GRC Security Advisor (SC-Cleared) Job Title: GRC Security Advisor Employment Type: Contract (Freelance) Clearance: Active SC-Clearance Duration: 12 Month Rolling for 3 Years IR35: Outside Daily Rate: Contact Me! Are you an experienced cyber security professional with active SC-Clearance looking to make a significant impact within a high-profile government environment? Our Client, a renowned organisation operating at the forefront of national security, is seeking a skilled GRC Security Advisor to join their team on a contract basis. This is a unique chance to contribute to critical cyber governance, risk management, and compliance initiatives that safeguard national interests. About Our Client Our Client is a prestigious organisation operating within the government and security sector, renowned for its commitment to innovation, integrity, and excellence. They foster a collaborative and forward-thinking culture that values expertise and dedication. Working here provides an opportunity to be part of impactful projects that support national security and public service, offering a rewarding environment for professional growth and development. Role Overview This contract position has been created to strengthen and embed our Client's Cyber Governance, Risk and Compliance management framework in response to evolving security demands. The role is crucial in ensuring operational resilience, regulatory compliance, and strategic oversight within a secure environment. It presents an exciting opportunity to lead initiatives, shape security policies, and work alongside senior stakeholders to enhance cyber maturity across the organisation. Key Responsibilities Lead efforts to enhance cyber governance, risk, and compliance frameworks throughout the organisation. Review, develop, and implement advanced cyber policies and control measures aligned with best practices and government standards. Support and drive cyber risk assessments, reporting, and mitigation strategies, engaging with senior leadership. Maintain and advance vulnerability management programmes, ensuring alignment with wider cyber objectives. Facilitate cyber certification processes, aiming to establish sustainable compliance models. Provide mentorship and capability-building support to internal cyber teams. Offer guidance on managing suppliers, overseeing service transitions, and regulated service delivery. Assist in developing incident response and operational resilience plans to ensure readiness. Contribute to comprehensive cyber reporting for executive and board audiences. Key Deliverables Robust cyber governance framework, supported by relevant artefacts. Effective cyber risk management and reporting approaches. Sustainable vulnerability management and senior risk communication. Frameworks supporting cyber certification and ongoing compliance. Trained internal teams, fostering long-term capability. Established incident response and operational resilience procedures. Consistent stakeholder reporting and communication. Essential Skills & Experience Valid active SC-Clearance. Extensive experience in cyber governance, risk, and compliance roles. Proven track record in designing, implementing, and maintaining governance frameworks. Strategic advisory experience to senior and executive stakeholders. Knowledge of cyber certification, supplier oversight, and operational transition. Experience supporting incident preparedness and operational resilience. Excellent communication skills, capable of engaging both technical and non-technical audiences. Prior experience working within government, defence, or similarly secure environments. Desirable Skills & Experience Background in government or public sector cybersecurity projects. Familiarity with recognised cybersecurity standards and frameworks. Experience leading cyber transformation or improvement programmes. Mentoring or developing cybersecurity capability within teams. Join Our Client If you are a dedicated cyber security professional seeking a challenging and impactful role, we want to hear from you. Apply now by submitting your CV, and take the next step in your career within a prestigious organisation committed to protecting national interests. Candidates MUST possess active SC-Clearance to be considered for this position.
Jun 24, 2026
Contractor
GRC Security Advisor (SC-Cleared) Job Title: GRC Security Advisor Employment Type: Contract (Freelance) Clearance: Active SC-Clearance Duration: 12 Month Rolling for 3 Years IR35: Outside Daily Rate: Contact Me! Are you an experienced cyber security professional with active SC-Clearance looking to make a significant impact within a high-profile government environment? Our Client, a renowned organisation operating at the forefront of national security, is seeking a skilled GRC Security Advisor to join their team on a contract basis. This is a unique chance to contribute to critical cyber governance, risk management, and compliance initiatives that safeguard national interests. About Our Client Our Client is a prestigious organisation operating within the government and security sector, renowned for its commitment to innovation, integrity, and excellence. They foster a collaborative and forward-thinking culture that values expertise and dedication. Working here provides an opportunity to be part of impactful projects that support national security and public service, offering a rewarding environment for professional growth and development. Role Overview This contract position has been created to strengthen and embed our Client's Cyber Governance, Risk and Compliance management framework in response to evolving security demands. The role is crucial in ensuring operational resilience, regulatory compliance, and strategic oversight within a secure environment. It presents an exciting opportunity to lead initiatives, shape security policies, and work alongside senior stakeholders to enhance cyber maturity across the organisation. Key Responsibilities Lead efforts to enhance cyber governance, risk, and compliance frameworks throughout the organisation. Review, develop, and implement advanced cyber policies and control measures aligned with best practices and government standards. Support and drive cyber risk assessments, reporting, and mitigation strategies, engaging with senior leadership. Maintain and advance vulnerability management programmes, ensuring alignment with wider cyber objectives. Facilitate cyber certification processes, aiming to establish sustainable compliance models. Provide mentorship and capability-building support to internal cyber teams. Offer guidance on managing suppliers, overseeing service transitions, and regulated service delivery. Assist in developing incident response and operational resilience plans to ensure readiness. Contribute to comprehensive cyber reporting for executive and board audiences. Key Deliverables Robust cyber governance framework, supported by relevant artefacts. Effective cyber risk management and reporting approaches. Sustainable vulnerability management and senior risk communication. Frameworks supporting cyber certification and ongoing compliance. Trained internal teams, fostering long-term capability. Established incident response and operational resilience procedures. Consistent stakeholder reporting and communication. Essential Skills & Experience Valid active SC-Clearance. Extensive experience in cyber governance, risk, and compliance roles. Proven track record in designing, implementing, and maintaining governance frameworks. Strategic advisory experience to senior and executive stakeholders. Knowledge of cyber certification, supplier oversight, and operational transition. Experience supporting incident preparedness and operational resilience. Excellent communication skills, capable of engaging both technical and non-technical audiences. Prior experience working within government, defence, or similarly secure environments. Desirable Skills & Experience Background in government or public sector cybersecurity projects. Familiarity with recognised cybersecurity standards and frameworks. Experience leading cyber transformation or improvement programmes. Mentoring or developing cybersecurity capability within teams. Join Our Client If you are a dedicated cyber security professional seeking a challenging and impactful role, we want to hear from you. Apply now by submitting your CV, and take the next step in your career within a prestigious organisation committed to protecting national interests. Candidates MUST possess active SC-Clearance to be considered for this position.
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
Jun 24, 2026
Full time
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
DevOps Engineer SC cleared Permanent Flexible AWS Terraform SC Cleared At Peregrine, we re always seeking Specialist Talent that have the ideal mix of skills, experience, and attitude, to place with our vast array of clients. From Business Analysts in large government organisations to Software Developers in the private sector we are always in search of the best talent to place, now. The role: We are seeking an SC cleared DevOps Engineer to work as a forward deployed engineer, embedded within the Cyber Capability Unit. The role will support the design, build and deployment of AI powered solutions that strengthen cyber security and fraud prevention capabilities. You will work closely with engineers, product owners and stakeholders to understand operational needs, develop prototypes and deploy secure, reliable solutions within approved platforms and environments. This role directly supports the Cyber Resilience Centre s mission and contributes to the wider security strategy by delivering practical, governed AI solutions that provide measurable operational value. Responsibilities: Cloud and Platform Integration Design and deploy solutions in AWS cloud environments Use infrastructure as code to ensure repeatable and compliant deployments Ensure all solutions meet organisational governance, security and compliance standards CI/CD and Automation Configure, manage and maintain GitLab CI pipelines Automate testing, build and deployment of infrastructure, applications and services Promote best practice DevOps ways of working across environments Testing and Quality Implement unit, integration and performance testing for all components Ensure solutions are reliable, reproducible and stable across releases Support continuous improvement of testing practices Monitoring and Incident Response Implement observability and monitoring tooling Track system performance and detect anomalies Support incident response, troubleshooting and root cause analysis in live environments Collaboration and Delivery Work closely with engineers, analysts and stakeholders Translate requirements into working technical solutions Support deployment, handover and ongoing optimisation of delivered capabilities Skills & Experience: Active SC clearance Strong experience deploying and operating solutions in AWS Infrastructure as code using Terraform CI/CD pipeline development using GitLab CI Experience with monitoring, logging and alerting tools Understanding of secure DevOps practices in regulated environments Experience working with large data stores or big data platforms Desirable skills: Experience supporting AI or data driven platforms Knowledge of cyber security or fraud prevention domains Experience working within government or critical national infrastructure environments About Peregrine We build workforces that deliver tech and change programmes at leading UK organisations. By combining data science from Peregrine Intelligence, our industry-accredited Peregrine Academy, and market-leading attraction and diversity initiatives, we bridge capability gaps at all levels in public and private sector organisations. We work closely with our clients to understand their challenges and deliver flexible, long-term solutions that make a real difference. When you join Peregrine, you become part of a team that s focused on growth, both yours, our clients , and the sectors we support. You ll also get access to a full range of benefits alongside your salary. How Specialist Talent Works As a permanent employee at Peregrine, you ll be part of our Specialist Talent team. That means you ll work on-site or remotely with our clients, supporting them on complex, high-impact projects in Data, Digital and Business Transformation. You ll get the variety and challenge of consultancy work, with the stability and support of a permanent role. You re not a contractor - you re a valued member of our team, with access to all the same benefits, learning opportunities, and community. Find out more: peregrine.global or check out our LinkedIn page: peregrin e- resourcing
Jun 24, 2026
Full time
DevOps Engineer SC cleared Permanent Flexible AWS Terraform SC Cleared At Peregrine, we re always seeking Specialist Talent that have the ideal mix of skills, experience, and attitude, to place with our vast array of clients. From Business Analysts in large government organisations to Software Developers in the private sector we are always in search of the best talent to place, now. The role: We are seeking an SC cleared DevOps Engineer to work as a forward deployed engineer, embedded within the Cyber Capability Unit. The role will support the design, build and deployment of AI powered solutions that strengthen cyber security and fraud prevention capabilities. You will work closely with engineers, product owners and stakeholders to understand operational needs, develop prototypes and deploy secure, reliable solutions within approved platforms and environments. This role directly supports the Cyber Resilience Centre s mission and contributes to the wider security strategy by delivering practical, governed AI solutions that provide measurable operational value. Responsibilities: Cloud and Platform Integration Design and deploy solutions in AWS cloud environments Use infrastructure as code to ensure repeatable and compliant deployments Ensure all solutions meet organisational governance, security and compliance standards CI/CD and Automation Configure, manage and maintain GitLab CI pipelines Automate testing, build and deployment of infrastructure, applications and services Promote best practice DevOps ways of working across environments Testing and Quality Implement unit, integration and performance testing for all components Ensure solutions are reliable, reproducible and stable across releases Support continuous improvement of testing practices Monitoring and Incident Response Implement observability and monitoring tooling Track system performance and detect anomalies Support incident response, troubleshooting and root cause analysis in live environments Collaboration and Delivery Work closely with engineers, analysts and stakeholders Translate requirements into working technical solutions Support deployment, handover and ongoing optimisation of delivered capabilities Skills & Experience: Active SC clearance Strong experience deploying and operating solutions in AWS Infrastructure as code using Terraform CI/CD pipeline development using GitLab CI Experience with monitoring, logging and alerting tools Understanding of secure DevOps practices in regulated environments Experience working with large data stores or big data platforms Desirable skills: Experience supporting AI or data driven platforms Knowledge of cyber security or fraud prevention domains Experience working within government or critical national infrastructure environments About Peregrine We build workforces that deliver tech and change programmes at leading UK organisations. By combining data science from Peregrine Intelligence, our industry-accredited Peregrine Academy, and market-leading attraction and diversity initiatives, we bridge capability gaps at all levels in public and private sector organisations. We work closely with our clients to understand their challenges and deliver flexible, long-term solutions that make a real difference. When you join Peregrine, you become part of a team that s focused on growth, both yours, our clients , and the sectors we support. You ll also get access to a full range of benefits alongside your salary. How Specialist Talent Works As a permanent employee at Peregrine, you ll be part of our Specialist Talent team. That means you ll work on-site or remotely with our clients, supporting them on complex, high-impact projects in Data, Digital and Business Transformation. You ll get the variety and challenge of consultancy work, with the stability and support of a permanent role. You re not a contractor - you re a valued member of our team, with access to all the same benefits, learning opportunities, and community. Find out more: peregrine.global or check out our LinkedIn page: peregrin e- resourcing
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
Jun 24, 2026
Full time
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
Jun 24, 2026
Full time
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
Jun 24, 2026
Full time
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
Information Security Advisor Warwickshire | Full Time Office Based £50,000 - £57,200 | Sponsorship Not Available | MV Clearance or Eligibility Required VIQU have partnered with a well-established public sector organisation undergoing continued investment in its cyber security, information governance and assurance capabilities. They are seeking an Information Security & Assurance Advisor to play a key role in protecting critical information assets, driving compliance, and supporting the delivery of security best practice across the organisation. This is an excellent opportunity for an experienced Information Security professional who enjoys balancing governance, risk and compliance activities with stakeholder engagement and practical security assurance. As an Information Security & Assurance Advisor, you will provide expert guidance on information security, risk management, data protection and compliance. You will lead security audits, support incident investigations, conduct supplier assessments, and help ensure alignment with recognised frameworks and regulatory requirements. Key Responsibilities Provide information security, assurance and risk management advice across the organisation. Conduct security audits, compliance reviews and supplier security assessments. Support the development and maintenance of security policies, procedures and governance frameworks. Manage and coordinate information security incidents, investigations and corrective actions. Produce risk assessments and assurance documentation for new and existing systems and services. Support Data Protection Impact Assessments (DPIAs) and wider information governance activities. Deliver security awareness training and guidance to internal stakeholders. Engage with third-party suppliers and partners to ensure security and compliance standards are maintained. Core Technologies & Frameworks Information Security Governance ISO 27001 NIST Framework Information Assurance Risk Management Data Protection & DPIAs Security Auditing Supplier Security Assessments Security Incident Management Compliance & Accreditation Requirements Experience working within Information Security, Information Assurance, GRC or Cyber Security Governance roles. Strong knowledge of ISO 27001, NIST and information security best practices. Experience conducting security audits, compliance reviews and risk assessments. Good understanding of data protection legislation and information governance principles. Professional security qualification such as CISSP, CISM, CRISC, GRC-related certification or equivalent. Excellent stakeholder management and communication skills. MV Clearance or eligibility to obtain clearance is essential. Apply now to speak with VIQU IT in confidence. Or contact Aaron Chiverton on (see below). Know someone great? Refer them and receive up to £1,000 if successful (terms apply).
Jun 24, 2026
Full time
Information Security Advisor Warwickshire | Full Time Office Based £50,000 - £57,200 | Sponsorship Not Available | MV Clearance or Eligibility Required VIQU have partnered with a well-established public sector organisation undergoing continued investment in its cyber security, information governance and assurance capabilities. They are seeking an Information Security & Assurance Advisor to play a key role in protecting critical information assets, driving compliance, and supporting the delivery of security best practice across the organisation. This is an excellent opportunity for an experienced Information Security professional who enjoys balancing governance, risk and compliance activities with stakeholder engagement and practical security assurance. As an Information Security & Assurance Advisor, you will provide expert guidance on information security, risk management, data protection and compliance. You will lead security audits, support incident investigations, conduct supplier assessments, and help ensure alignment with recognised frameworks and regulatory requirements. Key Responsibilities Provide information security, assurance and risk management advice across the organisation. Conduct security audits, compliance reviews and supplier security assessments. Support the development and maintenance of security policies, procedures and governance frameworks. Manage and coordinate information security incidents, investigations and corrective actions. Produce risk assessments and assurance documentation for new and existing systems and services. Support Data Protection Impact Assessments (DPIAs) and wider information governance activities. Deliver security awareness training and guidance to internal stakeholders. Engage with third-party suppliers and partners to ensure security and compliance standards are maintained. Core Technologies & Frameworks Information Security Governance ISO 27001 NIST Framework Information Assurance Risk Management Data Protection & DPIAs Security Auditing Supplier Security Assessments Security Incident Management Compliance & Accreditation Requirements Experience working within Information Security, Information Assurance, GRC or Cyber Security Governance roles. Strong knowledge of ISO 27001, NIST and information security best practices. Experience conducting security audits, compliance reviews and risk assessments. Good understanding of data protection legislation and information governance principles. Professional security qualification such as CISSP, CISM, CRISC, GRC-related certification or equivalent. Excellent stakeholder management and communication skills. MV Clearance or eligibility to obtain clearance is essential. Apply now to speak with VIQU IT in confidence. Or contact Aaron Chiverton on (see below). Know someone great? Refer them and receive up to £1,000 if successful (terms apply).
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
Jun 24, 2026
Full time
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
Jun 24, 2026
Full time
We have an exciting opportunity for a IT Service Resilience Senior Manager to join our IT team, based in A&O Shearman's Belfast office. Information Technology team - Belfast Accountable for translating business continuity and availability requirements into technical enterprise architecture and operational disaster recovery requirements, and for owning the program of resilience and recovery testing across applications, SaaS and third party providers. What you will do The successful candidate should have strong technical hands-on skills in Cloud, infrastructure and applications deployments, along with the ability to translate business continuity and availability requirements into technical enterprise architecture along with operational disaster recovery requirements. It will be their responsibility to own the program of resilience and recovery testing across applications, SaaS and third party providers and internal teams. Key Stakeholders; I&O Support teams & InfoSec Business Continuity Management Regional IT Support team Technical Delivery and Project & Programme Delivery Software vendors and Managed Service Providers Responsibilities; Ownership and leadership execution in the following areas: Develop and maintain dependency maps that capture application, middleware, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design Lead DR implementation and testing program: design automated DR processes when feasible, schedule regular tests Own operational runbooks, monitoring and incident playbooks aligned to graceful degradation modes; ensure monitoring and SRE/operations practices are aligned to expected degradation behaviors. Coordinate crisis response governance and periodic scenario exercises with crisis response teams, define activation criteria, maintain war room procedures and ensure lessons learned feed back into architecture and DR plans. Run supplier resilience assessments for critical SaaS/third parties using a posture assessment approach; escalate remediation, negotiate contractual improvements or recommend contingencies/alternative sourcing. Develop and maintain dependency maps that capture application, cloud services, data flows and third party dependencies to identify single points of failure and inform resilience design. Collaborate with enterprise architecture, security/CISO, application owners, BC/operational leads and procurement to embed resilience standards across lifecycle Manage and test application/service tiers to business agreed RTO/RPO and reliability design targets Define and ensure adherence to DR/Resilience programme metrics: frequency of tests, % successful automated DR runs, closure rate for remediation actions identified through testing Manage vendor performance and contractual compliance of vendors agreed operational SLAs and vendor contingency plans validated via tests. Identify and assess IT resilience risks related to system outages, cyber threats and 3rd party dependencies What you will have Experience 10+ years in technology resilience, disaster recovery, or IT operations, with 5+ years in leadership positions managing cross-functional teams. Deep hands-on knowledge of a range of IT environments, SaaS, cloud infrastructure (AWS & Azure), and security tools. Required expertise in ISO 22301, NIST and ITIL Certifications (Preferred): Certified Business Continuity Professional (CBCP), CISSP, CISM, or DRI International certifications Experience of communicating to senior stakeholders and interpreting complex technical solutions to simple language. Exposure of working in both Agile and Waterfall delivery methodologies. Personal Ability to anticipate risks and shift from reactive disaster recovery to proactive service resilience, focusing on "prevention by design" Skilled at navigating changing technology environments (e.g. cloud, DevOps) and leading transformation Strong stakeholder engagement and influence skills to work with EA, Platform Owners, I&O, InfoSec, Business Continuity, Procurement Proven ability to manage crisis situations, make quick, informed decisions during incidents, and maintain confidence (strategic optimism) within teams Excellent customer-facing skills with a good grasp of key drivers and requirements within the business. Understanding of how technology resilience directly impacts business operations, continuity, and profitability. What we can offer you We recognise that our people are our most valuable asset, which is reflected in the wide range of benefits that are available to our employees. Some of these benefits include: our occupational pension scheme, group income protection cover, private medical insurance, mental health resources and free apps, health and wellbeing services encompassing GP service, emergency back-up care support, parental and special leave, holiday entitlement increasing with length of service, holiday trading, online discounts and lifestyle management services. We recognise the value of flexible working and embrace hybrid working, so that we can learn, grow and succeed together. Should you require additional support at any stage of the recruitment process due to a disability or a health condition, please do not hesitate to contact a member of our recruitment team who will work with you to provide any adjustments as required. We are an equal opportunities recruiter and do not discriminate on the basis of race, colour, sex, religion, sexual orientation, national origin, disability, or any other protected characteristic. NO AGENCIES PLEASE - A&O Shearman does not accept unsolicited CVs. For further information, please see our UK Recruitment Agency Policy and our commitment to direct sourcing here . About A&O Shearman A&O Shearman is a new global industry-leading law firm, with nearly 50 offices in 29 countries worldwide. Our fluency in English law, US law, and the laws of the world's most dynamic markets, enables us to provide unmatched insight and seamless delivery to clients. We work on challenging and important deals and disputes that have the potential to shape the future. We offer exceptional opportunities for our people; opportunities to work for the world's leading businesses; to transform the status quo, and to deliver your best work, helping you and your career to thrive, while delivering unparalleled outcomes for our clients. Whether you're helping clients solve complex challenges, transforming the ways we manage our business, or ensuring the smooth-running of our operations, this is an environment where you can belong and excel. We provide first-rate training and development, we are committed to an inclusive environment, and we provide support and ways of working that help you optimise your wellbeing. What truly defines a career with us? We recruit the best and ask for the best of you. And together, we will redefine success.
Cyber & Network Security Manager We are seeking an experienced Cyber & Network Security Manager to lead the delivery of all security operations, drive cyber incident response, and provide enterprise-wide oversight of network security. This is an operational leadership role at the centre of the cyber defence function. You will be responsible for ensuring the effective operation of Security Operations Centre (SOC), acting as the senior escalation point for cyber security incidents, and providing strategic and operational leadership across network security services. Working closely with technology, infrastructure, risk, and business stakeholders, you will play a critical role in protecting the organisation from evolving threats while ensuring security controls remain effective, resilient, and aligned to business objectives. Key Responsibilities Lead the day-to-day delivery and continual improvement of Security Operations Centre (SOC) services. Act as the senior operational escalation point for cyber security incidents and major security events. Own and coordinate cyber incident response activities, ensuring effective containment, eradication, recovery, and lessons learned. Develop, maintain, and test cyber incident response plans, procedures, and playbooks. Oversee security monitoring, threat detection, threat intelligence, and vulnerability management activities. Provide enterprise-wide oversight of network security technologies, controls, and architectures. Ensure the effective management and optimisation of firewalls, network access controls, intrusion detection/prevention systems, secure remote access solutions, and related security platforms. Lead investigations into security breaches, suspicious activity, and emerging threats. Drive continuous improvement across security operations processes, tooling, and capabilities. Produce security reporting, metrics, and risk-based recommendations for senior leadership. Work collaboratively with infrastructure, cloud, architecture, and service delivery teams to strengthen organisational cyber resilience. Support audit, compliance, and regulatory requirements relating to cyber and network security. What you need: You will be an experienced cyber security professional with a strong background in security operations, incident response, and network security management. You will demonstrate: Proven experience leading SOC operations and security monitoring functions. Strong knowledge of cyber incident response, digital investigations, and security event management. Experience operating and managing security technologies such as SIEM, EDR, firewalls, IDS/IPS, web security gateways, and network access controls. Strong understanding of enterprise network security principles and architectures. Experience managing security incidents across complex technology environments. Knowledge of threat intelligence, vulnerability management, and cyber risk management practices. Excellent stakeholder management and communication skills, with the ability to translate technical issues into business impacts. The ability to lead under pressure during major incidents and coordinate multi-disciplinary response teams. Desirable Qualifications & Certifications CISSP, CISM, GIAC, GCIH, GCIA, or equivalent security certifications. Experience within regulated or critical service environments. Knowledge of security frameworks such as NIST CSF, ISO 27001, CIS Controls, or MITRE ATT&CK. Experience managing third-party SOC or security service providers.
Jun 24, 2026
Full time
Cyber & Network Security Manager We are seeking an experienced Cyber & Network Security Manager to lead the delivery of all security operations, drive cyber incident response, and provide enterprise-wide oversight of network security. This is an operational leadership role at the centre of the cyber defence function. You will be responsible for ensuring the effective operation of Security Operations Centre (SOC), acting as the senior escalation point for cyber security incidents, and providing strategic and operational leadership across network security services. Working closely with technology, infrastructure, risk, and business stakeholders, you will play a critical role in protecting the organisation from evolving threats while ensuring security controls remain effective, resilient, and aligned to business objectives. Key Responsibilities Lead the day-to-day delivery and continual improvement of Security Operations Centre (SOC) services. Act as the senior operational escalation point for cyber security incidents and major security events. Own and coordinate cyber incident response activities, ensuring effective containment, eradication, recovery, and lessons learned. Develop, maintain, and test cyber incident response plans, procedures, and playbooks. Oversee security monitoring, threat detection, threat intelligence, and vulnerability management activities. Provide enterprise-wide oversight of network security technologies, controls, and architectures. Ensure the effective management and optimisation of firewalls, network access controls, intrusion detection/prevention systems, secure remote access solutions, and related security platforms. Lead investigations into security breaches, suspicious activity, and emerging threats. Drive continuous improvement across security operations processes, tooling, and capabilities. Produce security reporting, metrics, and risk-based recommendations for senior leadership. Work collaboratively with infrastructure, cloud, architecture, and service delivery teams to strengthen organisational cyber resilience. Support audit, compliance, and regulatory requirements relating to cyber and network security. What you need: You will be an experienced cyber security professional with a strong background in security operations, incident response, and network security management. You will demonstrate: Proven experience leading SOC operations and security monitoring functions. Strong knowledge of cyber incident response, digital investigations, and security event management. Experience operating and managing security technologies such as SIEM, EDR, firewalls, IDS/IPS, web security gateways, and network access controls. Strong understanding of enterprise network security principles and architectures. Experience managing security incidents across complex technology environments. Knowledge of threat intelligence, vulnerability management, and cyber risk management practices. Excellent stakeholder management and communication skills, with the ability to translate technical issues into business impacts. The ability to lead under pressure during major incidents and coordinate multi-disciplinary response teams. Desirable Qualifications & Certifications CISSP, CISM, GIAC, GCIH, GCIA, or equivalent security certifications. Experience within regulated or critical service environments. Knowledge of security frameworks such as NIST CSF, ISO 27001, CIS Controls, or MITRE ATT&CK. Experience managing third-party SOC or security service providers.
Head of Data Protection & Information Management Location: Swansea, Bristol, Birmingham (Garretts Green), Nottingham, Yeading (Hayes), Oldham (Chadderton), Leeds, Newcastle Salary: £57,515 per annum Vacancy Type: Permanent, Full Time(37hours per week) Part Time (30hours per week) Closing Date: Monday 6th July 2026 The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes, and also leading Internal Reviews or information rights requests under data protection legislation. Joining our department comes with many benefits, including: Employer pension contribution of 28.97% of your salary. 25 days annual leave, increasing by 1 day each year of service (up to a maximum of 30 days annual leave), plus 8 bank holidays a privilege day for the King s birthday Flexible working options where we encourage a great work-life balance. Read more in the Benefits section below! Job description The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes and also leading Internal Reviews or complaints under data protection. Your responsibilities will include, but aren t limited to: To act as the Data Protection Manager for the DVSA, carrying out the statutory tasks delegated to the role and DVSA by the Department s DPO (as set out in the DfT Data Protection Governance Policy) Leading the records management function ensuring alignment with DfT and wider Government. Providing assurance to the Digital & Technology Leadership Team that the organisation's systems are designed in accordance with the data protection policies and regulations. Lead FOI internal reviews, ensuring our response is fair and robust, and when necessary challenging senior managers on decisions to disclose or withhold. Person specification Essential qualifications: You must have an industry-recognised practitioner-level qualification in data protection. You will either have a qualification in FOI or a security qualification such as CISMP or ISO27001. For these area (FoI and security) where no qualification is held, you should be willing to acquire them within 9 months of joining us. To be successful in this role you will need to have the following experience: A history of being involved in incident management and forming part of a wider incident management team. A history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims. Experience of information and records management function and be able to advice on Freedom of Information legislation and supporting the business with any training Experience in assessing and improving compliance and reporting on this to all levels. Experience of risk management and working with cyber security colleagues To Apply If you feel you are a suitable candidate and would like to work for DVSA, please click apply to be redirected to our website to complete your application.
Jun 24, 2026
Full time
Head of Data Protection & Information Management Location: Swansea, Bristol, Birmingham (Garretts Green), Nottingham, Yeading (Hayes), Oldham (Chadderton), Leeds, Newcastle Salary: £57,515 per annum Vacancy Type: Permanent, Full Time(37hours per week) Part Time (30hours per week) Closing Date: Monday 6th July 2026 The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes, and also leading Internal Reviews or information rights requests under data protection legislation. Joining our department comes with many benefits, including: Employer pension contribution of 28.97% of your salary. 25 days annual leave, increasing by 1 day each year of service (up to a maximum of 30 days annual leave), plus 8 bank holidays a privilege day for the King s birthday Flexible working options where we encourage a great work-life balance. Read more in the Benefits section below! Job description The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes and also leading Internal Reviews or complaints under data protection. Your responsibilities will include, but aren t limited to: To act as the Data Protection Manager for the DVSA, carrying out the statutory tasks delegated to the role and DVSA by the Department s DPO (as set out in the DfT Data Protection Governance Policy) Leading the records management function ensuring alignment with DfT and wider Government. Providing assurance to the Digital & Technology Leadership Team that the organisation's systems are designed in accordance with the data protection policies and regulations. Lead FOI internal reviews, ensuring our response is fair and robust, and when necessary challenging senior managers on decisions to disclose or withhold. Person specification Essential qualifications: You must have an industry-recognised practitioner-level qualification in data protection. You will either have a qualification in FOI or a security qualification such as CISMP or ISO27001. For these area (FoI and security) where no qualification is held, you should be willing to acquire them within 9 months of joining us. To be successful in this role you will need to have the following experience: A history of being involved in incident management and forming part of a wider incident management team. A history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims. Experience of information and records management function and be able to advice on Freedom of Information legislation and supporting the business with any training Experience in assessing and improving compliance and reporting on this to all levels. Experience of risk management and working with cyber security colleagues To Apply If you feel you are a suitable candidate and would like to work for DVSA, please click apply to be redirected to our website to complete your application.
Head of Data Protection & Information Management Location: Swansea, Bristol, Birmingham (Garretts Green), Nottingham, Yeading (Hayes), Oldham (Chadderton), Leeds, Newcastle Salary: £57,515 per annum Vacancy Type: Permanent, Full Time(37hours per week) Part Time (30hours per week) Closing Date: Monday 6th July 2026 The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes, and also leading Internal Reviews or information rights requests under data protection legislation. Joining our department comes with many benefits, including: Employer pension contribution of 28.97% of your salary. 25 days annual leave, increasing by 1 day each year of service (up to a maximum of 30 days annual leave), plus 8 bank holidays a privilege day for the King s birthday Flexible working options where we encourage a great work-life balance. Read more in the Benefits section below! Job description The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes and also leading Internal Reviews or complaints under data protection. Your responsibilities will include, but aren t limited to: To act as the Data Protection Manager for the DVSA, carrying out the statutory tasks delegated to the role and DVSA by the Department s DPO (as set out in the DfT Data Protection Governance Policy) Leading the records management function ensuring alignment with DfT and wider Government. Providing assurance to the Digital & Technology Leadership Team that the organisation's systems are designed in accordance with the data protection policies and regulations. Lead FOI internal reviews, ensuring our response is fair and robust, and when necessary challenging senior managers on decisions to disclose or withhold. Person specification Essential qualifications: You must have an industry-recognised practitioner-level qualification in data protection. You will either have a qualification in FOI or a security qualification such as CISMP or ISO27001. For these area (FoI and security) where no qualification is held, you should be willing to acquire them within 9 months of joining us. To be successful in this role you will need to have the following experience: A history of being involved in incident management and forming part of a wider incident management team. A history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims. Experience of information and records management function and be able to advice on Freedom of Information legislation and supporting the business with any training Experience in assessing and improving compliance and reporting on this to all levels. Experience of risk management and working with cyber security colleagues To Apply If you feel you are a suitable candidate and would like to work for DVSA, please click apply to be redirected to our website to complete your application.
Jun 24, 2026
Full time
Head of Data Protection & Information Management Location: Swansea, Bristol, Birmingham (Garretts Green), Nottingham, Yeading (Hayes), Oldham (Chadderton), Leeds, Newcastle Salary: £57,515 per annum Vacancy Type: Permanent, Full Time(37hours per week) Part Time (30hours per week) Closing Date: Monday 6th July 2026 The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes, and also leading Internal Reviews or information rights requests under data protection legislation. Joining our department comes with many benefits, including: Employer pension contribution of 28.97% of your salary. 25 days annual leave, increasing by 1 day each year of service (up to a maximum of 30 days annual leave), plus 8 bank holidays a privilege day for the King s birthday Flexible working options where we encourage a great work-life balance. Read more in the Benefits section below! Job description The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes and also leading Internal Reviews or complaints under data protection. Your responsibilities will include, but aren t limited to: To act as the Data Protection Manager for the DVSA, carrying out the statutory tasks delegated to the role and DVSA by the Department s DPO (as set out in the DfT Data Protection Governance Policy) Leading the records management function ensuring alignment with DfT and wider Government. Providing assurance to the Digital & Technology Leadership Team that the organisation's systems are designed in accordance with the data protection policies and regulations. Lead FOI internal reviews, ensuring our response is fair and robust, and when necessary challenging senior managers on decisions to disclose or withhold. Person specification Essential qualifications: You must have an industry-recognised practitioner-level qualification in data protection. You will either have a qualification in FOI or a security qualification such as CISMP or ISO27001. For these area (FoI and security) where no qualification is held, you should be willing to acquire them within 9 months of joining us. To be successful in this role you will need to have the following experience: A history of being involved in incident management and forming part of a wider incident management team. A history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims. Experience of information and records management function and be able to advice on Freedom of Information legislation and supporting the business with any training Experience in assessing and improving compliance and reporting on this to all levels. Experience of risk management and working with cyber security colleagues To Apply If you feel you are a suitable candidate and would like to work for DVSA, please click apply to be redirected to our website to complete your application.
Head of Data Protection & Information Management Location: Swansea, Bristol, Birmingham (Garretts Green), Nottingham, Yeading (Hayes), Oldham (Chadderton), Leeds, Newcastle Salary: £57,515 per annum Vacancy Type: Permanent, Full Time(37hours per week) Part Time (30hours per week) Closing Date: Monday 6th July 2026 The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes, and also leading Internal Reviews or information rights requests under data protection legislation. Joining our department comes with many benefits, including: Employer pension contribution of 28.97% of your salary. 25 days annual leave, increasing by 1 day each year of service (up to a maximum of 30 days annual leave), plus 8 bank holidays a privilege day for the King s birthday Flexible working options where we encourage a great work-life balance. Read more in the Benefits section below! Job description The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes and also leading Internal Reviews or complaints under data protection. Your responsibilities will include, but aren t limited to: To act as the Data Protection Manager for the DVSA, carrying out the statutory tasks delegated to the role and DVSA by the Department s DPO (as set out in the DfT Data Protection Governance Policy) Leading the records management function ensuring alignment with DfT and wider Government. Providing assurance to the Digital & Technology Leadership Team that the organisation's systems are designed in accordance with the data protection policies and regulations. Lead FOI internal reviews, ensuring our response is fair and robust, and when necessary challenging senior managers on decisions to disclose or withhold. Person specification Essential qualifications: You must have an industry-recognised practitioner-level qualification in data protection. You will either have a qualification in FOI or a security qualification such as CISMP or ISO27001. For these area (FoI and security) where no qualification is held, you should be willing to acquire them within 9 months of joining us. To be successful in this role you will need to have the following experience: A history of being involved in incident management and forming part of a wider incident management team. A history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims. Experience of information and records management function and be able to advice on Freedom of Information legislation and supporting the business with any training Experience in assessing and improving compliance and reporting on this to all levels. Experience of risk management and working with cyber security colleagues To Apply If you feel you are a suitable candidate and would like to work for DVSA, please click apply to be redirected to our website to complete your application.
Jun 24, 2026
Full time
Head of Data Protection & Information Management Location: Swansea, Bristol, Birmingham (Garretts Green), Nottingham, Yeading (Hayes), Oldham (Chadderton), Leeds, Newcastle Salary: £57,515 per annum Vacancy Type: Permanent, Full Time(37hours per week) Part Time (30hours per week) Closing Date: Monday 6th July 2026 The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes, and also leading Internal Reviews or information rights requests under data protection legislation. Joining our department comes with many benefits, including: Employer pension contribution of 28.97% of your salary. 25 days annual leave, increasing by 1 day each year of service (up to a maximum of 30 days annual leave), plus 8 bank holidays a privilege day for the King s birthday Flexible working options where we encourage a great work-life balance. Read more in the Benefits section below! Job description The Head of Data Protection and Information Management role forms part of a Department wide Data Protection Unit led by the DfT Departmental Data Protection Officer, and locally reports into the DVSA Chief Data & Security Officer. The role is responsible for carrying out the delegated statutory tasks of the Departmental Data Protection Officer in accordance with the DfT DPO Governance Framework. They also act as the principal point of contact for the ICO and for Data Subjects for the DVSA within the DfT controllership. The role manages the information and records management function as part of the Government Knowledge and Information (KIM) Profession and ensures that management of both electronic and physical records is compliant with GDPR and other regulations. The team also works with the DVSA Corporate Reputation team to help DVSA meet statutory obligations originating from GDPR and Freedom of Information legislation assuring processes and also leading Internal Reviews or complaints under data protection. Your responsibilities will include, but aren t limited to: To act as the Data Protection Manager for the DVSA, carrying out the statutory tasks delegated to the role and DVSA by the Department s DPO (as set out in the DfT Data Protection Governance Policy) Leading the records management function ensuring alignment with DfT and wider Government. Providing assurance to the Digital & Technology Leadership Team that the organisation's systems are designed in accordance with the data protection policies and regulations. Lead FOI internal reviews, ensuring our response is fair and robust, and when necessary challenging senior managers on decisions to disclose or withhold. Person specification Essential qualifications: You must have an industry-recognised practitioner-level qualification in data protection. You will either have a qualification in FOI or a security qualification such as CISMP or ISO27001. For these area (FoI and security) where no qualification is held, you should be willing to acquire them within 9 months of joining us. To be successful in this role you will need to have the following experience: A history of being involved in incident management and forming part of a wider incident management team. A history of working collaboratively and inclusively with external organisations and other stakeholders, sharing information and knowledge to achieve common aims. Experience of information and records management function and be able to advice on Freedom of Information legislation and supporting the business with any training Experience in assessing and improving compliance and reporting on this to all levels. Experience of risk management and working with cyber security colleagues To Apply If you feel you are a suitable candidate and would like to work for DVSA, please click apply to be redirected to our website to complete your application.
Security Analyst SOC, Tier 2 SOC Analyst to join an award winning managed service provider 24x7 security team. As a Tier 2 Analyst, you will lead the investigation, containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. Taking ownership of complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. You will be involved in • Incident Detection & Response • Threat Intelligence and Analysis • Security Monitoring and Detection Engineering • Compliance, Reporting and Documentation • Vulnerability Management • Collaboration and knowledge sharing This would suit an experienced security analyst who has proved experience working in a busy security department, working in security operations. Strong alert triage, incident response, security monitoring, and threat analysis. Experience handling real-world security incidents and working with SIEM, EDR, or vulnerability management tools. Ideally have a strong bachelor s degree in computer science, Information Security, Cyber Security or related field with any SIEM-specific certification or vendor-specific training. Relevant cybersecurity certifications such as Certified Cloud Security Professional (CCSP) or other relevant security certifications, Security+ (CompTIA), CEH (Certified Ethical Hacker), CISSP, BTL1, BTL2 or others are highly desirable but not essential. Office based in Stoke on Trent, shifts, rota basis of 4 days on working - early's, late's and nights. This is an excellent opportunity for an experienced security analyst ready to take the next step with a chance to mentor junior analysts, deepen your technical expertise, and help shape our evolving security posture in a collaborative, hands-on environment.
Jun 23, 2026
Full time
Security Analyst SOC, Tier 2 SOC Analyst to join an award winning managed service provider 24x7 security team. As a Tier 2 Analyst, you will lead the investigation, containment, and coordination of security incidents, working closely with Tier 1 analysts, internal IT teams, and external stakeholders. Taking ownership of complex alerts, support threat hunting and intelligence efforts, and contribute to the refinement of detection rules, playbooks, and response procedures. You will be involved in • Incident Detection & Response • Threat Intelligence and Analysis • Security Monitoring and Detection Engineering • Compliance, Reporting and Documentation • Vulnerability Management • Collaboration and knowledge sharing This would suit an experienced security analyst who has proved experience working in a busy security department, working in security operations. Strong alert triage, incident response, security monitoring, and threat analysis. Experience handling real-world security incidents and working with SIEM, EDR, or vulnerability management tools. Ideally have a strong bachelor s degree in computer science, Information Security, Cyber Security or related field with any SIEM-specific certification or vendor-specific training. Relevant cybersecurity certifications such as Certified Cloud Security Professional (CCSP) or other relevant security certifications, Security+ (CompTIA), CEH (Certified Ethical Hacker), CISSP, BTL1, BTL2 or others are highly desirable but not essential. Office based in Stoke on Trent, shifts, rota basis of 4 days on working - early's, late's and nights. This is an excellent opportunity for an experienced security analyst ready to take the next step with a chance to mentor junior analysts, deepen your technical expertise, and help shape our evolving security posture in a collaborative, hands-on environment.
Information Security Engineer London (Barbican) Hybrid Working (2 days per week onsite) 80,000 to 90,000 + 8% Bonus + Excellent Pension & Benefits Must be eligible for UK Security Clearance Are you an Information Security Engineer looking to work on technology that genuinely makes a difference? This is an opportunity to join one of the world's leading enterprise software organisations, delivering mission-critical technology used by major government agencies, emergency services, financial institutions and global enterprises. Their platforms help protect communities, combat financial crime, secure critical infrastructure and support public safety on a global scale. With significant investment in cloud, AI, cyber security and digital transformation, you'll be joining a highly regarded security team where your work will directly influence the protection of systems, services and data relied upon by millions of users worldwide. This is an excellent opportunity for a hands-on security professional who enjoys solving complex challenges, working with modern security tooling, and having real influence within a large-scale global technology environment. The Role As an Information Security Engineer, you'll play a key role in maintaining and enhancing the organisation's security posture across both corporate and production environments. You'll work with a wide range of security technologies, helping to detect, investigate and respond to threats whilst supporting security initiatives driven by regulatory, compliance and operational requirements. Skills & Experience We're interested in candidates who have: Experience working within a Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement abilities The ability to work independently and take ownership of security initiatives Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments What's On Offer? Salary of 80,000 - 90,000 8% Annual Bonus Generous Pension Scheme Hybrid Working (2 Days Per Week in Central London) Modern cloud and security technology stack Exposure to large-scale global systems and infrastructure Ongoing training and professional development Clear progression opportunities within a global technology leader Security Clearance Eligibility Due to the nature of the work, applicants must be eligible to obtain security clearance. This typically requires British Citizenship or a minimum of 5 years continuous residency and employment within the UK. If you're looking for a role where you can make a genuine impact, work with cutting-edge security technologies and develop your career within a globally recognised technology organisation, we'd love to hear from you. If you have the relevant skills for this role and are ready for the challenge, then please send your CV to (url removed) Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Jun 23, 2026
Full time
Information Security Engineer London (Barbican) Hybrid Working (2 days per week onsite) 80,000 to 90,000 + 8% Bonus + Excellent Pension & Benefits Must be eligible for UK Security Clearance Are you an Information Security Engineer looking to work on technology that genuinely makes a difference? This is an opportunity to join one of the world's leading enterprise software organisations, delivering mission-critical technology used by major government agencies, emergency services, financial institutions and global enterprises. Their platforms help protect communities, combat financial crime, secure critical infrastructure and support public safety on a global scale. With significant investment in cloud, AI, cyber security and digital transformation, you'll be joining a highly regarded security team where your work will directly influence the protection of systems, services and data relied upon by millions of users worldwide. This is an excellent opportunity for a hands-on security professional who enjoys solving complex challenges, working with modern security tooling, and having real influence within a large-scale global technology environment. The Role As an Information Security Engineer, you'll play a key role in maintaining and enhancing the organisation's security posture across both corporate and production environments. You'll work with a wide range of security technologies, helping to detect, investigate and respond to threats whilst supporting security initiatives driven by regulatory, compliance and operational requirements. Skills & Experience We're interested in candidates who have: Experience working within a Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Strong analytical and problem-solving skills Excellent communication and stakeholder engagement abilities The ability to work independently and take ownership of security initiatives Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments What's On Offer? Salary of 80,000 - 90,000 8% Annual Bonus Generous Pension Scheme Hybrid Working (2 Days Per Week in Central London) Modern cloud and security technology stack Exposure to large-scale global systems and infrastructure Ongoing training and professional development Clear progression opportunities within a global technology leader Security Clearance Eligibility Due to the nature of the work, applicants must be eligible to obtain security clearance. This typically requires British Citizenship or a minimum of 5 years continuous residency and employment within the UK. If you're looking for a role where you can make a genuine impact, work with cutting-edge security technologies and develop your career within a globally recognised technology organisation, we'd love to hear from you. If you have the relevant skills for this role and are ready for the challenge, then please send your CV to (url removed) Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Senior Cyber Security Engineer (Contract) Location: East London (Local Council) Rate: 500 per day (Umbrella) Duration: 6 months Working Pattern: Hybrid - 1-3 days per week onsite (depending on project needs) The Opportunity We are seeking a highly skilled Senior Cyber Security Engineer to support a Local Council in East London. This role is critical in maximising the value of a newly established outsourced Security Operations Centre (SOC) partnership, ensuring effective integration, optimisation, and knowledge transfer across the internal team. Following a recent team departure, this position will provide senior-level technical leadership to enhance security operations, strengthen internal capability, and drive forward cyber resilience. Key Responsibilities Lead deployment, configuration, and optimisation of endpoint protection using CrowdStrike Falcon Collaborate with SOC partner to design and enhance Splunk dashboards, alerts, and data models Act as escalation point for high-severity incidents, driving rapid detection and response Develop SOAR workflows to automate and streamline security operations Conduct proactive threat hunting to identify hidden risks Upskill internal teams in CrowdStrike, Splunk, and security analysis best practices Required Experience 5+ years in Cyber Security Engineering or SOC (Tier 3) roles Strong hands-on expertise with CrowdStrike (Falcon Prevent, Insight, Discover) Advanced Splunk skills, including SPL and Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+, CISSP, GCIH, CCSP) CrowdStrike certifications (e.g. CCFA, CCFR, CCSE) - preferred Splunk Certified Cybersecurity Defense Engineer - required Eden Brown is committed to equality in the workplace and is an equal opportunity employer. Eden Brown is acting as an Employment Business in relation to this vacancy.
Jun 23, 2026
Contractor
Senior Cyber Security Engineer (Contract) Location: East London (Local Council) Rate: 500 per day (Umbrella) Duration: 6 months Working Pattern: Hybrid - 1-3 days per week onsite (depending on project needs) The Opportunity We are seeking a highly skilled Senior Cyber Security Engineer to support a Local Council in East London. This role is critical in maximising the value of a newly established outsourced Security Operations Centre (SOC) partnership, ensuring effective integration, optimisation, and knowledge transfer across the internal team. Following a recent team departure, this position will provide senior-level technical leadership to enhance security operations, strengthen internal capability, and drive forward cyber resilience. Key Responsibilities Lead deployment, configuration, and optimisation of endpoint protection using CrowdStrike Falcon Collaborate with SOC partner to design and enhance Splunk dashboards, alerts, and data models Act as escalation point for high-severity incidents, driving rapid detection and response Develop SOAR workflows to automate and streamline security operations Conduct proactive threat hunting to identify hidden risks Upskill internal teams in CrowdStrike, Splunk, and security analysis best practices Required Experience 5+ years in Cyber Security Engineering or SOC (Tier 3) roles Strong hands-on expertise with CrowdStrike (Falcon Prevent, Insight, Discover) Advanced Splunk skills, including SPL and Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+, CISSP, GCIH, CCSP) CrowdStrike certifications (e.g. CCFA, CCFR, CCSE) - preferred Splunk Certified Cybersecurity Defense Engineer - required Eden Brown is committed to equality in the workplace and is an equal opportunity employer. Eden Brown is acting as an Employment Business in relation to this vacancy.
Senior Cyber Security Engineer InfoSec Cybersecurity London Hybrid (2 days per week onsite) 90,000 to 100,000 + 8% Bonus + Pension & Benefits Large government projects Requires eligibility for UK Security Clearance This is an opportunity to join one of the world's leading enterprise software organisations, delivering mission-critical technology used by major government agencies, emergency services, financial institutions and global enterprises. You'll be joining a highly regarded security team where your work will directly influence the protection of systems, services and data relied upon by millions of users worldwide. This is an excellent opportunity for a hands-on security professional who enjoys solving complex challenges, working with modern security tooling, and having real influence within a large-scale global technology environment. The Role As an Information Security Engineer, you'll play a key role in maintaining and enhancing the organisation's security posture across both corporate and production environments. You'll work with a wide range of security technologies, helping to detect, investigate and respond to threats whilst supporting security initiatives driven by regulatory, compliance and operational requirements. Skills & Experience Experience working within a Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments Hit apply to upload your CV Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Jun 23, 2026
Full time
Senior Cyber Security Engineer InfoSec Cybersecurity London Hybrid (2 days per week onsite) 90,000 to 100,000 + 8% Bonus + Pension & Benefits Large government projects Requires eligibility for UK Security Clearance This is an opportunity to join one of the world's leading enterprise software organisations, delivering mission-critical technology used by major government agencies, emergency services, financial institutions and global enterprises. You'll be joining a highly regarded security team where your work will directly influence the protection of systems, services and data relied upon by millions of users worldwide. This is an excellent opportunity for a hands-on security professional who enjoys solving complex challenges, working with modern security tooling, and having real influence within a large-scale global technology environment. The Role As an Information Security Engineer, you'll play a key role in maintaining and enhancing the organisation's security posture across both corporate and production environments. You'll work with a wide range of security technologies, helping to detect, investigate and respond to threats whilst supporting security initiatives driven by regulatory, compliance and operational requirements. Skills & Experience Experience working within a Security Operations, Cyber Security or Information Security role Strong understanding of security principles, controls and best practices Experience with security technologies such as SIEM, XDR, Endpoint Protection, Vulnerability Management, WAF or DLP Experience investigating and responding to security incidents Desirable Experience Security certifications such as Security+, CISSP, SSCP, CISA, CCSK or similar Exposure to compliance frameworks including GDPR, PCI-DSS, SOC 2, HIPAA, FedRAMP or similar Experience within large-scale enterprise or highly regulated environments Hit apply to upload your CV Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Major Incident lead to coordinate end-to-end management of high-severity technology incidents across complex and regulated production environments. You will lead the command and control for Major Incidents across infrastructure, application, Middleware, Cloud, EUC, network, identity, data and third parties. Must have proven experience within a globally distributed team that plays a critical role in Incident Management impact, Monitoring from a broad range of potentially business disrupting, to significantly impacting, threats and incidents, from cyber and fraud to technology incidents. By applying to this job you are sending us your CV, which may contain personal information. Please refer to our Privacy Notice to understand how we process this information. In short, in order to supply you with work finding services, we will hold and process your personal data, and only with your express permission we will share this personal data with a client (or a third party working on behalf of the client) by email or by upload to the Client/third parties vendor management system. By giving us permission to send your CV to a client, this constitutes permission to share the personal data that would be necessary to consider your application, interview you (Phone/video/face to face) and if successful hire you. Scope AT acts as an employment agency for Permanent Recruitment and an employment business for the supply of temporary workers. By applying for this job you accept the Terms and Conditions, Data Protection Policy, Privacy Notice and Disclaimers which can be found at our
Jun 23, 2026
Contractor
Major Incident lead to coordinate end-to-end management of high-severity technology incidents across complex and regulated production environments. You will lead the command and control for Major Incidents across infrastructure, application, Middleware, Cloud, EUC, network, identity, data and third parties. Must have proven experience within a globally distributed team that plays a critical role in Incident Management impact, Monitoring from a broad range of potentially business disrupting, to significantly impacting, threats and incidents, from cyber and fraud to technology incidents. By applying to this job you are sending us your CV, which may contain personal information. Please refer to our Privacy Notice to understand how we process this information. In short, in order to supply you with work finding services, we will hold and process your personal data, and only with your express permission we will share this personal data with a client (or a third party working on behalf of the client) by email or by upload to the Client/third parties vendor management system. By giving us permission to send your CV to a client, this constitutes permission to share the personal data that would be necessary to consider your application, interview you (Phone/video/face to face) and if successful hire you. Scope AT acts as an employment agency for Permanent Recruitment and an employment business for the supply of temporary workers. By applying for this job you accept the Terms and Conditions, Data Protection Policy, Privacy Notice and Disclaimers which can be found at our
A fantastic opportunity has arisen for an experienced Senior Infrastructure Engineer to join a growing technology function supporting a complex enterprise environment. This is a hands-on leadership role, providing day-to-day oversight across Infrastructure, Networks and End User Computing services while driving service excellence, operational improvements and technical delivery. Working within a collaborative and supportive team, you'll play a key role in ensuring critical services remain secure, resilient and aligned to business needs. You'll be responsible for service performance, risk management, continuous improvement initiatives and supporting the successful transition of new technologies into operational support. Key Responsibilities Oversee Infrastructure, Network and End User Computing services Drive service performance across Incident, Request and Problem Management processes Manage operational risks, controls and compliance activities Identify and implement service improvements and efficiencies Support technical teams through coaching, development and mentoring Coordinate planning activities and contribute to Agile delivery practices Ensure successful transition of projects and new technologies into BAU support Work closely with technical and business stakeholders to improve service outcomes Key Skills & Experience Strong background supporting enterprise infrastructure environments Experience across networking, infrastructure and end-user technologies Knowledge of cloud platforms including Azure, AWS and Microsoft 365 Experience working within ITSM frameworks and service delivery environments Familiarity with ServiceNow and Atlassian tools such as Jira and Confluence Understanding of security and compliance standards including ISO27001 and Cyber Essentials Ability to lead technical teams and drive continuous improvement initiatives Strong stakeholder engagement and communication skills This role offers the opportunity to influence technology services, lead improvement initiatives and work within a flexible, collaborative environment where professional development is actively encouraged. Candidates must have the right to work in the UK.
Jun 23, 2026
Full time
A fantastic opportunity has arisen for an experienced Senior Infrastructure Engineer to join a growing technology function supporting a complex enterprise environment. This is a hands-on leadership role, providing day-to-day oversight across Infrastructure, Networks and End User Computing services while driving service excellence, operational improvements and technical delivery. Working within a collaborative and supportive team, you'll play a key role in ensuring critical services remain secure, resilient and aligned to business needs. You'll be responsible for service performance, risk management, continuous improvement initiatives and supporting the successful transition of new technologies into operational support. Key Responsibilities Oversee Infrastructure, Network and End User Computing services Drive service performance across Incident, Request and Problem Management processes Manage operational risks, controls and compliance activities Identify and implement service improvements and efficiencies Support technical teams through coaching, development and mentoring Coordinate planning activities and contribute to Agile delivery practices Ensure successful transition of projects and new technologies into BAU support Work closely with technical and business stakeholders to improve service outcomes Key Skills & Experience Strong background supporting enterprise infrastructure environments Experience across networking, infrastructure and end-user technologies Knowledge of cloud platforms including Azure, AWS and Microsoft 365 Experience working within ITSM frameworks and service delivery environments Familiarity with ServiceNow and Atlassian tools such as Jira and Confluence Understanding of security and compliance standards including ISO27001 and Cyber Essentials Ability to lead technical teams and drive continuous improvement initiatives Strong stakeholder engagement and communication skills This role offers the opportunity to influence technology services, lead improvement initiatives and work within a flexible, collaborative environment where professional development is actively encouraged. Candidates must have the right to work in the UK.
Senior Cyber Security Analyst Central London (1 day per week onsite) up to 85,000 + benefits About the Role This is a highly visible opportunity to join a growing global Cyber Defence function at an exciting stage of transformation and centralisation. Cyber security remains a core strategic priority for the organisation as it continues to modernise operations and strengthen resilience across a complex international environment. The successful individual will play a critical role in strengthening operational security capabilities while helping shape the future direction of the team as the wider security function evolves. This role offers genuine ownership, senior stakeholder exposure and strong progression potential into future lead or management responsibilities over time. The Opportunity We are seeking an experienced Senior Cyber Security Analyst to join a global Cyber Defence function. This is not a traditional SOC analyst position focused purely on alert investigation. Instead, this role requires an individual capable of leading cyber incidents operationally, technically and commercially from end-to-end. You will act as a senior technical subject matter expert across incident response, detection engineering, cloud security and vulnerability management, while also providing calm, structured leadership during high-pressure situations. The environment is heavily Microsoft-focused, with particular emphasis on: Microsoft Sentinel Microsoft Defender XDR Azure security and secure-by-design principles Detection engineering and automation Threat and vulnerability management You will work closely with global technology and cyber teams to continuously improve monitoring, detection, response and remediation capabilities across hybrid cloud and on-premise environments. Key Responsibilities Incident Response & Major Incident Management Lead the end-to-end management of cyber security incidents across global environments. Take ownership of incident triage, severity assessment and response coordination across P1-P4 incidents. Lead incident bridge calls and coordinate technical and business stakeholders throughout the incident lifecycle. Assess technical, operational and commercial impact to support effective decision-making under pressure. Provide clear, calm and structured communications to both technical teams and senior leadership. Drive containment, eradication, recovery and post-incident improvement activities. Conduct root cause analysis and ensure lessons learned are embedded into operational processes and controls. Develop and maintain incident response procedures, playbooks and documentation aligned to industry best practice. Detection Engineering & Security Automation Configure, optimise and continuously improve Microsoft Sentinel and Microsoft Defender technologies. Develop and tune detection logic using KQL to identify emerging threats and attacker behaviours. Build and maintain automated SOAR workflows using Logic Apps and related technologies. Integrate Microsoft security tooling with third-party technologies and service providers. Identify monitoring gaps and improve visibility across cloud and on-premise environments. Maintain high-quality technical documentation for detections, automations and operational workflows. Cloud Security & Secure-by-Design Support secure configuration and operational security across Azure and associated cloud services. Collaborate with infrastructure and engineering teams to embed secure-by-design principles. Evaluate configuration changes and ensure alignment with security standards and controls. Support implementation and optimisation of Microsoft Defender security policies across endpoint, identity, cloud and email platforms. Contribute to the continuous improvement of cloud security posture across global operations. Threat & Vulnerability Management Support and enhance the vulnerability management programme across infrastructure, cloud and endpoint environments. Work with tools such as Microsoft Defender Vulnerability Management and Tenable to identify and prioritise vulnerabilities. Translate vulnerability findings into actionable remediation plans with technology stakeholders. Leverage cyber threat intelligence to improve detection capabilities and prioritisation decisions. Track remediation progress and provide meaningful risk reporting to cyber leadership. Stakeholder Management & Collaboration Partner with Group IT, Regional IT and wider technology teams across multiple geographies. Act as a trusted advisor across operational security, incident response and cyber defence activities. Balance technical risk with operational realities and business priorities. Demonstrate strong stakeholder management and communication skills at all levels of the organisation. Contribute to a positive cyber security culture and continuous improvement mindset across the business. What We're Looking For Essential Experience Proven experience leading cyber security incidents end-to-end within enterprise environments. Strong background in Security Operations, Cyber Defence, Incident Response or Blue Team functions. Experience operating within hybrid cloud and on-premise environments. Hands-on experience with Microsoft Sentinel, Microsoft Defender XDR and Azure security technologies. Experience with detection engineering, threat detection and security automation. Exposure to vulnerability management platforms such as Tenable or Microsoft Defender Vulnerability Management. Experience managing stakeholder communications during high-severity incidents. Strong understanding of attacker tactics, techniques and procedures (TTPs). Technical Skills Strong Microsoft security ecosystem expertise. Advanced KQL experience for investigations, detections and reporting. Experience building automation workflows using Logic Apps or similar technologies. Knowledge of cloud security principles across Azure and ideally AWS or Google Cloud. Familiarity with industry frameworks such as NIST and ISO 27001. Personal Attributes We are particularly interested in individuals who demonstrate: Calmness under pressure Strong ownership and accountability Excellent communication and stakeholder management skills Commercial awareness alongside technical depth Gravitas and confidence leading senior incident discussions The ability to know when to stop investigating and start managing the wider incident process What's on Offer Highly visible role within a growing global cyber security function Genuine ownership and influence across security operations Opportunity to shape and mature cyber defence capabilities globally Strong balance of technical depth and business engagement Clear long-term progression opportunities as the team expands Flexible hybrid working with only 1 day per week onsite in Central London To apply for this fantastic opportunity please send your CV
Jun 23, 2026
Full time
Senior Cyber Security Analyst Central London (1 day per week onsite) up to 85,000 + benefits About the Role This is a highly visible opportunity to join a growing global Cyber Defence function at an exciting stage of transformation and centralisation. Cyber security remains a core strategic priority for the organisation as it continues to modernise operations and strengthen resilience across a complex international environment. The successful individual will play a critical role in strengthening operational security capabilities while helping shape the future direction of the team as the wider security function evolves. This role offers genuine ownership, senior stakeholder exposure and strong progression potential into future lead or management responsibilities over time. The Opportunity We are seeking an experienced Senior Cyber Security Analyst to join a global Cyber Defence function. This is not a traditional SOC analyst position focused purely on alert investigation. Instead, this role requires an individual capable of leading cyber incidents operationally, technically and commercially from end-to-end. You will act as a senior technical subject matter expert across incident response, detection engineering, cloud security and vulnerability management, while also providing calm, structured leadership during high-pressure situations. The environment is heavily Microsoft-focused, with particular emphasis on: Microsoft Sentinel Microsoft Defender XDR Azure security and secure-by-design principles Detection engineering and automation Threat and vulnerability management You will work closely with global technology and cyber teams to continuously improve monitoring, detection, response and remediation capabilities across hybrid cloud and on-premise environments. Key Responsibilities Incident Response & Major Incident Management Lead the end-to-end management of cyber security incidents across global environments. Take ownership of incident triage, severity assessment and response coordination across P1-P4 incidents. Lead incident bridge calls and coordinate technical and business stakeholders throughout the incident lifecycle. Assess technical, operational and commercial impact to support effective decision-making under pressure. Provide clear, calm and structured communications to both technical teams and senior leadership. Drive containment, eradication, recovery and post-incident improvement activities. Conduct root cause analysis and ensure lessons learned are embedded into operational processes and controls. Develop and maintain incident response procedures, playbooks and documentation aligned to industry best practice. Detection Engineering & Security Automation Configure, optimise and continuously improve Microsoft Sentinel and Microsoft Defender technologies. Develop and tune detection logic using KQL to identify emerging threats and attacker behaviours. Build and maintain automated SOAR workflows using Logic Apps and related technologies. Integrate Microsoft security tooling with third-party technologies and service providers. Identify monitoring gaps and improve visibility across cloud and on-premise environments. Maintain high-quality technical documentation for detections, automations and operational workflows. Cloud Security & Secure-by-Design Support secure configuration and operational security across Azure and associated cloud services. Collaborate with infrastructure and engineering teams to embed secure-by-design principles. Evaluate configuration changes and ensure alignment with security standards and controls. Support implementation and optimisation of Microsoft Defender security policies across endpoint, identity, cloud and email platforms. Contribute to the continuous improvement of cloud security posture across global operations. Threat & Vulnerability Management Support and enhance the vulnerability management programme across infrastructure, cloud and endpoint environments. Work with tools such as Microsoft Defender Vulnerability Management and Tenable to identify and prioritise vulnerabilities. Translate vulnerability findings into actionable remediation plans with technology stakeholders. Leverage cyber threat intelligence to improve detection capabilities and prioritisation decisions. Track remediation progress and provide meaningful risk reporting to cyber leadership. Stakeholder Management & Collaboration Partner with Group IT, Regional IT and wider technology teams across multiple geographies. Act as a trusted advisor across operational security, incident response and cyber defence activities. Balance technical risk with operational realities and business priorities. Demonstrate strong stakeholder management and communication skills at all levels of the organisation. Contribute to a positive cyber security culture and continuous improvement mindset across the business. What We're Looking For Essential Experience Proven experience leading cyber security incidents end-to-end within enterprise environments. Strong background in Security Operations, Cyber Defence, Incident Response or Blue Team functions. Experience operating within hybrid cloud and on-premise environments. Hands-on experience with Microsoft Sentinel, Microsoft Defender XDR and Azure security technologies. Experience with detection engineering, threat detection and security automation. Exposure to vulnerability management platforms such as Tenable or Microsoft Defender Vulnerability Management. Experience managing stakeholder communications during high-severity incidents. Strong understanding of attacker tactics, techniques and procedures (TTPs). Technical Skills Strong Microsoft security ecosystem expertise. Advanced KQL experience for investigations, detections and reporting. Experience building automation workflows using Logic Apps or similar technologies. Knowledge of cloud security principles across Azure and ideally AWS or Google Cloud. Familiarity with industry frameworks such as NIST and ISO 27001. Personal Attributes We are particularly interested in individuals who demonstrate: Calmness under pressure Strong ownership and accountability Excellent communication and stakeholder management skills Commercial awareness alongside technical depth Gravitas and confidence leading senior incident discussions The ability to know when to stop investigating and start managing the wider incident process What's on Offer Highly visible role within a growing global cyber security function Genuine ownership and influence across security operations Opportunity to shape and mature cyber defence capabilities globally Strong balance of technical depth and business engagement Clear long-term progression opportunities as the team expands Flexible hybrid working with only 1 day per week onsite in Central London To apply for this fantastic opportunity please send your CV
