Denholm are delighted to be working with our financial services client on a great permanent opportunity for a Security Operations Engineer to join their team. This is a hybrid role - 2 days per week in Edinburgh office .The Security Operations Engineer is an integral part of the Security Operations team, responsible for support and optimisation of the Security Operations platform. This role presents an exciting opportunity to get involved in innovative projects designing security controls and delivering emerging security technologies. Strong knowledge of SIEM tooling is essential .Reporting to the Cyber Security Engineering Manager, you will help to deliver improvements across a number of our cyber security domains including; Security Data & Analytics, Security Automation, Incident Response and Threat Detection. Additionally, you will work closely with our Cyber Security Operation Centre and with other security functions as well as specialist 3rd party security suppliers and the global IT and business teams. Key Responsibilities: As a part of the Cyber Security Operations team, this role will support: Security Platform Optimisation, covering endpoint, network, cloud and logging technologies Security Orchestration Automation and Response, building security automation playbooks and integration's Security Data & Analytics, onboarding data and developing detection logic and analytics Essential Criteria: Demonstrable experience working in cyber security Experience supporting security tools, such as SOAR, SIEM, EDR, NGFW, CSPM, WAF, AV Industry recognised certifications such as Certified Splunk Architect, PCSAE, CISSP/CCSP, CEH or equivalent experience Experience working in a hybrid (on-prem/multi-cloud) environment. Knowledge of one or more scripting languages with experience in developing automation playbooks, scripts that interact with APIs and parsers for data engines. Understanding of microservices architecture, Kubernetes, Containers, CI/CD pipelines and DevSecOps Passion for security and self-development to keep up to date with the evolving threat and vulnerability landscape, new technologies and service improvements If you would like more information on this role, please get in touch to discuss.
May 15, 2024
Full time
Denholm are delighted to be working with our financial services client on a great permanent opportunity for a Security Operations Engineer to join their team. This is a hybrid role - 2 days per week in Edinburgh office .The Security Operations Engineer is an integral part of the Security Operations team, responsible for support and optimisation of the Security Operations platform. This role presents an exciting opportunity to get involved in innovative projects designing security controls and delivering emerging security technologies. Strong knowledge of SIEM tooling is essential .Reporting to the Cyber Security Engineering Manager, you will help to deliver improvements across a number of our cyber security domains including; Security Data & Analytics, Security Automation, Incident Response and Threat Detection. Additionally, you will work closely with our Cyber Security Operation Centre and with other security functions as well as specialist 3rd party security suppliers and the global IT and business teams. Key Responsibilities: As a part of the Cyber Security Operations team, this role will support: Security Platform Optimisation, covering endpoint, network, cloud and logging technologies Security Orchestration Automation and Response, building security automation playbooks and integration's Security Data & Analytics, onboarding data and developing detection logic and analytics Essential Criteria: Demonstrable experience working in cyber security Experience supporting security tools, such as SOAR, SIEM, EDR, NGFW, CSPM, WAF, AV Industry recognised certifications such as Certified Splunk Architect, PCSAE, CISSP/CCSP, CEH or equivalent experience Experience working in a hybrid (on-prem/multi-cloud) environment. Knowledge of one or more scripting languages with experience in developing automation playbooks, scripts that interact with APIs and parsers for data engines. Understanding of microservices architecture, Kubernetes, Containers, CI/CD pipelines and DevSecOps Passion for security and self-development to keep up to date with the evolving threat and vulnerability landscape, new technologies and service improvements If you would like more information on this role, please get in touch to discuss.
Senior Cloud Security Engineer required by a high-tech software company with technical teams in the UK and US. The successful Senior Cloud Security Engineer will be join a growing security team within the business tasked with ensuring the secure architecture and operation of their SaaS products. The successful Senior Cloud Security Engineer is likely to have a technical background in infrastructure or devops and should have proven commercial experience in the cloud security space. The successful Senior Cloud Security Engineer will work closely with software development and devops teams and will be responsible for - Defining security requirements and solutions for SaaS services Maintaining and developing a culture of security Identifying, preventing and solving service vulnerabilities Providing general security oversight of SaaS services Working with DevOps teams to establish and maintain efficient DevSecOps processes Establishing security policies and standards for SaaS services 100% remote working Key experience A passion for software and/or cyber security In depth knowledge of AWS and Azure services Extensive experience working with multi-tenant cloud environments Scripting experience eg Bash, PowerShell, Python or similar Experience in any of the following areas would be advantageous but is not essential DevOps IaC technologies eg Terraform, CloudFormation or similar CI/CD If you are seeking a role of this nature please get in touch for more information. The role would be remote based with no requirement to work in the office. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
May 15, 2024
Full time
Senior Cloud Security Engineer required by a high-tech software company with technical teams in the UK and US. The successful Senior Cloud Security Engineer will be join a growing security team within the business tasked with ensuring the secure architecture and operation of their SaaS products. The successful Senior Cloud Security Engineer is likely to have a technical background in infrastructure or devops and should have proven commercial experience in the cloud security space. The successful Senior Cloud Security Engineer will work closely with software development and devops teams and will be responsible for - Defining security requirements and solutions for SaaS services Maintaining and developing a culture of security Identifying, preventing and solving service vulnerabilities Providing general security oversight of SaaS services Working with DevOps teams to establish and maintain efficient DevSecOps processes Establishing security policies and standards for SaaS services 100% remote working Key experience A passion for software and/or cyber security In depth knowledge of AWS and Azure services Extensive experience working with multi-tenant cloud environments Scripting experience eg Bash, PowerShell, Python or similar Experience in any of the following areas would be advantageous but is not essential DevOps IaC technologies eg Terraform, CloudFormation or similar CI/CD If you are seeking a role of this nature please get in touch for more information. The role would be remote based with no requirement to work in the office. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Security Operations Engineer (£60k+) Edinburgh hybrid Are you ready to fortify digital defences in the heart of Edinburgh? Look no further as safeguarding customer assets is our client's top priority.Step into the frontline of security innovation. As a Security Operations Engineer, you'll tackle cutting-edge challenges in the Security, Resilience & Protection department. Collaborate with top-tier professionals and lead the charge in designing and implementing robust security controls.? What You'll Do:Optimise the Security Operations platform across endpoints, networks, and cloud.Spearhead Security Orchestration Automation and Response (SOAR) initiatives.Drive Security Data & Analytics with next-gen detection logic and analytics.? Essential Skills:Proven cyber security experience.Proficiency in supporting security tools like SOAR, SIEM, EDR, NGFW, and more.Industry certifications (CISSP/CCSP, CEH, etc.) or equivalent expertise.Hybrid environment expertise with Azure or AWS certifications as a bonus.Scripting prowess for automation and API interaction.Familiarity with microservices, Kubernetes, CI/CD pipelines, and DevSecOps principles.Ready to level up your career and make a real impact in the world of cyber security? Join today and be at the forefront of safeguarding tomorrow's digital landscape.
May 15, 2024
Full time
Security Operations Engineer (£60k+) Edinburgh hybrid Are you ready to fortify digital defences in the heart of Edinburgh? Look no further as safeguarding customer assets is our client's top priority.Step into the frontline of security innovation. As a Security Operations Engineer, you'll tackle cutting-edge challenges in the Security, Resilience & Protection department. Collaborate with top-tier professionals and lead the charge in designing and implementing robust security controls.? What You'll Do:Optimise the Security Operations platform across endpoints, networks, and cloud.Spearhead Security Orchestration Automation and Response (SOAR) initiatives.Drive Security Data & Analytics with next-gen detection logic and analytics.? Essential Skills:Proven cyber security experience.Proficiency in supporting security tools like SOAR, SIEM, EDR, NGFW, and more.Industry certifications (CISSP/CCSP, CEH, etc.) or equivalent expertise.Hybrid environment expertise with Azure or AWS certifications as a bonus.Scripting prowess for automation and API interaction.Familiarity with microservices, Kubernetes, CI/CD pipelines, and DevSecOps principles.Ready to level up your career and make a real impact in the world of cyber security? Join today and be at the forefront of safeguarding tomorrow's digital landscape.
Senior Cloud Security Engineer Permanent, 3 days in office in London Overview: The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Security Engineer are responsible for delivering modern end user solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: Engineer and secure core Azure platform services across global footprint. Design, implement and maintain secure cloud architectures across Azure cloud platform. Develop and enforce cloud security policies, procedures and best practices. Implement and manage cloud security tools and services such as SIEM, IAM and DLP. Conduct regular security assessments, audits and penetration testing. Investigate and respond to security incidents and global frameworks. Provide guidance and training to team members on cloud security best practices. Stay up to date with latest cloud security threats, technologies. Run Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps, CI/CD, Kubernetes. Design, build and maintain core infrastructure. Debub production issues Requirements Strong experience in cybersecurity and protecting cloud based assets in Financial Services environment. Experience in identifying and addressing potential security risks. Attention to details and ability to think like an attacker. Continual learning and advancement of Azure technologies Experience in configuration management systems like Ansible Keen on Open Source development. Collaborative and able to communicate effectively and asynchronously.
May 14, 2024
Full time
Senior Cloud Security Engineer Permanent, 3 days in office in London Overview: The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Security Engineer are responsible for delivering modern end user solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: Engineer and secure core Azure platform services across global footprint. Design, implement and maintain secure cloud architectures across Azure cloud platform. Develop and enforce cloud security policies, procedures and best practices. Implement and manage cloud security tools and services such as SIEM, IAM and DLP. Conduct regular security assessments, audits and penetration testing. Investigate and respond to security incidents and global frameworks. Provide guidance and training to team members on cloud security best practices. Stay up to date with latest cloud security threats, technologies. Run Infrastructure with Python/PowerShell, Ansible, Terraform, Azure DevOps, CI/CD, Kubernetes. Design, build and maintain core infrastructure. Debub production issues Requirements Strong experience in cybersecurity and protecting cloud based assets in Financial Services environment. Experience in identifying and addressing potential security risks. Attention to details and ability to think like an attacker. Continual learning and advancement of Azure technologies Experience in configuration management systems like Ansible Keen on Open Source development. Collaborative and able to communicate effectively and asynchronously.
Lead Cloud Security Engineer Location: UK Remote Salary: £100k - £115k + Fantastic Benefits + Excellent Pension The Client: Our client, a prominent organisation, collaborates with the NHS to empower researchers in discovering disease causes and developing innovative treatments, with a focus on prioritising patients and participants. The Role: This opportunity would suit someone who is looking to do something that is impactful, where you can clearly see the results of the work that you're doing and help shape a Security Engineering function. You will lead on new and interesting projects that are the first of their kind and have a hugely positive social impact. Duties: Working with the cloud engineering team and providing expert advice on securing their use of Azure cloud services, Kubernetes and containers. In particular, providing guidance and a level of oversight for Azure network security and Key Vault. Encouraging and leading on a 'shift-left' approach to security. Overseeing and supporting the operation of Microsoft Defender for Cloud. Developing and getting wider buy-in for security policy as code (using OPA or similar). Assisting with maturing their use of and supporting the operation of Entra ID (previously AAD) for IAM, Identity Governance and Privileged Identity Management. Driving the work to secure their Data Platform, including their use of Databricks, Dagster and Snowflake along with in-house developed applications and CI/CD pipeline. Collaborate with wider tech and security teams on the implementation and operation of a robust Customer Identity and Access Management (CIAM) service. Supporting, coaching and mentoring members of the wider security team. Requirements: Proficient in writing Terraform, KQL and ideally Python and PowerShell. Significant experience of securing Azure and Azure security services (e.g. Key Vault, NSGs, WAF, etc.) Significant experience of securing Kubernetes (ideally AKS) and container security. Significant experience of automating security capabilities and operations and security/policy as code (e.g. with OPA, Azure Policy, etc.) Experience with Microsoft's Defender suite, in particular Defender for Cloud. Experience with Microsoft Entra ID (previously AAD), including the Identity Governance capabilities Hands-on experience with Microsoft Sentinel. Ideally experience of securing Github and Github actions (or similar). Ideally experience in securing data platforms (e.g. Databricks, Dagster, Snowflake). Experience in Threat Modelling. Exposure to Agile working and DevSecOps. Knowledge of ISO 27001. Relevant certifications, such as: Microsoft certifications (MS-500, AZ-500, AZ-700, SC-200, SC-300), CompTIA Security+ and Cloud+, Cloud Security Alliance CCSK, ISC2 CCSP Apply now for this exceptional opportunity to work with a dynamic team and further enhance your career. Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us. Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Key Words - KQL, Terraform, Python, Azure, Key Vault, Security, Microsoft, Sentinel, Microsoft Defender, Powershell, Dagster, Security Engineer, Security Consultant, Security Analyst, Cloud Security, Cyber Security, Engineer
May 14, 2024
Full time
Lead Cloud Security Engineer Location: UK Remote Salary: £100k - £115k + Fantastic Benefits + Excellent Pension The Client: Our client, a prominent organisation, collaborates with the NHS to empower researchers in discovering disease causes and developing innovative treatments, with a focus on prioritising patients and participants. The Role: This opportunity would suit someone who is looking to do something that is impactful, where you can clearly see the results of the work that you're doing and help shape a Security Engineering function. You will lead on new and interesting projects that are the first of their kind and have a hugely positive social impact. Duties: Working with the cloud engineering team and providing expert advice on securing their use of Azure cloud services, Kubernetes and containers. In particular, providing guidance and a level of oversight for Azure network security and Key Vault. Encouraging and leading on a 'shift-left' approach to security. Overseeing and supporting the operation of Microsoft Defender for Cloud. Developing and getting wider buy-in for security policy as code (using OPA or similar). Assisting with maturing their use of and supporting the operation of Entra ID (previously AAD) for IAM, Identity Governance and Privileged Identity Management. Driving the work to secure their Data Platform, including their use of Databricks, Dagster and Snowflake along with in-house developed applications and CI/CD pipeline. Collaborate with wider tech and security teams on the implementation and operation of a robust Customer Identity and Access Management (CIAM) service. Supporting, coaching and mentoring members of the wider security team. Requirements: Proficient in writing Terraform, KQL and ideally Python and PowerShell. Significant experience of securing Azure and Azure security services (e.g. Key Vault, NSGs, WAF, etc.) Significant experience of securing Kubernetes (ideally AKS) and container security. Significant experience of automating security capabilities and operations and security/policy as code (e.g. with OPA, Azure Policy, etc.) Experience with Microsoft's Defender suite, in particular Defender for Cloud. Experience with Microsoft Entra ID (previously AAD), including the Identity Governance capabilities Hands-on experience with Microsoft Sentinel. Ideally experience of securing Github and Github actions (or similar). Ideally experience in securing data platforms (e.g. Databricks, Dagster, Snowflake). Experience in Threat Modelling. Exposure to Agile working and DevSecOps. Knowledge of ISO 27001. Relevant certifications, such as: Microsoft certifications (MS-500, AZ-500, AZ-700, SC-200, SC-300), CompTIA Security+ and Cloud+, Cloud Security Alliance CCSK, ISC2 CCSP Apply now for this exceptional opportunity to work with a dynamic team and further enhance your career. Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us. Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Key Words - KQL, Terraform, Python, Azure, Key Vault, Security, Microsoft, Sentinel, Microsoft Defender, Powershell, Dagster, Security Engineer, Security Consultant, Security Analyst, Cloud Security, Cyber Security, Engineer
JOB TITLE: Lead DevOps Engineer - Prudential & Analytics Platform SALARY: £86,964 - £102,310 LOCATION(S): Leeds HOURS: Full-time WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at our Leeds Office About this opportunity A great opportunity has arisen to be part of a team within P&A platform working in the Strategic Lab as a Lead DevOps engineer; you'll play a key leadership role in our continued transformation journey by and you'll get involved with Cloud Architecture Testing & Automation Code Management Documentation and Design Participation in Communities of Practice, Guilds and improvement working groups and shares learning to members of their team and across the testing community. Prudential & Analytics (P&A) is on an exciting journey and there is no better a time to join us. The investments we are making in our people, data, and technology are leading to innovative projects; fresh possibilities have provided new ways for our people to work, learn and thrive. About us Like the modern Britain we serve, we're evolving. Investing billions in our people, data and tech to transform the way we meet the ever-changing needs of our 26 million customers. We're growing with purpose. Join us on our journey and you will too What we're looking for A confident and passionate DevOps engineers who will push the boundaries and help us build products that easily integrate. You'll have a broad understanding across all aspects of the software delivery lifecycle and related domains. Ideally, you'll be highly conversant with the concepts around APIs including deep understanding of API Gateways, REST & GraphQL, with strong hands-on experience in DevOps and automation. You should also have a good understanding of related technologies and fields such as Cyber Security, Networking, DevOps, Docker/Kubernetes, and experience of Cloud providers such as AWS, GCP or Azure, and productivity tools such as Jira, Confluence, Microsoft Teams. What we need from you: Detailed knowledge of and experience in DevOps/Continuous delivery and best practices, to be able to confidently design and implement solutions. Expertise in using DevSecOps tools and frameworks for managing infrastructure as code (IaC), Terraform. Expertise in Shell Scripting, YAML templates Strong understanding and expertise using configuration management and CI/CD automation practices and tools Jenkins, Harness, Spinnaker, Gradle, Nexus, Maven, Git Expertise in source code management, branching and deployment strategies. Cloud technologies and infrastructure : Hands-on experience with at least one of the 3 main cloud providers Google Cloud Platform (GCP), Microsoft Azure or Amazon Web Services (AWS) is essential. Experience in developing cloud and container-based solutions such as Kubernetes, Docker, Rancher and automating deployment of applications to Google Kubernetes Engine (GKE) and Azure Kubernetes Service (AKS). Experience with cloud services like container registry, secret management, networking. Strong interpersonal, communication and influencing skills. It would be great if you also had: Development experience using Java/NodeJS and strong understanding of SDLC. Strong understanding of Software Development Lifecycle (SDLC) including experience with building/integrating developer SDLC tools Strong experience of continuous monitoring such as Dynatrace, Splunk etc Strong experience of integrating continuous testing tools such as Selenium, Cucumber and other tools like SonarQube into CI and CD pipelines Experience of an API Management Platform (e.g. Apigee, API Connect or similar) Knowledge of Cyber security and techniques, such as OIDC, OAuth, SSL/TLS, and encryption to build secure and robust solutions. What you'll get to learn (any previous experience would be advantageous) Working with the cloud/GCP and the opportunities that it brings. Solving real world problems and being comfortable working in a complex regulated environment. Our focus is to ensure we are inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity, or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it is why we especially welcome applications from under-represented groups. We are disability confident. So, if you would like reasonable adjustments to be made to our recruitment processes, just let us know. We also offer a wide-ranging benefits package, which includes: A generous pension contribution of up to 15% An annual performance-related bonus Share schemes including free shares. Benefits you can adapt to your lifestyle, such as discounted shopping. 30 days' holiday, with bank holidays on top A range of wellbeing initiatives and generous parental leave policies Ready for a career where you can have a positive impact as you learn, grow, and thrive? Apply today and find out more. Join our journey.
May 14, 2024
Full time
JOB TITLE: Lead DevOps Engineer - Prudential & Analytics Platform SALARY: £86,964 - £102,310 LOCATION(S): Leeds HOURS: Full-time WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at our Leeds Office About this opportunity A great opportunity has arisen to be part of a team within P&A platform working in the Strategic Lab as a Lead DevOps engineer; you'll play a key leadership role in our continued transformation journey by and you'll get involved with Cloud Architecture Testing & Automation Code Management Documentation and Design Participation in Communities of Practice, Guilds and improvement working groups and shares learning to members of their team and across the testing community. Prudential & Analytics (P&A) is on an exciting journey and there is no better a time to join us. The investments we are making in our people, data, and technology are leading to innovative projects; fresh possibilities have provided new ways for our people to work, learn and thrive. About us Like the modern Britain we serve, we're evolving. Investing billions in our people, data and tech to transform the way we meet the ever-changing needs of our 26 million customers. We're growing with purpose. Join us on our journey and you will too What we're looking for A confident and passionate DevOps engineers who will push the boundaries and help us build products that easily integrate. You'll have a broad understanding across all aspects of the software delivery lifecycle and related domains. Ideally, you'll be highly conversant with the concepts around APIs including deep understanding of API Gateways, REST & GraphQL, with strong hands-on experience in DevOps and automation. You should also have a good understanding of related technologies and fields such as Cyber Security, Networking, DevOps, Docker/Kubernetes, and experience of Cloud providers such as AWS, GCP or Azure, and productivity tools such as Jira, Confluence, Microsoft Teams. What we need from you: Detailed knowledge of and experience in DevOps/Continuous delivery and best practices, to be able to confidently design and implement solutions. Expertise in using DevSecOps tools and frameworks for managing infrastructure as code (IaC), Terraform. Expertise in Shell Scripting, YAML templates Strong understanding and expertise using configuration management and CI/CD automation practices and tools Jenkins, Harness, Spinnaker, Gradle, Nexus, Maven, Git Expertise in source code management, branching and deployment strategies. Cloud technologies and infrastructure : Hands-on experience with at least one of the 3 main cloud providers Google Cloud Platform (GCP), Microsoft Azure or Amazon Web Services (AWS) is essential. Experience in developing cloud and container-based solutions such as Kubernetes, Docker, Rancher and automating deployment of applications to Google Kubernetes Engine (GKE) and Azure Kubernetes Service (AKS). Experience with cloud services like container registry, secret management, networking. Strong interpersonal, communication and influencing skills. It would be great if you also had: Development experience using Java/NodeJS and strong understanding of SDLC. Strong understanding of Software Development Lifecycle (SDLC) including experience with building/integrating developer SDLC tools Strong experience of continuous monitoring such as Dynatrace, Splunk etc Strong experience of integrating continuous testing tools such as Selenium, Cucumber and other tools like SonarQube into CI and CD pipelines Experience of an API Management Platform (e.g. Apigee, API Connect or similar) Knowledge of Cyber security and techniques, such as OIDC, OAuth, SSL/TLS, and encryption to build secure and robust solutions. What you'll get to learn (any previous experience would be advantageous) Working with the cloud/GCP and the opportunities that it brings. Solving real world problems and being comfortable working in a complex regulated environment. Our focus is to ensure we are inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity, or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it is why we especially welcome applications from under-represented groups. We are disability confident. So, if you would like reasonable adjustments to be made to our recruitment processes, just let us know. We also offer a wide-ranging benefits package, which includes: A generous pension contribution of up to 15% An annual performance-related bonus Share schemes including free shares. Benefits you can adapt to your lifestyle, such as discounted shopping. 30 days' holiday, with bank holidays on top A range of wellbeing initiatives and generous parental leave policies Ready for a career where you can have a positive impact as you learn, grow, and thrive? Apply today and find out more. Join our journey.
Security Operations Engineer ( 60k+) Edinburgh hybrid Are you ready to fortify digital defences in the heart of Edinburgh? Look no further as safeguarding customer assets is our client's top priority. Step into the frontline of security innovation. As a Security Operations Engineer, you'll tackle cutting-edge challenges in the Security, Resilience & Protection department. Collaborate with top-tier professionals and lead the charge in designing and implementing robust security controls. ? What You'll Do: Optimise the Security Operations platform across endpoints, networks, and cloud. Spearhead Security Orchestration Automation and Response (SOAR) initiatives. Drive Security Data & Analytics with next-gen detection logic and analytics. ? Essential Skills: Proven cyber security experience. Proficiency in supporting security tools like SOAR, SIEM, EDR, NGFW, and more. Industry certifications (CISSP/CCSP, CEH, etc.) or equivalent expertise. Hybrid environment expertise with Azure or AWS certifications as a bonus. Scripting prowess for automation and API interaction. Familiarity with microservices, Kubernetes, CI/CD pipelines, and DevSecOps principles. Ready to level up your career and make a real impact in the world of cyber security? Join today and be at the forefront of safeguarding tomorrow's digital landscape.
May 14, 2024
Full time
Security Operations Engineer ( 60k+) Edinburgh hybrid Are you ready to fortify digital defences in the heart of Edinburgh? Look no further as safeguarding customer assets is our client's top priority. Step into the frontline of security innovation. As a Security Operations Engineer, you'll tackle cutting-edge challenges in the Security, Resilience & Protection department. Collaborate with top-tier professionals and lead the charge in designing and implementing robust security controls. ? What You'll Do: Optimise the Security Operations platform across endpoints, networks, and cloud. Spearhead Security Orchestration Automation and Response (SOAR) initiatives. Drive Security Data & Analytics with next-gen detection logic and analytics. ? Essential Skills: Proven cyber security experience. Proficiency in supporting security tools like SOAR, SIEM, EDR, NGFW, and more. Industry certifications (CISSP/CCSP, CEH, etc.) or equivalent expertise. Hybrid environment expertise with Azure or AWS certifications as a bonus. Scripting prowess for automation and API interaction. Familiarity with microservices, Kubernetes, CI/CD pipelines, and DevSecOps principles. Ready to level up your career and make a real impact in the world of cyber security? Join today and be at the forefront of safeguarding tomorrow's digital landscape.
About Our Client My client- an organisation within the Financial Services sector are looking for an IT Security Architect- join their site in London remotely on an initial 6-month contract! Job Description The successful candidate for the IT Security Architect- Financial Services Sector 6-month contract role will fulfil the following responsibilities: Working with IT Architecture, Production, and Information Security colleagues to design IT and InfoSec solution architectures. They will take end-to-end responsibility for the security solution, driving the high-level design, and supporting engineering in the low-level design, through to architecture assurance reviews of the delivered solution. Working with Information Security colleagues to identify and assess security risks, define security control requirements, and understand the changing nature of risk as the IT landscape evolves. Produce effective architecture documentation that enables all relevant business and technical audiences and communicate these across IT where appropriate. Provide security architecture consultancy services to internal customers by offering technical security guidance, and ensuring architecture principles, design standards and operational requirements are met. Provide security coaching and advice to senior developers, Tech Leads and Head of Tech. Design and implement cloud security strategies and policies that meet an organisation's specific needs. Ensure the security of cloud-based data and applications against unauthorized access, theft, and other threats. Over and conduct regular security assessments and audits of our technology stack to identify vulnerabilities and develop plans to address them. Collaborate with other IT professionals, including network engineers, developers, and system administrators, to integrate cloud security measures into existing systems and processes. Champion best practices, quality and sound data management, work with engineers, developers, and Heads of Technology to ensure roadmap alignment, whilst acting as the bridge between the business, security and technology. Offer coaching and consultancy to the Technology & Security and project teams. The Successful Applicant To be considered for the IT Security Architect- Financial Services Sector contract role in London the candidate must present evidence of the following: Demonstrable experience in designing, recommending, and implementing enterprise-wide security architectures. Previous experience in delivering and maintaining technical security solutions for systems such as End Point Protection, Email & Communications Security, Cloud Security, Network Security, Security Monitoring and Response, and Data Loss Prevention Technologies. Thorough knowledge of Microsoft Azure and M365 core services and products and expert knowledge of security-related products and services. Working knowledge of Secure Software Development Lifecycle and DevSecOps. Strong knowledge and understanding of Information security risk management. Strong knowledge and understanding of architectural frameworks (COBIT/TOGAF) and information security frameworks and controls (NIST, ISO27001, CIS). Experience in security governance. Successful applicant must: Be an articulate communicator, capable of clearly explaining technical cyber and information security issues in business terms to a wide range of audiences. Be comfortable briefing and communicating with C-Suite and business leaders as regards security principles and technologies. Be able to produce clear and structured documentation for all levels of the business. Be able to work under their initiative. Have CISSP/CISM qualifications. Stay up to date on the latest cloud security technologies, trends, and best practices. Candidates should be strongly motivated by BII's development mission and ideally demonstrate some commitment to development or social goals through previous executive or non-executive activity. Our cultural values We look for team members who aspire, as we do, to work at our best and to be: Impact-led, commercially rigorous Tenacious in the face of challenges Collaborative and caring Our client is committed to diversity and inclusion and welcomes all applicants regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, gender, sexual orientation or educational background. What's on Offer An initial 6 month contract inside IR35. Pay rate up to £750 daily. 2 days p/week in their central London office, 3 days p/week working remotely from home.
May 13, 2024
Full time
About Our Client My client- an organisation within the Financial Services sector are looking for an IT Security Architect- join their site in London remotely on an initial 6-month contract! Job Description The successful candidate for the IT Security Architect- Financial Services Sector 6-month contract role will fulfil the following responsibilities: Working with IT Architecture, Production, and Information Security colleagues to design IT and InfoSec solution architectures. They will take end-to-end responsibility for the security solution, driving the high-level design, and supporting engineering in the low-level design, through to architecture assurance reviews of the delivered solution. Working with Information Security colleagues to identify and assess security risks, define security control requirements, and understand the changing nature of risk as the IT landscape evolves. Produce effective architecture documentation that enables all relevant business and technical audiences and communicate these across IT where appropriate. Provide security architecture consultancy services to internal customers by offering technical security guidance, and ensuring architecture principles, design standards and operational requirements are met. Provide security coaching and advice to senior developers, Tech Leads and Head of Tech. Design and implement cloud security strategies and policies that meet an organisation's specific needs. Ensure the security of cloud-based data and applications against unauthorized access, theft, and other threats. Over and conduct regular security assessments and audits of our technology stack to identify vulnerabilities and develop plans to address them. Collaborate with other IT professionals, including network engineers, developers, and system administrators, to integrate cloud security measures into existing systems and processes. Champion best practices, quality and sound data management, work with engineers, developers, and Heads of Technology to ensure roadmap alignment, whilst acting as the bridge between the business, security and technology. Offer coaching and consultancy to the Technology & Security and project teams. The Successful Applicant To be considered for the IT Security Architect- Financial Services Sector contract role in London the candidate must present evidence of the following: Demonstrable experience in designing, recommending, and implementing enterprise-wide security architectures. Previous experience in delivering and maintaining technical security solutions for systems such as End Point Protection, Email & Communications Security, Cloud Security, Network Security, Security Monitoring and Response, and Data Loss Prevention Technologies. Thorough knowledge of Microsoft Azure and M365 core services and products and expert knowledge of security-related products and services. Working knowledge of Secure Software Development Lifecycle and DevSecOps. Strong knowledge and understanding of Information security risk management. Strong knowledge and understanding of architectural frameworks (COBIT/TOGAF) and information security frameworks and controls (NIST, ISO27001, CIS). Experience in security governance. Successful applicant must: Be an articulate communicator, capable of clearly explaining technical cyber and information security issues in business terms to a wide range of audiences. Be comfortable briefing and communicating with C-Suite and business leaders as regards security principles and technologies. Be able to produce clear and structured documentation for all levels of the business. Be able to work under their initiative. Have CISSP/CISM qualifications. Stay up to date on the latest cloud security technologies, trends, and best practices. Candidates should be strongly motivated by BII's development mission and ideally demonstrate some commitment to development or social goals through previous executive or non-executive activity. Our cultural values We look for team members who aspire, as we do, to work at our best and to be: Impact-led, commercially rigorous Tenacious in the face of challenges Collaborative and caring Our client is committed to diversity and inclusion and welcomes all applicants regardless of age, disability, gender reassignment, marriage and civil partnership, pregnancy and maternity, race, religion or belief, gender, sexual orientation or educational background. What's on Offer An initial 6 month contract inside IR35. Pay rate up to £750 daily. 2 days p/week in their central London office, 3 days p/week working remotely from home.
DevSecOps Engineer - hybrid with travel to London An exciting DevSecOps Engineer opportunity working for a FTSE 100 business who has begun one of the biggest technology transformation programmes in Europe. Working for this global organisation, you will play a pivotal part in the digital transformation of the technology solutions and technology-led services the business provides to their customers. This is a key hire for the team who are looking for a candidate who can implement and maintain state of the art industry practices for making applications as secure as possible, whilst also improving developer efficiency. Working closely with cyber and product teams you will perform a critical role in ensuring that the company's products are built with security considerations from the ground up. As a DevSecOps Engineer you will focus on AWS hosted services, including Production, Development and Test environments. Constructing and maintaining the CI/CD pipelines will be among your main responsibilities. You will help the adoption of shift-left approach when participating in Continuous Delivery and adhering to standards and conventions outlined as part of quality and security measures. Skills and experience Experience in Infrastructure as Code (IaC) automations in CI/CD and AWS/Azure environments using Terraform. Extensive production experience using AWS and/or Azure technology stack, including Web apps, traffic manager, serverless functions, CDN, application insights, CloudWatch, pipelines, storage and security. Experience with implementing and maintaining Zero-Trust concepts and policy enforcement. Understanding of software development methodologies and programming languages. Deep knowledge of continuous integration and delivery tooling such as Github, ArgoCD, Docker, Kubernetes and Terraform. Understanding and experience using or deploying device-based trust applications (Okta Verify, Google Beyondcorp, Cloudflare Zero Trust, etc). Extensive knowledge of RBAC/ABAC concepts and operating policies. Excellent technical documentation and KB writing skills with the ability to contribute and present to developer communities. Work independently and organized, with the ability to prioritize a busy workload. Ability to collaborate with cross-functional team members that are dependencies to meet the customers need. Advanced level of technical troubleshooting experience for incident responses/planning. Experience of working within a regulated industry or working with standards and compliance frameworks is desirable.
May 10, 2024
Full time
DevSecOps Engineer - hybrid with travel to London An exciting DevSecOps Engineer opportunity working for a FTSE 100 business who has begun one of the biggest technology transformation programmes in Europe. Working for this global organisation, you will play a pivotal part in the digital transformation of the technology solutions and technology-led services the business provides to their customers. This is a key hire for the team who are looking for a candidate who can implement and maintain state of the art industry practices for making applications as secure as possible, whilst also improving developer efficiency. Working closely with cyber and product teams you will perform a critical role in ensuring that the company's products are built with security considerations from the ground up. As a DevSecOps Engineer you will focus on AWS hosted services, including Production, Development and Test environments. Constructing and maintaining the CI/CD pipelines will be among your main responsibilities. You will help the adoption of shift-left approach when participating in Continuous Delivery and adhering to standards and conventions outlined as part of quality and security measures. Skills and experience Experience in Infrastructure as Code (IaC) automations in CI/CD and AWS/Azure environments using Terraform. Extensive production experience using AWS and/or Azure technology stack, including Web apps, traffic manager, serverless functions, CDN, application insights, CloudWatch, pipelines, storage and security. Experience with implementing and maintaining Zero-Trust concepts and policy enforcement. Understanding of software development methodologies and programming languages. Deep knowledge of continuous integration and delivery tooling such as Github, ArgoCD, Docker, Kubernetes and Terraform. Understanding and experience using or deploying device-based trust applications (Okta Verify, Google Beyondcorp, Cloudflare Zero Trust, etc). Extensive knowledge of RBAC/ABAC concepts and operating policies. Excellent technical documentation and KB writing skills with the ability to contribute and present to developer communities. Work independently and organized, with the ability to prioritize a busy workload. Ability to collaborate with cross-functional team members that are dependencies to meet the customers need. Advanced level of technical troubleshooting experience for incident responses/planning. Experience of working within a regulated industry or working with standards and compliance frameworks is desirable.
Minimum of SC Clearance, MOD DV would be a preferrable Competivie salary plus Benefits and Bonuses Gloucester location - 3 days on site WHAT WILL THE SENIOR SYSTEMS ENGINEER BE DOING? As a Senior Systems Engineer, you'll join an expanding Corporate Services IT department that supports mission critical work completed by over 1000 end users across hundreds of servers. The unique nature of the business areas you and your team will support create complex and often time-critical demands to deliver effective, reliable and enduring IT platforms across 'conventional' on-premise systems, cloud computing and 'air-gapped' systems. As a Senior Systems Engineer, you'll be understanding, maintaining and developing specific aspects of an enterprise IT environment; encompassing tasks across technical design, implementation and support. SKILLS & EXPERIENCE REQUIRED: Systems engineering experience at technical lead level with vendor technologies such as Microsoft, Amazon (AWS), VMWare, RedHat of similar. Able to design, support and maintain internal IT environments, platforms and services at SME level or above. Awareness of Defence or National Security IT standards, a background within these domains would be preferential; including within environments that operate at multiple classification levels. Some exposure to Solution or Enterprise Architecture methods, you do not need to be a practitioner. KEY TECHNOLOGIES: Cloud platforms: Primarily AWS and Azure covering organisation design (layout), tenancy/account management, security, identity management, service provisioning and reporting functions. Identity and Directory services: Design, management and maintenance of Microsoft Active Directory, OpenLDAP, KeyCloak and Microsoft's enterprise Single Sign-On technologies. Mobile device management: Covering 300+ deployed mobile devices, applying best practice and industry standards. Cyber security and information assurance: Managing and maintaining intrusion detection apparatus, supporting queries/investigations and hardened configuration of IT equipment. DevSecOps and Site Reliability Engineering: Supporting enterprise software teams and their Ci/CD requirements using tools such as GitLab, Jenkins or SonarQube etc. Successful applicant must be a British national and must hold a minimum of SC Clearance, MOD DV security clearance would be preferred. TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to - I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search Henry Clay-Davies. I look forward to hearing from you. SENIOR SYSTEMS ENGINEER KEY SKILLS: SENIOR SYSTEMS ENGINEER / SYSTEMS ENGINEER / NATIONAL SECURITY / DEFENCE / GOVERNMENT / SECURITY CLEARED / SECURITY CLEARANCE / SECURITY CHECK / SC CLEARED / SC CLEARANCE / DEVELOPED VETTING / DEVELOPED VETTED / DV CLEARED / DV CLEARANCE / DEEP VETTED / DEEP VETTING
May 10, 2024
Full time
Minimum of SC Clearance, MOD DV would be a preferrable Competivie salary plus Benefits and Bonuses Gloucester location - 3 days on site WHAT WILL THE SENIOR SYSTEMS ENGINEER BE DOING? As a Senior Systems Engineer, you'll join an expanding Corporate Services IT department that supports mission critical work completed by over 1000 end users across hundreds of servers. The unique nature of the business areas you and your team will support create complex and often time-critical demands to deliver effective, reliable and enduring IT platforms across 'conventional' on-premise systems, cloud computing and 'air-gapped' systems. As a Senior Systems Engineer, you'll be understanding, maintaining and developing specific aspects of an enterprise IT environment; encompassing tasks across technical design, implementation and support. SKILLS & EXPERIENCE REQUIRED: Systems engineering experience at technical lead level with vendor technologies such as Microsoft, Amazon (AWS), VMWare, RedHat of similar. Able to design, support and maintain internal IT environments, platforms and services at SME level or above. Awareness of Defence or National Security IT standards, a background within these domains would be preferential; including within environments that operate at multiple classification levels. Some exposure to Solution or Enterprise Architecture methods, you do not need to be a practitioner. KEY TECHNOLOGIES: Cloud platforms: Primarily AWS and Azure covering organisation design (layout), tenancy/account management, security, identity management, service provisioning and reporting functions. Identity and Directory services: Design, management and maintenance of Microsoft Active Directory, OpenLDAP, KeyCloak and Microsoft's enterprise Single Sign-On technologies. Mobile device management: Covering 300+ deployed mobile devices, applying best practice and industry standards. Cyber security and information assurance: Managing and maintaining intrusion detection apparatus, supporting queries/investigations and hardened configuration of IT equipment. DevSecOps and Site Reliability Engineering: Supporting enterprise software teams and their Ci/CD requirements using tools such as GitLab, Jenkins or SonarQube etc. Successful applicant must be a British national and must hold a minimum of SC Clearance, MOD DV security clearance would be preferred. TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to - I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search Henry Clay-Davies. I look forward to hearing from you. SENIOR SYSTEMS ENGINEER KEY SKILLS: SENIOR SYSTEMS ENGINEER / SYSTEMS ENGINEER / NATIONAL SECURITY / DEFENCE / GOVERNMENT / SECURITY CLEARED / SECURITY CLEARANCE / SECURITY CHECK / SC CLEARED / SC CLEARANCE / DEVELOPED VETTING / DEVELOPED VETTED / DV CLEARED / DV CLEARANCE / DEEP VETTED / DEEP VETTING
ABOUT MILKFLOAT milkFloat is a highly autonomous team within BAE Systems Digital Intelligence that harnesses learnings and ways of working from the startup community and applies them to the benefit of our National Security customers. We work at the forefront of our parent organisation to utilise the best of latest technology, engineering best practices and cloud offerings to present new and exciting opportunities to our customers. Our work is highly varied and our methods accelerate and champion innovative solutions to our customers' hardest problems through a set of short, dynamic, focused offerings. JOB ROLE AND SUMMARY At milkFloat we're passionate about solving our customers' hardest problems. We leverage new ways of working and the best of modern technology to provide tailored offerings that adapt to our customers needs and relentlessly focus on providing actionable insight and compelling prototypes. Working as part of our highly experienced, multi-disciplinary team, our talented engineers are central to this - applying their technical expertise, creativity and problem solving skills to ensure our customers always get the best experience. milkFloat is seeking a Technical Team Lead to front our new "Alpha Capability" - delivering pilot-grade solutions to our customers in regular 8-12 week projects. In this role, you will lead an agile, multi-disciplinary team of engineers, working across the stack to deliver compelling pilots of new capability for our National Security customers. Building on innovative solution concepts and technical prototypes created during our "Solution Workshop" and "Rapid Prototyping" engagements respectively you will mature these into solutions that can be deployed into customer environments and trialed with end-users, ensuring the solution has all the right foundations for it to evolve into a sustainable, scaled, production capability in due course. With innovation being central to our offerings, you will have the opportunity to regularly work with new technologies and work to combine these pragmatically with established technology, engineering and architectural best practice. DUTIES AND RESPONSIBILITIES As a milkFloat Technical Team Lead you will be responsible for: Setting the technical vision for the team Establishing overarching architecture and engineering standards. Evolving and delivering against the high-level design Managing engineers of a range of specialisms - empowering and unblocking them to succeed Working with customers to agree sprint goals & acceptance criteria. Contributing to story delivery Story definition, allocation & tracking Tracking and reporting progress EXPERIENCE Necessary Experience as an established or emerging technical team leader - able to direct, manage and empower a team of engineers to successfully deliver against agreed outcomes. Deep familiarity with agile methodologies and ceremonies (e.g. Scrum) Familiar with and comfortable with a breadth of technologies across the stack and a strong appreciation of how they can be combined and applied to solve customer problems. A particular specialism in either front-end or server-side technologies and keen and able to contribute directly to team tasks where necessary. Strong communication skills - comfortable in customer-facing situations and able to discuss technical approaches clearly with non-technical stakeholders Experience working "in the cloud", using cloud-native patterns and building upon high-order cloud services (AWS experience preferable) Experience establishing a strong DevSecOps culture, with knowledge and experience of best practice continuous integration and delivery techniques and tooling. Desirable Additions Experience with containers and container Orchestration Tools (e.g. Docker, Kubernetes, Openshift). Knowledge of front-end frameworks like React and application of design systems. Comfortable working with "big data" and associated technologies and patterns Experience working with Infrastructure-as-Code (Terraform/CDK) Experience of applying security best practice when writing code or configuring and deploying new technologies to cloud environments Knowledge of the Government Domain and High Side working HYBRID WORKING We are a hybrid working team, working remotely utilising video conferencing, Slack, Trello and other collaboration tools, as well as working together in person in our exciting office spaces in central London. We decide on a week to week basis what combination will suit the team's work-life balance and project commitments best. Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. About BAE Systems Digital Intelligence BAE Systems Digital Intelligence is home to 4,800 digital, cyber and intelligence experts. We work collaboratively across 16 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Launched in 2022, Digital Intelligence is part of BAE Systems, and has a rich heritage in helping to defend nations and businesses around the world from advanced threats.
Sep 23, 2022
Full time
ABOUT MILKFLOAT milkFloat is a highly autonomous team within BAE Systems Digital Intelligence that harnesses learnings and ways of working from the startup community and applies them to the benefit of our National Security customers. We work at the forefront of our parent organisation to utilise the best of latest technology, engineering best practices and cloud offerings to present new and exciting opportunities to our customers. Our work is highly varied and our methods accelerate and champion innovative solutions to our customers' hardest problems through a set of short, dynamic, focused offerings. JOB ROLE AND SUMMARY At milkFloat we're passionate about solving our customers' hardest problems. We leverage new ways of working and the best of modern technology to provide tailored offerings that adapt to our customers needs and relentlessly focus on providing actionable insight and compelling prototypes. Working as part of our highly experienced, multi-disciplinary team, our talented engineers are central to this - applying their technical expertise, creativity and problem solving skills to ensure our customers always get the best experience. milkFloat is seeking a Technical Team Lead to front our new "Alpha Capability" - delivering pilot-grade solutions to our customers in regular 8-12 week projects. In this role, you will lead an agile, multi-disciplinary team of engineers, working across the stack to deliver compelling pilots of new capability for our National Security customers. Building on innovative solution concepts and technical prototypes created during our "Solution Workshop" and "Rapid Prototyping" engagements respectively you will mature these into solutions that can be deployed into customer environments and trialed with end-users, ensuring the solution has all the right foundations for it to evolve into a sustainable, scaled, production capability in due course. With innovation being central to our offerings, you will have the opportunity to regularly work with new technologies and work to combine these pragmatically with established technology, engineering and architectural best practice. DUTIES AND RESPONSIBILITIES As a milkFloat Technical Team Lead you will be responsible for: Setting the technical vision for the team Establishing overarching architecture and engineering standards. Evolving and delivering against the high-level design Managing engineers of a range of specialisms - empowering and unblocking them to succeed Working with customers to agree sprint goals & acceptance criteria. Contributing to story delivery Story definition, allocation & tracking Tracking and reporting progress EXPERIENCE Necessary Experience as an established or emerging technical team leader - able to direct, manage and empower a team of engineers to successfully deliver against agreed outcomes. Deep familiarity with agile methodologies and ceremonies (e.g. Scrum) Familiar with and comfortable with a breadth of technologies across the stack and a strong appreciation of how they can be combined and applied to solve customer problems. A particular specialism in either front-end or server-side technologies and keen and able to contribute directly to team tasks where necessary. Strong communication skills - comfortable in customer-facing situations and able to discuss technical approaches clearly with non-technical stakeholders Experience working "in the cloud", using cloud-native patterns and building upon high-order cloud services (AWS experience preferable) Experience establishing a strong DevSecOps culture, with knowledge and experience of best practice continuous integration and delivery techniques and tooling. Desirable Additions Experience with containers and container Orchestration Tools (e.g. Docker, Kubernetes, Openshift). Knowledge of front-end frameworks like React and application of design systems. Comfortable working with "big data" and associated technologies and patterns Experience working with Infrastructure-as-Code (Terraform/CDK) Experience of applying security best practice when writing code or configuring and deploying new technologies to cloud environments Knowledge of the Government Domain and High Side working HYBRID WORKING We are a hybrid working team, working remotely utilising video conferencing, Slack, Trello and other collaboration tools, as well as working together in person in our exciting office spaces in central London. We decide on a week to week basis what combination will suit the team's work-life balance and project commitments best. Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. About BAE Systems Digital Intelligence BAE Systems Digital Intelligence is home to 4,800 digital, cyber and intelligence experts. We work collaboratively across 16 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments. Launched in 2022, Digital Intelligence is part of BAE Systems, and has a rich heritage in helping to defend nations and businesses around the world from advanced threats.
The job on offer Our Global Cybersecurity Practice (of over 4,000 professionals) delivers projects, consulting and Managed Run services in all areas of IT and OT, from networks to cloud services and everything in between. We offer a comprehensive portfolio of services that maps across IT advisory, design, implementation and ongoing management, to serve as true an end-to-end capability partner entirely aligned to business outcomes. A solution that is efficient, scalable and secure, that strikes a balance between flexibility and cost, while facilitating innovation and future business planning. The result is improved service quality, productivity and end-user gratification. Your role Whilst this is predominantly a delivery role, you will also have the opportunity to be involved in business development activities such as responses to our clients' Request for Proposals (RFPs) and questionnaires, collaboration with other business units, partners and legal teams and development of our Cloud service offerings. You will also share your knowledge and play an important role in developing our other consultants and our graduate and apprentice community to ensure our Cloud security capability continues to grow Your work with us will include one or more of the following areas: • Helping clients create and develop enterprise security use cases which align to their Cloud security strategy and security baseline. • Designing, developing and building security reference architectures for public, private, and hybrid Cloud based systems. • Identifying, designing and deploying solutions to secure cloud usage. • Working with Capgemini's wider business to develop standards, choose appropriate technology solutions and enable complete integration with or migration of our clients' environments. • Identifying, recommending and co-ordinating training sessions to coach other teams about security-relevant technologies, processes and tools. Your profile You will be comfortable working alone or as part of a team bringing to use your experience in one or more of the following • Security, configuration and deployment models for "as a service" systems. • Experience of cloud platforms. • Design and implementation of secure cloud architectures and designs. • Cloud protection and governance at various levels from network to application. • Service oriented architecture (SOA) and microservices. • Secure software development. • Threat modelling and design reviews of new technologies. • Deployment orchestration, automation, and security configuration management. • Knowledge of one or more of the following areas is desirable; DevOps, DevSecOps, Devsecops, WAF, API Gateways, SIEM, CASB, SDN, Puppet, Chef, Docker, SOA, AWS, Azure, Google Cloud, SaaS, PaaS, IaaS, FaaS, O365 security, Salesforce, Threat modelling This role requires current SC clearance Why Capgemini is unique Employee wellbeing is vitally important to us as an organisation. We see a healthy and happy workforce a critical component for us to achieve our organisational ambitions. To help support wellbeing we have trained 'Mental Health Champions' across each of our business areas. We have also invested in wellbeing apps such as Thrive and Peppy. We work with a range of clients all with a unique set of business, technological and societal ambitions. Working for Capgemini you get to be at the forefront of designing future experiences, which truly impact our clients and wider society for the better. About Capgemini Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided everyday by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of over 340,000 team members in more than 50 countries. With its strong 55-year heritage and deep industry expertise, Capgemini is trusted by its clients to address the entire breadth of their business needs, from strategy and design to operations, fueled by the fast evolving and innovative world of cloud, data, AI, connectivity, software, digital engineering and platforms. The Group reported in 2021 global revenues of €18 billion.
Sep 23, 2022
Full time
The job on offer Our Global Cybersecurity Practice (of over 4,000 professionals) delivers projects, consulting and Managed Run services in all areas of IT and OT, from networks to cloud services and everything in between. We offer a comprehensive portfolio of services that maps across IT advisory, design, implementation and ongoing management, to serve as true an end-to-end capability partner entirely aligned to business outcomes. A solution that is efficient, scalable and secure, that strikes a balance between flexibility and cost, while facilitating innovation and future business planning. The result is improved service quality, productivity and end-user gratification. Your role Whilst this is predominantly a delivery role, you will also have the opportunity to be involved in business development activities such as responses to our clients' Request for Proposals (RFPs) and questionnaires, collaboration with other business units, partners and legal teams and development of our Cloud service offerings. You will also share your knowledge and play an important role in developing our other consultants and our graduate and apprentice community to ensure our Cloud security capability continues to grow Your work with us will include one or more of the following areas: • Helping clients create and develop enterprise security use cases which align to their Cloud security strategy and security baseline. • Designing, developing and building security reference architectures for public, private, and hybrid Cloud based systems. • Identifying, designing and deploying solutions to secure cloud usage. • Working with Capgemini's wider business to develop standards, choose appropriate technology solutions and enable complete integration with or migration of our clients' environments. • Identifying, recommending and co-ordinating training sessions to coach other teams about security-relevant technologies, processes and tools. Your profile You will be comfortable working alone or as part of a team bringing to use your experience in one or more of the following • Security, configuration and deployment models for "as a service" systems. • Experience of cloud platforms. • Design and implementation of secure cloud architectures and designs. • Cloud protection and governance at various levels from network to application. • Service oriented architecture (SOA) and microservices. • Secure software development. • Threat modelling and design reviews of new technologies. • Deployment orchestration, automation, and security configuration management. • Knowledge of one or more of the following areas is desirable; DevOps, DevSecOps, Devsecops, WAF, API Gateways, SIEM, CASB, SDN, Puppet, Chef, Docker, SOA, AWS, Azure, Google Cloud, SaaS, PaaS, IaaS, FaaS, O365 security, Salesforce, Threat modelling This role requires current SC clearance Why Capgemini is unique Employee wellbeing is vitally important to us as an organisation. We see a healthy and happy workforce a critical component for us to achieve our organisational ambitions. To help support wellbeing we have trained 'Mental Health Champions' across each of our business areas. We have also invested in wellbeing apps such as Thrive and Peppy. We work with a range of clients all with a unique set of business, technological and societal ambitions. Working for Capgemini you get to be at the forefront of designing future experiences, which truly impact our clients and wider society for the better. About Capgemini Capgemini is a global leader in partnering with companies to transform and manage their business by harnessing the power of technology. The Group is guided everyday by its purpose of unleashing human energy through technology for an inclusive and sustainable future. It is a responsible and diverse organization of over 340,000 team members in more than 50 countries. With its strong 55-year heritage and deep industry expertise, Capgemini is trusted by its clients to address the entire breadth of their business needs, from strategy and design to operations, fueled by the fast evolving and innovative world of cloud, data, AI, connectivity, software, digital engineering and platforms. The Group reported in 2021 global revenues of €18 billion.
We are IT Recruitment Specialists partnered with a prestigious Global Consultancy who require a Global Head of Secure Development for one of their Public sector Clients based in London . IR35 - This role is inside of IR35 Location-London (100% onsite) Job Description: An inquisitive approach, always asking how to achieve goals in a smarter and more effective way An ability and interest to learn and experiment with new approaches to achieve business and cybersecurity outcomes, in different and often challenge contexts. Proven ability to forge innovative approaches to complex and complicated problems, including the use of research and/or experimentation, in-role or via academia. Key Skills required: Strong Risk and Controls understanding Knowledge and exposure of the application of Risk and Control Management and associated frameworks, preferably from a multi-market institution Fluent ability in articulating technical threats, scenarios, controls and risks to both technical and business stakeholders. Strong Technical background Proven experience in senior/leadership roles in security development, application security and/or security architecture Proven experience in DevOps/DevSecOps including Agile and Waterfall Software Development life cycles Proven experience working in a large scale, multi-national and technologically diverse environment Proven experience on integration of various security technologies (eg SAST, DAST, IAST, container security) and practises (eg Policy-as-Code) within DevOps pipelines (Jenkins, GitHub, Chef, Ansible, Nexus, etc) Expert understanding of Security concepts and principles. Excellent understanding of platform-specific security risks, common vulnerabilities for web and mobile applications, micro-services (REST, SOAP) architecture and their mitigations Good understanding of security flaws in common programming languages Knowledge and experience with network, host and application security practices Understanding of emerging technologies and its corresponding security threats would be a plus Proven experience with common public cloud environment (eg AWS, GCP, Azure, Alicloud) Strong technical understanding and experience of assessing vulnerabilities and identifying weaknesses in diverse enterprise IT assets Professional IT Security qualifications and/or certification Knowledge of Governance, Risk & Compliance Experience in continuous improvement and process optimisation. Strong stakeholder management and communications skills Ability to engage with and influence executive leadership Experience in managing, developing and retaining high-performing individuals in different geographies, often remotely Experience in engaging with business, technology, regional and regulator stakeholders Ability to prepare concise presentations, reports and updates for senior management Effective Leadership Possess strong leadership skills to bring out the best in a team. This includes both direct leadership and cross-functional capabilities Experience within fast-moving, complex and demanding corporate environments and able to provide appropriate direction to the team whilst dealing with ambiguity and change Act as a role-model for more junior members of Cybersecurity and Technology Interpersonal Skills Influential, credible and persuasive, active listener, embraces client Values, shows good judgement and demonstrates high level of communication skills in order to achieve effective stakeholder management If you are interested in this position and would like to learn more please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.
Nov 05, 2021
Contractor
We are IT Recruitment Specialists partnered with a prestigious Global Consultancy who require a Global Head of Secure Development for one of their Public sector Clients based in London . IR35 - This role is inside of IR35 Location-London (100% onsite) Job Description: An inquisitive approach, always asking how to achieve goals in a smarter and more effective way An ability and interest to learn and experiment with new approaches to achieve business and cybersecurity outcomes, in different and often challenge contexts. Proven ability to forge innovative approaches to complex and complicated problems, including the use of research and/or experimentation, in-role or via academia. Key Skills required: Strong Risk and Controls understanding Knowledge and exposure of the application of Risk and Control Management and associated frameworks, preferably from a multi-market institution Fluent ability in articulating technical threats, scenarios, controls and risks to both technical and business stakeholders. Strong Technical background Proven experience in senior/leadership roles in security development, application security and/or security architecture Proven experience in DevOps/DevSecOps including Agile and Waterfall Software Development life cycles Proven experience working in a large scale, multi-national and technologically diverse environment Proven experience on integration of various security technologies (eg SAST, DAST, IAST, container security) and practises (eg Policy-as-Code) within DevOps pipelines (Jenkins, GitHub, Chef, Ansible, Nexus, etc) Expert understanding of Security concepts and principles. Excellent understanding of platform-specific security risks, common vulnerabilities for web and mobile applications, micro-services (REST, SOAP) architecture and their mitigations Good understanding of security flaws in common programming languages Knowledge and experience with network, host and application security practices Understanding of emerging technologies and its corresponding security threats would be a plus Proven experience with common public cloud environment (eg AWS, GCP, Azure, Alicloud) Strong technical understanding and experience of assessing vulnerabilities and identifying weaknesses in diverse enterprise IT assets Professional IT Security qualifications and/or certification Knowledge of Governance, Risk & Compliance Experience in continuous improvement and process optimisation. Strong stakeholder management and communications skills Ability to engage with and influence executive leadership Experience in managing, developing and retaining high-performing individuals in different geographies, often remotely Experience in engaging with business, technology, regional and regulator stakeholders Ability to prepare concise presentations, reports and updates for senior management Effective Leadership Possess strong leadership skills to bring out the best in a team. This includes both direct leadership and cross-functional capabilities Experience within fast-moving, complex and demanding corporate environments and able to provide appropriate direction to the team whilst dealing with ambiguity and change Act as a role-model for more junior members of Cybersecurity and Technology Interpersonal Skills Influential, credible and persuasive, active listener, embraces client Values, shows good judgement and demonstrates high level of communication skills in order to achieve effective stakeholder management If you are interested in this position and would like to learn more please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.
We're looking for security-conscious engineers Join our security team and help secure our organization through maintaining, engineering and deploying security solutions. We use industry-standard security tools, in an automated fashion, to ensure our security teams can operate effectively and provide security to the company. Responsibilities As an individual contributor on our Cybersecurity engineering team, you'll have a broad set of responsibilities including (the mix will depend on your interests and skill level): Troubleshooting security problems Assist in the management and deployment of security products on endpoints, servers, and virtual desktops Design, operate, and maintain a vulnerability management program Assist the Security Team in responding to and remediating system and/or network security breaches Plan, implement, manage, monitor, and upgrade security measures for the protection of the organization's data, systems, and networks Ensure that the organization's data and infrastructure are protected by enabling the appropriate security controls Plan, create, and implement cybersecurity processes and policies Engage in domain-specific threat modeling and attack surface analysis/reduction Identify information and logs to monitor, then design and engineer the process for gathering that information Promotes best practices and design patterns Required Skills Proficient in exploring, evaluating, and integrating new technologies, programming languages, data models, or frameworks. Easily pick up new technologies and are keen to expand your knowledge Experience in the development of projects related to network and security automation. Experience in infrastructure and automation processes and tools including Ansible, and Terraform Fundamental knowledge of SSH, TCP/IP, UDP, SSL, HTTP, HTTPS, PKI, DNS, and other common protocols. Advanced experience in development in languages such as Python, bash, or Golang Advanced knowledge of security controls, audits, and configurations related to: Windows, Linux, ChromeOS, and macOS AWS Preferred Experience (Optional but valued) Experience in common continuous integration tools such as GitHub Actions, Jenkins and CircleCI. Advanced experience with the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework Experienced DevOps or DevSecOps practitioner Advanced knowledge of security controls, audits, and configurations including SIEM (Splunk, QRadar) & EDR (Crowdstrike, Carbon Black) What we offer Challenging work in a fun and collaborative environment Attractive compensation and time-off benefits Spacious open-concept and centrally located offices Full-time employment with flexible working hours Fully stocked pantry with fresh fruit and snacks Team lunches and company events every quarter Multicultural teams represented by 30+ nationalities Reports initially to the Cybersecurity Manager, and then the Lead Cybersecurity Engineer. Note: Please upload your resume as a PDF and do not include any salary or compensation information in it.
Nov 04, 2021
Full time
We're looking for security-conscious engineers Join our security team and help secure our organization through maintaining, engineering and deploying security solutions. We use industry-standard security tools, in an automated fashion, to ensure our security teams can operate effectively and provide security to the company. Responsibilities As an individual contributor on our Cybersecurity engineering team, you'll have a broad set of responsibilities including (the mix will depend on your interests and skill level): Troubleshooting security problems Assist in the management and deployment of security products on endpoints, servers, and virtual desktops Design, operate, and maintain a vulnerability management program Assist the Security Team in responding to and remediating system and/or network security breaches Plan, implement, manage, monitor, and upgrade security measures for the protection of the organization's data, systems, and networks Ensure that the organization's data and infrastructure are protected by enabling the appropriate security controls Plan, create, and implement cybersecurity processes and policies Engage in domain-specific threat modeling and attack surface analysis/reduction Identify information and logs to monitor, then design and engineer the process for gathering that information Promotes best practices and design patterns Required Skills Proficient in exploring, evaluating, and integrating new technologies, programming languages, data models, or frameworks. Easily pick up new technologies and are keen to expand your knowledge Experience in the development of projects related to network and security automation. Experience in infrastructure and automation processes and tools including Ansible, and Terraform Fundamental knowledge of SSH, TCP/IP, UDP, SSL, HTTP, HTTPS, PKI, DNS, and other common protocols. Advanced experience in development in languages such as Python, bash, or Golang Advanced knowledge of security controls, audits, and configurations related to: Windows, Linux, ChromeOS, and macOS AWS Preferred Experience (Optional but valued) Experience in common continuous integration tools such as GitHub Actions, Jenkins and CircleCI. Advanced experience with the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework Experienced DevOps or DevSecOps practitioner Advanced knowledge of security controls, audits, and configurations including SIEM (Splunk, QRadar) & EDR (Crowdstrike, Carbon Black) What we offer Challenging work in a fun and collaborative environment Attractive compensation and time-off benefits Spacious open-concept and centrally located offices Full-time employment with flexible working hours Fully stocked pantry with fresh fruit and snacks Team lunches and company events every quarter Multicultural teams represented by 30+ nationalities Reports initially to the Cybersecurity Manager, and then the Lead Cybersecurity Engineer. Note: Please upload your resume as a PDF and do not include any salary or compensation information in it.
Infrastructure Test Engineer (Automation) Xpertise Recruitment have partnered with an award-winning business in Central Manchester to help on board an infrastructure Test engineer. The business is a Cyber security consultancy who complete all their work in house (or remotely) at their stunning Salford Quays offices for their clients, who range from central government organisations to industry leading engineering firms. As a result of recent clients wins and new greenfield projects undertaken, they are looking to expand their permanent team with an infrastructure test engineer. Our client are looking for a Platform Infrastructure / Automation tester to join the team during a time of growth. Somebody passionate about DevSecOps practices with cloud native infrastructure. The role requires active participation within the Platform team to provide assurance for the best practice, security, and compliance of deployed solutions through automated testing. The ideal candidate will not only be passionate about testing, but also its impact on the delivery pipeline, and possess an interest in testing new technologies, such as cloud systems. Additionally, an understanding of continuous deployments and experience of using automated testing tools within pipelines would be advantageous. Key responsibilities include: Building new, and updating existing test scripts within our defined testing framework Working on ways to automate the testing of deployments and releases Identifying and escalating any discovered risks to Team Manager / Test Lead Participating in the design process within Platform team to assist with best practices Researching and implementing automated security tools within the CI/CD pipelines Ensuring security best practice at all stages of the delivery lifecycle Contributing to the Infrastructure test strategy Participating in the continued development of automation test frameworks for cloud Infrastructure Participating in Kanban/SCRUM processes and policies by actively participating in stand-ups, retrospectives and other team meetings. In return you will receive: Competitive basic salary up to £45,000 Company bonus scheme (up to 20%) Flexible hours and hybrid working (2-3 days from home, core hours 10am - 3pm) Access to health insurance Generous pension contribution Self-development budget (learn new skills and complete certifications) For more information apply now or contact the job poster directly!
Oct 07, 2021
Full time
Infrastructure Test Engineer (Automation) Xpertise Recruitment have partnered with an award-winning business in Central Manchester to help on board an infrastructure Test engineer. The business is a Cyber security consultancy who complete all their work in house (or remotely) at their stunning Salford Quays offices for their clients, who range from central government organisations to industry leading engineering firms. As a result of recent clients wins and new greenfield projects undertaken, they are looking to expand their permanent team with an infrastructure test engineer. Our client are looking for a Platform Infrastructure / Automation tester to join the team during a time of growth. Somebody passionate about DevSecOps practices with cloud native infrastructure. The role requires active participation within the Platform team to provide assurance for the best practice, security, and compliance of deployed solutions through automated testing. The ideal candidate will not only be passionate about testing, but also its impact on the delivery pipeline, and possess an interest in testing new technologies, such as cloud systems. Additionally, an understanding of continuous deployments and experience of using automated testing tools within pipelines would be advantageous. Key responsibilities include: Building new, and updating existing test scripts within our defined testing framework Working on ways to automate the testing of deployments and releases Identifying and escalating any discovered risks to Team Manager / Test Lead Participating in the design process within Platform team to assist with best practices Researching and implementing automated security tools within the CI/CD pipelines Ensuring security best practice at all stages of the delivery lifecycle Contributing to the Infrastructure test strategy Participating in the continued development of automation test frameworks for cloud Infrastructure Participating in Kanban/SCRUM processes and policies by actively participating in stand-ups, retrospectives and other team meetings. In return you will receive: Competitive basic salary up to £45,000 Company bonus scheme (up to 20%) Flexible hours and hybrid working (2-3 days from home, core hours 10am - 3pm) Access to health insurance Generous pension contribution Self-development budget (learn new skills and complete certifications) For more information apply now or contact the job poster directly!
Want to do the best work of your life? With 24 million customers in 7 countries, make your mark at Europe's leading media and entertainment brand. A workplace where you can proudly be yourself; our people make Sky a truly exciting and inclusive place to work. Sky is redefining the way in which software is secured, so we can keep giving customers a reliable and trusted experience. At the heart of this transformation is making security easy for the sky development community. As a member of DevSecOps engineering, you will build products that empower developers to secure applications from idea to production. To succeed in this role, you need to be a full stack developer. Ideally, you will also have experience with security tools and practices used in engineering workflows. What you'll do: - Work with DevSecOps product managers to deliver our engineering roadmap - Build products and tools that address unique security needs of our development teams - Build integrations for commercial appsec products and adapt them to our ways of working - Ensure our products are reliable and supported - Suggest features that improve developer productivity and security - Mentor rising talent What you'll bring: - Proficiency in at least one programming language, preferably Python or Java or NodeJS or React - Experience with system design and architecture - Deep understanding of continuous delivery and cloud technologies - Passionate about software trust and safety issues. - Exposure to application security technologies like SCA, SAST, DASP, RASP etc. - Superb communication and inter-personal skills Team Overview Strategy & Security: We play an important role in creating a cohesive tech strategy across all of our teams - uniting our tech teams to work towards clear and common goals. Behind the scenes, we're protecting our business and our customers from cyber threats. Join a team that's kickstarting and leading mission-critical work across Sky. The Rewards: There's a reason people can't stop talking about #LifeAtSky. Our great range of rewards really are something special, here are just a few: - Sky Q, for the TV you love all in one place - A generous pension package - Private healthcare - Discounted mobile and broadband Where you'll work: Osterley: Our Osterley campus is a 10-minute walk from Syon Lane train station. Or you can hop on one of our free shuttle buses that run to and from Osterley, Chiswick Park, Gunnersbury, Acton Town and Ealing Broadway tube stations. There's also plenty of parking, bike shelters and showers. On campus you'll find six subsidised restaurants and a Waitrose. You can keep in shape at our subsidised gym, catch the latest shows and movies at our cinema, get your car washed and even get pampered at our beauty salon. Inclusion: Recognised as an 'Inclusive Top 50 Employer' and a 'Times Top 50 Employer for Women', we're working hard to ensure we're a truly inclusive place to work. This means we don't just look at your CV. We're more focused on who you are and the potential you'll bring to Sky. We also know that everyone has a life outside work, so we're happy to discuss flexible working. And we'll do everything we can to support you during your application. If you need us to make any adjustments to our recruitment process, speak to our recruitment team who will be happy to support you. Why wait? Apply now to build an amazing career and be part of a brilliant team. We can't wait to hear from you. To find out more about working with us, search #LifeAtSky on social media. A job you love to talk about. Just so you know: if your application is successful, we'll ask you to complete a criminal record check. And depending on the role you have applied for and the nature of any convictions you may have, we might have to withdraw the offer. #LI-Tech
Sep 24, 2021
Full time
Want to do the best work of your life? With 24 million customers in 7 countries, make your mark at Europe's leading media and entertainment brand. A workplace where you can proudly be yourself; our people make Sky a truly exciting and inclusive place to work. Sky is redefining the way in which software is secured, so we can keep giving customers a reliable and trusted experience. At the heart of this transformation is making security easy for the sky development community. As a member of DevSecOps engineering, you will build products that empower developers to secure applications from idea to production. To succeed in this role, you need to be a full stack developer. Ideally, you will also have experience with security tools and practices used in engineering workflows. What you'll do: - Work with DevSecOps product managers to deliver our engineering roadmap - Build products and tools that address unique security needs of our development teams - Build integrations for commercial appsec products and adapt them to our ways of working - Ensure our products are reliable and supported - Suggest features that improve developer productivity and security - Mentor rising talent What you'll bring: - Proficiency in at least one programming language, preferably Python or Java or NodeJS or React - Experience with system design and architecture - Deep understanding of continuous delivery and cloud technologies - Passionate about software trust and safety issues. - Exposure to application security technologies like SCA, SAST, DASP, RASP etc. - Superb communication and inter-personal skills Team Overview Strategy & Security: We play an important role in creating a cohesive tech strategy across all of our teams - uniting our tech teams to work towards clear and common goals. Behind the scenes, we're protecting our business and our customers from cyber threats. Join a team that's kickstarting and leading mission-critical work across Sky. The Rewards: There's a reason people can't stop talking about #LifeAtSky. Our great range of rewards really are something special, here are just a few: - Sky Q, for the TV you love all in one place - A generous pension package - Private healthcare - Discounted mobile and broadband Where you'll work: Osterley: Our Osterley campus is a 10-minute walk from Syon Lane train station. Or you can hop on one of our free shuttle buses that run to and from Osterley, Chiswick Park, Gunnersbury, Acton Town and Ealing Broadway tube stations. There's also plenty of parking, bike shelters and showers. On campus you'll find six subsidised restaurants and a Waitrose. You can keep in shape at our subsidised gym, catch the latest shows and movies at our cinema, get your car washed and even get pampered at our beauty salon. Inclusion: Recognised as an 'Inclusive Top 50 Employer' and a 'Times Top 50 Employer for Women', we're working hard to ensure we're a truly inclusive place to work. This means we don't just look at your CV. We're more focused on who you are and the potential you'll bring to Sky. We also know that everyone has a life outside work, so we're happy to discuss flexible working. And we'll do everything we can to support you during your application. If you need us to make any adjustments to our recruitment process, speak to our recruitment team who will be happy to support you. Why wait? Apply now to build an amazing career and be part of a brilliant team. We can't wait to hear from you. To find out more about working with us, search #LifeAtSky on social media. A job you love to talk about. Just so you know: if your application is successful, we'll ask you to complete a criminal record check. And depending on the role you have applied for and the nature of any convictions you may have, we might have to withdraw the offer. #LI-Tech
Exciting opportunity for an experienced Consultant Solution / Technical Architect. Offering career development that will provide you with the opportunity to support a wide range of UK public sector and defence organisations at the same time as building your skills and experience in information technology consulting and solution architecture. Duties will include: Defining end-to-end solution architectures including Business, Information, Applications and Infrastructure views. Solution definition on large-scale IT projects with responsibilities for defining complex technical requirements and evaluating supplier responses. Supporting large ICT procurements, including developing procurement documentation, and evaluation strategies and evaluating bids. Providing technical assurance to ensure that solutions are fit for purpose. Providing technical expertise to your colleagues on other projects as needed. Applicants must possess: Experience in the application of any of the following would be desirable: Enterprise and Solution Architecture development and review using EA frameworks and methods e.g. TOGAF, MODAF Business or systems analysis methods and tools, e.g. BPMN, UML Software delivery methods and techniques e.g. Agile methods such as SCRUM Software and API development DevSecOps and CI/CD technologies Information security policy standards e.g. ISO27001 / ISO27002, Cyber Essentials Programme and Project Management methods e.g. MSP, PRINCE2, DSDM, Scaled Agile Framework Public sector best practice guidance, e.g. ITIL, OGC toolkit Standard methodologies for: Systems integration and testing; Requirements capture and analysis; Feasibility studies and business case development; Information systems security. Preference is given to candidates with a STEM based degree (2.1 or above) and/or post-graduate qualification. Should you have any questions or wish to apply please do not hesitate to contact Clear Legal Recruitment Limited. Please Note: Due to the number of applications we receive we may be unable to respond to every application directly. If you have not heard from us within 3 working days, please assume your application has been unsuccessful.
Sep 15, 2021
Full time
Exciting opportunity for an experienced Consultant Solution / Technical Architect. Offering career development that will provide you with the opportunity to support a wide range of UK public sector and defence organisations at the same time as building your skills and experience in information technology consulting and solution architecture. Duties will include: Defining end-to-end solution architectures including Business, Information, Applications and Infrastructure views. Solution definition on large-scale IT projects with responsibilities for defining complex technical requirements and evaluating supplier responses. Supporting large ICT procurements, including developing procurement documentation, and evaluation strategies and evaluating bids. Providing technical assurance to ensure that solutions are fit for purpose. Providing technical expertise to your colleagues on other projects as needed. Applicants must possess: Experience in the application of any of the following would be desirable: Enterprise and Solution Architecture development and review using EA frameworks and methods e.g. TOGAF, MODAF Business or systems analysis methods and tools, e.g. BPMN, UML Software delivery methods and techniques e.g. Agile methods such as SCRUM Software and API development DevSecOps and CI/CD technologies Information security policy standards e.g. ISO27001 / ISO27002, Cyber Essentials Programme and Project Management methods e.g. MSP, PRINCE2, DSDM, Scaled Agile Framework Public sector best practice guidance, e.g. ITIL, OGC toolkit Standard methodologies for: Systems integration and testing; Requirements capture and analysis; Feasibility studies and business case development; Information systems security. Preference is given to candidates with a STEM based degree (2.1 or above) and/or post-graduate qualification. Should you have any questions or wish to apply please do not hesitate to contact Clear Legal Recruitment Limited. Please Note: Due to the number of applications we receive we may be unable to respond to every application directly. If you have not heard from us within 3 working days, please assume your application has been unsuccessful.
Category: Information Technology Location: London - POST-LON, United Kingdom Citizenship Required: United Kingdom Citizenship Clearance Type: Developed Vetting (DV) Telecommute: Yes- May Consider Occasional/Part-Time Teleworking for this position Travel Required: No Positions Available: 1 At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. Are you an experienced Big Data Software Developer who wants to join a leading cyber team within an evolving and dynamic organisation? Due to the success of a number of strategic based programmes, we are growing our Software Development team with creative and ambitious Software Engineers. For us, innovation is key and we have immediate opportunities for talented software engineers to join our team to help us develop and maintain a suite of applications. We are in a phase of rapid growth and there are various opportunities to develop your career with us to meet your aspirations. You will be helping us to solve our customer's problems within an agile team. You will have opportunities throughout the Software Lifecycle from requirements capture through to R&D (Research & Development), implementation, automation and test in a wide range of technologies.As a Big Data Software Developer you will have had responsibility for the design and delivery of packages of work; leading teams and working with customers. You will be able to deploy applications in a controlled, repeatable way and be developing technical specialisms in frameworks and/or toolsets. For this role we would like you to have experience of mentoring or line management, to support your team.Key criteria required... Proven experience in professional Java development, writing well-designed, testable code Proven experience in open source big data technologies such as Hadoop, Cloudera or Elasticsearch Keen to learn a broad range of technologies on the Java stack Experience of DevSecOps automated deployment technologies such as Jenkins, Docker, Ansible Agile Scrum methodologies using tools such as Confluence and Jira Also, we'd love it if you have experience of... Cloud-based architectures; certification is a bonus. Microservice-orientated or serverless architectures Messaging and Routing Technologies such as NiFi or RabbitMQ Supporting business development through contributions to customer proposals and R&D projects Northrop Grumman is committed to equality and diversity in our workplace. Northrop Grumman provides equal employment opportunity to all employees and applicants without regard to an individual's protected status, including race/ethnic origin, color, nationality, national origin, ancestry, sex/gender, gender identity/expression, gender reassignment, sexual orientation, marriage/civil partnership, pregnancy/maternity, religion or belief, creed, age, disability, genetic information, or any other protected status or characteristic.
Sep 15, 2021
Full time
Category: Information Technology Location: London - POST-LON, United Kingdom Citizenship Required: United Kingdom Citizenship Clearance Type: Developed Vetting (DV) Telecommute: Yes- May Consider Occasional/Part-Time Teleworking for this position Travel Required: No Positions Available: 1 At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history. Are you an experienced Big Data Software Developer who wants to join a leading cyber team within an evolving and dynamic organisation? Due to the success of a number of strategic based programmes, we are growing our Software Development team with creative and ambitious Software Engineers. For us, innovation is key and we have immediate opportunities for talented software engineers to join our team to help us develop and maintain a suite of applications. We are in a phase of rapid growth and there are various opportunities to develop your career with us to meet your aspirations. You will be helping us to solve our customer's problems within an agile team. You will have opportunities throughout the Software Lifecycle from requirements capture through to R&D (Research & Development), implementation, automation and test in a wide range of technologies.As a Big Data Software Developer you will have had responsibility for the design and delivery of packages of work; leading teams and working with customers. You will be able to deploy applications in a controlled, repeatable way and be developing technical specialisms in frameworks and/or toolsets. For this role we would like you to have experience of mentoring or line management, to support your team.Key criteria required... Proven experience in professional Java development, writing well-designed, testable code Proven experience in open source big data technologies such as Hadoop, Cloudera or Elasticsearch Keen to learn a broad range of technologies on the Java stack Experience of DevSecOps automated deployment technologies such as Jenkins, Docker, Ansible Agile Scrum methodologies using tools such as Confluence and Jira Also, we'd love it if you have experience of... Cloud-based architectures; certification is a bonus. Microservice-orientated or serverless architectures Messaging and Routing Technologies such as NiFi or RabbitMQ Supporting business development through contributions to customer proposals and R&D projects Northrop Grumman is committed to equality and diversity in our workplace. Northrop Grumman provides equal employment opportunity to all employees and applicants without regard to an individual's protected status, including race/ethnic origin, color, nationality, national origin, ancestry, sex/gender, gender identity/expression, gender reassignment, sexual orientation, marriage/civil partnership, pregnancy/maternity, religion or belief, creed, age, disability, genetic information, or any other protected status or characteristic.