Job title: Security Lead - DV Cleared-(Contract Outside IR35) Location: UK only. Hybrid with attendance at client locations across the UK. Some client secure-area work required Employment type: Contract Outside IR35 Experience: 5+ years Security Clearance: DV (Developed Vetting) and UK Nationality - MANDATORY. Pre-cleared candidates strongly preferred 1. Role purpose The Security Lead is our accountable security owner for the managed service. The role leads on, and has day-to-day operational responsibility for, service security - working in collaboration with the client's Information & Security function, the client Security Operations Centre (SOC), the internal delivery team, and the third-party software vendor. 2. Context The service processes HR, Finance and Project data including OFFICIAL-SENSITIVE personal and financial data. The contractual security regime spans UK Government security policy, NCSC HMG IAS5, GDPR/DPA 2018, PCI-DSS where applicable, and the client's Cyber Security Incident Response Plan. 3. Key accountabilities 3.1 Day-to-day security leadership Lead and own day-to-day operational responsibility for service security. Advise the client on security status and matters; identify and address risks; continuously maintain and improve the security posture. Act as the authoritative security voice in the client's Design Authority and Enterprise Architecture forums for security-impacting changes. 3.2 Security operations and SOC integration: Provide the required reports to the client SOC in agreed format and frequency. Support the SOC in resolving security incidents; document security use cases with the SOC; implement, maintain and support those SOC infrastructure components hosted within the cloud infrastructure. Co-ordinate response to security incidents with the client's Cyber Security Incident Response Plan and ensure the Incident Manager and Service Delivery Manager are informed and aligned. 3.3 Assurance, audit and compliance: Treat information security issues, weaknesses or deficiencies identified by the client as Security Incidents under the client's Cyber Security Incident Response Plan. Provide client auditors with access to security documentation, configurations of security-enforcing technologies, standards and procedures. Collaborate with the client to plan and conduct annual PenTest and regular Disaster Recovery exercises. Ensure GDPR/DPA 2018 obligations are met; oversee data retention, secure disposal, lawful processing, and Data Protection Impact Assessments where required. 3.4 Technical security controls Define, document, agree and maintain Standard Operating Procedures for system administration and maintenance, with procedural controls per user role. Ensure authorisation controls prevent extraction of information assets without legitimate need. Ensure only client-issued devices are used to connect to the service in delivery. Maintain a data back-up policy aligned to Business Impact Assessment and the client's retention policy. Enforce removable-media scanning, network segregation, least-privilege access, location-based access controls, and unique user IDs. Ensure all Supplier work on the service is conducted exclusively from within the UK from client-approved secure areas. 3.5 Communications and notification Maintain regular communication with the client throughout the contract. Promptly notify the client of any changes to directors, key security personnel, business ownership (including acquisitions) or physical operating locations. Report any major security breaches within the Supplier's own ICT estate to the client. 4. Essential experience and skills Substantial experience as an accountable security owner on a UK Central Government managed-service contract handling OFFICIAL-SENSITIVE data. Deep working knowledge of NCSC HMG IAS5, NCSC Cyber Assessment Framework (CAF), Cyber Essentials Plus, ISO/IEC 27001, GDPR and DPA 2018. Hands-on experience integrating with a UK Government SOC, including SIEM reporting, security use case design and incident response co-ordination. Practical experience of Oracle Cloud security - OCI IAM, vault, network security, audit, PAM - and Oracle SaaS application security (HCM/ERP/EPM RBAC, segregation of duties, data masking). Experience commissioning and overseeing PenTesting, vulnerability management, and Disaster Recovery exercises in a UK Government context. Strong written communication for government-grade audit, assurance and governance reporting. Comfortable as a named security accountable individual in formal governance and contractual reporting. 5. Essential clearance and eligibility DV clearance and UK Nationality - contractually mandatory (PASS/FAIL). Pre-cleared candidates strongly preferred. Candidates without current DV may be considered only if SC-cleared with a credible DV application route through client sponsorship at the start of Transition. Willing and able to work exclusively from within the UK. Willing to attend client secure areas across the UK as required. 6. Desirable CISSP, CISM, CCP (CESG Certified Professional) IA Architect/IA Auditor/SIRA, or equivalent senior security certifications. Oracle Cloud Security certifications (OCI Security Professional, Oracle Cloud Identity & Security Architect). Prior experience of an Oracle ERP-on-OCI security model at scale (HCM, ERP, EPM, VBCS, BI/Analytics). Familiarity with UK Government security operating context, including overseas-network considerations, locally-engaged staff data, and HMG personnel security policy. Experience supporting PCI-DSS compliance where payment card data is in scope. 7. Personal attributes Authoritative without being abrasive - able to say 'no' to delivery pressure and explain why in business terms. Detail-oriented on policy, controls and evidence; pragmatic on operational trade-offs. Comfortable owning a named, individually-accountable role under public-sector contractual scrutiny. Visible collaborator with client security counterparts, third-party vendors, and internal service leadership.
24/06/2026
Contractor
Job title: Security Lead - DV Cleared-(Contract Outside IR35) Location: UK only. Hybrid with attendance at client locations across the UK. Some client secure-area work required Employment type: Contract Outside IR35 Experience: 5+ years Security Clearance: DV (Developed Vetting) and UK Nationality - MANDATORY. Pre-cleared candidates strongly preferred 1. Role purpose The Security Lead is our accountable security owner for the managed service. The role leads on, and has day-to-day operational responsibility for, service security - working in collaboration with the client's Information & Security function, the client Security Operations Centre (SOC), the internal delivery team, and the third-party software vendor. 2. Context The service processes HR, Finance and Project data including OFFICIAL-SENSITIVE personal and financial data. The contractual security regime spans UK Government security policy, NCSC HMG IAS5, GDPR/DPA 2018, PCI-DSS where applicable, and the client's Cyber Security Incident Response Plan. 3. Key accountabilities 3.1 Day-to-day security leadership Lead and own day-to-day operational responsibility for service security. Advise the client on security status and matters; identify and address risks; continuously maintain and improve the security posture. Act as the authoritative security voice in the client's Design Authority and Enterprise Architecture forums for security-impacting changes. 3.2 Security operations and SOC integration: Provide the required reports to the client SOC in agreed format and frequency. Support the SOC in resolving security incidents; document security use cases with the SOC; implement, maintain and support those SOC infrastructure components hosted within the cloud infrastructure. Co-ordinate response to security incidents with the client's Cyber Security Incident Response Plan and ensure the Incident Manager and Service Delivery Manager are informed and aligned. 3.3 Assurance, audit and compliance: Treat information security issues, weaknesses or deficiencies identified by the client as Security Incidents under the client's Cyber Security Incident Response Plan. Provide client auditors with access to security documentation, configurations of security-enforcing technologies, standards and procedures. Collaborate with the client to plan and conduct annual PenTest and regular Disaster Recovery exercises. Ensure GDPR/DPA 2018 obligations are met; oversee data retention, secure disposal, lawful processing, and Data Protection Impact Assessments where required. 3.4 Technical security controls Define, document, agree and maintain Standard Operating Procedures for system administration and maintenance, with procedural controls per user role. Ensure authorisation controls prevent extraction of information assets without legitimate need. Ensure only client-issued devices are used to connect to the service in delivery. Maintain a data back-up policy aligned to Business Impact Assessment and the client's retention policy. Enforce removable-media scanning, network segregation, least-privilege access, location-based access controls, and unique user IDs. Ensure all Supplier work on the service is conducted exclusively from within the UK from client-approved secure areas. 3.5 Communications and notification Maintain regular communication with the client throughout the contract. Promptly notify the client of any changes to directors, key security personnel, business ownership (including acquisitions) or physical operating locations. Report any major security breaches within the Supplier's own ICT estate to the client. 4. Essential experience and skills Substantial experience as an accountable security owner on a UK Central Government managed-service contract handling OFFICIAL-SENSITIVE data. Deep working knowledge of NCSC HMG IAS5, NCSC Cyber Assessment Framework (CAF), Cyber Essentials Plus, ISO/IEC 27001, GDPR and DPA 2018. Hands-on experience integrating with a UK Government SOC, including SIEM reporting, security use case design and incident response co-ordination. Practical experience of Oracle Cloud security - OCI IAM, vault, network security, audit, PAM - and Oracle SaaS application security (HCM/ERP/EPM RBAC, segregation of duties, data masking). Experience commissioning and overseeing PenTesting, vulnerability management, and Disaster Recovery exercises in a UK Government context. Strong written communication for government-grade audit, assurance and governance reporting. Comfortable as a named security accountable individual in formal governance and contractual reporting. 5. Essential clearance and eligibility DV clearance and UK Nationality - contractually mandatory (PASS/FAIL). Pre-cleared candidates strongly preferred. Candidates without current DV may be considered only if SC-cleared with a credible DV application route through client sponsorship at the start of Transition. Willing and able to work exclusively from within the UK. Willing to attend client secure areas across the UK as required. 6. Desirable CISSP, CISM, CCP (CESG Certified Professional) IA Architect/IA Auditor/SIRA, or equivalent senior security certifications. Oracle Cloud Security certifications (OCI Security Professional, Oracle Cloud Identity & Security Architect). Prior experience of an Oracle ERP-on-OCI security model at scale (HCM, ERP, EPM, VBCS, BI/Analytics). Familiarity with UK Government security operating context, including overseas-network considerations, locally-engaged staff data, and HMG personnel security policy. Experience supporting PCI-DSS compliance where payment card data is in scope. 7. Personal attributes Authoritative without being abrasive - able to say 'no' to delivery pressure and explain why in business terms. Detail-oriented on policy, controls and evidence; pragmatic on operational trade-offs. Comfortable owning a named, individually-accountable role under public-sector contractual scrutiny. Visible collaborator with client security counterparts, third-party vendors, and internal service leadership.
VE3 is seeking an IT Support Analyst based in Maidenhead, United Kingdom. The role requires at least 5 years of experience in IT support, focusing on customer service and technical troubleshooting across various technologies. Applicants must possess strong skills in Microsoft 365, ITIL best practices, and experience with ITSM tools like ServiceNow. The successful candidate will manage incidents, support users, and resolve technical issues efficiently while maintaining high customer satisfaction. Competitive salary and benefits offer potential for professional development.
24/06/2026
Full time
VE3 is seeking an IT Support Analyst based in Maidenhead, United Kingdom. The role requires at least 5 years of experience in IT support, focusing on customer service and technical troubleshooting across various technologies. Applicants must possess strong skills in Microsoft 365, ITIL best practices, and experience with ITSM tools like ServiceNow. The successful candidate will manage incidents, support users, and resolve technical issues efficiently while maintaining high customer satisfaction. Competitive salary and benefits offer potential for professional development.
Job Title: IT Support Analyst Location: Maidenhead, United Kingdom Employment Type: Full-Time Experience Required: 5 years Reports to: IT Service Desk Lead Summary: We are seeking a highly skilled and experienced IT Support Analyst with a strong background in customer service, technical support, and enterprise application support. The ideal candidate will have at least five years of experience in a Service Desk, Helpdesk, or IT Support environment and possess excellent communication and problem solving skills. The role will involve providing first line and second line support across a broad range of technologies, including Microsoft 365, ERP systems, CRM platforms, cloud based applications, Python based tools and automations, business applications, and end user computing environments. Experience with ITIL practices and ITSM tools such as ServiceNow is essential. The successful candidate will be responsible for supporting users, troubleshooting technical and application issues, managing incidents and service requests, and ensuring a high level of customer satisfaction through effective and timely resolution of IT related problems. Requirements Customer Service: Provide exceptional customer service by addressing IT related queries and issues via phone, email, chat, in person, and self service portals. Ensure all interactions are handled professionally and empathetically to maintain high customer satisfaction. Build strong relationships with business users and stakeholders across multiple departments. Technical Support: Provide first line and second line technical support for end users across hardware, software, Microsoft 365, ERP platforms, CRM systems, cloud applications, Python based tools, and other business critical systems. Diagnose and resolve issues related to desktops, laptops, printers, mobile devices, operating systems, software applications, network connectivity, and enterprise applications. Support users with Microsoft 365 applications including Outlook, Teams, Word, Excel, PowerPoint, OneDrive, SharePoint, and Power Platform components. Assist users with ERP solutions, finance systems, HR platforms, collaboration tools, and other enterprise software applications. Support and troubleshoot integrations between business systems and applications where required. Assist with user account administration, identity and access management, password resets, onboarding, off boarding, and software provisioning activities. Support automation and reporting solutions developed using Python, PowerShell, or similar scripting technologies. Work with internal development, infrastructure, security, and business teams to resolve application related incidents and service requests. Escalate complex technical issues to appropriate teams and vendors while ensuring effective communication and timely resolution. Maintain accurate documentation of incidents, troubleshooting activities, solutions, and known errors within the ITSM platform. Communication: Communicate effectively with technical and non technical users at all levels of the organisation. Provide regular updates regarding incident progress, service requests, and problem resolution activities. Create and maintain user guides, knowledge articles, and support documentation. Attention to Detail: Ensure incidents, requests, and changes are logged accurately with complete information. Follow established IT support, security, and operational procedures. Perform thorough troubleshooting and root cause analysis to identify and resolve issues effectively. Problem Solving: Apply strong analytical and troubleshooting skills to diagnose and resolve technical and application related issues. Research, test, and implement solutions using available tools and resources. Identify recurring issues and recommend service improvements, automation opportunities, and preventive measures. Teamwork: Collaborate closely with infrastructure, security, application support, development, and business teams. Participate in knowledge sharing sessions and continuous improvement initiatives. Support colleagues during high demand periods and contribute to cross training activities. Service Desk & Operations Support: Manage incidents and service requests in accordance with agreed SLAs and operational procedures. Prioritise workloads effectively in a fast paced support environment. Maintain a professional and customer focused approach during high pressure situations. ITIL and ITSM: Utilise ITIL best practices to manage incidents, service requests, problems, changes, and service improvements. Use ITSM platforms such as ServiceNow, Jira Service Management, Zoho Desk, or equivalent solutions to manage support activities. Contribute to service reporting, trend analysis, and continuous service improvement initiatives. Required Qualifications Bachelor's degree in Information Technology, Computer Science, Information Systems, or a related discipline, or equivalent industry experience. Minimum of 5 years' experience in an IT Service Desk, Application Support, Helpdesk, or Technical Support environment. ITIL Foundation certification or strong knowledge of IT Service Management best practices. Experience using ITSM platforms such as ServiceNow, Jira Service Management, Zoho Desk, Freshservice, or equivalent. Strong working knowledge of Microsoft 365, Windows operating systems, and enterprise productivity tools. Experience supporting business applications such as ERP, CRM, finance, HR, project management, and cloud based systems. Familiarity with scripting, automation, or data processing tools such as Python, PowerShell, or similar technologies. Excellent verbal and written communication skills. Strong analytical, troubleshooting, and problem solving abilities. Ability to work independently and collaboratively within cross functional teams. Preferred Qualifications Microsoft 365, Azure, ITIL, or related technical certifications. Experience supporting ERP platforms such as SAP, Oracle, Microsoft Dynamics 365, NetSuite, or equivalent systems. Experience with CRM platforms such as Salesforce, Dynamics 365 CRM, HubSpot, or similar solutions. Knowledge of cloud platforms such as Microsoft Azure or Amazon Web Services (AWS). Experience with automation, reporting, and scripting tools including Python and PowerShell. Experience working within a Managed Service Provider (MSP), enterprise IT environment, or IT service provider organisation.
18/06/2026
Full time
Job Title: IT Support Analyst Location: Maidenhead, United Kingdom Employment Type: Full-Time Experience Required: 5 years Reports to: IT Service Desk Lead Summary: We are seeking a highly skilled and experienced IT Support Analyst with a strong background in customer service, technical support, and enterprise application support. The ideal candidate will have at least five years of experience in a Service Desk, Helpdesk, or IT Support environment and possess excellent communication and problem solving skills. The role will involve providing first line and second line support across a broad range of technologies, including Microsoft 365, ERP systems, CRM platforms, cloud based applications, Python based tools and automations, business applications, and end user computing environments. Experience with ITIL practices and ITSM tools such as ServiceNow is essential. The successful candidate will be responsible for supporting users, troubleshooting technical and application issues, managing incidents and service requests, and ensuring a high level of customer satisfaction through effective and timely resolution of IT related problems. Requirements Customer Service: Provide exceptional customer service by addressing IT related queries and issues via phone, email, chat, in person, and self service portals. Ensure all interactions are handled professionally and empathetically to maintain high customer satisfaction. Build strong relationships with business users and stakeholders across multiple departments. Technical Support: Provide first line and second line technical support for end users across hardware, software, Microsoft 365, ERP platforms, CRM systems, cloud applications, Python based tools, and other business critical systems. Diagnose and resolve issues related to desktops, laptops, printers, mobile devices, operating systems, software applications, network connectivity, and enterprise applications. Support users with Microsoft 365 applications including Outlook, Teams, Word, Excel, PowerPoint, OneDrive, SharePoint, and Power Platform components. Assist users with ERP solutions, finance systems, HR platforms, collaboration tools, and other enterprise software applications. Support and troubleshoot integrations between business systems and applications where required. Assist with user account administration, identity and access management, password resets, onboarding, off boarding, and software provisioning activities. Support automation and reporting solutions developed using Python, PowerShell, or similar scripting technologies. Work with internal development, infrastructure, security, and business teams to resolve application related incidents and service requests. Escalate complex technical issues to appropriate teams and vendors while ensuring effective communication and timely resolution. Maintain accurate documentation of incidents, troubleshooting activities, solutions, and known errors within the ITSM platform. Communication: Communicate effectively with technical and non technical users at all levels of the organisation. Provide regular updates regarding incident progress, service requests, and problem resolution activities. Create and maintain user guides, knowledge articles, and support documentation. Attention to Detail: Ensure incidents, requests, and changes are logged accurately with complete information. Follow established IT support, security, and operational procedures. Perform thorough troubleshooting and root cause analysis to identify and resolve issues effectively. Problem Solving: Apply strong analytical and troubleshooting skills to diagnose and resolve technical and application related issues. Research, test, and implement solutions using available tools and resources. Identify recurring issues and recommend service improvements, automation opportunities, and preventive measures. Teamwork: Collaborate closely with infrastructure, security, application support, development, and business teams. Participate in knowledge sharing sessions and continuous improvement initiatives. Support colleagues during high demand periods and contribute to cross training activities. Service Desk & Operations Support: Manage incidents and service requests in accordance with agreed SLAs and operational procedures. Prioritise workloads effectively in a fast paced support environment. Maintain a professional and customer focused approach during high pressure situations. ITIL and ITSM: Utilise ITIL best practices to manage incidents, service requests, problems, changes, and service improvements. Use ITSM platforms such as ServiceNow, Jira Service Management, Zoho Desk, or equivalent solutions to manage support activities. Contribute to service reporting, trend analysis, and continuous service improvement initiatives. Required Qualifications Bachelor's degree in Information Technology, Computer Science, Information Systems, or a related discipline, or equivalent industry experience. Minimum of 5 years' experience in an IT Service Desk, Application Support, Helpdesk, or Technical Support environment. ITIL Foundation certification or strong knowledge of IT Service Management best practices. Experience using ITSM platforms such as ServiceNow, Jira Service Management, Zoho Desk, Freshservice, or equivalent. Strong working knowledge of Microsoft 365, Windows operating systems, and enterprise productivity tools. Experience supporting business applications such as ERP, CRM, finance, HR, project management, and cloud based systems. Familiarity with scripting, automation, or data processing tools such as Python, PowerShell, or similar technologies. Excellent verbal and written communication skills. Strong analytical, troubleshooting, and problem solving abilities. Ability to work independently and collaboratively within cross functional teams. Preferred Qualifications Microsoft 365, Azure, ITIL, or related technical certifications. Experience supporting ERP platforms such as SAP, Oracle, Microsoft Dynamics 365, NetSuite, or equivalent systems. Experience with CRM platforms such as Salesforce, Dynamics 365 CRM, HubSpot, or similar solutions. Knowledge of cloud platforms such as Microsoft Azure or Amazon Web Services (AWS). Experience with automation, reporting, and scripting tools including Python and PowerShell. Experience working within a Managed Service Provider (MSP), enterprise IT environment, or IT service provider organisation.
VE3 is seeking a Security Lead (DV Cleared) for a contract role based in Maidenhead, UK. The position emphasizes governance over OFFICIAL-SENSITIVE data security across public sector services and includes responsibilities such as operational leadership and compliance assurance. The successful candidate will require DV clearance, substantial experience with UK Government managed-services, and knowledge of Oracle Cloud security protocols. The role is hybrid, necessitating attendance at client locations.
14/06/2026
Full time
VE3 is seeking a Security Lead (DV Cleared) for a contract role based in Maidenhead, UK. The position emphasizes governance over OFFICIAL-SENSITIVE data security across public sector services and includes responsibilities such as operational leadership and compliance assurance. The successful candidate will require DV clearance, substantial experience with UK Government managed-services, and knowledge of Oracle Cloud security protocols. The role is hybrid, necessitating attendance at client locations.
Security Lead- DV Cleared-Contract Outside IR35 Maidenhead, United Kingdom Posted on 26/05/2026 VE3 is a technology and business consultancy focused on delivering end to end technology solutions and products. We have successfully serviced enterprises across multiple markets, including the public and private sectors. Our services span all aspects of business, providing a holistic approach to managing an organization. We are committed to providing technical innovations and tools that empower organizations with critical information to facilitate decision making that results in business transformation through cost savings and increased operational efficiency. Our commitment to quality is adopted throughout the organization and sets the foundation for delivering our full suite of capabilities. Job Description Role Security Lead - DV Cleared (Contract Outside IR35) Engagement UK Public Sector - Oracle ERP Managed Service Duration Length of the managed service contract Location UK only. Hybrid with attendance at client locations across the UK. Some client secure area work required Security clearance DV (Developed Vetting) and UK Nationality - MANDATORY. Pre cleared candidates strongly preferred Reports to Account / Engagement Director Key interfaces Client security lead, client Information & Security function, client Security Operations Centre, internal Service Delivery Manager, Incident Manager, third party software vendor The Security Lead is our accountable security owner for the managed service. The role leads on, and has day to day operational responsibility for, service security - working in collaboration with the client's Information & Security function, the client Security Operations Centre (SOC), the internal delivery team, and the third party software vendor. This is a contractually named DV cleared key role and is a PASS/FAIL requirement under the Conditions of Participation. Context The service processes HR, Finance and Project data including OFFICIAL SENSITIVE personal and financial data of UK civil servants and locally engaged staff across a large international footprint. The contractual security regime spans UK Government security policy, NCSC HMG IAS5, GDPR/DPA 2018, PCI DSS where applicable, and the client's Cyber Security Incident Response Plan. The SOC is operated 24 7 by the client and the Supplier is required to integrate, report into and support it. Key Accountabilities Day to day security leadership Lead and own day to day operational responsibility for service security across OPERATE and DEVELOP. Advise the client on security status and matters; identify and address risks; continuously maintain and improve the security posture. Act as the authoritative security voice in the client's Design Authority and Enterprise Architecture forums for security impacting changes. Clearance, vetting and access Own the clearance pipeline: ensure all Supplier staff who hold, process or discuss client data are SC cleared UK Nationals as a minimum, and that the named DV roles plus all 'full administrator' staff are DV cleared UK Nationals. Manage client sponsored SC and DV applications from the start of Transition, conducting reasonable diligence checks in advance. Oversee joiner/mover/leaver, privileged access management (PAM), role based access control (RBAC), and the monthly audit report on RBAC and environment access. Security operations and SOC integration Provide the required reports to the client SOC in agreed format and frequency. Support the SOC in resolving security incidents; document security use cases with the SOC; implement, maintain and support those SOC infrastructure components hosted within the cloud infrastructure. Co ordinate response to security incidents with the client's Cyber Security Incident Response Plan and ensure the Incident Manager and Service Delivery Manager are informed and aligned. Assurance, audit and compliance Treat information security issues, weaknesses or deficiencies identified by the client as Security Incidents under the client's Cyber Security Incident Response Plan. Provide client auditors with access to security documentation, configurations of security enforcing technologies, standards and procedures. Collaborate with the client to plan and conduct annual PenTest and regular Disaster Recovery exercises. Ensure GDPR / DPA 2018 obligations are met; oversee data retention, secure disposal, lawful processing, and Data Protection Impact Assessments where required. Technical security controls Define, document, agree and maintain Standard Operating Procedures for system administration and maintenance, with procedural controls per user role. Ensure authorisation controls prevent extraction of information assets without legitimate need. Ensure only client issued devices are used to connect to the service in delivery. Maintain a data back up policy aligned to Business Impact Assessment and the client's retention policy. Enforce removable media scanning, network segregation, least privilege access, location based access controls, and unique user IDs. Ensure all Supplier work on the service is conducted exclusively from within the UK from client approved secure areas. Communications and notification Maintain regular communication with the client throughout the contract. Promptly notify the client of any changes to directors, key security personnel, business ownership (including acquisitions) or physical operating locations. Report any major security breaches within the Supplier's own ICT estate to the client. Essential experience and skills Substantial experience as an accountable security owner on a UK Central Government managed service contract handling OFFICIAL SENSITIVE data. Deep working knowledge of NCSC HMG IAS5, NCSC Cyber Assessment Framework (CAF), Cyber Essentials Plus, ISO/IEC 27001, GDPR and DPA 2018. Hands on experience integrating with a UK Government SOC, including SIEM reporting, security use case design and incident response co ordination. Practical experience of Oracle Cloud security - OCI IAM, vault, network security, audit, PAM - and Oracle SaaS application security (HCM/ERP/EPM RBAC, segregation of duties, data masking). Experience commissioning and overseeing PenTesting, vulnerability management, and Disaster Recovery exercises in a UK Government context. Proven experience leading UK Government clearance pipelines: SC and DV sponsorship, due diligence, joiner/mover/leaver workflows. Strong written communication for government grade audit, assurance and governance reporting. Comfortable as a named security accountable individual in formal governance and contractual reporting. Essential clearance and eligibility DV clearance and UK Nationality - contractually mandatory (PASS/FAIL). Pre cleared candidates strongly preferred. Candidates without current DV may be considered only if SC cleared with a credible DV application route through client sponsorship at the start of Transition. Willing and able to work exclusively from within the UK. Willing to attend client secure areas across the UK as required. CISSP, CISM, CCP (CESG Certified Professional) IA Architect / IA Auditor / SIRA, or equivalent senior security certifications. Oracle Cloud Security certifications (OCI Security Professional, Oracle Cloud Identity & Security Architect). Prior experience of an Oracle ERP on OCI security model at scale (HCM, ERP, EPM, VBCS, BI/Analytics). Familiarity with UK Government security operating context, including overseas network considerations, locally engaged staff data, and HMG personnel security policy. Experience supporting PCI DSS compliance where payment card data is in scope. Personal attributes Authoritative without being abrasive - able to say 'no' to delivery pressure and explain why in business terms. Detail oriented on policy, controls and evidence; pragmatic on operational trade offs. Comfortable owning a named, individually accountable role under public sector contractual scrutiny. Visible collaborator with client security counterparts, third party vendors, and internal service leadership. Key performance indicators 100% of in scope staff hold valid SC or DV clearance, with no operational delivery delayed by clearance gaps. SOC reporting delivered in agreed format and frequency, with zero material reporting failures. Annual PenTest and DR exercises completed on plan, with remediation tracked to closure. Zero Category 1 information security breaches attributable to Supplier controls. Monthly RBAC and environment access audit reports delivered on time, with audit findings closed within agreed SLAs. Clean external audit outcomes (internal audit, GIAA, or comparable).
14/06/2026
Full time
Security Lead- DV Cleared-Contract Outside IR35 Maidenhead, United Kingdom Posted on 26/05/2026 VE3 is a technology and business consultancy focused on delivering end to end technology solutions and products. We have successfully serviced enterprises across multiple markets, including the public and private sectors. Our services span all aspects of business, providing a holistic approach to managing an organization. We are committed to providing technical innovations and tools that empower organizations with critical information to facilitate decision making that results in business transformation through cost savings and increased operational efficiency. Our commitment to quality is adopted throughout the organization and sets the foundation for delivering our full suite of capabilities. Job Description Role Security Lead - DV Cleared (Contract Outside IR35) Engagement UK Public Sector - Oracle ERP Managed Service Duration Length of the managed service contract Location UK only. Hybrid with attendance at client locations across the UK. Some client secure area work required Security clearance DV (Developed Vetting) and UK Nationality - MANDATORY. Pre cleared candidates strongly preferred Reports to Account / Engagement Director Key interfaces Client security lead, client Information & Security function, client Security Operations Centre, internal Service Delivery Manager, Incident Manager, third party software vendor The Security Lead is our accountable security owner for the managed service. The role leads on, and has day to day operational responsibility for, service security - working in collaboration with the client's Information & Security function, the client Security Operations Centre (SOC), the internal delivery team, and the third party software vendor. This is a contractually named DV cleared key role and is a PASS/FAIL requirement under the Conditions of Participation. Context The service processes HR, Finance and Project data including OFFICIAL SENSITIVE personal and financial data of UK civil servants and locally engaged staff across a large international footprint. The contractual security regime spans UK Government security policy, NCSC HMG IAS5, GDPR/DPA 2018, PCI DSS where applicable, and the client's Cyber Security Incident Response Plan. The SOC is operated 24 7 by the client and the Supplier is required to integrate, report into and support it. Key Accountabilities Day to day security leadership Lead and own day to day operational responsibility for service security across OPERATE and DEVELOP. Advise the client on security status and matters; identify and address risks; continuously maintain and improve the security posture. Act as the authoritative security voice in the client's Design Authority and Enterprise Architecture forums for security impacting changes. Clearance, vetting and access Own the clearance pipeline: ensure all Supplier staff who hold, process or discuss client data are SC cleared UK Nationals as a minimum, and that the named DV roles plus all 'full administrator' staff are DV cleared UK Nationals. Manage client sponsored SC and DV applications from the start of Transition, conducting reasonable diligence checks in advance. Oversee joiner/mover/leaver, privileged access management (PAM), role based access control (RBAC), and the monthly audit report on RBAC and environment access. Security operations and SOC integration Provide the required reports to the client SOC in agreed format and frequency. Support the SOC in resolving security incidents; document security use cases with the SOC; implement, maintain and support those SOC infrastructure components hosted within the cloud infrastructure. Co ordinate response to security incidents with the client's Cyber Security Incident Response Plan and ensure the Incident Manager and Service Delivery Manager are informed and aligned. Assurance, audit and compliance Treat information security issues, weaknesses or deficiencies identified by the client as Security Incidents under the client's Cyber Security Incident Response Plan. Provide client auditors with access to security documentation, configurations of security enforcing technologies, standards and procedures. Collaborate with the client to plan and conduct annual PenTest and regular Disaster Recovery exercises. Ensure GDPR / DPA 2018 obligations are met; oversee data retention, secure disposal, lawful processing, and Data Protection Impact Assessments where required. Technical security controls Define, document, agree and maintain Standard Operating Procedures for system administration and maintenance, with procedural controls per user role. Ensure authorisation controls prevent extraction of information assets without legitimate need. Ensure only client issued devices are used to connect to the service in delivery. Maintain a data back up policy aligned to Business Impact Assessment and the client's retention policy. Enforce removable media scanning, network segregation, least privilege access, location based access controls, and unique user IDs. Ensure all Supplier work on the service is conducted exclusively from within the UK from client approved secure areas. Communications and notification Maintain regular communication with the client throughout the contract. Promptly notify the client of any changes to directors, key security personnel, business ownership (including acquisitions) or physical operating locations. Report any major security breaches within the Supplier's own ICT estate to the client. Essential experience and skills Substantial experience as an accountable security owner on a UK Central Government managed service contract handling OFFICIAL SENSITIVE data. Deep working knowledge of NCSC HMG IAS5, NCSC Cyber Assessment Framework (CAF), Cyber Essentials Plus, ISO/IEC 27001, GDPR and DPA 2018. Hands on experience integrating with a UK Government SOC, including SIEM reporting, security use case design and incident response co ordination. Practical experience of Oracle Cloud security - OCI IAM, vault, network security, audit, PAM - and Oracle SaaS application security (HCM/ERP/EPM RBAC, segregation of duties, data masking). Experience commissioning and overseeing PenTesting, vulnerability management, and Disaster Recovery exercises in a UK Government context. Proven experience leading UK Government clearance pipelines: SC and DV sponsorship, due diligence, joiner/mover/leaver workflows. Strong written communication for government grade audit, assurance and governance reporting. Comfortable as a named security accountable individual in formal governance and contractual reporting. Essential clearance and eligibility DV clearance and UK Nationality - contractually mandatory (PASS/FAIL). Pre cleared candidates strongly preferred. Candidates without current DV may be considered only if SC cleared with a credible DV application route through client sponsorship at the start of Transition. Willing and able to work exclusively from within the UK. Willing to attend client secure areas across the UK as required. CISSP, CISM, CCP (CESG Certified Professional) IA Architect / IA Auditor / SIRA, or equivalent senior security certifications. Oracle Cloud Security certifications (OCI Security Professional, Oracle Cloud Identity & Security Architect). Prior experience of an Oracle ERP on OCI security model at scale (HCM, ERP, EPM, VBCS, BI/Analytics). Familiarity with UK Government security operating context, including overseas network considerations, locally engaged staff data, and HMG personnel security policy. Experience supporting PCI DSS compliance where payment card data is in scope. Personal attributes Authoritative without being abrasive - able to say 'no' to delivery pressure and explain why in business terms. Detail oriented on policy, controls and evidence; pragmatic on operational trade offs. Comfortable owning a named, individually accountable role under public sector contractual scrutiny. Visible collaborator with client security counterparts, third party vendors, and internal service leadership. Key performance indicators 100% of in scope staff hold valid SC or DV clearance, with no operational delivery delayed by clearance gaps. SOC reporting delivered in agreed format and frequency, with zero material reporting failures. Annual PenTest and DR exercises completed on plan, with remediation tracked to closure. Zero Category 1 information security breaches attributable to Supplier controls. Monthly RBAC and environment access audit reports delivered on time, with audit findings closed within agreed SLAs. Clean external audit outcomes (internal audit, GIAA, or comparable).
About the Opportunity VE3 Global Technology Services is a leading UK technology consultancy specialising in Cloud, Data, DevOps and Artificial Intelligence. As a Netcall Partner, VE3 is recruiting two graduate-level Liberty Create Developers to join an established senior Liberty Create development team embedded within a major UK public sector organisation on a staff augmentation basis. This is an outstanding opportunity for a motivated graduate or early career developer to build deep, practical expertise in Netcall's Liberty Create low code platform, working on a live, high profile digital transformation programme that directly impacts citizen facing services. High performing candidates will be considered for permanent employment with the end client at the close of the six month engagement. Role Purpose Working as part of an established Liberty Create development team, you will support the design, build, testing and maintenance of low code applications and automated workflows within the Liberty Create platform. Day to day direction will be provided by the client's senior Liberty Create developers, with VE3 providing employment, training and welfare support throughout. The role is designed to provide rapid, structured skills development in a real world delivery environment. You will be involved in end to end development activity from requirements through to deployment, with increasing autonomy as your Liberty Create knowledge grows. Requirements Platform Development Design and build low code applications, process workflows and digital forms within the Netcall Liberty Create platform under senior developer guidance Configure and maintain data models, business rules, integration points and user interface components within Liberty Create Assist with the development and ongoing maintenance of CRM and case management applications, including workflow automation and service integrations Contribute to rapid workflow amendment and feature deployment cycles in line with the client's agile delivery schedule Quality and Governance Support quality assurance and user acceptance testing for new features, service changes and platform upgrades Participate in configuration and code reviews with senior Liberty Create developers Document application configurations, workflow logic and change records in line with client governance and audit requirements Ensure all development work meets public sector accessibility standards (WCAG 2.1 AA) and security requirements Collaboration and Delivery Work closely with service teams and business analysts to understand requirements and translate them into Liberty Create platform configurations Attend and contribute to agile ceremonies including stand ups, sprint planning, reviews and retrospectives Proactively identify and raise technical issues, blockers or improvement opportunities with the senior development team Support knowledge sharing and documentation activities to build team capability around the Liberty Create platform Essential Skills and Attributes Degree level education (preferably a Computer Science related discipline) or equivalent demonstrable analytical or technical capability A genuine interest in low code / no code development, software engineering or digital services Logical, structured thinking with strong attention to detail and a methodical approach to problem solving Ability to absorb new platforms and technical concepts quickly and apply learning practically in a live delivery environment Strong written and verbal communication skills, with the confidence to engage clearly across both technical and non technical stakeholders A proactive, self motivated working style with the initiative to take ownership of tasks and see them through to completion Comfortable working in a fast paced, agile team environment with changing priorities Demonstrable experience writing code from scratch, not just configuring existing tools or templates - candidates must be able to talk through their own code and the decisions behind it Working knowledge of JavaScript (or a comparable scripting or programming language) - Liberty Create supports JavaScript based logic and scripting within its low code environment Desirable Skills and Experience Prior hands on exposure to Netcall Liberty Create - even personal projects, university coursework or self directed learning Experience with other low code or no code platforms such as OutSystems, Mendix, Microsoft Power Platform, Appian or ServiceNow Familiarity with CRM, case management or workflow automation systems in any capacity Working knowledge of agile delivery methodologies (Scrum or Kanban) Understanding of UK public sector digital delivery principles, GDS Service Standard or accessibility requirements Basic knowledge of SQL, REST APIs or data integration concepts Experience working with or within a local authority, NHS organisation or other public sector body A portfolio, personal project or academic project that demonstrates practical development or platform building experience - candidates should be prepared to walk through their work and explain their approach during interview
01/06/2026
Full time
About the Opportunity VE3 Global Technology Services is a leading UK technology consultancy specialising in Cloud, Data, DevOps and Artificial Intelligence. As a Netcall Partner, VE3 is recruiting two graduate-level Liberty Create Developers to join an established senior Liberty Create development team embedded within a major UK public sector organisation on a staff augmentation basis. This is an outstanding opportunity for a motivated graduate or early career developer to build deep, practical expertise in Netcall's Liberty Create low code platform, working on a live, high profile digital transformation programme that directly impacts citizen facing services. High performing candidates will be considered for permanent employment with the end client at the close of the six month engagement. Role Purpose Working as part of an established Liberty Create development team, you will support the design, build, testing and maintenance of low code applications and automated workflows within the Liberty Create platform. Day to day direction will be provided by the client's senior Liberty Create developers, with VE3 providing employment, training and welfare support throughout. The role is designed to provide rapid, structured skills development in a real world delivery environment. You will be involved in end to end development activity from requirements through to deployment, with increasing autonomy as your Liberty Create knowledge grows. Requirements Platform Development Design and build low code applications, process workflows and digital forms within the Netcall Liberty Create platform under senior developer guidance Configure and maintain data models, business rules, integration points and user interface components within Liberty Create Assist with the development and ongoing maintenance of CRM and case management applications, including workflow automation and service integrations Contribute to rapid workflow amendment and feature deployment cycles in line with the client's agile delivery schedule Quality and Governance Support quality assurance and user acceptance testing for new features, service changes and platform upgrades Participate in configuration and code reviews with senior Liberty Create developers Document application configurations, workflow logic and change records in line with client governance and audit requirements Ensure all development work meets public sector accessibility standards (WCAG 2.1 AA) and security requirements Collaboration and Delivery Work closely with service teams and business analysts to understand requirements and translate them into Liberty Create platform configurations Attend and contribute to agile ceremonies including stand ups, sprint planning, reviews and retrospectives Proactively identify and raise technical issues, blockers or improvement opportunities with the senior development team Support knowledge sharing and documentation activities to build team capability around the Liberty Create platform Essential Skills and Attributes Degree level education (preferably a Computer Science related discipline) or equivalent demonstrable analytical or technical capability A genuine interest in low code / no code development, software engineering or digital services Logical, structured thinking with strong attention to detail and a methodical approach to problem solving Ability to absorb new platforms and technical concepts quickly and apply learning practically in a live delivery environment Strong written and verbal communication skills, with the confidence to engage clearly across both technical and non technical stakeholders A proactive, self motivated working style with the initiative to take ownership of tasks and see them through to completion Comfortable working in a fast paced, agile team environment with changing priorities Demonstrable experience writing code from scratch, not just configuring existing tools or templates - candidates must be able to talk through their own code and the decisions behind it Working knowledge of JavaScript (or a comparable scripting or programming language) - Liberty Create supports JavaScript based logic and scripting within its low code environment Desirable Skills and Experience Prior hands on exposure to Netcall Liberty Create - even personal projects, university coursework or self directed learning Experience with other low code or no code platforms such as OutSystems, Mendix, Microsoft Power Platform, Appian or ServiceNow Familiarity with CRM, case management or workflow automation systems in any capacity Working knowledge of agile delivery methodologies (Scrum or Kanban) Understanding of UK public sector digital delivery principles, GDS Service Standard or accessibility requirements Basic knowledge of SQL, REST APIs or data integration concepts Experience working with or within a local authority, NHS organisation or other public sector body A portfolio, personal project or academic project that demonstrates practical development or platform building experience - candidates should be prepared to walk through their work and explain their approach during interview
VE3 is seeking graduate-level Liberty Create Developers in Maidenhead, UK. This role offers a unique chance to join a senior development team, working on impactful digital transformation projects for the public sector. Responsibilities include designing low-code applications, supporting testing processes, and collaborating with teams to drive development. Candidates should have a relevant degree, a strong interest in low-code platforms, and the ability to communicate effectively with diverse stakeholders.
01/06/2026
Full time
VE3 is seeking graduate-level Liberty Create Developers in Maidenhead, UK. This role offers a unique chance to join a senior development team, working on impactful digital transformation projects for the public sector. Responsibilities include designing low-code applications, supporting testing processes, and collaborating with teams to drive development. Candidates should have a relevant degree, a strong interest in low-code platforms, and the ability to communicate effectively with diverse stakeholders.
