environments remain secure, scalable and resilient. Key Responsibilities Own and maintain production Kubernetes environments, ensuring reliability, security and cost efficiency Design, build and improve CI/CD pipelines that enable fast, safe deployments Manage infrastructure as code across Google Cloud Platform environments using Terraform Maintain and improve local development environments so engineers can run the full platform effectively Enhance monitoring, alerting and observability across all services Support PCI-DSS compliance requirements through secure infrastructure design and operational controls Implement and manage network segmentation, secrets management, access controls and audit processes Collaborate with engineering teams to improve deployment processes and platform reliability Skills & Experience Looking for someone with strong experience operating cloud-native production environments, including: Kubernetes in production environments (GKE preferred) Terraform and Infrastructure as Code CI/CD pipeline design and maintenance Docker and container lifecycle management GitOps workflows using tools such as ArgoCD and Kustomize Strong networking knowledge including DNS, TLS/mTLS, load balancing, VPCs and firewalls Comfortable working from the command line and using Git-based workflows Desirable Experience Experience in any of the following areas would be advantageous: Istio or other service mesh technologies PCI-DSS or other regulated/compliance-driven environments Google Cloud Platform services including KMS, Cloud Armor, Binary Authorization and Datastore Go or PHP debugging capability Local Kubernetes development tooling such as Tilt Monitoring and observability platforms including Prometheus and Grafana What's on offer Direct access to the CIO and influence over infrastructure strategy Significant autonomy and ownership Opportunity to shape tooling, architecture and platform direction Work on business-critical payment systems operating at scale Challenging technical problems with real-world impact A collaborative engineering culture focused on quality, reliability and continuous improvement If you're passionate about cloud infrastructure, Kubernetes, automation and secure systems please send your CV through to (url removed) Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.

Senior IAM Infrastructure Engineer (Contract) Location: Newport, Wales (3-4 days per week on-site) Day Rate: £500 - £550 per day Duration: 12 Months Security Clearance: Active SC Clearance Required (Strictly no dual nationals due to security constraints) The Opportunity Are you a seasoned Infrastructure Engineer with a deep specialization in Identity & Access Management (IAM) and enterprise Microsoft environments? We are looking for a Senior IAM Infrastructure Engineer to play a pivotal role in delivering, optimizing, and supporting mission-critical infrastructure. This role perfectly balances high-level technical delivery, pre-sales solution scoping, and hands-on second-line support. If you thrive in highly secure, fast-paced, and technology-rich environments, this contract offers an incredible opportunity to make a tangible impact. Key Responsibilities As a Senior Engineer, you will span the full life cycle of project delivery and support: Pre-Sales & Scoping: Partner with stakeholders to scope technical solutions, estimate effort/costs, and shape technically accurate proposals. Infrastructure & IAM Management: Administer, optimize, and enhance enterprise environments, focusing heavily on user account administration, network access integrity, data management, and SAN optimization. Integration & Testing: Evaluate and integrate new hardware and software across server, network, storage, and desktop environments. Escalation Support: Provide expert second-line support, ensuring incidents and service requests are resolved swiftly within tight SLA frameworks. Leadership & Docs: High-quality documentation for operational handovers, while occasionally leading small technical teams to drive project tasks to completion. Technical Skills & Experience To hit the ground running, you will need a robust background in enterprise-scale Microsoft and infrastructure technologies: Core Essentials: Active Directory & IAM: Enterprise/multi-forest Active Directory management, Domain Controller installations/migrations, Group Policy (GPO), and a strong understanding of FIM/MIM (Forefront/Microsoft Identity Management) . Messaging: Extensive experience with Exchange 2010/2016, Exchange CUs, and Mail AV/SPAM (Trend IMSVA). Security & Scripting: Solid understanding of SSO/PKI and proficiency with PowerShell for Scripting and reporting. Virtualization & Storage: Strong experience with VMware environments and NetApp storage systems. Operating Systems: Deep knowledge of Windows Server (spanning 2012 through to 2025). Core Networking: Robust understanding of DNS. Highly Desirable: Enterprise Vault, File/Print Clusters, and Thin Client environments. Relevant technical certifications (eg, MCSE or equivalent). A proven track record of working successfully against strict SLA targets. Why This Contract? High-Impact Work: Own and secure mission-critical infrastructure where your expertise directly affects the client's security posture. Diverse Challenges: A brilliant mix of pre-sales architecture, hands-on implementation, and high-level support. Leadership Growth: An excellent opportunity to stretch your leadership muscles by guiding small technical project teams. To Apply: If you hold an active SC Clearance and possess the deep Microsoft and IAM expertise required, please apply with your latest CV and details of your availability.

Network Web Proxy Infra Engineer - Investment Banking - Proxy Tech (F5 BIG-IP, McAfee, Skyhigh, Bluecoat) Our client is looking for a Web Proxy Network Engineer on a contract basis to support the delivery and enhancement of their EMEA network. This role is ideal for someone who already has hands-on experience working with Proxy technologies (such as McAfee, Skyhigh, Blue Coat, or similar), and is ready to step into a fast-paced enterprise environment where you can further deepen your expertise. You will: Support the implementation and configuration of Access Policies, routing and Management of Web Proxies Contribute to change and incident activities within a complex network infrastructure Collaborate with senior engineers and architecture teams to deliver stable, secure, and scalable services We are not looking for someone brand new to the technology - you should already be familiar with the key tools and concepts and be ready to contribute from day one, even if you're still developing full mastery. Core Skills & Experience Required: Hands-on experience supporting or configuring Proxy platforms (eg McAfee, Skyhigh, Blue Coat) Experience or knowledge of Load Balancing technologies such as F5 BIG IP (LTM/GTM) VMWare Next Gen Load Balancer (formerly AVI Networks) Working knowledge of TCP/IP, HTTP/S, SSL certificates, NAT, DNS, and Layer 7 protocols Comfort using CLI and GUI interfaces for network appliance configuration Preferred: Experience building from base and upgrading firmware of Web Proxies Experience of DLP/Malware Protection & Mitigation infrastructure Experience writing or editing iRules, health monitors, or similar load balancing policies Awareness of certificate management, TLS handshake flow, and debugging tools (Wireshark, Fiddler) Contract Role inside IR35 - initial 12 month contract - 3 days a week in office (candidate can be based near Manchester/Liverpool/Stoke/Birmingham) By applying to this job you are sending us your CV, which may contain personal information. Please refer to our Privacy Notice to understand how we process this information. In short, in order to supply you with work finding services, we will hold and process your personal data, and only with your express permission we will share this personal data with a client (or a third party working on behalf of the client) by email or by upload to the Client/third parties vendor management system. By giving us permission to send your CV to a client, this constitutes permission to share the personal data that would be necessary to consider your application, interview you (Phone/video/face to face) and if successful hire you. Scope AT acts as an employment agency for Permanent Recruitment and an employment business for the supply of temporary workers. By applying for this job you accept the Terms and Conditions, Data Protection Policy, Privacy Notice and Disclaimers which can be found at our website.

Contract Investment Banking Data and Security Network Engineer - Load Balancing/Proxy/Cisco/Routing As a Data and Security Network Engineer, your qualifications will include: Proven experience (5 years) as a Load Balancing and Proxy Network Engineer. Proven experience (5 years) implementing and configuring Cisco Switches and Routers. Strong proficiency in configuring and managing load balancers (F5 and AVI) and proxies (Skyhigh Web Gateway). In-depth knowledge of network protocols, security principles, and best practices. Experience in troubleshooting and resolving complex network issues. Relevant certifications (eg, F5, AVI, Cisco) will be an advantage. As a Data and Security Network Engineer, your skills will include: Experience with load balancing technologies (F5, AVI) Ability to configure Skyhigh Web Gateway proxies. Strong DMZ architecture and engineering Experience Experience and working knowledge of VPN designs and configuration on Cisco platforms. Experience and working knowledge of BGP and Multicast Working knowledge of DNS Initial 12 month contract (will be extended further) - inside IR35 - candidate must be near Manchester/Liverpool/Stoke/Birmingham (hybrid working) By applying to this job you are sending us your CV, which may contain personal information. Please refer to our Privacy Notice to understand how we process this information. In short, in order to supply you with work finding services, we will hold and process your personal data, and only with your express permission we will share this personal data with a client (or a third party working on behalf of the client) by email or by upload to the Client/third parties vendor management system. By giving us permission to send your CV to a client, this constitutes permission to share the personal data that would be necessary to consider your application, interview you (Phone/video/face to face) and if successful hire you. Scope AT acts as an employment agency for Permanent Recruitment and an employment business for the supply of temporary workers. By applying for this job you accept the Terms and Conditions, Data Protection Policy, Privacy Notice and Disclaimers which can be found at our website.

Load Balancing Engineer - f5 DNS (GTM), LTM, APM, ASM, FIPS, VMware, tech solutions - CONTRACT Role Overview: The role is within the EMEA Network Engineering team, working on complex technical designs that enable business strategies in accordance with architectural governance, standards and policies. This job facilitates the deployment of Technical Solutions by designing, engineering and implementing configuration across EMEA network infrastructure, along with ensuring Software and Hardware Life Cycle management is implemented on time. Desired Skills Proven experience (5+ years) as a Load Balancing Network Engineer. Proven experience (5+ years) of working with F5 DNS(GTM). Proven Experience (5+ years) of F5 Hardware migration and software upgrade process. Knowledge and experience of working with multiple F5 Modules: LTM, GTM, APM, ASM, SSLO. Knowledge and experience of working with virtual Load Balancers and the supporting infrastructure. Knowledge and experience of working with FIPS modules. Ability to base build and configure Load Balancers to given standards. Knowledge and experience of working with VMware Next Gen Load Balancer (AVI Networks). Knowledge and experience of working with and creating automation scripts. Strong DMZ Infrastructure and Engineering experience. In-depth knowledge of network protocols, security principles, and best practices Working knowledge of DNS and IP Address Management. Network security and compliance. Experience in troubleshooting and resolving complex network issues. Initial 12 month contract (will be extended further) - inside IR35 - candidate must be near Manchester/Liverpool/Stoke/Birmingham (hybrid working) 3 days a week in the office, mandatory By applying to this job you are sending us your CV, which may contain personal information. Please refer to our Privacy Notice to understand how we process this information. In short, in order to supply you with work finding services, we will hold and process your personal data, and only with your express permission we will share this personal data with a client (or a third party working on behalf of the client) by email or by upload to the Client/third parties vendor management system. By giving us permission to send your CV to a client, this constitutes permission to share the personal data that would be necessary to consider your application, interview you (Phone/video/face to face) and if successful hire you. Scope AT acts as an employment agency for Permanent Recruitment and an employment business for the supply of temporary workers. By applying for this job you accept the Terms and Conditions, Data Protection Policy, Privacy Notice and Disclaimers which can be found at our website.

Lead Technical Architect - Networks (DV Cleared) Clearance: Developed Vetting (DV) - mandatory Onsite Requirement: 3 days per week Rate: £750 - £775 per day Inside IR35 Location: Milton Keynes Overview: We are seeking an experienced Lead Technical Architect (Networks) to join our client, reporting directly to the Chief Technology Officer. This is a senior leadership role responsible for defining and governing network architecture across both physical and logical domains. The successful candidate will play a key role in a new project, leading network architecture strategy and ensuring designs are secure, scalable, resilient, and cost-effective, aligned with organisational objectives and enterprise architecture standards. This role requires a strong blend of deep technical expertise, architecture governance, and stakeholder engagement, with a particular emphasis on end-to-end datacentre design and customer-facing delivery. Key Responsibilities: * Lead network architecture across physical and logical environments * Define and govern secure, scalable, and cost-efficient network designs * Act as the primary architect for key project delivery initiatives * Translate business and security requirements into technical solutions * Produce and review high- and low-level designs (conceptual, logical, physical) aligned to TOGAF * Provide leadership and guidance to architects and technical teams * Drive best practices in network automation, provisioning, and orchestration * Influence senior stakeholders through evidence-based recommendations * Support incident resolution and technical escalations * Develop and maintain technical roadmaps aligned to organisational strategy Essential Skills & Experience: Qualifications & Certifications * Degree (or equivalent experience) in Computer Science, Network Engineering, or Telecommunications * Industry certifications or willingness to work towards (TOGAF, ITIL, PRINCE2, Agile) * Professional certifications such as: o CCNP (Cisco) o VCP-NV (VMware) o PCNSE (Palo Alto) o Azure Network Engineer/AWS Solutions Architect (or equivalent experience) Technical Expertise: Proven experience designing and governing secure network architectures across: o VMware (private cloud) o Microsoft on-premise environments o Multi-cloud (Azure and/or AWS) * Strong experience delivering LAN, WAN, hybrid cloud, and datacentre network designs Deep understanding of: o Cisco technologies (ACI, ASA, Firepower, ASR, Catalyst, Nexus) o VMware NSX o Palo Alto Firewalls Networking protocols and technologies: o VLANs, MPLS, IPsec, OSPF, BGP, SD-WAN, SDN o TCP/IP, VPN, DNS, QoS * Experience designing networks in Azure (VNet) and AWS (VPC) Knowledge of: o Zero Trust architecture o Network automation and orchestration o Monitoring tools (SolarWinds, PRTG) o F5 BIG-IP (LTM, ASM) * Understanding of high-grade encryption technologies for secure environments Architecture & Delivery Experience: * Experience producing robust architecture designs using TOGAF frameworks Strong track record of: o Designing secure, resilient environments (ideally government/defence) o Delivering business continuity and disaster recovery solutions o Designing DDoS protection and security controls (WAF, IDS/IPS, EDR/XDR/NDR) * Experience evaluating solution options across cost, quality, time, and risk * Exposure to network automation tools (eg Ansible, Terraform, Python) * Experience working within CI/CD and DevSecOps environments Leadership & Stakeholder Management: * Proven ability to lead and mentor technical teams * Experience influencing senior stakeholders and decision-makers * Ability to act as a key escalation point for complex issues * Strong customer-facing and communication skills Knowledge Requirements: * UK Government and security frameworks, including: o NCSC guidance o GDS standards o Secure by Design principles o Cloud Security Principles o Technology Code of Practice * Experience designing secure/air-gapped environments * Expertise in cloud-native networking and modern architectural practices Desirable Skills: * Membership of professional bodies (eg, BCS, IET) * Experience working at OFFICIAL (or higher) government classification levels * Advanced certifications (eg, CCIE) * Experience with Google Cloud Platform (GCP) networking * Awareness of AI-driven operational optimisation * Strong experience with automation in DevSecOps environments Certes Computing (and all of its subsidiary companies) is committed to promoting equality and diversity in its business operations.

Network Engineering Manager - In this position you will work alongside the Project Management and Engineering teams. There will be opportunities to work with the latest technologies, influence design and deliver systems to the highest quality. You will be responsible for consulting on design, configuring network hardware, commissioning, and delivery of a project's network and telecommunications systems as a department lead. It is essential that you are an excellent communicator with good Client facing skills and have strong network engineering experience and excellent knowledge of wireless networks, fibre optics and telecoms systems. This is a field-based role that also requires international travel. The position will see you working on systems that are deployed in the high end residential market and within the integration of bullet proof systems in the world of high end superyachts. Consult on network design and architecture for yacht and residential projects. Configure, deploy and commission network infrastructure (routing/switching, Wi-Fi, firewalls, WAN). Own technical quality: testing, fault-finding, and final sign-off readiness. Produce and maintain accurate documentation (as-built, configs, IP plans, test results). Provide practical escalation support during build and commissioning. Lead and support a team of engineers on live projects (allocation, guidance, standards, coaching). Manage interfaces with shipyards, builders, owners' reps, and third-party contractors. Report progress, risks, and blockers clearly to the Project Manager. Train and upskill engineers-raise consistency across the department. CCNA - essential CCNP - desirable (or equivalent experience) Strong experience designing and delivering networks end-to-end. VLANs, trunking, STP fundamentals, DHCP/DNS, routing basics (OSPF preferred; BGP a plus). QoS and traffic shaping principles (especially important for voice/video). Multicast/IGMP basics (helpful in AV-over-IP environments). PoE design awareness (budgets, switch selection, edge device demands). Enterprise Wi-Fi deployment and management (controller-based or equivalent). Wi-Fi surveys, coverage analysis and heatmaps (Ekahau or equivalent). Commissioning approach that proves performance, not just "looks connected". Firewall configuration and deployment (Cisco, Fortinet, Check Point, Sophos, WatchGuard, Palo Alto). • Solid fundamentals: segmentation (owner/guest/crew/IoT), secure remote access/VPN, ACL deployment. Multi-WAN / SD-WAN style solutions and path selection (Peplink, Celerway, Kerio, Sophos, Cisco, Kognitive networks, etc.). 3G/4G/5G routers/modems, ISP management, VSAT connectivity constraints. SIP/VoIP fundamentals (Session Initiation Protocol) and IP telephony systems. Fault-finding and commissioning are compulsory. Comfortable using hand tools and network/telecom test equipment. Fibre experience: handling and testing basics (power levels/links) - OTDR knowledge a plus. General Strong English (written and spoken) and confident client-facing communication. Competent with Microsoft 365 (Word, Excel, Teams, SharePoint, OneNote, PowerPoint). If you have the desire / ability to travel and now seek a new fun and truly bespoke position then please send me your full technical CV that covers ideally all of the above. YOU MUST BE LIVING IN THE UK AND ALLOWED TO WORK HERE LEGALLY AND SHOW A CLEARLY DEFINED SKILL SET WITHIN THE CV HERTS HERTFORDSHIRE BEDS BEDFORDSHIRE BUCKS BUCKINGHAMSHIRE LONDON IT IOT NETWORK CISCO FIREWALL WIFI WI-FI CCNA CCNP WIRELESS VPN WAN VSAT ROUTERS