CIAM Software Engineer Role: CIAM Software Engineer Salary: Up to 60k Location: Hybrid/Remote Tech Stack: Auth0, Okta, Ping Identity, OAuth2, OpenID Connect (OIDC), SAML, SCIM, React, Angular, NestJS, Azure/AWS/GCP, Docker, Kubernetes, Terraform Unfortunately, we are unable to offer visa sponsorship at this time We are currently supporting a major technology transformation programme and are looking for a CIAM Software Engineer to help deliver secure, scalable, and seamless customer identity experiences. This is an opportunity to join a growing team focused on modernising authentication and authorisation services, creating a unified platform that simplifies how customers access products and services. Working closely with Engineers, Architects, Security teams, and Product stakeholders, you'll play a key role in designing, implementing, and supporting modern Customer Identity and Access Management solutions while helping drive engineering best practices across the organisation Responsibilities Design, develop, and maintain authentication and authorisation services, including login, registration, and session management capabilities. Implement and support integration's with CIAM platforms such as Auth0, Okta, Ping Identity, and ForgeRock. Build secure, scalable, and high-performing solutions across web and mobile applications. Contribute to CI/CD pipelines, infrastructure automation, and deployment processes. Develop tooling and automation to improve delivery consistency and reduce operational overhead. Create monitoring and alerting solutions to improve platform observability and incident response. Collaborate with cross-functional teams to deliver secure and reliable customer-facing solutions. What We're Looking For Proven experience delivering solutions involving Authentication (Authn) and Authorisation (Authz) . Strong knowledge of OAuth2, OpenID Connect (OIDC), SAML, and SCIM . Hands-on experience with leading CIAM platforms, including Auth0, Okta, Ping Identity, or ForgeRock Front-end development experience using React (preferred), Angular, or NestJS Knowledge of cloud platforms such as Azure, AWS, or GCP . Experience with containerisation technologies including Docker and Kubernetes , alongside Infrastructure as Code tooling such as Terraform This is a fantastic opportunity to join a team at the start of a major identity transformation programme, helping build a single, modern customer platform that will underpin the future customer experience. Unfortunately, we are unable to offer visa sponsorship at this time Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Jun 29, 2026
Full time
CIAM Software Engineer Role: CIAM Software Engineer Salary: Up to 60k Location: Hybrid/Remote Tech Stack: Auth0, Okta, Ping Identity, OAuth2, OpenID Connect (OIDC), SAML, SCIM, React, Angular, NestJS, Azure/AWS/GCP, Docker, Kubernetes, Terraform Unfortunately, we are unable to offer visa sponsorship at this time We are currently supporting a major technology transformation programme and are looking for a CIAM Software Engineer to help deliver secure, scalable, and seamless customer identity experiences. This is an opportunity to join a growing team focused on modernising authentication and authorisation services, creating a unified platform that simplifies how customers access products and services. Working closely with Engineers, Architects, Security teams, and Product stakeholders, you'll play a key role in designing, implementing, and supporting modern Customer Identity and Access Management solutions while helping drive engineering best practices across the organisation Responsibilities Design, develop, and maintain authentication and authorisation services, including login, registration, and session management capabilities. Implement and support integration's with CIAM platforms such as Auth0, Okta, Ping Identity, and ForgeRock. Build secure, scalable, and high-performing solutions across web and mobile applications. Contribute to CI/CD pipelines, infrastructure automation, and deployment processes. Develop tooling and automation to improve delivery consistency and reduce operational overhead. Create monitoring and alerting solutions to improve platform observability and incident response. Collaborate with cross-functional teams to deliver secure and reliable customer-facing solutions. What We're Looking For Proven experience delivering solutions involving Authentication (Authn) and Authorisation (Authz) . Strong knowledge of OAuth2, OpenID Connect (OIDC), SAML, and SCIM . Hands-on experience with leading CIAM platforms, including Auth0, Okta, Ping Identity, or ForgeRock Front-end development experience using React (preferred), Angular, or NestJS Knowledge of cloud platforms such as Azure, AWS, or GCP . Experience with containerisation technologies including Docker and Kubernetes , alongside Infrastructure as Code tooling such as Terraform This is a fantastic opportunity to join a team at the start of a major identity transformation programme, helping build a single, modern customer platform that will underpin the future customer experience. Unfortunately, we are unable to offer visa sponsorship at this time Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Principal / Lead Engineer Python / Cloud / Terraform / IAM / DevOps / infrastructure-as-a-code IaC Rate: Circa 600 - 700 PD (Outside IR35), 6 Months Location: London / Hybrid x2 days We are seeking an experienced Principal / Lead Engineer to join a highly ambitious organisation building a large-scale, mission-critical data and technology platform. This is a unique opportunity to join at the earliest stages of a major programme and play a key role in shaping its technical foundations. Working closely with the CTO and a small team of senior engineers, you will lead the design and implementation of core infrastructure, establish engineering standards and practices, and make architectural decisions that will have long-term strategic impact. If you enjoy solving complex technical challenges, influencing technology strategy, and creating robust engineering foundations, this role offers an exceptional opportunity to make a lasting impact. Role & Responsibilities Technical Leadership Lead the design and implementation of foundational platform infrastructure and engineering capabilities Define architectural patterns, engineering standards, and best practices that will guide future development Partner closely with the CTO and senior stakeholders to make and document key technical decisions Promote secure-by-design principles across all aspects of platform development Establish and maintain core engineering tooling, including source control, CI/CD pipelines, infrastructure-as-code, and automated testing frameworks Platform Engineering Design and implement identity and access management solutions with robust authentication and authorisation controls Build and manage cloud infrastructure using modern infrastructure-as-code approaches Develop audit, workflow, and operational capabilities to support governance and compliance requirements Implement networking, monitoring, and security controls for highly secure environments Evaluate and integrate appropriate open-source technologies and third-party components Contribute to the design and delivery of scalable, resilient, and maintainable distributed systems Collaboration & Team Development Act as a senior technical contributor within a high-performing engineering team Mentor engineers and help establish a strong engineering culture as the organisation grows Collaborate with product, design, and delivery teams to ensure technology solutions align with business objectives Engage with external partners, suppliers, and stakeholders where required Essential Skills & Experience Proven experience leading or making significant contributions to complex distributed, cloud-native, or federated systems Strong software engineering expertise in Python, including backend development, automation, and infrastructure tooling Hands-on experience with at least one major cloud platform (AWS, Azure, or Google Cloud) Strong experience implementing Infrastructure as Code using tools such as Terraform or equivalent Experience designing and building authentication and authorisation systems, including modern identity standards and policy-based access controls Solid understanding of data storage architectures and the trade-offs between different storage and query patterns Experience establishing CI/CD pipelines and engineering best practices within modern software environments Ability to work effectively in fast-moving environments with evolving requirements and limited precedent Strong communication skills with the ability to explain complex technical concepts to both technical and non-technical audiences Desirable Skills & Experience Experience building secure, highly regulated, or mission-critical platforms Familiarity with federated architectures and distributed data access models Experience designing solutions with strong governance, auditability, and security requirements Knowledge of privacy-preserving technologies and secure computing environments Experience evaluating, adopting, or contributing to open-source technologies Background working within complex stakeholder environments undergoing significant transformation
Jun 27, 2026
Contractor
Principal / Lead Engineer Python / Cloud / Terraform / IAM / DevOps / infrastructure-as-a-code IaC Rate: Circa 600 - 700 PD (Outside IR35), 6 Months Location: London / Hybrid x2 days We are seeking an experienced Principal / Lead Engineer to join a highly ambitious organisation building a large-scale, mission-critical data and technology platform. This is a unique opportunity to join at the earliest stages of a major programme and play a key role in shaping its technical foundations. Working closely with the CTO and a small team of senior engineers, you will lead the design and implementation of core infrastructure, establish engineering standards and practices, and make architectural decisions that will have long-term strategic impact. If you enjoy solving complex technical challenges, influencing technology strategy, and creating robust engineering foundations, this role offers an exceptional opportunity to make a lasting impact. Role & Responsibilities Technical Leadership Lead the design and implementation of foundational platform infrastructure and engineering capabilities Define architectural patterns, engineering standards, and best practices that will guide future development Partner closely with the CTO and senior stakeholders to make and document key technical decisions Promote secure-by-design principles across all aspects of platform development Establish and maintain core engineering tooling, including source control, CI/CD pipelines, infrastructure-as-code, and automated testing frameworks Platform Engineering Design and implement identity and access management solutions with robust authentication and authorisation controls Build and manage cloud infrastructure using modern infrastructure-as-code approaches Develop audit, workflow, and operational capabilities to support governance and compliance requirements Implement networking, monitoring, and security controls for highly secure environments Evaluate and integrate appropriate open-source technologies and third-party components Contribute to the design and delivery of scalable, resilient, and maintainable distributed systems Collaboration & Team Development Act as a senior technical contributor within a high-performing engineering team Mentor engineers and help establish a strong engineering culture as the organisation grows Collaborate with product, design, and delivery teams to ensure technology solutions align with business objectives Engage with external partners, suppliers, and stakeholders where required Essential Skills & Experience Proven experience leading or making significant contributions to complex distributed, cloud-native, or federated systems Strong software engineering expertise in Python, including backend development, automation, and infrastructure tooling Hands-on experience with at least one major cloud platform (AWS, Azure, or Google Cloud) Strong experience implementing Infrastructure as Code using tools such as Terraform or equivalent Experience designing and building authentication and authorisation systems, including modern identity standards and policy-based access controls Solid understanding of data storage architectures and the trade-offs between different storage and query patterns Experience establishing CI/CD pipelines and engineering best practices within modern software environments Ability to work effectively in fast-moving environments with evolving requirements and limited precedent Strong communication skills with the ability to explain complex technical concepts to both technical and non-technical audiences Desirable Skills & Experience Experience building secure, highly regulated, or mission-critical platforms Familiarity with federated architectures and distributed data access models Experience designing solutions with strong governance, auditability, and security requirements Knowledge of privacy-preserving technologies and secure computing environments Experience evaluating, adopting, or contributing to open-source technologies Background working within complex stakeholder environments undergoing significant transformation
We are seeking an experienced Oracle OCI Cloud Platform Architect to lead the design, architecture, and implementation of Oracle Cloud Infrastructure (OCI) solutions. The successful candidate will provide strategic and hands-on expertise in cloud platform architecture, migration, security, governance, and operational best practices. Key Responsibilities Design and implement scalable, secure, and resilient OCI cloud architectures. Assess existing infrastructure and develop OCI migration and modernization strategies. Define cloud governance, security, networking, and operational frameworks. Architect OCI landing zones, tenancy structures, IAM policies, and network topologies. Collaborate with infrastructure, application, security, and business stakeholders. Provide technical leadership and guidance to delivery teams. Produce architecture documentation, standards, and implementation roadmaps. Support knowledge transfer and handover to internal teams. Required Skills & Experience 7+ years in cloud and infrastructure architecture roles. Strong hands-on experience with Oracle Cloud Infrastructure (OCI). Expertise in OCI Networking, Compute, Storage, Identity & Access Management, Security, and Monitoring services. Experience designing enterprise-scale cloud migration and transformation programmes. Knowledge of Infrastructure as Code (Terraform preferred). Strong understanding of cloud security, governance, resilience, and compliance frameworks. Experience integrating OCI with hybrid and multi-cloud environments. Desirable Qualifications Oracle Cloud Infrastructure Architect Professional certification. Experience with Kubernetes (OKE), DevOps pipelines, and automation. Familiarity with Oracle databases, Exadata Cloud, and Oracle SaaS integrations. Deliverables OCI target architecture and design documentation. Migration and implementation roadmap. Security and governance framework. Knowledge transfer and operational handover documentation.
Jun 26, 2026
Contractor
We are seeking an experienced Oracle OCI Cloud Platform Architect to lead the design, architecture, and implementation of Oracle Cloud Infrastructure (OCI) solutions. The successful candidate will provide strategic and hands-on expertise in cloud platform architecture, migration, security, governance, and operational best practices. Key Responsibilities Design and implement scalable, secure, and resilient OCI cloud architectures. Assess existing infrastructure and develop OCI migration and modernization strategies. Define cloud governance, security, networking, and operational frameworks. Architect OCI landing zones, tenancy structures, IAM policies, and network topologies. Collaborate with infrastructure, application, security, and business stakeholders. Provide technical leadership and guidance to delivery teams. Produce architecture documentation, standards, and implementation roadmaps. Support knowledge transfer and handover to internal teams. Required Skills & Experience 7+ years in cloud and infrastructure architecture roles. Strong hands-on experience with Oracle Cloud Infrastructure (OCI). Expertise in OCI Networking, Compute, Storage, Identity & Access Management, Security, and Monitoring services. Experience designing enterprise-scale cloud migration and transformation programmes. Knowledge of Infrastructure as Code (Terraform preferred). Strong understanding of cloud security, governance, resilience, and compliance frameworks. Experience integrating OCI with hybrid and multi-cloud environments. Desirable Qualifications Oracle Cloud Infrastructure Architect Professional certification. Experience with Kubernetes (OKE), DevOps pipelines, and automation. Familiarity with Oracle databases, Exadata Cloud, and Oracle SaaS integrations. Deliverables OCI target architecture and design documentation. Migration and implementation roadmap. Security and governance framework. Knowledge transfer and operational handover documentation.
CBSbutler Holdings Limited trading as CBSbutler
Basingstoke, Hampshire
Security Architect - Defence / Secure Infrastructure + Long term contract + Outside IR35 + DV Cleared + Hampshire based + Rate on application We are seeking an experienced Security Architect to support the design, assurance and accreditation of highly secure infrastructure and network environments within a classified defence programme. Working within a multi-disciplinary engineering team, you will define security architectures, conduct threat modelling and risk assessments, and ensure compliance with stringent security and accreditation requirements across complex IT and networked systems. Key Skills & Experience Proven Security Architecture experience within Defence, MOD, National Security or other highly regulated environments. Strong understanding of secure infrastructure, network and platform architectures. Experience with: Network segmentation and zoning Firewalls, IDS/IPS and boundary security controls PKI, encryption and key management Identity & Access Management (IAM/PAM) Secure-by-Design principles Threat modelling and security risk assessment Experience producing security architecture artefacts and supporting accreditation activities. Knowledge of NCSC guidance, JSP 440, Secure by Design and defence security standards. Security certifications such as CISSP, SABSA, TOGAF or equivalent desirable. Please note: Due to the highly classified nature of the programme, this role requires full-time onsite attendance in Hampshire.
Jun 26, 2026
Contractor
Security Architect - Defence / Secure Infrastructure + Long term contract + Outside IR35 + DV Cleared + Hampshire based + Rate on application We are seeking an experienced Security Architect to support the design, assurance and accreditation of highly secure infrastructure and network environments within a classified defence programme. Working within a multi-disciplinary engineering team, you will define security architectures, conduct threat modelling and risk assessments, and ensure compliance with stringent security and accreditation requirements across complex IT and networked systems. Key Skills & Experience Proven Security Architecture experience within Defence, MOD, National Security or other highly regulated environments. Strong understanding of secure infrastructure, network and platform architectures. Experience with: Network segmentation and zoning Firewalls, IDS/IPS and boundary security controls PKI, encryption and key management Identity & Access Management (IAM/PAM) Secure-by-Design principles Threat modelling and security risk assessment Experience producing security architecture artefacts and supporting accreditation activities. Knowledge of NCSC guidance, JSP 440, Secure by Design and defence security standards. Security certifications such as CISSP, SABSA, TOGAF or equivalent desirable. Please note: Due to the highly classified nature of the programme, this role requires full-time onsite attendance in Hampshire.
We are looking for an experienced Technical Architect to bridge the gap between our well-defined business requirements and technical delivery. We have a clear set of objectives and a capable development team able to deliver against detailed tickets, but we need someone who can translate business needs into implementable technical work. As we expand our ambitions to improve data discoverability and access across the department, this ability to translate between business and technical will become increasingly critical. Early business requirements are already clearly understood and documented; requirements gathering is not part of this role. Instead, the focus is on solution design, ticket decomposition, and ongoing architectural leadership. For this job your tasks will be: Architecture Review & Assurance Review the existing cloud platform architecture (AWS-based) and produce a prioritised set of recommendations for improvement Ensure alignment with AWS Well-Architected Framework principles and government technology standards Maintain architecture decision records and keep technical documentation up to date Solution Design & Ticket Decomposition Translate clearly defined business requirements into system-level technical designs Break down designs into discrete, actionable development tickets with clear acceptance criteria Walk through tickets with the development team to confirm shared understanding before work begins Data Access & Security Design and specify granular, role-based data access controls using AWS Lake Formation, IAM, and SSO integration Design secure connectivity patterns enabling Power BI and Excel users to query the data lake directly via ODBC/Athena Ensure consistent access enforcement across all tools and user interfaces Dashboard Hosting Design the architecture for hosting interactive dashboards (eg Shiny, Streamlit) on the platform, including ingress, authentication, and deployment pipelines Collaborate with the Service Design Lead to align technical setup with publishing and approval processes User Acceptance Testing Support Assess and triage major technical issues arising from user acceptance testing Design solutions and produce development tickets to resolve priority items Ongoing Architecture Leadership Act as the primary point of contact for translating business needs into technical specifications Support Agile delivery ceremonies including sprint planning, backlog refinement, and prioritisation Provide architectural guidance on platform evolution, including migration of users from Legacy systems, onboarding of new teams, and introduction of modern data formats (eg Apache Iceberg) Advise on cost optimisation, scaling, observability, and technical debt management Contribute to security reviews and service assessments as required The technical skills required for this role align with the Lead Technical Architect role in the GDaD capability framework. This includes: Excellent architecture communication skills , ensuring clear communication with a range of stakeholders on technical design decisions. Confidence in making architectural decisions of medium risk and complexity and setting up appropriate governance and assurance processes to manage the risk. Effective community collaboration, working closely with the CATS development team to realise the target architecture and support the resolution of complex technical challenges More specifically, the role requires strong technical understanding of: Cloud infrastructure , with a particular focus on AWS services, architecture patterns, and security principles. Identity and access management , including designing fine-grained access controls using IAM roles, policies and groups. Containerisation and orchestration , including practical understanding of Docker and Kubernetes in production environments. Software engineering fundamentals , including version control, modular design, testing practices, and maintainable code standards. Data engineering on AWS , particularly services such as Glue, Athena, Lake Formation, and modern data lake table formats (eg Apache Iceberg). The individual should also demonstrate the following additional soft skills: Ability to rapidly build context : the role requires developing a strong understanding of CATS business requirements and the wider strategic context in order to effectively translate these into technical deliverables Excellent technical drafting skills : producing clear, detailed technical tickets that enable the development team to implement work with minimal ambiguity Strong organisational and delivery management skills : taking ownership of their delivery timelines, proactively managing progress and blockers, and escalating issues in a timely manner Familiarity with Civil Service ways of working : operating effectively within a fast-paced, multidisciplinary team and quickly understanding the strategic importance of CATS
Jun 25, 2026
Contractor
We are looking for an experienced Technical Architect to bridge the gap between our well-defined business requirements and technical delivery. We have a clear set of objectives and a capable development team able to deliver against detailed tickets, but we need someone who can translate business needs into implementable technical work. As we expand our ambitions to improve data discoverability and access across the department, this ability to translate between business and technical will become increasingly critical. Early business requirements are already clearly understood and documented; requirements gathering is not part of this role. Instead, the focus is on solution design, ticket decomposition, and ongoing architectural leadership. For this job your tasks will be: Architecture Review & Assurance Review the existing cloud platform architecture (AWS-based) and produce a prioritised set of recommendations for improvement Ensure alignment with AWS Well-Architected Framework principles and government technology standards Maintain architecture decision records and keep technical documentation up to date Solution Design & Ticket Decomposition Translate clearly defined business requirements into system-level technical designs Break down designs into discrete, actionable development tickets with clear acceptance criteria Walk through tickets with the development team to confirm shared understanding before work begins Data Access & Security Design and specify granular, role-based data access controls using AWS Lake Formation, IAM, and SSO integration Design secure connectivity patterns enabling Power BI and Excel users to query the data lake directly via ODBC/Athena Ensure consistent access enforcement across all tools and user interfaces Dashboard Hosting Design the architecture for hosting interactive dashboards (eg Shiny, Streamlit) on the platform, including ingress, authentication, and deployment pipelines Collaborate with the Service Design Lead to align technical setup with publishing and approval processes User Acceptance Testing Support Assess and triage major technical issues arising from user acceptance testing Design solutions and produce development tickets to resolve priority items Ongoing Architecture Leadership Act as the primary point of contact for translating business needs into technical specifications Support Agile delivery ceremonies including sprint planning, backlog refinement, and prioritisation Provide architectural guidance on platform evolution, including migration of users from Legacy systems, onboarding of new teams, and introduction of modern data formats (eg Apache Iceberg) Advise on cost optimisation, scaling, observability, and technical debt management Contribute to security reviews and service assessments as required The technical skills required for this role align with the Lead Technical Architect role in the GDaD capability framework. This includes: Excellent architecture communication skills , ensuring clear communication with a range of stakeholders on technical design decisions. Confidence in making architectural decisions of medium risk and complexity and setting up appropriate governance and assurance processes to manage the risk. Effective community collaboration, working closely with the CATS development team to realise the target architecture and support the resolution of complex technical challenges More specifically, the role requires strong technical understanding of: Cloud infrastructure , with a particular focus on AWS services, architecture patterns, and security principles. Identity and access management , including designing fine-grained access controls using IAM roles, policies and groups. Containerisation and orchestration , including practical understanding of Docker and Kubernetes in production environments. Software engineering fundamentals , including version control, modular design, testing practices, and maintainable code standards. Data engineering on AWS , particularly services such as Glue, Athena, Lake Formation, and modern data lake table formats (eg Apache Iceberg). The individual should also demonstrate the following additional soft skills: Ability to rapidly build context : the role requires developing a strong understanding of CATS business requirements and the wider strategic context in order to effectively translate these into technical deliverables Excellent technical drafting skills : producing clear, detailed technical tickets that enable the development team to implement work with minimal ambiguity Strong organisational and delivery management skills : taking ownership of their delivery timelines, proactively managing progress and blockers, and escalating issues in a timely manner Familiarity with Civil Service ways of working : operating effectively within a fast-paced, multidisciplinary team and quickly understanding the strategic importance of CATS
Security & Identity Architect Location: Thurmaston Flexible / Hybrid We are looking for an experienced Security & Identity Architect to lead the design and implementation of secure-by-design principles across enterprise technology environments. This is a strategic and hands-on architecture role focused on embedding cyber security controls into projects, platforms, cloud services, and digital solutions across the organisation. You will work closely with architecture, infrastructure, delivery, and leadership teams to ensure security requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation's Security by Design and project assurance frameworks Define and maintain security non-functional requirements (NFRs) across all new systems and services Review technical solutions and ensure secure architecture standards are met before go-live Identify, document, and track security risks and technical debt Provide guidance on secure cloud adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits, and compliance activities Support M&A onboarding/offboarding from a cyber security and identity perspective Skills & Experience: Proven experience in Security Architecture and Identity & Access Management Strong understanding of Security by Design and secure software development lifecycles Experience with enterprise IAM technologies and governance frameworks Knowledge of cloud security principles across Azure and/or AWS Experience with DevSecOps and Infrastructure as Code environments Strong understanding of cyber security domains including authentication, authorisation, logging, monitoring, vulnerability management, and platform security Excellent stakeholder management and communication skills Ability to influence technical and non-technical audiences What Success Looks Like: Security controls consistently embedded into projects and solutions Improved IAM maturity and Zero Trust adoption Reduced security risk exposure across platforms and services Strong collaboration across architecture, infrastructure, and delivery teams Clear visibility and management of security-related technical debt and risk Security & Identity Architect Flexible / Hybrid
Jun 25, 2026
Full time
Security & Identity Architect Location: Thurmaston Flexible / Hybrid We are looking for an experienced Security & Identity Architect to lead the design and implementation of secure-by-design principles across enterprise technology environments. This is a strategic and hands-on architecture role focused on embedding cyber security controls into projects, platforms, cloud services, and digital solutions across the organisation. You will work closely with architecture, infrastructure, delivery, and leadership teams to ensure security requirements are integrated from design through to deployment. You will also play a key role in shaping and governing the organisation's Identity & Access Management (IAM) strategy, helping to drive improvements in Zero Trust security, privileged access controls, and identity lifecycle management. Key Responsibilities Lead and enhance the organisation's Security by Design and project assurance frameworks Define and maintain security non-functional requirements (NFRs) across all new systems and services Review technical solutions and ensure secure architecture standards are met before go-live Identify, document, and track security risks and technical debt Provide guidance on secure cloud adoption across Azure and AWS environments Drive IAM governance, including MFA, RBAC, PAM/PIM, Conditional Access, and Zero Trust controls Support penetration testing, vulnerability management, and remediation activities Collaborate with internal stakeholders, suppliers, and external partners to improve security posture Contribute to security standards, policies, audits, and compliance activities Support M&A onboarding/offboarding from a cyber security and identity perspective Skills & Experience: Proven experience in Security Architecture and Identity & Access Management Strong understanding of Security by Design and secure software development lifecycles Experience with enterprise IAM technologies and governance frameworks Knowledge of cloud security principles across Azure and/or AWS Experience with DevSecOps and Infrastructure as Code environments Strong understanding of cyber security domains including authentication, authorisation, logging, monitoring, vulnerability management, and platform security Excellent stakeholder management and communication skills Ability to influence technical and non-technical audiences What Success Looks Like: Security controls consistently embedded into projects and solutions Improved IAM maturity and Zero Trust adoption Reduced security risk exposure across platforms and services Strong collaboration across architecture, infrastructure, and delivery teams Clear visibility and management of security-related technical debt and risk Security & Identity Architect Flexible / Hybrid
Senior Cloud Ops Engineer Location: Durrington, Worthing (Hybrid) Contract Type: Permanent Salary: Circa 70K + bonus. Hours: 37 hours The Senior Cloud Operations Engineer plays a critical role in the design, implementation, and ongoing operation of the client's cloud infrastructure, with a strong emphasis on Microsoft Azure. As a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. Responsibilities to include: Azure Cloud Engineering Build, configure, and maintain Azure cloud environments (IaaS, PaaS, storage, networking, identity). Deploy and support Azure Landing Zones in line with enterprise architecture standards. Support the transition from IaaS to PaaS services by designing and implementing modern cloud-native solutions. Monitor and manage cloud workloads to ensure availability, performance, and security. Operations & Automation Implement infrastructure as code (IaC) using tools such as Bicep, ARM templates, or Terraform. Automate provisioning, scaling, and maintenance of cloud resources using DevOps pipelines and scripts (PowerShell, Azure CLI, CI/CD etc.). Monitor system health, respond to incidents, and participate in root cause analysis and continuous improvement. Security, Governance & Compliance Enforce cloud security best practices, including role-based access control (RBAC), encryption, and secure networking. Support compliance with internal policies and regulatory standards by ensuring guardrails and policies are in place. Cost Management & FinOps Support Contribute to cost optimization by right-sizing resources and identifying opportunities to reduce waste. Use Azure Cost Management tools and dashboards to track and forecast cloud spend. Provide reporting and insights to the Cloud Operations Manager and Finance teams. Process Development & Documentation Document standard operating procedures, cloud configurations, and runbooks. Collaboration & Support Work with infrastructure architects, data platform teams, developers, and project teams to support solution delivery. Act as an escalation point for cloud-related incidents and changes. Assist with service transitions, knowledge transfer, and training for BAU support teams. Disaster Recovery & Business Continuity Support the implementation and testing of disaster recovery and business continuity plans related to cloud infrastructure. Ensure cloud services are resilient and recoverable in line with Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). Collaborate with the DR/BCP team to maintain and update recovery procedures and test plans. Recommend improvements or innovations based on emerging technologies and industry trends. Knowledge and skills needed: Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent work experience. Extensive experience with Microsoft Azure cloud services and PaaS/IaaS solutions. Strong knowledge of landing zone architecture and best practices. Proven experience in defining and implementing cloud infrastructure standards and best practices. Infrastructure as Code (IaC): Knowledge of IaC tools like Terraform or CloudFormation to provision and manage infrastructure resources programmatically. Containerisation and Orchestration: Proficient with container technologies like Docker and container orchestration platforms such as Kubernetes. Automation: Strong scripting skills (e.g., Python, PowerShell) and the ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices and the ability to integrate development and operations workflows for faster and more reliable deployments. FinOps (Cloud Financial Operations): Experience with managing cloud costs, optimising cloud spending, and implementing FinOps principles to drive cost-effective cloud strategies while balancing performance and scalability. Capability required: Cloud Platform Expertise: Expert in MS Azure with a deep understanding of its services, features, and capabilities. Scaling and Performance Optimisation: Ability to scale cloud resources based on demand and optimize resource utilization for cost-effectiveness. Cloud Security and Compliance: Expertise in applying security best practices, including identity and access management (IAM), encryption, regulatory compliance and cloud-native security tools. Troubleshooting: Strong problem-solving and debugging skills to identify and resolve issues quickly. Documentation: Thorough documentation of configurations, processes, and procedures to ensure clarity and knowledge sharing. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Jun 24, 2026
Full time
Senior Cloud Ops Engineer Location: Durrington, Worthing (Hybrid) Contract Type: Permanent Salary: Circa 70K + bonus. Hours: 37 hours The Senior Cloud Operations Engineer plays a critical role in the design, implementation, and ongoing operation of the client's cloud infrastructure, with a strong emphasis on Microsoft Azure. As a key technical contributor within the Cloud Operations function, you will be responsible for ensuring that cloud-based services are available, secure, efficient, and cost-effective. This includes provisioning and managing compute, storage, networking, and identity services, as well as supporting the use of advanced PaaS capabilities and analytics platforms. Responsibilities to include: Azure Cloud Engineering Build, configure, and maintain Azure cloud environments (IaaS, PaaS, storage, networking, identity). Deploy and support Azure Landing Zones in line with enterprise architecture standards. Support the transition from IaaS to PaaS services by designing and implementing modern cloud-native solutions. Monitor and manage cloud workloads to ensure availability, performance, and security. Operations & Automation Implement infrastructure as code (IaC) using tools such as Bicep, ARM templates, or Terraform. Automate provisioning, scaling, and maintenance of cloud resources using DevOps pipelines and scripts (PowerShell, Azure CLI, CI/CD etc.). Monitor system health, respond to incidents, and participate in root cause analysis and continuous improvement. Security, Governance & Compliance Enforce cloud security best practices, including role-based access control (RBAC), encryption, and secure networking. Support compliance with internal policies and regulatory standards by ensuring guardrails and policies are in place. Cost Management & FinOps Support Contribute to cost optimization by right-sizing resources and identifying opportunities to reduce waste. Use Azure Cost Management tools and dashboards to track and forecast cloud spend. Provide reporting and insights to the Cloud Operations Manager and Finance teams. Process Development & Documentation Document standard operating procedures, cloud configurations, and runbooks. Collaboration & Support Work with infrastructure architects, data platform teams, developers, and project teams to support solution delivery. Act as an escalation point for cloud-related incidents and changes. Assist with service transitions, knowledge transfer, and training for BAU support teams. Disaster Recovery & Business Continuity Support the implementation and testing of disaster recovery and business continuity plans related to cloud infrastructure. Ensure cloud services are resilient and recoverable in line with Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO). Collaborate with the DR/BCP team to maintain and update recovery procedures and test plans. Recommend improvements or innovations based on emerging technologies and industry trends. Knowledge and skills needed: Bachelor's degree in Computer Science, Information Technology, or a related field or equivalent work experience. Extensive experience with Microsoft Azure cloud services and PaaS/IaaS solutions. Strong knowledge of landing zone architecture and best practices. Proven experience in defining and implementing cloud infrastructure standards and best practices. Infrastructure as Code (IaC): Knowledge of IaC tools like Terraform or CloudFormation to provision and manage infrastructure resources programmatically. Containerisation and Orchestration: Proficient with container technologies like Docker and container orchestration platforms such as Kubernetes. Automation: Strong scripting skills (e.g., Python, PowerShell) and the ability to automate routine tasks and deployment processes for efficiency and consistency. Security: Expertise in cloud security best practices, identity and access management (IAM), encryption, and compliance frameworks (e.g., PCI DSS, NIST). Networking: Strong knowledge of cloud networking concepts, including virtual networks, subnets, security groups, load balancers, and VPN configurations. DevOps Principles: An understanding of DevOps practices and the ability to integrate development and operations workflows for faster and more reliable deployments. FinOps (Cloud Financial Operations): Experience with managing cloud costs, optimising cloud spending, and implementing FinOps principles to drive cost-effective cloud strategies while balancing performance and scalability. Capability required: Cloud Platform Expertise: Expert in MS Azure with a deep understanding of its services, features, and capabilities. Scaling and Performance Optimisation: Ability to scale cloud resources based on demand and optimize resource utilization for cost-effectiveness. Cloud Security and Compliance: Expertise in applying security best practices, including identity and access management (IAM), encryption, regulatory compliance and cloud-native security tools. Troubleshooting: Strong problem-solving and debugging skills to identify and resolve issues quickly. Documentation: Thorough documentation of configurations, processes, and procedures to ensure clarity and knowledge sharing. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission.
Our client is seeking an experienced SC Cleared Oracle Cloud Infrastructure (OCI) Architect to support a major bid programme. The successful candidate will be responsible for defining the target OCI architecture, producing technical solution documentation, and contributing to the overall proposal to ensure a secure, scalable, and cost-effective cloud platform. Key Responsibilities Lead the design of Oracle Cloud Infrastructure (OCI) solutions as part of a bid and pre-sales engagement. Produce high-level solution designs, architecture artefacts, and technical responses for proposal submissions. Define cloud architecture, networking, security, resilience, and operational models. Collaborate with bid, delivery, and security teams to ensure the proposed solution meets customer requirements. Provide technical leadership and contribute to solution assurance activities. Develop migration and implementation approaches for workloads transitioning to OCI. Support estimation activities and identify technical risks, assumptions, and dependencies. Ensure proposed solutions align with security, compliance, and architectural best practices. Present technical solutions to internal stakeholders and customers as required. Required Skills & Experience Active SC Clearance . Proven experience as an OCI Architect, Cloud Architect, or Solution Architect. Strong knowledge of Oracle Cloud Infrastructure services, including: Compute Networking Virtual Cloud Networks (VCN) Load Balancers Identity and Access Management (IAM) Storage and Backup Services Monitoring and Logging High Availability and Disaster Recovery Experience supporting bids, proposals, or large-scale transformation programmes. Strong understanding of cloud security and governance principles. Experience with Infrastructure as Code, preferably Terraform. Ability to produce high-quality technical documentation and architecture deliverables. Excellent stakeholder engagement and communication skills. Desirable Skills Oracle Cloud Infrastructure Architect Professional certification. Experience working within Government, Defence, or secure environments. Knowledge of hybrid cloud architectures and connectivity patterns. Familiarity with DevOps and CI/CD practices. TOGAF or equivalent architecture certification. Key Attributes Strong analytical and problem-solving skills. Ability to operate effectively in a bid and pre-sales environment. Excellent communication and stakeholder management capabilities. Comfortable working in fast-paced, highly collaborative teams.
Jun 24, 2026
Contractor
Our client is seeking an experienced SC Cleared Oracle Cloud Infrastructure (OCI) Architect to support a major bid programme. The successful candidate will be responsible for defining the target OCI architecture, producing technical solution documentation, and contributing to the overall proposal to ensure a secure, scalable, and cost-effective cloud platform. Key Responsibilities Lead the design of Oracle Cloud Infrastructure (OCI) solutions as part of a bid and pre-sales engagement. Produce high-level solution designs, architecture artefacts, and technical responses for proposal submissions. Define cloud architecture, networking, security, resilience, and operational models. Collaborate with bid, delivery, and security teams to ensure the proposed solution meets customer requirements. Provide technical leadership and contribute to solution assurance activities. Develop migration and implementation approaches for workloads transitioning to OCI. Support estimation activities and identify technical risks, assumptions, and dependencies. Ensure proposed solutions align with security, compliance, and architectural best practices. Present technical solutions to internal stakeholders and customers as required. Required Skills & Experience Active SC Clearance . Proven experience as an OCI Architect, Cloud Architect, or Solution Architect. Strong knowledge of Oracle Cloud Infrastructure services, including: Compute Networking Virtual Cloud Networks (VCN) Load Balancers Identity and Access Management (IAM) Storage and Backup Services Monitoring and Logging High Availability and Disaster Recovery Experience supporting bids, proposals, or large-scale transformation programmes. Strong understanding of cloud security and governance principles. Experience with Infrastructure as Code, preferably Terraform. Ability to produce high-quality technical documentation and architecture deliverables. Excellent stakeholder engagement and communication skills. Desirable Skills Oracle Cloud Infrastructure Architect Professional certification. Experience working within Government, Defence, or secure environments. Knowledge of hybrid cloud architectures and connectivity patterns. Familiarity with DevOps and CI/CD practices. TOGAF or equivalent architecture certification. Key Attributes Strong analytical and problem-solving skills. Ability to operate effectively in a bid and pre-sales environment. Excellent communication and stakeholder management capabilities. Comfortable working in fast-paced, highly collaborative teams.
Aioi Nissay Dowa Europe
Forest Hall, Tyne And Wear
We re AND-E one of the fastest-growing insurance companies. And we re proud of our warm and inclusive culture. We re building a diverse community, with a unique blend of strengths, to take our business to the next level. As a DevOps Engineer, you ll be at the heart of our platforms, helping keep everything running smoothly behind the scenes while we deliver for our customers. You ll get hands-on with AWS, working across monitoring, incident response, automation, and CI/CD all the good stuff that keeps modern platforms fast, reliable, and scalable. This isn t a role where you ll just keep the lights on. You ll be solving real problems, reducing manual effort, and helping shape how we build and run our systems going forward. You ll work closely with experienced engineers, share ideas, and continuously look for smarter, better ways of doing things. Your work will directly support the systems that power our business, making sure they re ready when our customers need them most. If you re curious, collaborative, and enjoy solving meaningful technical challenges, this could be your next move join us and take your career further. CHALLENGED NOW AND-EXPERT NEXT. This role is based in the UK and requires candidates to have the right to work in the UK. Responsibilities Manage and support AWS services (EC2, RDS, S3, Lambda, networking), while driving automation using Shell, Python, and AWS-native solutions to improve efficiency and reliability. Assist in building and maintaining CI/CD pipelines using tools such as AWS CodePipeline and Jenkins. Support cloud-based deployment, monitoring, and operational tooling across application environments. Maintain platform availability, resilience, and disaster recovery capabilities, contributing to service reliability improvements (SLIs/SLOs). Participate in deployments, releases, and day-to-day operational support across multiple applications. Monitor system health, including application environments, scheduled jobs, integrations, and message queues, and contribute to logging and alerting standards. Support incident management activities, including triage, troubleshooting, escalation, root cause analysis (RCA), and continuous improvement based on incident trends. Assist with routine maintenance tasks such as data validation, fixes, and batch/integration support. Support containerisation using Docker and follow best practices for image creation and management. Assist with infrastructure and system administration tasks across Linux and Windows environments. Apply Infrastructure as Code (IaC) principles using Terraform. Follow DevOps best practices, including branching strategies and source control using Git and Bitbucket. Contribute to technical documentation, runbooks, and operational procedures using Confluence and Bitbucket. Collaborate in Agile ceremonies with cross-functional teams, including developers, testers, infrastructure teams, and third-party vendors. Support planned out-of-hours changes and incidents where required. Participate in cost-awareness and optimisation activities within AWS environments. Knowledge, Skills and Qualifications Essential • Experience in IT support and systems administration. • Basic understanding of ITIL, DevOps, Agile, and Kanban principles. • Exposure to Linux administration and troubleshooting. • Hands-on exposure to AWS core services (EC2, S3, RDS, IAM, CloudWatch). • Understanding of CI/CD pipelines and deployment automation. • Familiarity with monitoring, logging, and observability tools. • Awareness of application platforms and middleware such as Java, Tomcat, Apache, and NodeJS. • Experience using Git and collaborative development workflows. • Basic scripting skills using Shell or Python. • Understanding of containerisation concepts using Docker. • Strong problem-solving skills and attention to detail. • Good communication and interpersonal skills. • Willingness to learn and develop within a fast-paced technical environment. • Understanding of incident management and production support environments. • Awareness of security best practices (IAM roles, secrets management). Desirable • Exposure to Guidewire applications. • Exposure to Terraform or Infrastructure as Code (IaC) tooling. • Knowledge of AWS Lambda, serverless, and event-driven architecture. • Experience within insurance or financial services environments. • Experience with EKS / container orchestration (or strong Docker usage). • Experience working in 24/7 production environments, ideally within regulated settings. • Understanding of release management and change controls in regulated environments. Why Join Us? We're all about helping you grow, with plenty of support to develop in your current role whilst also creating opportunities to explore new ones and advance your career. We realise that we need to be a good fit for you above all else so here s what you can enjoy about AND-E: Recognised as the Best Large Insurance Employer: We are proud to have been named the Best Large Insurance Employer for 2023 at the prestigious British Insurance Awards. Unmatched Work-Life Balance. Competitive Salaries and Benefits Package: We offer competitive salaries that recognise your skills and expertise. We champion choice, flexibility, and balance in both work and home life. Our commitment to diversity, equity, and inclusion ensures everyone feels valued and supported including embracing neurodiversity and providing the tools needed to thrive. We like to think our benefits package is one of the best, focusing on colleagues health, wealth, and lifestyle. We offer: Up to 28 Days annual leave with the option to buy/sell up to 5 days holiday 7.5% Discretionary Annual Bonus Healix Private Medical Insurance Options 3 x Annual Salary Life Assurance A range of health, wellbeing, and financial support benefits, including money back on health expenses, Employee Assistance Programme, Flu Jab voucher, Virtual GP service, and driving lessons for you and your family. Additional perks such as a pension advisory service, family-friendly policies, season ticket loan , cycle scheme , and financial flexibility through Wagestream . Subject to company performance and completion of probation Aioi Nissay Dowa Europe is committed to promoting equal opportunities in employment. Employees and job applicants will receive equal treatment regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, colour, nationality, ethnic or national origin, religion or belief, sex or sexual orientation (Protected Characteristics) At AND-E, equal opportunity is more than a policy it s a promise. We welcome applications from all individuals regardless of age, disability, gender identity, marital status, pregnancy, race, religion, sexual orientation, or any other protected characteristic. Reasonable adjustments: If you require any adjustments to support you during our recruitment process, please let us know. We re committed to making the process accessible and are happy to help.
Jun 24, 2026
Full time
We re AND-E one of the fastest-growing insurance companies. And we re proud of our warm and inclusive culture. We re building a diverse community, with a unique blend of strengths, to take our business to the next level. As a DevOps Engineer, you ll be at the heart of our platforms, helping keep everything running smoothly behind the scenes while we deliver for our customers. You ll get hands-on with AWS, working across monitoring, incident response, automation, and CI/CD all the good stuff that keeps modern platforms fast, reliable, and scalable. This isn t a role where you ll just keep the lights on. You ll be solving real problems, reducing manual effort, and helping shape how we build and run our systems going forward. You ll work closely with experienced engineers, share ideas, and continuously look for smarter, better ways of doing things. Your work will directly support the systems that power our business, making sure they re ready when our customers need them most. If you re curious, collaborative, and enjoy solving meaningful technical challenges, this could be your next move join us and take your career further. CHALLENGED NOW AND-EXPERT NEXT. This role is based in the UK and requires candidates to have the right to work in the UK. Responsibilities Manage and support AWS services (EC2, RDS, S3, Lambda, networking), while driving automation using Shell, Python, and AWS-native solutions to improve efficiency and reliability. Assist in building and maintaining CI/CD pipelines using tools such as AWS CodePipeline and Jenkins. Support cloud-based deployment, monitoring, and operational tooling across application environments. Maintain platform availability, resilience, and disaster recovery capabilities, contributing to service reliability improvements (SLIs/SLOs). Participate in deployments, releases, and day-to-day operational support across multiple applications. Monitor system health, including application environments, scheduled jobs, integrations, and message queues, and contribute to logging and alerting standards. Support incident management activities, including triage, troubleshooting, escalation, root cause analysis (RCA), and continuous improvement based on incident trends. Assist with routine maintenance tasks such as data validation, fixes, and batch/integration support. Support containerisation using Docker and follow best practices for image creation and management. Assist with infrastructure and system administration tasks across Linux and Windows environments. Apply Infrastructure as Code (IaC) principles using Terraform. Follow DevOps best practices, including branching strategies and source control using Git and Bitbucket. Contribute to technical documentation, runbooks, and operational procedures using Confluence and Bitbucket. Collaborate in Agile ceremonies with cross-functional teams, including developers, testers, infrastructure teams, and third-party vendors. Support planned out-of-hours changes and incidents where required. Participate in cost-awareness and optimisation activities within AWS environments. Knowledge, Skills and Qualifications Essential • Experience in IT support and systems administration. • Basic understanding of ITIL, DevOps, Agile, and Kanban principles. • Exposure to Linux administration and troubleshooting. • Hands-on exposure to AWS core services (EC2, S3, RDS, IAM, CloudWatch). • Understanding of CI/CD pipelines and deployment automation. • Familiarity with monitoring, logging, and observability tools. • Awareness of application platforms and middleware such as Java, Tomcat, Apache, and NodeJS. • Experience using Git and collaborative development workflows. • Basic scripting skills using Shell or Python. • Understanding of containerisation concepts using Docker. • Strong problem-solving skills and attention to detail. • Good communication and interpersonal skills. • Willingness to learn and develop within a fast-paced technical environment. • Understanding of incident management and production support environments. • Awareness of security best practices (IAM roles, secrets management). Desirable • Exposure to Guidewire applications. • Exposure to Terraform or Infrastructure as Code (IaC) tooling. • Knowledge of AWS Lambda, serverless, and event-driven architecture. • Experience within insurance or financial services environments. • Experience with EKS / container orchestration (or strong Docker usage). • Experience working in 24/7 production environments, ideally within regulated settings. • Understanding of release management and change controls in regulated environments. Why Join Us? We're all about helping you grow, with plenty of support to develop in your current role whilst also creating opportunities to explore new ones and advance your career. We realise that we need to be a good fit for you above all else so here s what you can enjoy about AND-E: Recognised as the Best Large Insurance Employer: We are proud to have been named the Best Large Insurance Employer for 2023 at the prestigious British Insurance Awards. Unmatched Work-Life Balance. Competitive Salaries and Benefits Package: We offer competitive salaries that recognise your skills and expertise. We champion choice, flexibility, and balance in both work and home life. Our commitment to diversity, equity, and inclusion ensures everyone feels valued and supported including embracing neurodiversity and providing the tools needed to thrive. We like to think our benefits package is one of the best, focusing on colleagues health, wealth, and lifestyle. We offer: Up to 28 Days annual leave with the option to buy/sell up to 5 days holiday 7.5% Discretionary Annual Bonus Healix Private Medical Insurance Options 3 x Annual Salary Life Assurance A range of health, wellbeing, and financial support benefits, including money back on health expenses, Employee Assistance Programme, Flu Jab voucher, Virtual GP service, and driving lessons for you and your family. Additional perks such as a pension advisory service, family-friendly policies, season ticket loan , cycle scheme , and financial flexibility through Wagestream . Subject to company performance and completion of probation Aioi Nissay Dowa Europe is committed to promoting equal opportunities in employment. Employees and job applicants will receive equal treatment regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, colour, nationality, ethnic or national origin, religion or belief, sex or sexual orientation (Protected Characteristics) At AND-E, equal opportunity is more than a policy it s a promise. We welcome applications from all individuals regardless of age, disability, gender identity, marital status, pregnancy, race, religion, sexual orientation, or any other protected characteristic. Reasonable adjustments: If you require any adjustments to support you during our recruitment process, please let us know. We re committed to making the process accessible and are happy to help.
Location: London (City) - (4 days office/1 remote) Salary: £75,000 - £85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver lifecycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to £85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Oct 08, 2025
Full time
Location: London (City) - (4 days office/1 remote) Salary: £75,000 - £85,000 + annual discretionary bonus Hours: 11am-7pm (fixed shift) About the firm Our client is a leading global law firm with world-class offices in the heart of the City. The firm has recently moved into a brand-new building offering outstanding facilities, including free breakfast, lunch and dinner, a fully equipped on-site gym, and a modern, collaborative working environment. The opportunity This is a new role within the EMEA Identity & Access Management team, supporting a global user base and working closely with teams in the US and APAC. The position offers a mix of hands-on BAU operations and project delivery focused on improving automation, access controls and privileged account management across the firm's enterprise environment. You'll work alongside experienced IAM engineers to maintain and enhance the firm's Microsoft identity platforms, supporting the joiner-mover-leaver lifecycle and driving continuous improvement in identity security and governance. Key responsibilities Manage and maintain Active Directory, Azure/Entra ID and M365 identity services Support and enhance the firm's PAM platform (Delinea) - experience with CyberArk or BeyondTrust also welcome Administer PIM, Conditional Access and MFA policies across the Entra environment Develop and maintain PowerShell scripts for automation and reporting Collaborate with global IAM and Infrastructure teams on projects and incident resolution Ensure access governance, compliance and audit requirements are met across systems Contribute to roadmap development and platform improvements within the EMEA region What we're looking for Strong hands-on experience with Active Directory and Azure/Entra ID administration Knowledge of PAM solutions such as Delinea, CyberArk or BeyondTrust Good understanding of M365, Intune and identity security principles Confident using PowerShell for automation and troubleshooting Familiarity with PIM, MFA and Conditional Access Experience working in large, global or professional services environments Collaborative mindset and a genuine interest in identity security What's on offer Salary up to £85,000 depending on experience Annual discretionary bonus On-site working (4 days office/1 remote) Free breakfast, lunch and dinner each day Free on-site gym Excellent benefits package Genuine career progression - clear path to Senior Engineer or IAM Architect as the team expands If you're an experienced IAM or Infrastructure Engineer looking to step into a global role with a strong Microsoft and PAM focus, we'd love to hear from you. Please apply with your CV
Cloud Architect - MOD DV - Perm Location: Corsham, 4 days on-site Clearance: Active MOD DV - Must have DV in place, no scope for sponsorship Salary : £80,000 - £95,000 + Benefits An exciting opportunity has opened up to join one of Google Cloud's primary technical partners, as they push on with a new programme of work in the UK Defence sector, utilising cutting edge Cloud technologies. The role suits a Cloud Architect with a defence background that has an interest in utilising their AWS/Azure experience and up-skilling with GCP certifications and a training programme. As well as applying any existing GCP experience. About the role As a Cloud Architect you will be responsible for designing and advising on secure cloud architectures within Google Cloud Platform (GCP), ensuring compliance with UK and international standards. You will work with clients across sectors to assess risks, implement robust security controls, and guide secure cloud adoption strategies. This role requires a strong understanding of cloud-native security, regulatory frameworks, and the ability to translate technical risks into business impact. Part of this role, you will be required to obtain GCP certification. What You'll Do: Design and implement secure architectures, incorporating identity, access management, encryption, and network security. Conduct cloud security assessments and gap analyses for UK-based organisations. Advise on compliance with UK regulations (e.g. GDPR, NCSC Cloud Security Principles, ISO 27001). Develop and enforce cloud security policies, procedures, and governance models. Lead threat modelling, risk assessments, and vulnerability management initiatives. Configure and manage security tools such as Google SecOps tooling, Security Command Center, Cloud Armour, and VPC Service Controls. Collaborate with engineering and DevOps teams to embed security into CI/CD pipelines. Support incident response planning and cloud-specific disaster recovery strategies. Stay up to date with GCP security features, UK regulatory changes, and emerging threats. Requirements What You'll Bring Essential Skills & Experience: Experience in cloud security. Strong knowledge of: Security services (IAM, Cloud KMS, VPC Service Controls, etc.) UK data protection and compliance frameworks (GDPR, ICO guidance) Identity federation, SSO, and role-based access control Network segmentation and firewall configuration in cloud environments. Logging, monitoring, and SIEM integration (e.g. Splunk, Chronicle) Experience with Infrastructure as Code (Terraform, Deployment Manager). Desirable: Google Cloud Professional Cloud Security Engineer certification. Experience with UK public sector or regulated industries (e.g. finance, healthcare). Familiarity with container security (GKE, Kubernetes RBAC, image scanning). Proficiency in scripting (Python, Bash) for automation and tooling. Experience with incident response in cloud-native environments. Previous consultancy experience within UK public sector organisations. If you're interested in the above, reach out to or apply Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Oct 07, 2025
Full time
Cloud Architect - MOD DV - Perm Location: Corsham, 4 days on-site Clearance: Active MOD DV - Must have DV in place, no scope for sponsorship Salary : £80,000 - £95,000 + Benefits An exciting opportunity has opened up to join one of Google Cloud's primary technical partners, as they push on with a new programme of work in the UK Defence sector, utilising cutting edge Cloud technologies. The role suits a Cloud Architect with a defence background that has an interest in utilising their AWS/Azure experience and up-skilling with GCP certifications and a training programme. As well as applying any existing GCP experience. About the role As a Cloud Architect you will be responsible for designing and advising on secure cloud architectures within Google Cloud Platform (GCP), ensuring compliance with UK and international standards. You will work with clients across sectors to assess risks, implement robust security controls, and guide secure cloud adoption strategies. This role requires a strong understanding of cloud-native security, regulatory frameworks, and the ability to translate technical risks into business impact. Part of this role, you will be required to obtain GCP certification. What You'll Do: Design and implement secure architectures, incorporating identity, access management, encryption, and network security. Conduct cloud security assessments and gap analyses for UK-based organisations. Advise on compliance with UK regulations (e.g. GDPR, NCSC Cloud Security Principles, ISO 27001). Develop and enforce cloud security policies, procedures, and governance models. Lead threat modelling, risk assessments, and vulnerability management initiatives. Configure and manage security tools such as Google SecOps tooling, Security Command Center, Cloud Armour, and VPC Service Controls. Collaborate with engineering and DevOps teams to embed security into CI/CD pipelines. Support incident response planning and cloud-specific disaster recovery strategies. Stay up to date with GCP security features, UK regulatory changes, and emerging threats. Requirements What You'll Bring Essential Skills & Experience: Experience in cloud security. Strong knowledge of: Security services (IAM, Cloud KMS, VPC Service Controls, etc.) UK data protection and compliance frameworks (GDPR, ICO guidance) Identity federation, SSO, and role-based access control Network segmentation and firewall configuration in cloud environments. Logging, monitoring, and SIEM integration (e.g. Splunk, Chronicle) Experience with Infrastructure as Code (Terraform, Deployment Manager). Desirable: Google Cloud Professional Cloud Security Engineer certification. Experience with UK public sector or regulated industries (e.g. finance, healthcare). Familiarity with container security (GKE, Kubernetes RBAC, image scanning). Proficiency in scripting (Python, Bash) for automation and tooling. Experience with incident response in cloud-native environments. Previous consultancy experience within UK public sector organisations. If you're interested in the above, reach out to or apply Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Amtis professional Ltd
Burton-on-trent, Staffordshire
DevOps Engineer - Remote -1 Day P/W Burton On Trent - £60,000 - £65,000 + Benefits AWS, Azure, CI/CD, Terraform, Git, Python, ARM, Kubernetes Role Overview We are seeking a skilled DevOps Engineer to design, implement and maintain robust cloud infrastructure solutions across AWS and Azure platforms. This role plays a pivotal part in enabling continuous integration and delivery, ensuring system reliability, embedding security best practices, and actively contributing to team development through knowledge sharing. Key Responsibilities Design, deploy and manage scalable, secure infrastructure in AWS and Azure Build and maintain CI/CD pipelines using tools such as Azure DevOps Implement and manage monitoring, alerting and logging systems (e.g. Datadog, Logic Monitor, SolarWinds) Automate infrastructure provisioning using Infrastructure as Code (IaC) tools such as Terraform Ensure compliance with security policies; manage IAM, PIM and RBAC access controls Respond to incidents and contribute to root cause analysis and post-mortem reviews Create and maintain comprehensive documentation and runbooks Collaborate with cross-functional teams to align DevOps practices with wider project goals Ensure adherence to regulatory standards including CQC , GDP , NMC , GPhC , and ICO relevant to the role Remain fully informed of responsibilities relating to Infection Prevention and Control Technical Skills & Experience Cloud Platforms - Hands-on experience with AWS and Azure. Any relevant certifications (e.g. AWS Architect, AZ-104, AZ-305) DevOps & CI/CD - Strong grasp of DevOps principles. Experience with Azure DevOps, GitHub Actions, Jenkins. AZ-400 certification desirable Containerisation - Experience with AKS/EKS, Proficiency in AWS CloudFormation or ARM templates Scripting & Automation - Proficient in PowerShell, Bash, or Python Infrastructure as Code (IaC) - Hands-on experience with Terraform, Bicep, or ARM Certified: Terraform Associate preferred Monitoring & Observability - Familiarity with tools like Azure Monitor, AWS CloudWatch, Prometheus, Grafana Security & Compliance - Strong understanding of IAM, cloud security, compliance frameworks Cloud Platform Expertise: Proven experience with AWS and Azure cloud platforms. AWS Certified Solutions Architect - Associate or Professional, Microsoft Certified: Azure Administrator Associate (AZ-104), or Microsoft Certified: Azure Solutions Architect Expert (AZ-305) DevOps & CI/CD: Strong understanding of DevOps principles and hands-on experience with CI/CD tools like Azure DevOps, GitHub Actions, or Jenkins. Azure Kubernetes Service: Proven experience designing and managing AKS clusters Containerization: Docker, Kubernetes, Helm charts, and container orchestration Azure DevOps: Advanced pipeline configuration for container builds and deployments Additional certification: Microsoft Certified: Azure Kubernetes Service (AKS) Specialist or similar container-focused Azure cert Azure Monitor for containers: Implement comprehensive monitoring for AKS workloads Azure Key Vault integration: Secure secrets management for containerized applications Azure Policy for Kubernetes: Implement governance and compliance for container workloads Azure Arc: If relevant, managing hybrid/multi-cluster scenarios Security & Compliance: Solid grasp of cloud security best practices, identity and access management, and compliance frameworks. Collaboration & Mentorship: Excellent communication skills with a passion for mentoring, documentation, and enabling others through knowledge sharing. For immediate consideration apply now!
Oct 03, 2025
Full time
DevOps Engineer - Remote -1 Day P/W Burton On Trent - £60,000 - £65,000 + Benefits AWS, Azure, CI/CD, Terraform, Git, Python, ARM, Kubernetes Role Overview We are seeking a skilled DevOps Engineer to design, implement and maintain robust cloud infrastructure solutions across AWS and Azure platforms. This role plays a pivotal part in enabling continuous integration and delivery, ensuring system reliability, embedding security best practices, and actively contributing to team development through knowledge sharing. Key Responsibilities Design, deploy and manage scalable, secure infrastructure in AWS and Azure Build and maintain CI/CD pipelines using tools such as Azure DevOps Implement and manage monitoring, alerting and logging systems (e.g. Datadog, Logic Monitor, SolarWinds) Automate infrastructure provisioning using Infrastructure as Code (IaC) tools such as Terraform Ensure compliance with security policies; manage IAM, PIM and RBAC access controls Respond to incidents and contribute to root cause analysis and post-mortem reviews Create and maintain comprehensive documentation and runbooks Collaborate with cross-functional teams to align DevOps practices with wider project goals Ensure adherence to regulatory standards including CQC , GDP , NMC , GPhC , and ICO relevant to the role Remain fully informed of responsibilities relating to Infection Prevention and Control Technical Skills & Experience Cloud Platforms - Hands-on experience with AWS and Azure. Any relevant certifications (e.g. AWS Architect, AZ-104, AZ-305) DevOps & CI/CD - Strong grasp of DevOps principles. Experience with Azure DevOps, GitHub Actions, Jenkins. AZ-400 certification desirable Containerisation - Experience with AKS/EKS, Proficiency in AWS CloudFormation or ARM templates Scripting & Automation - Proficient in PowerShell, Bash, or Python Infrastructure as Code (IaC) - Hands-on experience with Terraform, Bicep, or ARM Certified: Terraform Associate preferred Monitoring & Observability - Familiarity with tools like Azure Monitor, AWS CloudWatch, Prometheus, Grafana Security & Compliance - Strong understanding of IAM, cloud security, compliance frameworks Cloud Platform Expertise: Proven experience with AWS and Azure cloud platforms. AWS Certified Solutions Architect - Associate or Professional, Microsoft Certified: Azure Administrator Associate (AZ-104), or Microsoft Certified: Azure Solutions Architect Expert (AZ-305) DevOps & CI/CD: Strong understanding of DevOps principles and hands-on experience with CI/CD tools like Azure DevOps, GitHub Actions, or Jenkins. Azure Kubernetes Service: Proven experience designing and managing AKS clusters Containerization: Docker, Kubernetes, Helm charts, and container orchestration Azure DevOps: Advanced pipeline configuration for container builds and deployments Additional certification: Microsoft Certified: Azure Kubernetes Service (AKS) Specialist or similar container-focused Azure cert Azure Monitor for containers: Implement comprehensive monitoring for AKS workloads Azure Key Vault integration: Secure secrets management for containerized applications Azure Policy for Kubernetes: Implement governance and compliance for container workloads Azure Arc: If relevant, managing hybrid/multi-cluster scenarios Security & Compliance: Solid grasp of cloud security best practices, identity and access management, and compliance frameworks. Collaboration & Mentorship: Excellent communication skills with a passion for mentoring, documentation, and enabling others through knowledge sharing. For immediate consideration apply now!
Opus Recruitment Solutions Ltd
Newcastle Upon Tyne, Tyne And Wear
I am looking for an infrastructure engineer to join a 6 month contracting within the public sector.Inside IR35Till 13th March 2026Onsite aspect in Newcastle £466 per day Tech stack Minimum 2 years of professional experience in cloud security, specifically within AWS environments, demonstrating a track record of implementing and managing comprehensive security strategies. Experience leading projects with a focus on cloud security, showing capability in managing resources, timelines, and stakeholder expectations. A commitment to continuous professional development, staying abreast of new AWS services, security trends, and techniques in cloud security. Experience and technical skills: AWS Security Services Proficiency: Deep understanding and hands-on experience with AWS security services such as AWS GuardDuty, AWS Inspector, AWS CloudTrail, AWS Config, and Service Control Policies (SCPs). Knowledge of cloud security frameworks, best practices, and industry standards. Familiarity with the AWS Well-Architected Framework, especially the Security Pillar, to build secure and resilient cloud applications Infrastructure as Code (IaC): Experience with IaC tools like AWS CloudFormation or Terraform to automate the deployment of AWS resources securely and efficiently. Identity and Access Management (IAM): Expertise in managing access to AWS services and resources securely, using AWS IAM to control authentication and authorization. Understanding of encryption methods and AWS services related to data encryption both at rest and in transit. Experience with AWS Key Management Service (KMS) and AWS Certificate Manager (ACM). Knowledge of compliance requirements that impact cloud security (e.g., GDPR, HIPAA, SOC 2) and experience in implementing controls to meet these requirements. Ability to design and execute incident response strategies within the AWS cloud, including the use of AWS CloudWatch, AWS Lambda, and other automated response tools.
Sep 23, 2025
Full time
I am looking for an infrastructure engineer to join a 6 month contracting within the public sector.Inside IR35Till 13th March 2026Onsite aspect in Newcastle £466 per day Tech stack Minimum 2 years of professional experience in cloud security, specifically within AWS environments, demonstrating a track record of implementing and managing comprehensive security strategies. Experience leading projects with a focus on cloud security, showing capability in managing resources, timelines, and stakeholder expectations. A commitment to continuous professional development, staying abreast of new AWS services, security trends, and techniques in cloud security. Experience and technical skills: AWS Security Services Proficiency: Deep understanding and hands-on experience with AWS security services such as AWS GuardDuty, AWS Inspector, AWS CloudTrail, AWS Config, and Service Control Policies (SCPs). Knowledge of cloud security frameworks, best practices, and industry standards. Familiarity with the AWS Well-Architected Framework, especially the Security Pillar, to build secure and resilient cloud applications Infrastructure as Code (IaC): Experience with IaC tools like AWS CloudFormation or Terraform to automate the deployment of AWS resources securely and efficiently. Identity and Access Management (IAM): Expertise in managing access to AWS services and resources securely, using AWS IAM to control authentication and authorization. Understanding of encryption methods and AWS services related to data encryption both at rest and in transit. Experience with AWS Key Management Service (KMS) and AWS Certificate Manager (ACM). Knowledge of compliance requirements that impact cloud security (e.g., GDPR, HIPAA, SOC 2) and experience in implementing controls to meet these requirements. Ability to design and execute incident response strategies within the AWS cloud, including the use of AWS CloudWatch, AWS Lambda, and other automated response tools.
FDM is a global business and technology consultancy seeking a Security Architect to work for our client within the public sector. This is initially a 6-month contract with the potential to extend and will be a hybrid role based in Solihull . Our client is seeking an experienced Security Architect to join one of our key public sector client engagements. This is an exciting opportunity to contribute to the strategic design of secure, cloud-based platforms supporting critical national infrastructure. As a Security Architect, you will play a central role in capability mapping, architectural design, and implementation of cloud-native security solutions. You will work closely with stakeholders to ensure that security controls and strategies align with organisational objectives, regulatory requirements, and evolving threat landscapes. This role is especially suited for professionals with a blend of hands-on expertise in Mist (Juniper Networks) and a strong technical foundation in Microsoft Azure security services. Responsibilities Perform detailed capability mapping into Mist (Juniper Networks), ensuring alignment between enterprise security needs and platform capabilities Design and implement scalable, secure security architectures for Microsoft Azure-based services and applications Define and enforce cloud security best practices, including identity and access management (IAM), data encryption, and monitoring Collaborate across teams to ensure consistent implementation of security controls and governance frameworks Lead risk assessments, threat modelling exercises, and security posture evaluations for cloud and hybrid environments Provide architectural guidance on network segmentation, secure integration, and secure connectivity between Mist and Azure ecosystems Monitor industry trends and emerging security technologies, providing expert recommendations on adoption and integration Document and communicate security architecture patterns, standards, and roadmaps to both technical and non-technical stakeholders Requirements Minimum of 10 years' experience in a Security Architect, Cloud Security Engineer, or related role Strong hands-on expertise with Mist (Juniper Networks), particularly around security capability mapping and integrations In-depth experience with Microsoft Azure security services, including Azure Active Directory (Azure AD), Microsoft Defender for Cloud, Azure Key Vault, Azure Security Center. Microsoft Sentinel Deep understanding of cloud-native security, zero-trust models, and secure network architecture Familiarity with compliance standards and security frameworks such as NIST, CIS, ISO 27001, GDPR, and HIPAA Excellent verbal and written communication skills with the ability to convey complex technical issues to business leaders Qualifications such as Microsoft Azure Security Engineer Associate (AZ-500), Certified Information Systems Security Professional (CISSP) and Juniper Networks Certification (Mist AI) are desirable Experience working in hybrid and multi-cloud environments Knowledge of DevSecOps practices and Infrastructure-as-Code (IaC) security tools (e.g., Terraform, Bicep) Why join us Career coaching, mentoring and access to upskilling throughout your entire FDM career Assignments with global companies and opportunities to work abroad Opportunity to re-skill and up-skill into new areas, develop non-linear career paths and build a skillset within your field Annual Leave Work place pension About FDM We are a business and technology consultancy and one of the UK's leading employers, recruiting the brightest talent to become the innovators of tomorrow. We have centres across Europe, North America and Asia-Pacific, and a global workforce of over 2,500 employees. FDM has shown exponential growth throughout the years, firmly establishing itself as an award-winning employer and is listed on the FTSE4Good Index. Diversity and Inclusion FDM Group is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, national origin, age, disability, veteran status or any other status protected by federal, provincial or local laws.
Sep 23, 2025
Full time
FDM is a global business and technology consultancy seeking a Security Architect to work for our client within the public sector. This is initially a 6-month contract with the potential to extend and will be a hybrid role based in Solihull . Our client is seeking an experienced Security Architect to join one of our key public sector client engagements. This is an exciting opportunity to contribute to the strategic design of secure, cloud-based platforms supporting critical national infrastructure. As a Security Architect, you will play a central role in capability mapping, architectural design, and implementation of cloud-native security solutions. You will work closely with stakeholders to ensure that security controls and strategies align with organisational objectives, regulatory requirements, and evolving threat landscapes. This role is especially suited for professionals with a blend of hands-on expertise in Mist (Juniper Networks) and a strong technical foundation in Microsoft Azure security services. Responsibilities Perform detailed capability mapping into Mist (Juniper Networks), ensuring alignment between enterprise security needs and platform capabilities Design and implement scalable, secure security architectures for Microsoft Azure-based services and applications Define and enforce cloud security best practices, including identity and access management (IAM), data encryption, and monitoring Collaborate across teams to ensure consistent implementation of security controls and governance frameworks Lead risk assessments, threat modelling exercises, and security posture evaluations for cloud and hybrid environments Provide architectural guidance on network segmentation, secure integration, and secure connectivity between Mist and Azure ecosystems Monitor industry trends and emerging security technologies, providing expert recommendations on adoption and integration Document and communicate security architecture patterns, standards, and roadmaps to both technical and non-technical stakeholders Requirements Minimum of 10 years' experience in a Security Architect, Cloud Security Engineer, or related role Strong hands-on expertise with Mist (Juniper Networks), particularly around security capability mapping and integrations In-depth experience with Microsoft Azure security services, including Azure Active Directory (Azure AD), Microsoft Defender for Cloud, Azure Key Vault, Azure Security Center. Microsoft Sentinel Deep understanding of cloud-native security, zero-trust models, and secure network architecture Familiarity with compliance standards and security frameworks such as NIST, CIS, ISO 27001, GDPR, and HIPAA Excellent verbal and written communication skills with the ability to convey complex technical issues to business leaders Qualifications such as Microsoft Azure Security Engineer Associate (AZ-500), Certified Information Systems Security Professional (CISSP) and Juniper Networks Certification (Mist AI) are desirable Experience working in hybrid and multi-cloud environments Knowledge of DevSecOps practices and Infrastructure-as-Code (IaC) security tools (e.g., Terraform, Bicep) Why join us Career coaching, mentoring and access to upskilling throughout your entire FDM career Assignments with global companies and opportunities to work abroad Opportunity to re-skill and up-skill into new areas, develop non-linear career paths and build a skillset within your field Annual Leave Work place pension About FDM We are a business and technology consultancy and one of the UK's leading employers, recruiting the brightest talent to become the innovators of tomorrow. We have centres across Europe, North America and Asia-Pacific, and a global workforce of over 2,500 employees. FDM has shown exponential growth throughout the years, firmly establishing itself as an award-winning employer and is listed on the FTSE4Good Index. Diversity and Inclusion FDM Group is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, sexual orientation, national origin, age, disability, veteran status or any other status protected by federal, provincial or local laws.
