Principal Security Architect - with current Security Clearance Location: London/Glasgow/Cardiff Security Clearance: Must have current SC Contract Type: Inside IR35, paid via umbrella £750 - 800 per day, 12 months About the Organisation Public-sector body, their work is central to supporting major national priorities, including the transition to a secure and environmentally responsible future. They are committed to creating an inclusive workplace where colleagues feel valued, supported, and able to contribute fully. Diverse voices and perspectives are key to driving innovation and delivering services that benefit the communities we serve. They are seeking an expert-level Principal Security Architect to lead the security architecture, strategy, and assurance for a major transformation initiative: the Corporate Systems Refresh (CSR) Programme) . You will shape security vision and influence technical and programme outcomes at organisational scale. Acting as a senior advisor, you will ensure systems are designed and delivered in line with security best practice and aligned to national guidance and assurance frameworks. This is a high-impact role that will steer the security landscape of mission-critical, enterprise-level digital services. Key Responsibilities In this role, you will: Lead the Security Assurance and Compliance strategy for the CSR Programme. Define and drive the security vision, principles and long-term strategy for systems impacted by the programme. Recommend and assure security design for complex or organisational-level solutions. Influence senior stakeholders to guide architectural decisions across technical and business domains. Provide expert leadership on security tooling, static/dynamic analysis, and secure life cycle practices. Lead security architecture assurance aligned to NCSC guidance and the Cyber Assurance Framework (CAF) . Own the CSR Programme Security Architecture , risk register and mitigation strategies. Chair the CSR Security Working Group and represent security interests in wider governance forums. Support risk reporting, programme delivery planning and security governance activities throughout the life cycle. You will bring a depth of technical expertise and a proven ability to guide complex programmes toward secure, resilient outcomes. Essential Skills: Chartered via UKCSC, CISSP, or equivalent. Deep technical understanding across IT infrastructure, software engineering, and systems management . Experience advising and influencing senior stakeholders on risk, intelligence and security matters . Strong background assessing security, privacy and resilience risks , building shared understanding across teams. Experience in managing delivery of strategic plans, tracking risk reduction and managing evolving priorities. Experience acting as an intelligent customer with 3rd-party suppliers and negotiating security into contracts. Desirable Skills Experience creating agile, pragmatic strategies for security, privacy and resilience across complex environments. Experience analysing and interpreting incidents across multifaceted systems. Ability to build business cases articulating the value of security and resilience enhancements. Skills & Behaviours You will demonstrate: Expert-level Security Architecture capability, able to design and review complex systems. Applied Security Expertise , translating business needs into strategic security decisions. Strong understanding of risk management principles and ability to lead structured assessments. Ability to interpret threat intelligence and advise stakeholders with clarity. Behaviours: Communicating & Influencing, Leadership, Making Effective Decisions. Please send your CV in Word format for the attention of Alison Calder
04/03/2026
Contractor
Principal Security Architect - with current Security Clearance Location: London/Glasgow/Cardiff Security Clearance: Must have current SC Contract Type: Inside IR35, paid via umbrella £750 - 800 per day, 12 months About the Organisation Public-sector body, their work is central to supporting major national priorities, including the transition to a secure and environmentally responsible future. They are committed to creating an inclusive workplace where colleagues feel valued, supported, and able to contribute fully. Diverse voices and perspectives are key to driving innovation and delivering services that benefit the communities we serve. They are seeking an expert-level Principal Security Architect to lead the security architecture, strategy, and assurance for a major transformation initiative: the Corporate Systems Refresh (CSR) Programme) . You will shape security vision and influence technical and programme outcomes at organisational scale. Acting as a senior advisor, you will ensure systems are designed and delivered in line with security best practice and aligned to national guidance and assurance frameworks. This is a high-impact role that will steer the security landscape of mission-critical, enterprise-level digital services. Key Responsibilities In this role, you will: Lead the Security Assurance and Compliance strategy for the CSR Programme. Define and drive the security vision, principles and long-term strategy for systems impacted by the programme. Recommend and assure security design for complex or organisational-level solutions. Influence senior stakeholders to guide architectural decisions across technical and business domains. Provide expert leadership on security tooling, static/dynamic analysis, and secure life cycle practices. Lead security architecture assurance aligned to NCSC guidance and the Cyber Assurance Framework (CAF) . Own the CSR Programme Security Architecture , risk register and mitigation strategies. Chair the CSR Security Working Group and represent security interests in wider governance forums. Support risk reporting, programme delivery planning and security governance activities throughout the life cycle. You will bring a depth of technical expertise and a proven ability to guide complex programmes toward secure, resilient outcomes. Essential Skills: Chartered via UKCSC, CISSP, or equivalent. Deep technical understanding across IT infrastructure, software engineering, and systems management . Experience advising and influencing senior stakeholders on risk, intelligence and security matters . Strong background assessing security, privacy and resilience risks , building shared understanding across teams. Experience in managing delivery of strategic plans, tracking risk reduction and managing evolving priorities. Experience acting as an intelligent customer with 3rd-party suppliers and negotiating security into contracts. Desirable Skills Experience creating agile, pragmatic strategies for security, privacy and resilience across complex environments. Experience analysing and interpreting incidents across multifaceted systems. Ability to build business cases articulating the value of security and resilience enhancements. Skills & Behaviours You will demonstrate: Expert-level Security Architecture capability, able to design and review complex systems. Applied Security Expertise , translating business needs into strategic security decisions. Strong understanding of risk management principles and ability to lead structured assessments. Ability to interpret threat intelligence and advise stakeholders with clarity. Behaviours: Communicating & Influencing, Leadership, Making Effective Decisions. Please send your CV in Word format for the attention of Alison Calder
Marcus Donald and I are looking to speak to an experienced Data Protection professional with GDPR experience to join a 6-month contract, outside IR35 We are working with a large Insurance client looking to expand their team in London. Although the Head Office is in London, this role is fully remote. You will be a part of the practical team that responds to data breaches and Co-ordinates SARs in compliance with UK GDPR Information Governance Officer - Main Responsibilities: Maintain Data Protection policies Investigate potential and actual data breaches Assist investigations into complaints and incidents relating to DPA 2018 and GDPR Carry out internal audits to assure ongoing data privacy compliance Support the DP Lead in the ongoing review and improvements of policies and practice Information Governance Officer - Required: Working knowledge of data privacy legislation including the GDPR At least 3 years experience in a similar role related to IG, technology, or data management. Knowledge of Freedom of Information Legislation, Data Protection, and GDPR Sufficient understanding and background in a technology-related discipline An understanding of risk management principles and experience managing information risk. Information Governance Officer - Desirables: Experience working in certified environments (eg ISO27001, Cyber Essentials Plus, PCI DSS) Demonstrable evidence of driving continuous improvement. Relevant certification in data privacy. A qualification in data protection (CIPP/e, CIPM) or equivalent practical experience) You will be joining an already established Information Governance team in a chilled yet results-driven environment. This is an amazing opportunity and one that should not be missed! these types of opportunities don't come about often, so why wait? Should you want to discuss further, please apply or drop me a line or email (see below), FULL JD description available.
11/01/2022
Contractor
Marcus Donald and I are looking to speak to an experienced Data Protection professional with GDPR experience to join a 6-month contract, outside IR35 We are working with a large Insurance client looking to expand their team in London. Although the Head Office is in London, this role is fully remote. You will be a part of the practical team that responds to data breaches and Co-ordinates SARs in compliance with UK GDPR Information Governance Officer - Main Responsibilities: Maintain Data Protection policies Investigate potential and actual data breaches Assist investigations into complaints and incidents relating to DPA 2018 and GDPR Carry out internal audits to assure ongoing data privacy compliance Support the DP Lead in the ongoing review and improvements of policies and practice Information Governance Officer - Required: Working knowledge of data privacy legislation including the GDPR At least 3 years experience in a similar role related to IG, technology, or data management. Knowledge of Freedom of Information Legislation, Data Protection, and GDPR Sufficient understanding and background in a technology-related discipline An understanding of risk management principles and experience managing information risk. Information Governance Officer - Desirables: Experience working in certified environments (eg ISO27001, Cyber Essentials Plus, PCI DSS) Demonstrable evidence of driving continuous improvement. Relevant certification in data privacy. A qualification in data protection (CIPP/e, CIPM) or equivalent practical experience) You will be joining an already established Information Governance team in a chilled yet results-driven environment. This is an amazing opportunity and one that should not be missed! these types of opportunities don't come about often, so why wait? Should you want to discuss further, please apply or drop me a line or email (see below), FULL JD description available.
Marcus Donald is currently looking for an Incident Response Director to join a top-notch, growing and ground-breaking Insurance company in London. Job description - Incident Response Director You will be part of a unique collaborative team of incident responders, business resumption engineers, and cybersecurity specialists whose sole responsibility it is to protect, recover, and mature the more than 50,000 Underwriting insurance policyholders. You will be joining a group of technical experts who tackle cyber threats day-in-day-out, at scale, for a myriad of clients ranging from small businesses with minimal in-house capabilities, right through to large complex corporations with a full stack. You will never be bored, you will always be learning, and you will have fun doing it. About the role - Incident Response Director This is role is integral in helping to build out the organisations Incident Response practice from the ground up. You will help shape the future strategic direction of Incident Response, ensuring the team is resourced appropriately and performing at the highest levels. You will be rolling up your sleeves, leading forensic investigations, coordinating business resumption activities, and supporting victims of BECs, Ransomware, and DDoS attacks to name a few. Key responsibilities & accountabilities - Incident Response Director Responsible for supporting the building out the company's Incident Response team from the ground up, helping recruit talent, and putting in place the required processes and technology to deliver incident response services. Working closely with relevant manager from across the wider organisations Underwriting business, to support the development of new broker and client relationships, acting as the go to cybersecurity expert' for emerging cyber threats and associated Tactics, Techniques, and Procedures. Conducting regular reviews of IR services to identify new opportunities and drive a compelling and competitive cybersecurity proposition for policyholders. Delivering key supporting projects to engender the long-term success of business offerings, whilst maintaining and improving its existing market leading position. Essential skills & Personal qualities - Incident Response Director At least 5 - 10 years' experience in incident response Practical experience in responding to cyber incidents and performing forensic investigations. A track record of building, and leading high-performing technical teams. Leadership gravitas to inspire and motivate others to achieve high performance Confident and charismatic, cultivating a strong learning and collaborative culture. First class communication skills; the ability to win commitment and garner buy-in'. Laser focus on customer service and product excellence. Strong planning and organisational skills. Resilient, mentally agile, and open minded. Employee benefits include 25 days holiday, private medical insurance (+ dental & optical cashback), employee assistance programme, pension plan, life insurance, income protection, subsidised gym membership, 4 paid volunteer days annually, season ticket loan, and a shiny laptop. If you are interested in this position, then do not hesitate to apply! Send your CV to my email at (see below) I am looking forward to you application.
13/09/2021
Full time
Marcus Donald is currently looking for an Incident Response Director to join a top-notch, growing and ground-breaking Insurance company in London. Job description - Incident Response Director You will be part of a unique collaborative team of incident responders, business resumption engineers, and cybersecurity specialists whose sole responsibility it is to protect, recover, and mature the more than 50,000 Underwriting insurance policyholders. You will be joining a group of technical experts who tackle cyber threats day-in-day-out, at scale, for a myriad of clients ranging from small businesses with minimal in-house capabilities, right through to large complex corporations with a full stack. You will never be bored, you will always be learning, and you will have fun doing it. About the role - Incident Response Director This is role is integral in helping to build out the organisations Incident Response practice from the ground up. You will help shape the future strategic direction of Incident Response, ensuring the team is resourced appropriately and performing at the highest levels. You will be rolling up your sleeves, leading forensic investigations, coordinating business resumption activities, and supporting victims of BECs, Ransomware, and DDoS attacks to name a few. Key responsibilities & accountabilities - Incident Response Director Responsible for supporting the building out the company's Incident Response team from the ground up, helping recruit talent, and putting in place the required processes and technology to deliver incident response services. Working closely with relevant manager from across the wider organisations Underwriting business, to support the development of new broker and client relationships, acting as the go to cybersecurity expert' for emerging cyber threats and associated Tactics, Techniques, and Procedures. Conducting regular reviews of IR services to identify new opportunities and drive a compelling and competitive cybersecurity proposition for policyholders. Delivering key supporting projects to engender the long-term success of business offerings, whilst maintaining and improving its existing market leading position. Essential skills & Personal qualities - Incident Response Director At least 5 - 10 years' experience in incident response Practical experience in responding to cyber incidents and performing forensic investigations. A track record of building, and leading high-performing technical teams. Leadership gravitas to inspire and motivate others to achieve high performance Confident and charismatic, cultivating a strong learning and collaborative culture. First class communication skills; the ability to win commitment and garner buy-in'. Laser focus on customer service and product excellence. Strong planning and organisational skills. Resilient, mentally agile, and open minded. Employee benefits include 25 days holiday, private medical insurance (+ dental & optical cashback), employee assistance programme, pension plan, life insurance, income protection, subsidised gym membership, 4 paid volunteer days annually, season ticket loan, and a shiny laptop. If you are interested in this position, then do not hesitate to apply! Send your CV to my email at (see below) I am looking forward to you application.
