La Fosse Associates Limited

GRC Lead We're looking for an experienced GRC (Governance, Risk & Compliance) SME to support a growing government organisation undergoing a cyber transformation. This is a hands-on role where you'll help stabilise and mature core GRC capabilities within an evolving InfoSec function. Clearance: SC/SC eligible Day Rate: Up to £750 p/d IR35 Status: Outside Duration: 6 months Travel: Liverpool (Hybrid) Responsibilities: Establish and embed a formal risk management framework Define risk ownership, governance structures, and risk register Review and remediate gaps in CAF (Cyber Assessment Framework) alignment Support ongoing Cyber Essentials Plus and Defence Cyber Certification (DCC) initiatives Requirements : Proven experience delivering GRC transformation or uplift Strong knowledge of UK frameworks (CAF, Cyber Essentials+, MOD/DCC requirements) SC cleared/eligible

I'm working with a global org, who are looking for a Global IT/Cyber Audit Senior Manager to lead cyber security and data privacy audit activity. This is a senior, high-impact role where you'll shape the global audit strategy, partner with Cyber & Privacy leaders, and drive maturity. Therefore auditing experience across both privacy and information security is a must. You will: Lead and oversee cyber and privacy audit activity Help shape the annual audit plan Work across areas like cloud, network, SOC, and privacy processes Support and mentor audit teams Review controls and help improve governance and risk frameworks They're looking for: Strong background in data privacy auditing Deep understanding of cyber security controls across network, cloud, endpoint, and SOC Knowledge of frameworks like NIST, ISO 27001, CIS Controls Experience with global privacy regulations Excellent reporting and stakeholder communication skills Ability to lead/manage teams Details: Salary: up to £100,000 £7,500 Car Allowance Strong bonus 3x per week in the office (London) If this sounds like something you'd be open to exploring, I'd love to hear from you. Please send your CV to (see below) and APPLY NOW!

Application Security (AppSec) Lead I'm currently partnered with a technology-led company who exist solely to improve the day to day life of those who are less fortunate! They are looking for an Application Security (AppSec) Lead to lead a team of AppSec Specialists responsible for embedding security across all stages of the application development life cycle. This is a technical, hands-on role that involves managing the implementation of application security controls, performing security assessments, and supporting the design and deployment of secure application solutions. Perfect for a "player manager"! You will: Lead by example and manage a team of talented AppSec specialists Work with teams across Tech, Product, Cyber, and Programme delivery teams! Play a key role in contributing to the development of the organisations cyber resilience Lead response efforts for AppSec incidents Be the central point of contact for AppSec within the org, and represent the team and function at leadership level Take accountability for helping the org "shift left" Desirable experience they would be interested in: Threat Modelling AppSec/DevSecOps Engineering OWASP Red teaming/Offensive security Coding/Scripting SSDLC Details: Salary: Up to £100,000 Location: 3x a week in London Benefits: Generous benefits package! If this sounds like something you'd be open to hearing more about, I'd love to hear from you! Please send your CV to (see below) and APPLY NOW!

Role: Solutions Architect Type: Permanent, full time Working Pattern: Hybrid Location: Oxfordshire Salary: up to £90K Role Summary This position is responsible for defining and guiding technical solutions that support organisational priorities and long-term technology direction. It works across delivery and architecture functions to turn requirements into clear solution approaches and support their implementation. Key Accountabilities Define and oversee the delivery of complex, multi-part technical solutions Convert strategic goals into practical solution designs Ensure solutions align with established architectural guidance Provide hands-on technical leadership to development teams and third-party suppliers Support consistent application of architectural patterns and coding standards Work collaboratively with internal teams and external partners to enable delivery Review solution designs and offer architectural guidance Clearly explain technical concepts to both technical and non-technical stakeholders Skills & Experience Proven experience in technical leadership roles within delivery teams Strong understanding of modern technology and its use in meeting business needs Experience delivering customer-facing or user-centric systems Working knowledge of Agile delivery methods (eg Scrum, Kanban, scaled approaches) Experience delivering solutions within defined quality, cost, and time parameters Solid understanding of architectural principles and practices Hands-on experience with cloud platforms, including AWS Broad knowledge of application architecture, system integration, and data design Effective communication and stakeholder engagement skills Experience in digitally driven industries (desirable)

Cyber Business Development Manager A growing Cyber Security Consultancy requires a Cyber Business Development Manager to win new customers across sectors such as financial services, defence, and government. You'll take ownership of building pipeline and closing deals, directly contributing to revenue growth and market expansion. Base Salary: £40k - £50K OTE: £70k - £80k Commission: Uncapped Location: London (Hybrid) Role Overview: Step into a founding commercial role where you'll play a central part in building sales function working closely with leadership to shape how and where growth opportunities are. Lead all aspects of new business development, from identifying opportunities through to closing deals, while maintaining a strong and predictable pipeline. Expand footprint across sectors such as financial services, defence, government, and critical infrastructure by promoting unique offerings. Develop senior-level relationships with key stakeholders, including CISOs, and work alongside technical specialists to design tailored solutions. Contribute proven Cyber Security sales experience, including success in generating your own opportunities and winning new clients, supported by a solid understanding of offensive security services. Experience in a fast-moving, early-stage environment is beneficial, sector knowledge (including defence), familiarity with security compliance drivers, and an established network to help guide commercial direction.

GCP Security Engineer A Global Financial Services client requires a Contract GCP SecOps Engineer with strong hands-on expertise in Google Cloud Platform (GCP), incident response, and log source integration to join their Security Operations team. Day Rate: £700-£750pd IR35 Status: Outside Duration: Initial 6 months Travel: 2 days a week in Central London This GCP Security Engineer will have the previous following exp: Ingest, normalise and correlate log data from a wide range of sources, including GCP-native services (eg VPC Flow Logs, Cloud Audit Logs, Cloud DNS) and third-party systems, to support Real Time threat detection and analysis. Build and maintain detection logic by transforming raw log data into actionable insights such as indicators of compromise (IOCs), behavioural patterns, or risk-based alerts using tools such as Google Chronicle, BigQuery, or Splunk. Lead or support incident response investigations, working closely with SOC analysts, engineering teams, and stakeholders to contain and remediate threats effectively across complex cloud infrastructures. Design and implement automated response workflows, leveraging GCP-native services like Cloud Functions, Pub/Sub, and Event Threat Detection to streamline alert triage and reduce mean time to response (MTTR). Enhance visibility and detection coverage by improving log source onboarding, parsing, and enrichment pipelines ensuring critical cloud activities are captured, monitored, and aligned with compliance requirements.

GCP Security Operations Engineer A Global Financial Services client requires a Contract GCP SecOps Engineer with strong hands-on expertise in Google Cloud Platform (GCP), incident response, and log source integration to join their Security Operations team. Day Rate: £700-£750pd IR35 Status: Outside Duration: Initial 6 months Travel: 2 days a week in Central London This GCP Security Engineer will have the previous following exp: Ingest, normalise and correlate log data from a wide range of sources, including GCP-native services (eg VPC Flow Logs, Cloud Audit Logs, Cloud DNS) and third-party systems, to support Real Time threat detection and analysis. Build and maintain detection logic by transforming raw log data into actionable insights such as indicators of compromise (IOCs), behavioural patterns, or risk-based alerts using tools such as Google Chronicle, BigQuery, or Splunk. Lead or support incident response investigations, working closely with SOC analysts, engineering teams, and stakeholders to contain and remediate threats effectively across complex cloud infrastructures. Design and implement automated response workflows, leveraging GCP-native services like Cloud Functions, Pub/Sub, and Event Threat Detection to streamline alert triage and reduce mean time to response (MTTR). Enhance visibility and detection coverage by improving log source onboarding, parsing, and enrichment pipelines ensuring critical cloud activities are captured, monitored, and aligned with compliance requirements.

Security Operations Engineer (GCP) A Global Financial Services client requires a Contract GCP SecOps Engineer with strong hands-on expertise in Google Cloud Platform (GCP), incident response, and log source integration to join their Security Operations team. Day Rate: £700-£750pd IR35 Status: Outside Duration: Initial 6 months Travel: 2 days a week in Central London This GCP Security Engineer will have the previous following exp: Ingest, normalise and correlate log data from a wide range of sources, including GCP-native services (eg VPC Flow Logs, Cloud Audit Logs, Cloud DNS) and third-party systems, to support Real Time threat detection and analysis. Build and maintain detection logic by transforming raw log data into actionable insights such as indicators of compromise (IOCs), behavioural patterns, or risk-based alerts using tools such as Google Chronicle, BigQuery, or Splunk. Lead or support incident response investigations, working closely with SOC analysts, engineering teams, and stakeholders to contain and remediate threats effectively across complex cloud infrastructures. Design and implement automated response workflows, leveraging GCP-native services like Cloud Functions, Pub/Sub, and Event Threat Detection to streamline alert triage and reduce mean time to response (MTTR). Enhance visibility and detection coverage by improving log source onboarding, parsing, and enrichment pipelines ensuring critical cloud activities are captured, monitored, and aligned with compliance requirements.

Security Architect (GCP) A Global Financial Services Company requires a Contract GCP Security Architect to lead the design and implementation of secure, scalable cloud solutions across our GCP estate. This role is ideal for someone with a deep understanding of Google Cloud security services, cloud architecture best practices, and strong knowledge of logging, monitoring, and incident response capabilities. Day Rate: £800-£850pd IR35 Status: Outside Duration: 6 months initially Travel: 2 days a week in Central London This GCP Security Architect will have the following previous experience: Design and implement secure cloud architectures across GCP, embedding security by design principles into infrastructure, networking, identity, and application layers. Define and enforce logging and monitoring standards across GCP services, ensuring consistent ingestion of critical log sources such as Cloud Audit Logs, VPC Flow Logs, and Admin Activity Logs. Collaborate with Security Operations and DevOps teams to develop detection and response strategies, turning log data into actionable alerts, playbooks, and automated responses using tools like Chronicle, BigQuery, and Security Command Centre. Provide subject matter expertise during security incidents, supporting response teams with architecture-level insights and recommending short- and long-term remediation actions. Lead risk assessments and architecture reviews for new GCP deployments, ensuring alignment with internal policies, industry best practices, and regulatory compliance (eg ISO 27001, NCSC Cloud Security Principles).

Security Architect (GCP) A Global Financial Services Company requires a Contract GCP Security Architect to lead the design and implementation of secure, scalable cloud solutions across our GCP estate. This role is ideal for someone with a deep understanding of Google Cloud security services, cloud architecture best practices, and strong knowledge of logging, monitoring, and incident response capabilities. Day Rate: £800-£850pd IR35 Status: Outside Duration: 6 months initially Travel: 2 days a week in Central London Office every 2 weeks This GCP Security Architect will have the following previous experience: Design and implement secure cloud architectures across GCP, embedding security by design principles into infrastructure, networking, identity, and application layers. Define and enforce logging and monitoring standards across GCP services, ensuring consistent ingestion of critical log sources such as Cloud Audit Logs, VPC Flow Logs, and Admin Activity Logs. Collaborate with Security Operations and DevOps teams to develop detection and response strategies, turning log data into actionable alerts, playbooks, and automated responses using tools like Chronicle, BigQuery, and Security Command Centre. Provide subject matter expertise during security incidents, supporting response teams with architecture-level insights and recommending short- and long-term remediation actions. Lead risk assessments and architecture reviews for new GCP deployments, ensuring alignment with internal policies, industry best practices, and regulatory compliance (eg ISO 27001, NCSC Cloud Security Principles).

Senior Cloud Network Engineer Up to £65,000 + £3.5-4k Car Allowance + On-Call Uplift (£300-400/month) Location: Primarily remote (occasional UK or global travel optional) We're looking for a Senior Cloud Network Engineer to join a forward-thinking infrastructure and operations team as they evolve their global network architecture. You'll play a key role in shaping and supporting a modern, cloud-first networking environment - focusing on project work, escalations, and maintaining the core network rather than day-to-day tickets. What You'll Be Doing Acting as an escalation point for the global L2 NOC team Supporting and improving the core network environment Contributing to the design and rollout of a new Cato SASE-based network Working with AWS Cloud Networking , including Transit Gateways and Virtual FortiGate Firewalls Managing and optimising routing and switching (primarily Cisco and FortiGate ) Handling BGP and other advanced networking protocols Helping drive the migration from Legacy VPNs toward a fully live, cloud-based SASE environment (currently ~40% complete) Tech Environment Core Tech: Cisco, FortiGate, AWS, Cato SASE Key Protocols: BGP (most complex protocol in use) Cloud Focus: AWS Transit Gateways, Virtual Firewalls Customer Base: Global enterprise clients across the UK and EMEA What We're Looking For Strong background in routing, switching, and Firewall technologies Hands-on experience with AWS Cloud Networking (especially Transit Gateways ) Familiarity with Virtual FortiGate Firewalls Solid understanding of BGP A proactive mindset and interest in project and escalation-level work Desire to grow in a cloud-first, globally distributed environment You don't need to be a deep expert in every area - just confident in core networking, willing to learn, and excited by modern cloud networking. If you're looking for a role that blends traditional networking expertise with cloud innovation , this is a great opportunity to make a real impact on a global network transformation.

ML Ops Lead (Engineer) required for a 6-month contract with a global financial services firm in London. Join a high-impact team building out scalable AI/ML solutions on an Azure and Databricks platform supporting varies areas of the organisation. Implement solid structure for Gen AI deployment and implement best practices within the team, leading on ML Ops frameworks & CI/CD pipeline design Build & scale AI/ML tooling across quants, risk, and trading desks Drive adoption of GenAI & LLMs with Azure OpenAI, Unity Catalog & more Partner with quant teams and central AI functions Required: 2+ years ML Ops experience + 3+ years AI/ML engineering Excellent knowledge of ML frameworks and associated libraries in Python. Expertise in Azure Databricks, Python, Azure DevOps, ML life cycle Financial data/trading/derivatives domain experience is a plus 2 stage interview process Location: Hybrid Central London office & remote (flexible) 6 months duration (possible extension)

Application Security Engineer I'm partnering with a purpose-led organisation that exists to improve the lives of others to find an Application Security Engineer to join their Cyber Security function and take ownership of product security across a diverse digital estate. This is ideal for someone with a strong technical background in secure software development or offensive security testing. You'll be joining at a key point in their transformation journey, with the freedom to shape how application security is delivered. They're looking for someone who's hands-on, passionate about protecting customer data, and confident embedding security practices directly into engineering teams. They're specifically interested in candidates who have experience: Familiarity with software such as JAVA Applying the Secure Software Development Lifecycle (SSDLC) Freedom and support for application security function Driving cyber maturity uplift across multiple products Communicating technical risks to non-technical stakeholders Details: Location: Bristol or Edinburgh Salary: up to £80,000-£90,000 Benefits: Generous benefits package! If this sounds like something you'd be open to hearing more about, I'd love to hear from you! Please send your CV to (see below) and APPLY NOW!

Software Engineering Manager - Renewable Energy - London - Very Flexible Working Model Multiple roles/avenues for Software Engineering Managers to join a renewable energy scale up in central London on a permanent basis. They are solving/revolutionizing a lot of problems facing energy suppliers and are looking for experienced Software Engineering Managers to lead and scale engineering teams! If you are interested in joining a company who are unlocking the benefits of renewable energy and smart devices to help decarbonise the grid, this may be for you! As they are growing, there are various areas of the business hiring for junior, mid, and senior management positions. Responsibilities: Building strong teams - personal development of engineers Working closely with other teams (Product) Looking after 2 teams of engineers (up to 10 direct reports) Nurturing talent Building scalable, resilient products Working with high performing engineering teams Looking for: Strong technical background - You'll commonly encounter Scala, TypeScript, Clojure, Node, Java, Kotlin, Docker, Kubernetes, Kafka, React, Cypress, Swift and React Native. Cross-functional team experience Passion for technical excellence London based with flex working. Great benefits and projects.

Training and Communications Lead - Data Literacy A training and communications lead is required to join a large scale data transformation. The programme will enhance data management to drive greater consistency and accuracy of data and enable data to drive competitive advantage. The role is very much about leading both training and communications approaches and in collaboration with the ODI, you will be tasked with delivering data literacy training across the business and communicate to the global teams the changes being made to the way data is governed. Key skills and experience: Development of a data literacy curriculum including outlining the approach and design and development of the content, working in collaboration with the Open Data Institute (ODI), to raise the data literacy of all staff Developing and delivering an engaging communications strategy and framework that supports the delivery of company's data strategy Liaising with senior stakeholders and operational teams to ensure a proactive, consistent and coordinated approach to delivering an engaging experience for people Prior experience of developing or deploying training curriculum Demonstrate experience and knowledge of internal communications strategy and channels and current best practice Have excellent interpersonal, presentation and project management skills. This role has been deemed outside IR35, please apply for more info.

I'm currently recruiting for an Angular Developer for a 3 month initial contract. You will be working with a large consultancy on one of their largest projects working with the latest version of Angular. This role will be fully remote and can pay between £300-375 per day (outside IR35)

Senior Java Software Engineer - Salary ~ £90k + Equity We're currently partnered with one of the UK's fastest growing tech companies as they come out of their recent series E funding in September 2021. The client are a highly successful and rapid growth data insights company who allow their clients to enhance their data capabilities through the complete transformation of their data in the cloud - allowing them to make better business decisions. The client are looking for a senior Java engineer to work on their bleeding edge tech stack and work on the development of software for their products. What are they looking for? Strong experience with Java. Strong knowledge of databases and query languages. Experience with AWS. Terraform experience. Experience with agile methodologies and OOD. Exposure to CICD. The client aren't just offering a strong remuneration package, with a salary circa £ per annum + equity + fully remote working option, but they have also been recognised as a fantastic place to work. They have won multiple awards for the best places to work in tech and currently boast a Glassdoor rating of 4.5. If this role could be of interest and you think your skills could be a good match then please do apply or email me at (see below)

Senior Java Software Engineer - Salary ~ £90k + Equity We're currently partnered with one of the UK's fastest growing tech companies as they come out of their recent series E funding in September 2021. The client are a highly successful and rapid growth data insights company who allow their clients to enhance their data capabilities through the complete transformation of their data in the cloud - allowing them to make better business decisions. The client are looking for a senior Java engineer to work on their bleeding edge tech stack and work on the development of software for their products. What are they looking for? Strong experience with Java. Strong knowledge of databases and query languages. Experience with AWS. Terraform experience. Experience with agile methodologies and OOD. Exposure to CICD. The client aren't just offering a strong remuneration package, with a salary circa £ per annum + equity + fully remote working option, but they have also been recognised as a fantastic place to work. They have won multiple awards for the best places to work in tech and currently boast a Glassdoor rating of 4.5. If this role could be of interest and you think your skills could be a good match then please do apply or email me at (see below) If this role isn't quite right then I would still love to hear from you to discuss the great range of positions we currently have available across the Java/Scala/Kotlin/Golang spectrum.

Reporting to the Head of IT Service Management, you will be joining an organisation about to embark on huge IT transformation, this role is one of multiple newly signed off positions. You will have responsibility for systematic identification, analysis, management, monitoring and improvement of stakeholder relationships to target and improve mutually beneficial outcomes. Location: City of London (2 days in office) Remuneration: up to £65,000 + bonus + benefits Your role as Business Relationship Manager (Technology) Establish and/or approve internal and external policies, standards and processes for business relationship interaction and handoffs Recognize and facilitate service requirements by documenting the desired outcome of a given process, governance, or ways of working Establish and work with the business teams to build Service Level Management and SLA agreement to ensure we align, achieve and challenge where necessary Have a developed appreciation and understanding of the ITIL Lifecyle and Operation processes. Ability to build out relevant processes that support a SIAM model and service management best practice. Work closely with the service architecture team to ensure that strategic direction and pipeline is understood, prioritised, communicated and handed off in a timely fashion Ideally to be successful as Business Relationship Manager (Technology) Ideally 4+ years in a similar role. Comfortable in front of varying stakeholder communities and ability to operate at all levels of seniority Track record in influencing change, both in leading proposals for new IT solutions and in positively influencing and changing user behaviour Manage relationships between IT and the business units. Maintaining open lines of communication with all parties from both a service delivery as well as BRM perspective. Experience in working and managing outsourced services Sound interesting? Please do apply directly for more detail. Every applicant will be reviewed and responded to.

Senior Scala Engineer - Salary ~ £ + 20% Bonus ~ 3+ years' experience We're currently partnered with one of the fastest growing tech companies in the UK as they look to expand their highly successful and high performance Scala based technical team. The company focus on providing advanced data analytics to their clients - allowing them to make better use of their data. The client uses ML to focus on identifying patterns to provide indicators of financial fraud and they are currently trusted by some of the World's leading financial institutions. What are they looking for? 3+ years of Scala experience. Akka Cats Monix Any Front End experience (Angular/Typescript) is a bonus If your skill set isn't an exact match then it we would still love to hear from you! As well as being one of the highest performance and highest growth tech companies in the UK over the past few years, they are also recognised as a fantastic place to work. They currently maintain a Glassdoor rating of 4.7 with a CEO approval rating of 97%, whilst 95% of employees would recommend working there to a friend. The client are offering a salary circa ~ £ per annum along with a 20% bonus for an engineer with 3+ years Scala experience. If you think this role could be a good fit for you then please do apply or email (see below)