Location
Dstl Porton Down, Salisbury, Wiltshire, SP4 0JQ or Dstl Portsdown West, Fareham, Hampshire, PO17 6AD
About the job
Job summary
Dstl is the science and technology arm of the Ministry of Defence. We improve the front-line capability of the UK Armed Forces helping keep our country safe.
The Cyber Security and Safety Group has never been more important. Many military platforms such as fast jets, unmanned air vehicles, helicopters, naval vessels, and land vehicles are becoming increasingly reliant on Software, Artificial Intelligence (AI) and Autonomous functions to control all aspects of their behaviour.
We’re looking for mathematically strong data scientists to help make AI reliant military systems robust and trustworthy in complex operations to help save lives.
An example of our world class inspiring work is designing and trialling a variety of autonomous air and ground vehicles out in Salisbury plain with the US and Australia. AI models were retrained in flight to meet changing mission situations to enhance commanders’ decision-making.
You could be involved in:
Assessing and improving AI content in Defence and Security safety critical systems in the Air, Sea and Land domains, to ensure that they are safe, secure and protected.
Applying the latest thinking in verification and validation of artificial intelligence and autonomous functions for defence and security purposes.
Innovating to support the delivery of the UK Cyber Strategy by researching algorithms for Cyber defence.
Dstl recognises the importance of diversity and inclusion as people from diverse backgrounds bring fresh ideas. We are committed to building an inclusive working environment in which each employee fulfils their potential and maximises their contribution.
We particularly welcome female and ethnic minority applicants and those from the LGBTQI community, as they are under-represented within Dstl at these levels.
Job description
In this role you will:
Have a drive for keeping abreast of the latest developments in cyber security and emerging trends in artificial intelligence. We give our people the opportunity to think and innovate. We offer loads of opportunities for training and scholarships, attending and presenting at conferences, and collaborating with internal research and industry and academia.
Work in a team consisting of highly professional Autonomy and Mathematical experts with enviable national and international reputations to take part in cutting edge research. Use your critical thinking and creative problem solving skills to implement state of art methods and tools.
Develop a knowledge of undertaking verification, validation and vulnerability assessments on Systems of interest.
Appreciate the importance of safety, security requirements to have a positive impact on defence and security of the UK.
Deliver technical reports and recommendations to leadership, senior officials across government and military and other non-technical audiences through clear data storytelling and well-crafted verbal presentations
Person specification
We are looking for someone who has:
A keen interest in algorithms, AI, ML or statistical analysis along with a willingness to develop additional capabilities in cyber security and safety.
Experience contributing to Software or AI / ML intensive projects.
Is looking for a career with a difference, doing a job that provides the latest and most effective tools to defend our nation and uphold the principle of freedom.
Important Information:
Our work in defence, security and intelligence requires our employees to be UK Nationals who are able to gain a high level of security clearance to undertake the projects we are involved in to protect us from security threats. For this reason, only UK Nationals will be able to apply for this role. If you are an international or dual-national candidate, and you think you have the skills we need, please consider applying to any of our government, security or defence partners.
This role will require full UK security clearance and you should have resided in the UK for the past 5 years. For some roles Developed Vetting will also be required, in this case you should have resided in the UK for the past 10 years.
Behaviours
We'll assess you against these behaviours during the selection process:
Changing and Improving
Communicating and Influencing
Seeing the Big Picture
Working Together
Benefits
Benefits
Dstl’s full range of great benefits can be found in the information pack which includes:
Financial : An excellent pension scheme starting from 26% employer contribution ( find out more here ). In Year Rewarding Achievement bonuses and thank you vouchers. Rental deposit scheme and cycle to work scheme.
Flexible working : Options include alternative working patterns such as; compressed hours (e.g. working a 4 day week/ 9 day fortnight), job shares and annualised hours (agreed number of hours per annum paid monthly i.e. working term-time only).
Working hours: Flexibility around your working day (e.g. start time, finish time). Ability to bank hours in a 12 month reference period including the ability to accrue and use 3 days per calendar month.
Where you work: Depending on your role, blended working may be available including remote working to suit you and your team. This can be discussed at interview.
Annual leave: 25 days pro rata (rising to 30 after 5 years) plus 8 public holidays with the ability to buy/sell 5 additional days per annum.
Family: Maternity, adoption or shared parental leave of up to 26 weeks with full pay, an additional 13 weeks statutory pay and a further 13 weeks unpaid
Learning and Development: Dstl encourages and supports charterships, accreditations and provides employees access to fully funded apprenticeships up to level 7 (Masters Degree). Dstl will pay for 2 memberships with relevant bodies/institutions. Employees also have access to Civil Service Learning.
Facilities: Onsite parking, EV Charging points, restaurants, cafés and gyms.
Things you need to know
Selection process details
This vacancy is using Success Profiles (opens in a new window) , and will assess your Behaviours and Experience.
We want you to have your best chance of success in our recruitment process, so If at any stage of the application process you would like help or assistance please contact the Dstl Recruitment Team dstlrecruitment@dstl.gov.uk and we will do all we can to support you.
Sifting will be taking place bi-weekly throughout the campaign, successful applicants will be invited to attend an online interview via MS Teams.
Feedback will only be provided if you attend an interview or assessment.
Security
Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window) . See our vetting charter (opens in a new window) . People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Nationality requirements
Open to UK nationals only. This job is not open to candidates who hold a dual nationality.
Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window) . The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
Apply and further information
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative. Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants
Job contact :
Name : Dstl Recruitment
Email : dstlrecruitment@dstl.gov.uk
Recruitment team
Email : dstlrecruitment@dstl.gov.uk
Further information
Should you wish to raise a formal complaint about the Dstl recruitment process you should email dstlrecruitment@dstl.gov.uk stating the nature of the issue. We will respond within 5 working days.
Attachments
20230626_CSAS_Data_Scientist_Autonomy_Dependability_L5 Opens in new window (docx, 66kB) Candidate_info_pack_CIS - 20220824 Opens in new window (pdf, 1378kB)
Jul 03, 2023
Full time
Location
Dstl Porton Down, Salisbury, Wiltshire, SP4 0JQ or Dstl Portsdown West, Fareham, Hampshire, PO17 6AD
About the job
Job summary
Dstl is the science and technology arm of the Ministry of Defence. We improve the front-line capability of the UK Armed Forces helping keep our country safe.
The Cyber Security and Safety Group has never been more important. Many military platforms such as fast jets, unmanned air vehicles, helicopters, naval vessels, and land vehicles are becoming increasingly reliant on Software, Artificial Intelligence (AI) and Autonomous functions to control all aspects of their behaviour.
We’re looking for mathematically strong data scientists to help make AI reliant military systems robust and trustworthy in complex operations to help save lives.
An example of our world class inspiring work is designing and trialling a variety of autonomous air and ground vehicles out in Salisbury plain with the US and Australia. AI models were retrained in flight to meet changing mission situations to enhance commanders’ decision-making.
You could be involved in:
Assessing and improving AI content in Defence and Security safety critical systems in the Air, Sea and Land domains, to ensure that they are safe, secure and protected.
Applying the latest thinking in verification and validation of artificial intelligence and autonomous functions for defence and security purposes.
Innovating to support the delivery of the UK Cyber Strategy by researching algorithms for Cyber defence.
Dstl recognises the importance of diversity and inclusion as people from diverse backgrounds bring fresh ideas. We are committed to building an inclusive working environment in which each employee fulfils their potential and maximises their contribution.
We particularly welcome female and ethnic minority applicants and those from the LGBTQI community, as they are under-represented within Dstl at these levels.
Job description
In this role you will:
Have a drive for keeping abreast of the latest developments in cyber security and emerging trends in artificial intelligence. We give our people the opportunity to think and innovate. We offer loads of opportunities for training and scholarships, attending and presenting at conferences, and collaborating with internal research and industry and academia.
Work in a team consisting of highly professional Autonomy and Mathematical experts with enviable national and international reputations to take part in cutting edge research. Use your critical thinking and creative problem solving skills to implement state of art methods and tools.
Develop a knowledge of undertaking verification, validation and vulnerability assessments on Systems of interest.
Appreciate the importance of safety, security requirements to have a positive impact on defence and security of the UK.
Deliver technical reports and recommendations to leadership, senior officials across government and military and other non-technical audiences through clear data storytelling and well-crafted verbal presentations
Person specification
We are looking for someone who has:
A keen interest in algorithms, AI, ML or statistical analysis along with a willingness to develop additional capabilities in cyber security and safety.
Experience contributing to Software or AI / ML intensive projects.
Is looking for a career with a difference, doing a job that provides the latest and most effective tools to defend our nation and uphold the principle of freedom.
Important Information:
Our work in defence, security and intelligence requires our employees to be UK Nationals who are able to gain a high level of security clearance to undertake the projects we are involved in to protect us from security threats. For this reason, only UK Nationals will be able to apply for this role. If you are an international or dual-national candidate, and you think you have the skills we need, please consider applying to any of our government, security or defence partners.
This role will require full UK security clearance and you should have resided in the UK for the past 5 years. For some roles Developed Vetting will also be required, in this case you should have resided in the UK for the past 10 years.
Behaviours
We'll assess you against these behaviours during the selection process:
Changing and Improving
Communicating and Influencing
Seeing the Big Picture
Working Together
Benefits
Benefits
Dstl’s full range of great benefits can be found in the information pack which includes:
Financial : An excellent pension scheme starting from 26% employer contribution ( find out more here ). In Year Rewarding Achievement bonuses and thank you vouchers. Rental deposit scheme and cycle to work scheme.
Flexible working : Options include alternative working patterns such as; compressed hours (e.g. working a 4 day week/ 9 day fortnight), job shares and annualised hours (agreed number of hours per annum paid monthly i.e. working term-time only).
Working hours: Flexibility around your working day (e.g. start time, finish time). Ability to bank hours in a 12 month reference period including the ability to accrue and use 3 days per calendar month.
Where you work: Depending on your role, blended working may be available including remote working to suit you and your team. This can be discussed at interview.
Annual leave: 25 days pro rata (rising to 30 after 5 years) plus 8 public holidays with the ability to buy/sell 5 additional days per annum.
Family: Maternity, adoption or shared parental leave of up to 26 weeks with full pay, an additional 13 weeks statutory pay and a further 13 weeks unpaid
Learning and Development: Dstl encourages and supports charterships, accreditations and provides employees access to fully funded apprenticeships up to level 7 (Masters Degree). Dstl will pay for 2 memberships with relevant bodies/institutions. Employees also have access to Civil Service Learning.
Facilities: Onsite parking, EV Charging points, restaurants, cafés and gyms.
Things you need to know
Selection process details
This vacancy is using Success Profiles (opens in a new window) , and will assess your Behaviours and Experience.
We want you to have your best chance of success in our recruitment process, so If at any stage of the application process you would like help or assistance please contact the Dstl Recruitment Team dstlrecruitment@dstl.gov.uk and we will do all we can to support you.
Sifting will be taking place bi-weekly throughout the campaign, successful applicants will be invited to attend an online interview via MS Teams.
Feedback will only be provided if you attend an interview or assessment.
Security
Successful candidates must undergo a criminal record check. Successful candidates must meet the security requirements before they can be appointed. The level of security needed is security check (opens in a new window) . See our vetting charter (opens in a new window) . People working with government assets must complete baseline personnel security standard (opens in new window) checks.
Nationality requirements
Open to UK nationals only. This job is not open to candidates who hold a dual nationality.
Working for the Civil Service
The Civil Service Code (opens in a new window) sets out the standards of behaviour expected of civil servants. We recruit by merit on the basis of fair and open competition, as outlined in the Civil Service Commission's recruitment principles (opens in a new window) . The Civil Service embraces diversity and promotes equal opportunities. As such, we run a Disability Confident Scheme (DCS) for candidates with disabilities who meet the minimum selection criteria. The Civil Service also offers a Redeployment Interview Scheme to civil servants who are at risk of redundancy, and who meet the minimum requirements for the advertised vacancy.
Apply and further information
This vacancy is part of the Great Place to Work for Veterans (opens in a new window) initiative. Once this job has closed, the job advert will no longer be available. You may want to save a copy for your records.
Contact point for applicants
Job contact :
Name : Dstl Recruitment
Email : dstlrecruitment@dstl.gov.uk
Recruitment team
Email : dstlrecruitment@dstl.gov.uk
Further information
Should you wish to raise a formal complaint about the Dstl recruitment process you should email dstlrecruitment@dstl.gov.uk stating the nature of the issue. We will respond within 5 working days.
Attachments
20230626_CSAS_Data_Scientist_Autonomy_Dependability_L5 Opens in new window (docx, 66kB) Candidate_info_pack_CIS - 20220824 Opens in new window (pdf, 1378kB)
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high-growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. Role Purpose The Assurance Manager's role is responsible for designing, managing and overseeing BDO's Assurance program and analytical work. This role will play a key part in ensuring the detection, prevention and response to risks, such as data theft, sabotage or espionage. The Assurance Manager will work closely with senior stakeholders, such as risk partners, risk owners, risk managers and other stream stakeholders to establish and maintain the Assurance strategy, vision and governance. The Assurance Manager will also lead a team of assurance analysts to deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's Assurance strategy, policies, standards, processes and roadmaps to enable streams to understand and meet Assurance requirements. Leading a team of Assurance Specialists and Analysts and working with nominated Assurance leads in the business, the Assurance Manager will take responsibility for assessing Assurance risk with the business and ensure that those risks are being managed by the risk owners. Where decisions are made to accept, reduce, share or avoid, the Assurance Manager will ensure appropriate visibility and governance committees are informed. The Assurance Manager will also oversee the prioritisation of activities to support business requests and the delivery of other resources supporting risk assessments always ensuring a consistent and high-quality service is being delivered to each business area. This role reports to the Head of Cyber Detect and Response. Principal Accountabilities Design, manage and oversee BDO's Assurance program and analytical work Utilise BDO's Assurance tools, procedures and control framework to collect, analyse and report on relevant data and indicators from various sources Establish and maintain 'Assurance awareness' in the business to drive risk awareness and effective risk management Identify and respond to Assurance incidents and escalations Develop collateral and appropriate materials to support engagement with senior stakeholders, to explain the Assurance program, key concepts and best practices Create and implement Assurance policies, standards, processes and procedures Technical Competencies Knowledge and experience of Assurance principles, programs and analytical work Deep understanding of Microsoft Purview with experience of implementation Technical expertise and experience in Assurance tools and techniques to perform data collection, analysis and reporting Experience of designing, managing and overseeing projects of limited scale or complexity Experience of challenging current practice - driving improvements and championing change Experience of taking personal responsibility for own decisions and actions and those of others Experience of leading and directing teams setting clear and achievable objectives aligned to the expected outcomes for the role Experience of working in a team environment and collaborating with others Highly self-motivated with keen attention to detail The ability to build good relationships at all levels and influence stakeholders Excellent verbal, written and interpersonal communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001/2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC, BRMP or similar NB: The above list of job duties is not exclusive or exhaustive and the post holder will be required to undertake such tasks as may reasonably be expected within the scope and grading of the post. You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to our business. We're committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. W
May 21, 2024
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high-growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. Role Purpose The Assurance Manager's role is responsible for designing, managing and overseeing BDO's Assurance program and analytical work. This role will play a key part in ensuring the detection, prevention and response to risks, such as data theft, sabotage or espionage. The Assurance Manager will work closely with senior stakeholders, such as risk partners, risk owners, risk managers and other stream stakeholders to establish and maintain the Assurance strategy, vision and governance. The Assurance Manager will also lead a team of assurance analysts to deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's Assurance strategy, policies, standards, processes and roadmaps to enable streams to understand and meet Assurance requirements. Leading a team of Assurance Specialists and Analysts and working with nominated Assurance leads in the business, the Assurance Manager will take responsibility for assessing Assurance risk with the business and ensure that those risks are being managed by the risk owners. Where decisions are made to accept, reduce, share or avoid, the Assurance Manager will ensure appropriate visibility and governance committees are informed. The Assurance Manager will also oversee the prioritisation of activities to support business requests and the delivery of other resources supporting risk assessments always ensuring a consistent and high-quality service is being delivered to each business area. This role reports to the Head of Cyber Detect and Response. Principal Accountabilities Design, manage and oversee BDO's Assurance program and analytical work Utilise BDO's Assurance tools, procedures and control framework to collect, analyse and report on relevant data and indicators from various sources Establish and maintain 'Assurance awareness' in the business to drive risk awareness and effective risk management Identify and respond to Assurance incidents and escalations Develop collateral and appropriate materials to support engagement with senior stakeholders, to explain the Assurance program, key concepts and best practices Create and implement Assurance policies, standards, processes and procedures Technical Competencies Knowledge and experience of Assurance principles, programs and analytical work Deep understanding of Microsoft Purview with experience of implementation Technical expertise and experience in Assurance tools and techniques to perform data collection, analysis and reporting Experience of designing, managing and overseeing projects of limited scale or complexity Experience of challenging current practice - driving improvements and championing change Experience of taking personal responsibility for own decisions and actions and those of others Experience of leading and directing teams setting clear and achievable objectives aligned to the expected outcomes for the role Experience of working in a team environment and collaborating with others Highly self-motivated with keen attention to detail The ability to build good relationships at all levels and influence stakeholders Excellent verbal, written and interpersonal communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001/2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC, BRMP or similar NB: The above list of job duties is not exclusive or exhaustive and the post holder will be required to undertake such tasks as may reasonably be expected within the scope and grading of the post. You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to our business. We're committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. W
Eames are working with a reputable insurer on the hire of a Senior Security Operations Analyst. Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of these processes within the team. Leading the development and enhancement of detection engineering and associated technologies. Conducting operational and threat malware analysis for the organization. Offering security insights and maintaining relationships with the Service Management function concerning change management, problem management, and incident management. Handling level 2/3 operational cyber incident response. Promptly escalating any detected incidents and anomalies within the organization, providing expert guidance for operational challenges. Monitoring emerging threat patterns, vulnerabilities, and anomalies, escalating unknown threats to relevant areas within the company. Collecting metrics on the status of technical information security controls across the organization, identifying risk areas, and developing and managing remediation plans as necessary. Collaborating with all CISO teams to report and address operational issues at an architectural level. Participating in a shared, rotational 24/7 on-call requirement, acting as the single point of contact for all security-related response actions and decisions, including managing each incident from a security perspective, interacting with Incident Management/Major Incident Management teams, and recording key security decisions. Qualifications: Proficiency and experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, and Voice over IP (VoIP), as well as firewall zoning. Ability to interpret system data, including security event logs, system logs, application logs, and device logs. Knowledge and experience with enterprise-grade technologies, including operating systems, databases, and web applications. Experience in network traffic analysis to identify developing patterns. Capability to mentor and upskill junior team members. Security analysis skills comparable to CompTIA CySA+ certification or similar. Preferred Qualifications: Experience with technologies such as Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, and SIEM. Knowledge of reporting suites such as Power BI. Strong understanding of Microsoft security suites and relevant qualifications. Expertise in threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, or CISA from a recognized professional body. Technical certifications in network or systems engineering from a recognized professional body. Understanding of fundamental cloud concepts, particularly for AWS. Familiarity with OWASP Top 10 and the API Security Playbook Eames Consulting is acting as an Employment Agency in relation to this vacancy.
May 21, 2024
Full time
Eames are working with a reputable insurer on the hire of a Senior Security Operations Analyst. Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of these processes within the team. Leading the development and enhancement of detection engineering and associated technologies. Conducting operational and threat malware analysis for the organization. Offering security insights and maintaining relationships with the Service Management function concerning change management, problem management, and incident management. Handling level 2/3 operational cyber incident response. Promptly escalating any detected incidents and anomalies within the organization, providing expert guidance for operational challenges. Monitoring emerging threat patterns, vulnerabilities, and anomalies, escalating unknown threats to relevant areas within the company. Collecting metrics on the status of technical information security controls across the organization, identifying risk areas, and developing and managing remediation plans as necessary. Collaborating with all CISO teams to report and address operational issues at an architectural level. Participating in a shared, rotational 24/7 on-call requirement, acting as the single point of contact for all security-related response actions and decisions, including managing each incident from a security perspective, interacting with Incident Management/Major Incident Management teams, and recording key security decisions. Qualifications: Proficiency and experience in firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, switches, routers, and Voice over IP (VoIP), as well as firewall zoning. Ability to interpret system data, including security event logs, system logs, application logs, and device logs. Knowledge and experience with enterprise-grade technologies, including operating systems, databases, and web applications. Experience in network traffic analysis to identify developing patterns. Capability to mentor and upskill junior team members. Security analysis skills comparable to CompTIA CySA+ certification or similar. Preferred Qualifications: Experience with technologies such as Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, and SIEM. Knowledge of reporting suites such as Power BI. Strong understanding of Microsoft security suites and relevant qualifications. Expertise in threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, or CISA from a recognized professional body. Technical certifications in network or systems engineering from a recognized professional body. Understanding of fundamental cloud concepts, particularly for AWS. Familiarity with OWASP Top 10 and the API Security Playbook Eames Consulting is acting as an Employment Agency in relation to this vacancy.
Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities' employer. Cyber Security Policy and Standards Analyst Utilities Hybrid 6 months £500 per day Umbrella In short: Analyst with experience of creating and maintaining cyber security policy, standards and procedures in a regulated environment. You'll be translating technical details into simple English that non-technical stakeholders will understand focusing primarily on cyber defence ie Incident Response and Management. In full: OFGEM outline the expected control areas that we will operate as a business, whether this is as part of our critical national infrastructure, operational technology or information technology. As a Policy and Standards Senior Analyst with cyber security knowledge, you will be able to make the link between what these regulations require and how we need to operate and translate the regulations into polices and actionable standards and controls for our colleagues. Reporting to the Cyber Security Policy and Standards Lead you will be part of a team creating and implementing all ISMS components on behalf of the CISO function as part of the overall cyber policy framework within the organisation. You will be accountable for the: Writing and introduction of new security policies and sub-policies Writing and introduction of new standards and related procedures Effective working with SME's across the organisation to identify create and agree items for the ISMS Updating and maintaining the ISMS policy and compliance repository Monitoring compliance and identifying areas of non-compliances and raising with appropriate stakeholders to ensure they are understood, escalated as necessary and acted upon Developing all documentation in a simple, plain English manner so that colleagues find the documentation of use and follow its purpose Assist with training, awareness and attestations of the ISMS across the organisation The successful candidate will be process orientated, organised, and have excellent communication skills. What is important for us: Security First - Our team focusses on security in everything we do, and we take it seriously. We have regulatory commitments, built into legislation that we must abide by, and we are reviewed against these regulatory commitments. Agility - We want to have a lean organisation that can adapt and change. We need our people to be adaptable to help us achieve this. Ownership - The nation trusts us with what we do. If everything works well, then we do not have to demonstrate this. We expect that everyone completely owns the activities that they are responsible for. Essential Experience: Broad knowledge of IT Security with demonstrable experience in a cyber security environment (preferably with Operational Technology experience). An understanding of Cyber Security Legislation (NIS is preferable) Demonstrable experience of cyber security frameworks including NIST, CAF, ISO27001 Demonstrable experience of ISA/IEC 62443 Experience of using GRC management tooling Ability to plan, organise and follow through on assigned tasks Excellent stakeholder management and communication skills. Preferred Experience: Use of ServiceNow GRC Modules to manage and maintain ISMS implementation and compliance. Qualifications: Security Certifications - CISSP or equivalent
May 21, 2024
Full time
Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities' employer. Cyber Security Policy and Standards Analyst Utilities Hybrid 6 months £500 per day Umbrella In short: Analyst with experience of creating and maintaining cyber security policy, standards and procedures in a regulated environment. You'll be translating technical details into simple English that non-technical stakeholders will understand focusing primarily on cyber defence ie Incident Response and Management. In full: OFGEM outline the expected control areas that we will operate as a business, whether this is as part of our critical national infrastructure, operational technology or information technology. As a Policy and Standards Senior Analyst with cyber security knowledge, you will be able to make the link between what these regulations require and how we need to operate and translate the regulations into polices and actionable standards and controls for our colleagues. Reporting to the Cyber Security Policy and Standards Lead you will be part of a team creating and implementing all ISMS components on behalf of the CISO function as part of the overall cyber policy framework within the organisation. You will be accountable for the: Writing and introduction of new security policies and sub-policies Writing and introduction of new standards and related procedures Effective working with SME's across the organisation to identify create and agree items for the ISMS Updating and maintaining the ISMS policy and compliance repository Monitoring compliance and identifying areas of non-compliances and raising with appropriate stakeholders to ensure they are understood, escalated as necessary and acted upon Developing all documentation in a simple, plain English manner so that colleagues find the documentation of use and follow its purpose Assist with training, awareness and attestations of the ISMS across the organisation The successful candidate will be process orientated, organised, and have excellent communication skills. What is important for us: Security First - Our team focusses on security in everything we do, and we take it seriously. We have regulatory commitments, built into legislation that we must abide by, and we are reviewed against these regulatory commitments. Agility - We want to have a lean organisation that can adapt and change. We need our people to be adaptable to help us achieve this. Ownership - The nation trusts us with what we do. If everything works well, then we do not have to demonstrate this. We expect that everyone completely owns the activities that they are responsible for. Essential Experience: Broad knowledge of IT Security with demonstrable experience in a cyber security environment (preferably with Operational Technology experience). An understanding of Cyber Security Legislation (NIS is preferable) Demonstrable experience of cyber security frameworks including NIST, CAF, ISO27001 Demonstrable experience of ISA/IEC 62443 Experience of using GRC management tooling Ability to plan, organise and follow through on assigned tasks Excellent stakeholder management and communication skills. Preferred Experience: Use of ServiceNow GRC Modules to manage and maintain ISMS implementation and compliance. Qualifications: Security Certifications - CISSP or equivalent
The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: - Have broad responsibilities to engineer and secure core platform services across the global footprint. - Ensure compute infrastructure is continually optimized to match business demands. - Design and operate storage strategy to optimize data storage based on latency, redundancy, and cost. - Collaborate with Cloud Security Engineering to automate vulnerability patching processes. - Optimize global network to ensure latency and performance meet business expectations. - Automate operational aspects of the infrastructure and systems life cycle. - Maintain Azure tagging/naming taxonomies across all Cloud assets. - Respond to incidents and ensure availability across the global infrastructure, providing support for service analysts on customer incidents. - Build and infrastructure with automation tools like PowerShell, Ansible, Terraform, Azure DevOps CI/CD, and Kubernetes. - Document actions to turn findings into repeatable and automated processes. - Design, build, and maintain core infrastructure to enable scaling and support business growth. - Debug production issues across services and levels of the stack. Qualifications: - Strong knowledge of virtualization, containerization technologies on Azure. - Proficiency in object-oriented programming and developing automated solutions through code. - Passion for secure network design and protecting organizations from evolving cyber threats. - Continual learning and advancement of Microsoft Azure technologies like Compute, Storage, Networking. - Interest in Open-Source development and industry innovation. - Knowledge of configuration management systems like Ansible. - Collaborative and able to communicate effectively and asynchronously.
May 21, 2024
Full time
The Company is a leading financial services firm. The technology is being transformed to a Cloud-First, Cloud-Native architectural model, utilizing DevSecOps processes and adoption of systems-thinking concepts to enhance productivity. The Cloud Engineers are responsible for delivering Cloud-native solutions that are fully automated through code, ensuring scalability and optimize availability and reliability 24/7. Responsibilities: - Have broad responsibilities to engineer and secure core platform services across the global footprint. - Ensure compute infrastructure is continually optimized to match business demands. - Design and operate storage strategy to optimize data storage based on latency, redundancy, and cost. - Collaborate with Cloud Security Engineering to automate vulnerability patching processes. - Optimize global network to ensure latency and performance meet business expectations. - Automate operational aspects of the infrastructure and systems life cycle. - Maintain Azure tagging/naming taxonomies across all Cloud assets. - Respond to incidents and ensure availability across the global infrastructure, providing support for service analysts on customer incidents. - Build and infrastructure with automation tools like PowerShell, Ansible, Terraform, Azure DevOps CI/CD, and Kubernetes. - Document actions to turn findings into repeatable and automated processes. - Design, build, and maintain core infrastructure to enable scaling and support business growth. - Debug production issues across services and levels of the stack. Qualifications: - Strong knowledge of virtualization, containerization technologies on Azure. - Proficiency in object-oriented programming and developing automated solutions through code. - Passion for secure network design and protecting organizations from evolving cyber threats. - Continual learning and advancement of Microsoft Azure technologies like Compute, Storage, Networking. - Interest in Open-Source development and industry innovation. - Knowledge of configuration management systems like Ansible. - Collaborative and able to communicate effectively and asynchronously.
Eames are working with a reputable insurer on the hire of a Senior Security Operations Analyst. Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of these processes within the team. Leading the development and enhancement of detection engineering and associated technologies. Conducting operational and threat malware analysis for the organization. Offering security insights and maintaining relationships with the Service Management function concerning change management, problem management, and incident management. Handling level 2/3 operational cyber incident response. Promptly escalating any detected incidents and anomalies within the organization, providing expert guidance for operational challenges. Monitoring emerging threat patterns, vulnerabilities, and anomalies, escalating unknown threats to relevant areas within the company. Collecting metrics on the status of technical information security controls across the organization, identifying risk areas, and developing and managing remediation plans as necessary. Collaborating with all CISO teams to report and address operational issues at an architectural level. Participating in a shared, rotational 24/7 on-call requirement, acting as the single point of contact for all security-related response actions and decisions, including managing each incident from a security perspective, interacting with Incident Management/Major Incident Management teams, and recording key security decisions. Qualifications: Proficiency and experience in Firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, Switches, Routers, and Voice Over IP (VoIP), as well as Firewall zoning. Ability to interpret system data, including security event logs, system logs, application logs, and device logs. Knowledge and experience with enterprise-grade technologies, including operating systems, databases, and web applications. Experience in network traffic analysis to identify developing patterns. Capability to mentor and upskill junior team members. Security analysis skills comparable to CompTIA CySA+ certification or similar. Preferred Qualifications: Experience with technologies such as Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, and SIEM. Knowledge of reporting suites such as Power BI. Strong understanding of Microsoft security suites and relevant qualifications. Expertise in threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, or CISA from a recognized professional body. Technical certifications in network or systems engineering from a recognized professional body. Understanding of fundamental cloud concepts, particularly for AWS. Familiarity with OWASP Top 10 and the API Security Playbook Eames Consulting is acting as an Employment Agency in relation to this vacancy.
May 21, 2024
Full time
Eames are working with a reputable insurer on the hire of a Senior Security Operations Analyst. Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of these processes within the team. Leading the development and enhancement of detection engineering and associated technologies. Conducting operational and threat malware analysis for the organization. Offering security insights and maintaining relationships with the Service Management function concerning change management, problem management, and incident management. Handling level 2/3 operational cyber incident response. Promptly escalating any detected incidents and anomalies within the organization, providing expert guidance for operational challenges. Monitoring emerging threat patterns, vulnerabilities, and anomalies, escalating unknown threats to relevant areas within the company. Collecting metrics on the status of technical information security controls across the organization, identifying risk areas, and developing and managing remediation plans as necessary. Collaborating with all CISO teams to report and address operational issues at an architectural level. Participating in a shared, rotational 24/7 on-call requirement, acting as the single point of contact for all security-related response actions and decisions, including managing each incident from a security perspective, interacting with Incident Management/Major Incident Management teams, and recording key security decisions. Qualifications: Proficiency and experience in Firewalls, intrusion detection and prevention systems, anti-virus and content filtering, URL filtering, authentication solutions, Switches, Routers, and Voice Over IP (VoIP), as well as Firewall zoning. Ability to interpret system data, including security event logs, system logs, application logs, and device logs. Knowledge and experience with enterprise-grade technologies, including operating systems, databases, and web applications. Experience in network traffic analysis to identify developing patterns. Capability to mentor and upskill junior team members. Security analysis skills comparable to CompTIA CySA+ certification or similar. Preferred Qualifications: Experience with technologies such as Data Loss Prevention, Intrusion Prevention/Detection Systems, Firewalls, and SIEM. Knowledge of reporting suites such as Power BI. Strong understanding of Microsoft security suites and relevant qualifications. Expertise in threat identification. Security certifications such as CISM, CISSP, M.Inst.ISP, or CISA from a recognized professional body. Technical certifications in network or systems engineering from a recognized professional body. Understanding of fundamental cloud concepts, particularly for AWS. Familiarity with OWASP Top 10 and the API Security Playbook Eames Consulting is acting as an Employment Agency in relation to this vacancy.
Senior Security Engineer / Analyst - Managed Security Service Provider (MSSP) A leading Managed Security Service Provider (MSSP) is seeking several Senior / L3 SOC Engineers to join their growing security team on a permanent basis. This business specializing in delivering top-tier Microsoft focused cybersecurity solutions to a diverse range of clientele alongside other services across the Microsoft portfolio (M365, Azure etc.) They pride themselves on staying ahead of evolving threats and providing comprehensive security measures to safeguard their clients' digital assets. The ideal candidate will play a pivotal role in their Security Operations Center (SOC), contributing expertise in managing and responding to security incidents while demonstrating a strong understanding of Azure Sentinel and Microsoft Defender. Key Responsibilities: Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats. Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point. Analyze and investigate security incidents, providing detailed reports and recommendations for mitigation. Implement and manage security controls, configurations, and policies within Azure Sentinel and Microsoft Defender. Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incident response procedures. Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks. Requirements: Proven experience as a Security/SOC Engineer or similar role within an MSP, MSSP or cybersecurity environment. In-depth knowledge and hands-on experience with Azure Sentinel and Microsoft Defender. Significant Kusto Query Language (KQL) experience. Strong understanding of cybersecurity principles, tools, and technologies. Excellent analytical and problem-solving skills with the ability to make quick, informed decisions under pressure. Relevant certifications such as GIAC, or Microsoft certifications would be advantageous. Any experience with SOC Prime, Carbon Black, and SOAR would be advantageous. Hybrid based - 2 days per week expected in their Warrington office. Paying up to 70k, depending on experience. As this is a 24x7 SOC you will be required to be a part of a shift pattern Must be eligible for SC clearance.
May 21, 2024
Full time
Senior Security Engineer / Analyst - Managed Security Service Provider (MSSP) A leading Managed Security Service Provider (MSSP) is seeking several Senior / L3 SOC Engineers to join their growing security team on a permanent basis. This business specializing in delivering top-tier Microsoft focused cybersecurity solutions to a diverse range of clientele alongside other services across the Microsoft portfolio (M365, Azure etc.) They pride themselves on staying ahead of evolving threats and providing comprehensive security measures to safeguard their clients' digital assets. The ideal candidate will play a pivotal role in their Security Operations Center (SOC), contributing expertise in managing and responding to security incidents while demonstrating a strong understanding of Azure Sentinel and Microsoft Defender. Key Responsibilities: Monitor security events and alerts using Azure Sentinel and Microsoft Defender, ensuring timely and effective response to potential threats. Mentor L1/L2 SOC Analysts whilst acting as their technical escalation point. Analyze and investigate security incidents, providing detailed reports and recommendations for mitigation. Implement and manage security controls, configurations, and policies within Azure Sentinel and Microsoft Defender. Collaborate with cross-functional teams to develop and enhance security strategies, including threat hunting and incident response procedures. Stay updated with emerging security threats, vulnerabilities, and industry best practices to proactively address potential risks. Requirements: Proven experience as a Security/SOC Engineer or similar role within an MSP, MSSP or cybersecurity environment. In-depth knowledge and hands-on experience with Azure Sentinel and Microsoft Defender. Significant Kusto Query Language (KQL) experience. Strong understanding of cybersecurity principles, tools, and technologies. Excellent analytical and problem-solving skills with the ability to make quick, informed decisions under pressure. Relevant certifications such as GIAC, or Microsoft certifications would be advantageous. Any experience with SOC Prime, Carbon Black, and SOAR would be advantageous. Hybrid based - 2 days per week expected in their Warrington office. Paying up to 70k, depending on experience. As this is a 24x7 SOC you will be required to be a part of a shift pattern Must be eligible for SC clearance.
We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. Role Purpose The Assurance Manager's role is responsible for designing, managing and overseeing BDO's Assurance program and analytical work. This role will play a key part in ensuring the detection, prevention and response to risks, such as data theft, sabotage or espionage. The Assurance Manager will work closely with senior stakeholders, such as risk partners, risk owners, risk managers and other stream stakeholders to establish and maintain the Assurance strategy, vision and governance. The Assurance Manager will also lead a team of assurance analysts to deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's Assurance strategy, policies, standards, processes and roadmaps to enable streams to understand and meet Assurance requirements. Leading a team of Assurance Specialists and Analysts and working with nominated Assurance leads in the business, the Assurance Manager will take responsibility for assessing Assurance risk with the business and ensure that those risks are being managed by the risk owners. Where decisions are made to accept, reduce, share or avoid, the Assurance Manager will ensure appropriate visibility and governance committees are informed. The Assurance Manager will also oversee the prioritisation of activities to support business requests and the delivery of other resources supporting risk assessments always ensuring a consistent and high-quality service is being delivered to each business area. This role reports to the Head of Cyber Detect and Response. Principal Accountabilities Design, manage and oversee BDO's Assurance program and analytical work Utilise BDO's Assurance tools, procedures and control framework to collect, analyse and report on relevant data and indicators from various sources Establish and maintain 'Assurance awareness' in the business to drive risk awareness and effective risk management Identify and respond to Assurance incidents and escalations Develop collateral and appropriate materials to support engagement with senior stakeholders, to explain the Assurance program, key concepts and best practices Create and implement Assurance policies, standards, processes and procedures Knowledge and experience of Assurance principles, programs and analytical work Deep understanding of Microsoft Purview with experience of implementation Technical expertise and experience in Assurance tools and techniques to perform data collection, analysis and reporting Experience of designing, managing and overseeing projects of limited scale or complexity Experience of challenging current practice - driving improvements and championing change Experience of taking personal responsibility for own decisions and actions and those of others Experience of leading and directing teams setting clear and achievable objectives aligned to the expected outcomes for the role Experience of working in a team environment and collaborating with others Highly self-motivated with keen attention to detail The ability to build good relationships at all levels and influence stakeholders Excellent verbal, written and interpersonal communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001/2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC, BRMP or similar NB: The above list of job duties is not exclusive or exhaustive and the post holder will be required to undertake such tasks as may reasonably be expected within the scope and grading of the post. You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to our business. We're committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value and satisfying experiences at work, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better. About Us BDO UK provides tax, audit and assurance, advisory and business outsourcing service s. Our clients are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and the owners and management teams that lead them. Our partners and staff are specialists in their fields and have a proactive, flexible approach to helping clients overcoming the challenges they face. We aim to be as innovative and entrepreneurial as our clients. Our approach and expertise are what help us deliver exceptional client service. 95% of our clients would recommend us. We operate from 17 locations across the UK, covering all major business centres. We employ 7,500 people who are encouraged to bring their best selves to work; taking responsibility for their work and their relationships with clients. All our people share core values that underpin both our culture and the value that we bring to our clients. Our values are also reflected in continued focus on ESG. Our firm is distinctive and we want to preserve and build on the strengths of our culture and the characteristics that make us both successful and different. We look for people from all kinds of backgrounds who share these same qualities. BDO LLP is a key member of the BDO global network of public accounting, tax and advisory firms. The firms have representation in 16 4 countries, with 111,300 people working out of over 1,803 offices worldwide. That's BDO and we are proud to be part of it. Being part of an integrated network of firms across the world provides us with myriad opportunities for success.
May 19, 2024
Full time
We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. Role Purpose The Assurance Manager's role is responsible for designing, managing and overseeing BDO's Assurance program and analytical work. This role will play a key part in ensuring the detection, prevention and response to risks, such as data theft, sabotage or espionage. The Assurance Manager will work closely with senior stakeholders, such as risk partners, risk owners, risk managers and other stream stakeholders to establish and maintain the Assurance strategy, vision and governance. The Assurance Manager will also lead a team of assurance analysts to deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's Assurance strategy, policies, standards, processes and roadmaps to enable streams to understand and meet Assurance requirements. Leading a team of Assurance Specialists and Analysts and working with nominated Assurance leads in the business, the Assurance Manager will take responsibility for assessing Assurance risk with the business and ensure that those risks are being managed by the risk owners. Where decisions are made to accept, reduce, share or avoid, the Assurance Manager will ensure appropriate visibility and governance committees are informed. The Assurance Manager will also oversee the prioritisation of activities to support business requests and the delivery of other resources supporting risk assessments always ensuring a consistent and high-quality service is being delivered to each business area. This role reports to the Head of Cyber Detect and Response. Principal Accountabilities Design, manage and oversee BDO's Assurance program and analytical work Utilise BDO's Assurance tools, procedures and control framework to collect, analyse and report on relevant data and indicators from various sources Establish and maintain 'Assurance awareness' in the business to drive risk awareness and effective risk management Identify and respond to Assurance incidents and escalations Develop collateral and appropriate materials to support engagement with senior stakeholders, to explain the Assurance program, key concepts and best practices Create and implement Assurance policies, standards, processes and procedures Knowledge and experience of Assurance principles, programs and analytical work Deep understanding of Microsoft Purview with experience of implementation Technical expertise and experience in Assurance tools and techniques to perform data collection, analysis and reporting Experience of designing, managing and overseeing projects of limited scale or complexity Experience of challenging current practice - driving improvements and championing change Experience of taking personal responsibility for own decisions and actions and those of others Experience of leading and directing teams setting clear and achievable objectives aligned to the expected outcomes for the role Experience of working in a team environment and collaborating with others Highly self-motivated with keen attention to detail The ability to build good relationships at all levels and influence stakeholders Excellent verbal, written and interpersonal communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001/2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC, BRMP or similar NB: The above list of job duties is not exclusive or exhaustive and the post holder will be required to undertake such tasks as may reasonably be expected within the scope and grading of the post. You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to our business. We're committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value and satisfying experiences at work, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better. About Us BDO UK provides tax, audit and assurance, advisory and business outsourcing service s. Our clients are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and the owners and management teams that lead them. Our partners and staff are specialists in their fields and have a proactive, flexible approach to helping clients overcoming the challenges they face. We aim to be as innovative and entrepreneurial as our clients. Our approach and expertise are what help us deliver exceptional client service. 95% of our clients would recommend us. We operate from 17 locations across the UK, covering all major business centres. We employ 7,500 people who are encouraged to bring their best selves to work; taking responsibility for their work and their relationships with clients. All our people share core values that underpin both our culture and the value that we bring to our clients. Our values are also reflected in continued focus on ESG. Our firm is distinctive and we want to preserve and build on the strengths of our culture and the characteristics that make us both successful and different. We look for people from all kinds of backgrounds who share these same qualities. BDO LLP is a key member of the BDO global network of public accounting, tax and advisory firms. The firms have representation in 16 4 countries, with 111,300 people working out of over 1,803 offices worldwide. That's BDO and we are proud to be part of it. Being part of an integrated network of firms across the world provides us with myriad opportunities for success.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. Role Purpose The Assurance Manager's role is responsible for designing, managing and overseeing BDO's Assurance program and analytical work. This role will play a key part in ensuring the detection, prevention and response to risks, such as data theft, sabotage or espionage. The Assurance Manager will work closely with senior stakeholders, such as risk partners, risk owners, risk managers and other stream stakeholders to establish and maintain the Assurance strategy, vision and governance. The Assurance Manager will also lead a team of assurance analysts to deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's Assurance strategy, policies, standards, processes and roadmaps to enable streams to understand and meet Assurance requirements. Leading a team of Assurance Specialists and Analysts and working with nominated Assurance leads in the business, the Assurance Manager will take responsibility for assessing Assurance risk with the business and ensure that those risks are being managed by the risk owners. Where decisions are made to accept, reduce, share or avoid, the Assurance Manager will ensure appropriate visibility and governance committees are informed. The Assurance Manager will also oversee the prioritisation of activities to support business requests and the delivery of other resources supporting risk assessments always ensuring a consistent and high-quality service is being delivered to each business area. This role reports to the Head of Cyber Detect and Response. Principal Accountabilities Design, manage and oversee BDO's Assurance program and analytical work Utilise BDO's Assurance tools, procedures and control framework to collect, analyse and report on relevant data and indicators from various sources Establish and maintain 'Assurance awareness' in the business to drive risk awareness and effective risk management Identify and respond to Assurance incidents and escalations Develop collateral and appropriate materials to support engagement with senior stakeholders, to explain the Assurance program, key concepts and best practices Create and implement Assurance policies, standards, processes and procedures Technical Competencies Knowledge and experience of Assurance principles, programs and analytical work Deep understanding of Microsoft Purview with experience of implementation Technical expertise and experience in Assurance tools and techniques to perform data collection, analysis and reporting Experience of designing, managing and overseeing projects of limited scale or complexity Experience of challenging current practice - driving improvements and championing change Experience of taking personal responsibility for own decisions and actions and those of others Experience of leading and directing teams setting clear and achievable objectives aligned to the expected outcomes for the role Experience of working in a team environment and collaborating with others Highly self-motivated with keen attention to detail The ability to build good relationships at all levels and influence stakeholders Excellent verbal, written and interpersonal communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001/2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC, BRMP or similar NB: The above list of job duties is not exclusive or exhaustive and the post holder will be required to undertake such tasks as may reasonably be expected within the scope and grading of the post. You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to our business. We're committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value and satisfying experiences at work, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
May 19, 2024
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our team collaborates with every department. We develop, explore and implement the information Security practices helping us to protect the data of our clients in our services of accounting, tax and business consulting. But, just as importantly, we maintain the functionality of our Information Security Management System (ISMS) and ensure governance of the technology and security processes that keeps us advancing. And you could too. In an Information Security role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. Role Purpose The Assurance Manager's role is responsible for designing, managing and overseeing BDO's Assurance program and analytical work. This role will play a key part in ensuring the detection, prevention and response to risks, such as data theft, sabotage or espionage. The Assurance Manager will work closely with senior stakeholders, such as risk partners, risk owners, risk managers and other stream stakeholders to establish and maintain the Assurance strategy, vision and governance. The Assurance Manager will also lead a team of assurance analysts to deliver the Assurance program and analytical work. The Assurance Manager role is the focal point for effective engagement between the business streams and the Information Security team on Assurance related matters. This role will be a trusted adviser to senior stakeholders and provide broad knowledge of BDO's Assurance strategy, policies, standards, processes and roadmaps to enable streams to understand and meet Assurance requirements. Leading a team of Assurance Specialists and Analysts and working with nominated Assurance leads in the business, the Assurance Manager will take responsibility for assessing Assurance risk with the business and ensure that those risks are being managed by the risk owners. Where decisions are made to accept, reduce, share or avoid, the Assurance Manager will ensure appropriate visibility and governance committees are informed. The Assurance Manager will also oversee the prioritisation of activities to support business requests and the delivery of other resources supporting risk assessments always ensuring a consistent and high-quality service is being delivered to each business area. This role reports to the Head of Cyber Detect and Response. Principal Accountabilities Design, manage and oversee BDO's Assurance program and analytical work Utilise BDO's Assurance tools, procedures and control framework to collect, analyse and report on relevant data and indicators from various sources Establish and maintain 'Assurance awareness' in the business to drive risk awareness and effective risk management Identify and respond to Assurance incidents and escalations Develop collateral and appropriate materials to support engagement with senior stakeholders, to explain the Assurance program, key concepts and best practices Create and implement Assurance policies, standards, processes and procedures Technical Competencies Knowledge and experience of Assurance principles, programs and analytical work Deep understanding of Microsoft Purview with experience of implementation Technical expertise and experience in Assurance tools and techniques to perform data collection, analysis and reporting Experience of designing, managing and overseeing projects of limited scale or complexity Experience of challenging current practice - driving improvements and championing change Experience of taking personal responsibility for own decisions and actions and those of others Experience of leading and directing teams setting clear and achievable objectives aligned to the expected outcomes for the role Experience of working in a team environment and collaborating with others Highly self-motivated with keen attention to detail The ability to build good relationships at all levels and influence stakeholders Excellent verbal, written and interpersonal communication skills. Listens and communicates technical subjects to both technical and nontechnical audiences, flexes style to suit the needs of the audience A good understanding of security frameworks including ISO27001/2, Cyber Essentials Plus, CIS Top 20, Data Protection Act 2018, OWASP Top 10 Have a relevant industry certification such as CISSP, CISM, CRISC, BRMP or similar NB: The above list of job duties is not exclusive or exhaustive and the post holder will be required to undertake such tasks as may reasonably be expected within the scope and grading of the post. You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to our business. We're committed to agile working, and we offer everyone the opportunity to work in ways that suit them, their teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value and satisfying experiences at work, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions. We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Senior Cyber Security Analyst Utilities Hybrid: 2-3 days per week in Taunton or Exeter 6 months+ £650 - £700 per day In short: Classic Cyber Security Analyst required to join a major utilities company in SOC-related activities. In full: Reporting to the Senior Cyber Solutions Architect, you will be responsible for the development, delivery and support of new cyber security systems and processes within the department specialising in OT and Telecoms cyber security. You will also be a subject matter expert and a point of escalation for the business and cyber security analysts. Main Responsibilities Responsible for the management and development of SIEM reports and dashboards. Conduct vulnerability assessments within IT & OT and resolve any identified vulnerabilities, in collaboration with system owners. Responsible for investigating and resolving security queries in relation to company systems. Evaluating security processes against benchmarks. Developing specific cyber security metrics / KPI's. Deliver service improvements, such as process automation, platform tuning and configuration management. Provide subject matter expertise in relation to cyber risks and threats. Respond to cyber security incidents. Identify cyber security training needs. Carry out forensics on systems and hardware as required. Monitoring and assessment of threat intelligence feeds. Analyse the output of various security reports and advise/escalate where required. Liaise with Business System owners on security matters. Participate in and manage penetration tests. You should have an appropriate level of experience within an IT Environment, working with OT and cyber security. It would be advantageous to have or be working towards a recognised Cyber Security qualification such as OSCP, CISSP, CCNA Security etc. Experience and/or knowledge of OT/SCADA, Telecoms and control systems would be beneficial. The successful candidate may initially be appointed on a designate basis and all candidates will be required to undertake and successfully complete a Security Check (SC). Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
May 18, 2024
Full time
Senior Cyber Security Analyst Utilities Hybrid: 2-3 days per week in Taunton or Exeter 6 months+ £650 - £700 per day In short: Classic Cyber Security Analyst required to join a major utilities company in SOC-related activities. In full: Reporting to the Senior Cyber Solutions Architect, you will be responsible for the development, delivery and support of new cyber security systems and processes within the department specialising in OT and Telecoms cyber security. You will also be a subject matter expert and a point of escalation for the business and cyber security analysts. Main Responsibilities Responsible for the management and development of SIEM reports and dashboards. Conduct vulnerability assessments within IT & OT and resolve any identified vulnerabilities, in collaboration with system owners. Responsible for investigating and resolving security queries in relation to company systems. Evaluating security processes against benchmarks. Developing specific cyber security metrics / KPI's. Deliver service improvements, such as process automation, platform tuning and configuration management. Provide subject matter expertise in relation to cyber risks and threats. Respond to cyber security incidents. Identify cyber security training needs. Carry out forensics on systems and hardware as required. Monitoring and assessment of threat intelligence feeds. Analyse the output of various security reports and advise/escalate where required. Liaise with Business System owners on security matters. Participate in and manage penetration tests. You should have an appropriate level of experience within an IT Environment, working with OT and cyber security. It would be advantageous to have or be working towards a recognised Cyber Security qualification such as OSCP, CISSP, CCNA Security etc. Experience and/or knowledge of OT/SCADA, Telecoms and control systems would be beneficial. The successful candidate may initially be appointed on a designate basis and all candidates will be required to undertake and successfully complete a Security Check (SC). Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
This specialised European private bank seeks a Security Solutions Architect to join their group IT function in central London. The role is an individual contributor position, and is the only Security Architect in the function. As a stand alone Security Architect, you will have a varied role designing innovative solutions and playing an integral role in key technology transformation and security improvement projects,. You will help the business deliver on its objectives, using the latest cloud technology and emerging security tools. The successful candidate will be a highly experienced Security Architect with a relevant certification such as CISSP, CCSP, TOGAF or cloud vendor certifications. Your experience will include designing end-to-end solutions and you will have experience which covers multiple security domains. Cloud security experience is vital (any platform), knowledge of IAM controls is preferred, and ideally you will be able to demonstrate your role in major transformation projects. The successful candidate will have experience of working in financial services, as a Big 4 consultant with FS clients or a similarly highly regulated sector. Salary £90-110k base plus excellent benefits and bonus. Hybrid working available (2 days at home/3 in central London office). Apply for this job We seek individuals from a diverse talent pool and encourage applicants from underrepresented groups to apply to our vacancies. Our commitment to fair recruitment processes means that we welcome applicants from all backgrounds, regardless of their lived experience or personal characteristics. We also invite applicants who meet most of the listed requirements, even if not all, to apply. If you require any adjustments to the application process, please let us know. Barclay Simpson acts as an Employment Agency for permanent positions and an Employment Business for temporary/contract engagements. Sophie Spencer - Security Architecture and Engineering FTSE listed company in Bristol seeks a Product Security Engineer to join their team. In this role View job & apply Platform Security Engineer Location: London or Midlands (hybrid) Job type: Permanent Sector: Commerce and Industry This listed and high-growth consumer tech company seeks a Senior Platform Security Engineer to jo View job & apply Lead Security Architect Location: Remote Job type: Permanent This leading financial services company is searching for a Lead Security Architect to join their View job & apply Cloud Security Analyst - Specialist Location: Remote We are working with a leading financial services business committed to maintaining the highest st View job & apply BCM Manager Location: Stuttgart Job type: Permanent Sector: Insurance I am currently working with a leading insurance firm backed by an insurance giant to headhunt a B View job & apply Cryptography Specialist Location: Gloucestershire Job type: Permanent Sector: Government/Public Sector, Commerce and Industry Leading defence firm seeks a Cryptography Specialist to work with customers on complex challenges View job & apply Senior IAM Officer Location: Gloucestershire or Edinburgh Job type: Permanent My client, a household name in the financial sector, is seeking a Senior IAM Officer to join thei View job & apply Chief Information Officer Location: Qatar Job type: Permanent Sector: Commerce and Industry I am working with a Qatar based conglomerate on their search for a ne Chief Information Officer. View job & apply Cyber Security Analyst Location: London Job type: Permanent Leading consultancy firm seeks a Cyber Security Analyst to join the Security team. This individua View job & apply Crisis Manager Location: London Job type: Permanent Sector: Commerce and Industry This world-renowned media organization has a unique opportunity for a highly experienced Crisis M
May 18, 2024
Full time
This specialised European private bank seeks a Security Solutions Architect to join their group IT function in central London. The role is an individual contributor position, and is the only Security Architect in the function. As a stand alone Security Architect, you will have a varied role designing innovative solutions and playing an integral role in key technology transformation and security improvement projects,. You will help the business deliver on its objectives, using the latest cloud technology and emerging security tools. The successful candidate will be a highly experienced Security Architect with a relevant certification such as CISSP, CCSP, TOGAF or cloud vendor certifications. Your experience will include designing end-to-end solutions and you will have experience which covers multiple security domains. Cloud security experience is vital (any platform), knowledge of IAM controls is preferred, and ideally you will be able to demonstrate your role in major transformation projects. The successful candidate will have experience of working in financial services, as a Big 4 consultant with FS clients or a similarly highly regulated sector. Salary £90-110k base plus excellent benefits and bonus. Hybrid working available (2 days at home/3 in central London office). Apply for this job We seek individuals from a diverse talent pool and encourage applicants from underrepresented groups to apply to our vacancies. Our commitment to fair recruitment processes means that we welcome applicants from all backgrounds, regardless of their lived experience or personal characteristics. We also invite applicants who meet most of the listed requirements, even if not all, to apply. If you require any adjustments to the application process, please let us know. Barclay Simpson acts as an Employment Agency for permanent positions and an Employment Business for temporary/contract engagements. Sophie Spencer - Security Architecture and Engineering FTSE listed company in Bristol seeks a Product Security Engineer to join their team. In this role View job & apply Platform Security Engineer Location: London or Midlands (hybrid) Job type: Permanent Sector: Commerce and Industry This listed and high-growth consumer tech company seeks a Senior Platform Security Engineer to jo View job & apply Lead Security Architect Location: Remote Job type: Permanent This leading financial services company is searching for a Lead Security Architect to join their View job & apply Cloud Security Analyst - Specialist Location: Remote We are working with a leading financial services business committed to maintaining the highest st View job & apply BCM Manager Location: Stuttgart Job type: Permanent Sector: Insurance I am currently working with a leading insurance firm backed by an insurance giant to headhunt a B View job & apply Cryptography Specialist Location: Gloucestershire Job type: Permanent Sector: Government/Public Sector, Commerce and Industry Leading defence firm seeks a Cryptography Specialist to work with customers on complex challenges View job & apply Senior IAM Officer Location: Gloucestershire or Edinburgh Job type: Permanent My client, a household name in the financial sector, is seeking a Senior IAM Officer to join thei View job & apply Chief Information Officer Location: Qatar Job type: Permanent Sector: Commerce and Industry I am working with a Qatar based conglomerate on their search for a ne Chief Information Officer. View job & apply Cyber Security Analyst Location: London Job type: Permanent Leading consultancy firm seeks a Cyber Security Analyst to join the Security team. This individua View job & apply Crisis Manager Location: London Job type: Permanent Sector: Commerce and Industry This world-renowned media organization has a unique opportunity for a highly experienced Crisis M
Senior Security Engineer Hybrid x3 days in the office I am working with a leading finance company based in Fleet who are looking for a Senior Security Engineer to help safeguard their organization from cyberattacks. Responsibilities include monitoring systems, identifying vulnerabilities, installing protective software, and documenting detections for efficient breach mitigation. You'll defend computer systems from theft, loss, and cyberattacks. Key Responsibilities: Document security breaches, assess damage, and develop mitigation strategies. Perform network vulnerability assessments and remediation. Stay updated on IT security trends and news, developing company-wide best practices. Conduct internal penetration testing and assist in installing security software. Serve as an escalation point for resolving security and network issues from the service desk. Requirements, Skills, and Qualifications: Proven work experience as a Cyber Security Analyst or similar role in information security. Expertise in computer network penetration testing techniques and experience in related fields. Familiarity with firewalls, proxies, SIEM, antivirus, and IDPS concepts. Ability to identify and mitigate network vulnerabilities and communicate avoidance strategies. Bachelor's degree in computer science or related field preferred. Professional certification in Security+, CySA+, CEH, CISA, or CISSP preferred Benefits 11% non-contributory pension scheme 25 days annual leave plus bank holidays Annual leave buying scheme Discretionary annual bonus Private Medical Insurance Life Assurance Income Protection Scheme Paid time off to volunteer Enhanced Maternity and Paternity pay and more Hybrid working after 3-month probation This is an amazing opportunity to join a growing business and have a direct impact on their security efforts. They are based in Fleet and have a hybrid policy with 3 days a week onsite.
May 18, 2024
Full time
Senior Security Engineer Hybrid x3 days in the office I am working with a leading finance company based in Fleet who are looking for a Senior Security Engineer to help safeguard their organization from cyberattacks. Responsibilities include monitoring systems, identifying vulnerabilities, installing protective software, and documenting detections for efficient breach mitigation. You'll defend computer systems from theft, loss, and cyberattacks. Key Responsibilities: Document security breaches, assess damage, and develop mitigation strategies. Perform network vulnerability assessments and remediation. Stay updated on IT security trends and news, developing company-wide best practices. Conduct internal penetration testing and assist in installing security software. Serve as an escalation point for resolving security and network issues from the service desk. Requirements, Skills, and Qualifications: Proven work experience as a Cyber Security Analyst or similar role in information security. Expertise in computer network penetration testing techniques and experience in related fields. Familiarity with firewalls, proxies, SIEM, antivirus, and IDPS concepts. Ability to identify and mitigate network vulnerabilities and communicate avoidance strategies. Bachelor's degree in computer science or related field preferred. Professional certification in Security+, CySA+, CEH, CISA, or CISSP preferred Benefits 11% non-contributory pension scheme 25 days annual leave plus bank holidays Annual leave buying scheme Discretionary annual bonus Private Medical Insurance Life Assurance Income Protection Scheme Paid time off to volunteer Enhanced Maternity and Paternity pay and more Hybrid working after 3-month probation This is an amazing opportunity to join a growing business and have a direct impact on their security efforts. They are based in Fleet and have a hybrid policy with 3 days a week onsite.
We're looking for a Lead Cyber Security Analyst to join an industry leading organisation that is currently going through a period of growth due to continued success! Bringing resources back in house they're investing significantly in to their Cyber and Azure resources and you'd be at the forefront of this journey! This is an autonomous, varied role where you'll work to ensure the security of operations whilst also continuing to develop out their Cyber footprint. Key Responsibilities: To deploy, manage and maintain all security systems including Firewalls, intrusion detection, cryptography and ant-virus Ensure and oversee industry-standard best practices Manage connection security for local network and e-mail Manage penetration testing - identifying vulnerabilities Actively implement monitoring of systems, interpreting activity to make recommendations for resolutions Make recommendations for areas of continuous improvements and resolutions This is a small but dedicated team so your role will be varied & hands on alongside working with senior leadership on the wider strategy. We're looking for someone who is confident and excited to work in a varied role where they can make a real difference and effectively build up an environment!You'll ideally have good experience with Sentinel and FortiGate. A flexible hybrid approach you must be based near their offices just North of Manchester for 1-2 days a week where needed. Click apply or email for more details
May 18, 2024
Full time
We're looking for a Lead Cyber Security Analyst to join an industry leading organisation that is currently going through a period of growth due to continued success! Bringing resources back in house they're investing significantly in to their Cyber and Azure resources and you'd be at the forefront of this journey! This is an autonomous, varied role where you'll work to ensure the security of operations whilst also continuing to develop out their Cyber footprint. Key Responsibilities: To deploy, manage and maintain all security systems including Firewalls, intrusion detection, cryptography and ant-virus Ensure and oversee industry-standard best practices Manage connection security for local network and e-mail Manage penetration testing - identifying vulnerabilities Actively implement monitoring of systems, interpreting activity to make recommendations for resolutions Make recommendations for areas of continuous improvements and resolutions This is a small but dedicated team so your role will be varied & hands on alongside working with senior leadership on the wider strategy. We're looking for someone who is confident and excited to work in a varied role where they can make a real difference and effectively build up an environment!You'll ideally have good experience with Sentinel and FortiGate. A flexible hybrid approach you must be based near their offices just North of Manchester for 1-2 days a week where needed. Click apply or email for more details
Job title: Lead Cyber Risk Analyst Location: Various - We offer a range of flexible working arrangements - please speak to your recruiter about the options for this role. Salary: 60,000+ Depending on experience What you'll be doing: Lead on developing the risk management data strategy; identifying potential data sources and approaches to connecting and exploiting the data to support risk analysis Conduct impact modelling to assess potential financial, operational, and reputational impacts to the company in the event of a major cyber incident Develop and present strategic risk reports to senior management, providing clear insights and recommendations Collaborate across the Group to lead risk analysis efforts and provide subject matter expertise (SME) guidance to different sectors Work closely with other cybersecurity teams to understand threat landscapes, vulnerabilities, and impact assessments Stay abreast of the latest cybersecurity trends, threats, and risk quantification techniques Contribute to the continuous improvement of the cybersecurity risk management framework Act as a delegate for the Head of Cyber Security Risk in various capacities as needed Your skills and experiences: Essential: Robust understanding of risk analysis methodologies, frameworks and theories (FAIR, NIST) Previous experience working in large and complex organisations Ability to effectively write high quality reports and presentations Advanced user with Microsoft Excel Bachelor's degree level qualification or above in risk management, mathematics, cyber security or another STEM subject Desirable: Previous experience working in corporate risk management or security consultancy roles Experience working with defence or national security organisations CISSP, CRISC, CISM or other advanced cyber security certification Benefits: You'll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You'll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts - you may also be eligible for an annual incentive. The CISO Team: Working for one of the largest defence companies in the world, this exciting company within the CISO's team, reporting to the Head of Cyber Security Risk within the risk Cyber function is now available. The Lead Cyber Risk Analyst will be pivotal in enhancing our cybersecurity posture through both quantitative and qualitative risk analysis. The position will allow you to build on your technical career working alongside various stakeholders and partners across BAE Systems and the wider Defence industry. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments." Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. Closing Date: 16th May 2024
May 17, 2024
Full time
Job title: Lead Cyber Risk Analyst Location: Various - We offer a range of flexible working arrangements - please speak to your recruiter about the options for this role. Salary: 60,000+ Depending on experience What you'll be doing: Lead on developing the risk management data strategy; identifying potential data sources and approaches to connecting and exploiting the data to support risk analysis Conduct impact modelling to assess potential financial, operational, and reputational impacts to the company in the event of a major cyber incident Develop and present strategic risk reports to senior management, providing clear insights and recommendations Collaborate across the Group to lead risk analysis efforts and provide subject matter expertise (SME) guidance to different sectors Work closely with other cybersecurity teams to understand threat landscapes, vulnerabilities, and impact assessments Stay abreast of the latest cybersecurity trends, threats, and risk quantification techniques Contribute to the continuous improvement of the cybersecurity risk management framework Act as a delegate for the Head of Cyber Security Risk in various capacities as needed Your skills and experiences: Essential: Robust understanding of risk analysis methodologies, frameworks and theories (FAIR, NIST) Previous experience working in large and complex organisations Ability to effectively write high quality reports and presentations Advanced user with Microsoft Excel Bachelor's degree level qualification or above in risk management, mathematics, cyber security or another STEM subject Desirable: Previous experience working in corporate risk management or security consultancy roles Experience working with defence or national security organisations CISSP, CRISC, CISM or other advanced cyber security certification Benefits: You'll receive benefits including a competitive pension scheme, enhanced annual leave allowance and a Company contributed Share Incentive Plan. You'll also have access to additional benefits such as flexible working, an employee assistance programme, Cycle2work and employee discounts - you may also be eligible for an annual incentive. The CISO Team: Working for one of the largest defence companies in the world, this exciting company within the CISO's team, reporting to the Head of Cyber Security Risk within the risk Cyber function is now available. The Lead Cyber Risk Analyst will be pivotal in enhancing our cybersecurity posture through both quantitative and qualitative risk analysis. The position will allow you to build on your technical career working alongside various stakeholders and partners across BAE Systems and the wider Defence industry. Why BAE Systems? This is a place where you'll be able to make a real difference. You'll be part of an inclusive culture that values diversity, rewards integrity, and merit, and where you'll be empowered to fulfil your potential. We welcome candidates from all backgrounds and particularly from sections of the community who are currently underrepresented within our industry, including women, ethnic minorities, people with disabilities and LGBTQ+ individuals. We also want to make sure that our recruitment processes are as inclusive as possible. If you have a disability or health condition (for example dyslexia, autism, an anxiety disorder etc.) that may affect your performance in certain assessment types, please speak to your recruiter about potential reasonable adjustments." Please be aware that many roles working for BAE Systems will be subject to both security and export control restrictions. These restrictions mean that factors including your nationality, any previous nationalities you have held, and your place of birth may limit those roles you can perform for the organisation. We reserve the right to close this vacancy early if we receive sufficient applications for the role. Therefore, if you are interested, please submit your application as early as possible. Closing Date: 16th May 2024
You will be: Working closely with Business Analysts , supporting the development of good business and technical requirements. Working closely with internal and external technical teams (delivery, development and test) ensuring the built solution aligns to the agreed design. Working with the Project Management Office , aligning to our delivery strategies. Working with Enterprise Architecture , aligning solutions to our technology strategies. Leading the recommendation of appropriate technologies and architectures to meet requirements for particular projects (within the constraints of Project Needs, Business Needs, Enterprise Architecture and Technology). Ensuring technology options are fully costed, and risks and benefits understood to enable effective decision-making by project teams, sponsors and subject matter experts Ensuring clear handover of agreed design to delivery teams and continued architectural support throughout the delivery and cutover of solutions. Ensuring software vendors and outsourced implementation partners meet the required technology specifications to deliver a quality product, adhering to technical governance . Building and maintaining customer and stakeholder relationships that will support our ability to deliver its mission, its reputation and remain sustainable. Being an agent of change through visible ownership, clear and consistent communication and a focus on benefits realisation . Ensuring compliance with appropriate internal and external governance including quality, health, safety, security and environmental legislation, minimising risk to the business and enhancing our reputation. We are now working in a hybrid way, with a mix of remote and office working. We strive to offer a great work life balance - if you are looking for flexible options, we will try to make this work where business possible. This will be dependent on the kind of role you do and part of the business you work in. About the Candidate Knowledge, Experience and Skills Strong solutions architecture skills and experience Knowledge and experience with hybrid cloud and on-prem environments Exposure to the cyber security aspects of solution architectures Well versed with cloud architecture frameworks and design patterns Knowledge of data architecture and exposure to the pros and cons of various forms of data storage and processing Knowledge and experience with MS Azure solution architectures (esp. IaaS, PaaS and SaaS based solutions) Experience in MS Azure Infra, Networks, Storage, Apps and Azure DevOps Experience with Azure Resource Manager, Resource Groups, Virtual Networks, Azure Virtual Machines, Azure Storage types, PowerShell DSC, Azure Automation, Azure Active Directory (Entra), and Azure Site Recovery Experience in developing and deploying cloud native applications using Azure PaaS Capabilities (App Services Plans, Key Vault, Azure Cosmos DB types) Strong communications , listening and influencing skills (diagrams, written and verbal) Experience in creating solution proposals, statement of work (SOW), presenting and articulating Strong business and technical analysis skills Ability to research existing and new solution components and blueprints to match with solution requirements Ability to use a risk based approach to recommendations on architectures Ability to tailor your approach to the given project / business area / vendor Ability to cope with ambiguity , whilst still striving for the required levels of clarity Understanding that "perfect is the enemy of good" Some experience diagramming with UML and utilising blueprint diagrams Exposure to how business works (i.e. you have sight outside of just the IT department) Personal Qualities Diligent , resilient and self-reliant Adaptable to different teams and environments Passionate for architecting good solutions within given constraints Self-motivated to drive your own learning (esp. in the MS Azure cloud solutions architecture space) Keen to grow knowledge in self and others through mentoring, coaching and sharing experience. Content not to reinvent the wheel, but to use existing solution sets and blueprints where available, and weave together and tailor where needed
May 17, 2024
Full time
You will be: Working closely with Business Analysts , supporting the development of good business and technical requirements. Working closely with internal and external technical teams (delivery, development and test) ensuring the built solution aligns to the agreed design. Working with the Project Management Office , aligning to our delivery strategies. Working with Enterprise Architecture , aligning solutions to our technology strategies. Leading the recommendation of appropriate technologies and architectures to meet requirements for particular projects (within the constraints of Project Needs, Business Needs, Enterprise Architecture and Technology). Ensuring technology options are fully costed, and risks and benefits understood to enable effective decision-making by project teams, sponsors and subject matter experts Ensuring clear handover of agreed design to delivery teams and continued architectural support throughout the delivery and cutover of solutions. Ensuring software vendors and outsourced implementation partners meet the required technology specifications to deliver a quality product, adhering to technical governance . Building and maintaining customer and stakeholder relationships that will support our ability to deliver its mission, its reputation and remain sustainable. Being an agent of change through visible ownership, clear and consistent communication and a focus on benefits realisation . Ensuring compliance with appropriate internal and external governance including quality, health, safety, security and environmental legislation, minimising risk to the business and enhancing our reputation. We are now working in a hybrid way, with a mix of remote and office working. We strive to offer a great work life balance - if you are looking for flexible options, we will try to make this work where business possible. This will be dependent on the kind of role you do and part of the business you work in. About the Candidate Knowledge, Experience and Skills Strong solutions architecture skills and experience Knowledge and experience with hybrid cloud and on-prem environments Exposure to the cyber security aspects of solution architectures Well versed with cloud architecture frameworks and design patterns Knowledge of data architecture and exposure to the pros and cons of various forms of data storage and processing Knowledge and experience with MS Azure solution architectures (esp. IaaS, PaaS and SaaS based solutions) Experience in MS Azure Infra, Networks, Storage, Apps and Azure DevOps Experience with Azure Resource Manager, Resource Groups, Virtual Networks, Azure Virtual Machines, Azure Storage types, PowerShell DSC, Azure Automation, Azure Active Directory (Entra), and Azure Site Recovery Experience in developing and deploying cloud native applications using Azure PaaS Capabilities (App Services Plans, Key Vault, Azure Cosmos DB types) Strong communications , listening and influencing skills (diagrams, written and verbal) Experience in creating solution proposals, statement of work (SOW), presenting and articulating Strong business and technical analysis skills Ability to research existing and new solution components and blueprints to match with solution requirements Ability to use a risk based approach to recommendations on architectures Ability to tailor your approach to the given project / business area / vendor Ability to cope with ambiguity , whilst still striving for the required levels of clarity Understanding that "perfect is the enemy of good" Some experience diagramming with UML and utilising blueprint diagrams Exposure to how business works (i.e. you have sight outside of just the IT department) Personal Qualities Diligent , resilient and self-reliant Adaptable to different teams and environments Passionate for architecting good solutions within given constraints Self-motivated to drive your own learning (esp. in the MS Azure cloud solutions architecture space) Keen to grow knowledge in self and others through mentoring, coaching and sharing experience. Content not to reinvent the wheel, but to use existing solution sets and blueprints where available, and weave together and tailor where needed
Digital Forensic Lab Manager (UK) Location: Home Counties South, United Kingdom Salary: Competitive, £45k-£55k based on experience plus unique uncapped bonus element The Role: Our client is currently seeking an experienced Digital Forensic Lab Manager to lead and manage their team of forensic analysts. As the Department Head, your role will involve leading the growth of the team and business initiatives. Your duties will include developing business growth for the lab, optimising analysis, and improving processes. You will also manage the Mobile Device Lab. The role demands continuous improvement of performance to guarantee maximum and effective use of resources with a customer-focused mindset. Mostly an office-based position it demands a dynamic individual ready to make a significant contribution. Benefits include a comprehensive pension scheme, health coverage, generous holiday allowance, social events, and additional advantages like employee discounts on various products. Responsibilities: Lead the team members to achieve their best performance. Assist with some HR tasks, monitor performance, and provide constructive feedback during reviews Drive the business expansion with the support of the Senior Management Team Ensure analysts accurately record time and project notes - to guarantee adherence to quality and policy requirements Effectively assign casework to analysts and utilise the Case Manager to proactively manage individual caseloads. Ensure efficiency, meeting deadlines, and monitoring cases Ensure customer satisfaction Manage all aspects of current ISO standards, ensuring processes and documentation are up-to-date and followed Actively collaborate with internal and external teams to enhance efficiency and meet customer requirements Create and maintain a safe, secure, and legally compliant work environment and create personal growth opportunities for staff Achieve results by communicating job expectations, planning, monitoring, appraising, coaching, counselling, and disciplining employees Develop, coordinate, and enforce policies, procedures, and productivity standards Essential Skills / Qualifications 5 years+ of experience in Digital Forensics (with at least two years as a Manager or team leader) Good understanding of current ACPO guidelines and Forensic Regulator requirements for ISO17025 Excellent planning and organisational skills Ability to expand and drive business models for Digital Forensics outsourcing teams Demonstrable leadership skills in monitoring, improving, and adapting a forensic team Desired: Diagnose issues & problems with digital devices and perform necessary work Degree level qualification (2:2 or above) BSc in IT, Computer Science or Digital Forensics Previous Law Enforcement experience or having worked for Law Enforcement in the Digital Forensics space is useful Additional Requirements: Minimum five years residency in the UK for security Ability to obtain SC clearance within six months of employment Driver's license (optional) About Brimstone Consulting : We specialise in finding highly qualified staff in the following areas: Forensic Accounting & Fraud - (AML/CTF, Investigation, CFE's etc.); Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics - (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance; IT - (full SDLC - BA's PM's, Architects, Developers etc.) Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients' specifications. We may store applications in our cloud storage facilities that may include dropbox. end
May 17, 2024
Full time
Digital Forensic Lab Manager (UK) Location: Home Counties South, United Kingdom Salary: Competitive, £45k-£55k based on experience plus unique uncapped bonus element The Role: Our client is currently seeking an experienced Digital Forensic Lab Manager to lead and manage their team of forensic analysts. As the Department Head, your role will involve leading the growth of the team and business initiatives. Your duties will include developing business growth for the lab, optimising analysis, and improving processes. You will also manage the Mobile Device Lab. The role demands continuous improvement of performance to guarantee maximum and effective use of resources with a customer-focused mindset. Mostly an office-based position it demands a dynamic individual ready to make a significant contribution. Benefits include a comprehensive pension scheme, health coverage, generous holiday allowance, social events, and additional advantages like employee discounts on various products. Responsibilities: Lead the team members to achieve their best performance. Assist with some HR tasks, monitor performance, and provide constructive feedback during reviews Drive the business expansion with the support of the Senior Management Team Ensure analysts accurately record time and project notes - to guarantee adherence to quality and policy requirements Effectively assign casework to analysts and utilise the Case Manager to proactively manage individual caseloads. Ensure efficiency, meeting deadlines, and monitoring cases Ensure customer satisfaction Manage all aspects of current ISO standards, ensuring processes and documentation are up-to-date and followed Actively collaborate with internal and external teams to enhance efficiency and meet customer requirements Create and maintain a safe, secure, and legally compliant work environment and create personal growth opportunities for staff Achieve results by communicating job expectations, planning, monitoring, appraising, coaching, counselling, and disciplining employees Develop, coordinate, and enforce policies, procedures, and productivity standards Essential Skills / Qualifications 5 years+ of experience in Digital Forensics (with at least two years as a Manager or team leader) Good understanding of current ACPO guidelines and Forensic Regulator requirements for ISO17025 Excellent planning and organisational skills Ability to expand and drive business models for Digital Forensics outsourcing teams Demonstrable leadership skills in monitoring, improving, and adapting a forensic team Desired: Diagnose issues & problems with digital devices and perform necessary work Degree level qualification (2:2 or above) BSc in IT, Computer Science or Digital Forensics Previous Law Enforcement experience or having worked for Law Enforcement in the Digital Forensics space is useful Additional Requirements: Minimum five years residency in the UK for security Ability to obtain SC clearance within six months of employment Driver's license (optional) About Brimstone Consulting : We specialise in finding highly qualified staff in the following areas: Forensic Accounting & Fraud - (AML/CTF, Investigation, CFE's etc.); Legal and LegalTech (E-Discovery, Digital Forensics, EDRM); Big Data and Data Analytics - (MI/BI/CI); InfoSec and Cyber Crime; Audit; Accountancy and Finance; FinTech (Payments etc.); Risk - (Credit, Regulatory, Liquidity, Market, Analysts-SAS, SPSS etc.); Compliance/Corporate Governance; IT - (full SDLC - BA's PM's, Architects, Developers etc.) Brimstone Consulting acts as an employment agency (permanent) and as an employment business (temporary) - a free and confidential service to candidates. Brimstone Consulting is an equal opportunities employer. Due to time constraints we can only reply to applicants that match our clients' specifications. We may store applications in our cloud storage facilities that may include dropbox. end
SOC Analyst Remote Up to £35,000 Nights - Shift Patterns Entry Level to Mid-Level Are you passionate about cybersecurity and looking to kick-start your career as a Security Operations Center (SOC) Analyst? We are seeking enthusiastic individuals to join our clients team in an entry-level SOC Analyst role. Responsibilities: Monitor security events and alerts in real-time to identify potential security incidents. Investigate and analyse security incidents to determine their root cause and impact. Execute incident response procedures and escalate issues as necessary. Document and report security incidents, findings, and actions taken. Collaborate with senior SOC analysts and other IT/security teams to continuously improve security monitoring and incident response capabilities. Requirements: Strong interest in cybersecurity and a desire to pursue a career in this field. Minimum 1 year experience in a helpdesk role. Office 365, Azure, Defender (or similar) Knowledge of networking concepts and basic understanding of cybersecurity principles. Experience with security tools and technologies is a plus (e.g., SIEM, IDS/IPS, endpoint security). Good analytical and problem-solving skills. Ability to work effectively in a team and communicate technical information clearly. Desired Qualifications: Relevant degree or certification in cybersecurity, computer science, or related field. This is a fantastic opportunity for individuals looking to gain hands-on experience in cybersecurity within a supportive and dynamic team environment. Our clients offers comprehensive training and development opportunities to help you grow in your role as a SOC Analyst. To apply, please submit your CV for immediate consideration.
May 17, 2024
Full time
SOC Analyst Remote Up to £35,000 Nights - Shift Patterns Entry Level to Mid-Level Are you passionate about cybersecurity and looking to kick-start your career as a Security Operations Center (SOC) Analyst? We are seeking enthusiastic individuals to join our clients team in an entry-level SOC Analyst role. Responsibilities: Monitor security events and alerts in real-time to identify potential security incidents. Investigate and analyse security incidents to determine their root cause and impact. Execute incident response procedures and escalate issues as necessary. Document and report security incidents, findings, and actions taken. Collaborate with senior SOC analysts and other IT/security teams to continuously improve security monitoring and incident response capabilities. Requirements: Strong interest in cybersecurity and a desire to pursue a career in this field. Minimum 1 year experience in a helpdesk role. Office 365, Azure, Defender (or similar) Knowledge of networking concepts and basic understanding of cybersecurity principles. Experience with security tools and technologies is a plus (e.g., SIEM, IDS/IPS, endpoint security). Good analytical and problem-solving skills. Ability to work effectively in a team and communicate technical information clearly. Desired Qualifications: Relevant degree or certification in cybersecurity, computer science, or related field. This is a fantastic opportunity for individuals looking to gain hands-on experience in cybersecurity within a supportive and dynamic team environment. Our clients offers comprehensive training and development opportunities to help you grow in your role as a SOC Analyst. To apply, please submit your CV for immediate consideration.
IT Service Team Leader An exciting new opportunity has become available for an IT Support Supervisor/Senior IT Support Analyst to come on board working for a leading law firm in Crawley on permanent basis. IT Service Team Leader -Working closely with the outsourced IT Support desk to provide first and second line user IT support -Supervision of the IT Support team, allocating resources and coordinating across the team to ensure that the highest level of service is provided -Stay in regular contact with users across the firm -Responsible for the day to day supervision of the outsourced IT Support desk and the internal IT Support team, focusing on service delivery and excellence -Where appropriate, and with guidance from the IT Service Manager, address minor performance issues within the internal IT Support team in the first instance, and escalate further to the IT Service Manager if required -Run a daily stand-up with the IT Support team to align internal resourcing with business priorities -Attend a daily stand-up with the outsourced IT Support desk -Provide guidance and advice to the internal IT Support team where required -Regularly review tickets and performance dashboards to ensure support levels are maintained to satisfactory levels -Ensure calls to the internal IT Support team are answered promptly -Coordinate the deployment of end user equipment such as laptops, including any Intune configuration required -A strong knowledge of Windows 10/11 and Microsoft Office - in particular Word and Outlook -Exchange Online -Active Directory -A knowledge of ITIL and Cyber Security would be beneficial IT Service Team Leader In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. DGH Recruitment Limited acts as both an Employment Agency and Employment Business
May 17, 2024
Full time
IT Service Team Leader An exciting new opportunity has become available for an IT Support Supervisor/Senior IT Support Analyst to come on board working for a leading law firm in Crawley on permanent basis. IT Service Team Leader -Working closely with the outsourced IT Support desk to provide first and second line user IT support -Supervision of the IT Support team, allocating resources and coordinating across the team to ensure that the highest level of service is provided -Stay in regular contact with users across the firm -Responsible for the day to day supervision of the outsourced IT Support desk and the internal IT Support team, focusing on service delivery and excellence -Where appropriate, and with guidance from the IT Service Manager, address minor performance issues within the internal IT Support team in the first instance, and escalate further to the IT Service Manager if required -Run a daily stand-up with the IT Support team to align internal resourcing with business priorities -Attend a daily stand-up with the outsourced IT Support desk -Provide guidance and advice to the internal IT Support team where required -Regularly review tickets and performance dashboards to ensure support levels are maintained to satisfactory levels -Ensure calls to the internal IT Support team are answered promptly -Coordinate the deployment of end user equipment such as laptops, including any Intune configuration required -A strong knowledge of Windows 10/11 and Microsoft Office - in particular Word and Outlook -Exchange Online -Active Directory -A knowledge of ITIL and Cyber Security would be beneficial IT Service Team Leader In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. DGH Recruitment Limited acts as both an Employment Agency and Employment Business
Senior IT Support Analyst required by my leading London client. Are you ready to take your IT support career to the next level? We are seeking a dynamic Senior IT Support Analyst to join our innovative team. As a Senior IT Support Analyst, you will play a pivotal role in ensuring the smooth operation of our IT infrastructure, providing high-quality technical support, and spearheading complex projects. You will be working on site in Twickenham, London and be given the opporunirty tpo develop you career and technical knowldge in a busy envrionment. Key Responsibilities: Provide expert-level technical support to resolve escalated IT issues and challenges promptly and effectively. Collaborate with cross-functional teams and third-party vendors to deliver comprehensive IT solutions. Lead in-depth analysis of IT systems, identifying areas for improvement and implementing innovative solutions. Proactively monitor and analyze IT trends and developments, recommending strategies to enhance system performance and security. Drive the implementation of cybersecurity measures and controls to safeguard our digital assets. Mentor and coach junior IT support staff, fostering a culture of continuous learning and professional development. Contribute to the development and implementation of IT policies, procedures, and best practices. Qualifications: Proven experience in a senior IT support role, with a strong track record of successfully resolving complex technical issues. Expertise in troubleshooting hardware, software, and network problems. Advanced knowledge of cybersecurity principles and practices. Excellent communication skills with the ability to interact confidently with stakeholders at all levels. Strong analytical and problem-solving abilities. Relevant certifications such as CompTIA A+, Network+, Security+ or ITIL are a plus. Excellent promotional opportunities !
May 17, 2024
Full time
Senior IT Support Analyst required by my leading London client. Are you ready to take your IT support career to the next level? We are seeking a dynamic Senior IT Support Analyst to join our innovative team. As a Senior IT Support Analyst, you will play a pivotal role in ensuring the smooth operation of our IT infrastructure, providing high-quality technical support, and spearheading complex projects. You will be working on site in Twickenham, London and be given the opporunirty tpo develop you career and technical knowldge in a busy envrionment. Key Responsibilities: Provide expert-level technical support to resolve escalated IT issues and challenges promptly and effectively. Collaborate with cross-functional teams and third-party vendors to deliver comprehensive IT solutions. Lead in-depth analysis of IT systems, identifying areas for improvement and implementing innovative solutions. Proactively monitor and analyze IT trends and developments, recommending strategies to enhance system performance and security. Drive the implementation of cybersecurity measures and controls to safeguard our digital assets. Mentor and coach junior IT support staff, fostering a culture of continuous learning and professional development. Contribute to the development and implementation of IT policies, procedures, and best practices. Qualifications: Proven experience in a senior IT support role, with a strong track record of successfully resolving complex technical issues. Expertise in troubleshooting hardware, software, and network problems. Advanced knowledge of cybersecurity principles and practices. Excellent communication skills with the ability to interact confidently with stakeholders at all levels. Strong analytical and problem-solving abilities. Relevant certifications such as CompTIA A+, Network+, Security+ or ITIL are a plus. Excellent promotional opportunities !
Crisis24, a GardaWorld company, is widely regarded as the leading integrated risk management, crisis response, consulting, and global protective solutions firm, serving the world's most influential people, disruptive brands, and prominent organizations. Championed by our advanced Global Operation Centers and our skilled team of intelligence analysts, we offer highly specialized services, security and consulting, with the technology and AI to power it all across the globe. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. Crisis24's Crisis & Security Consulting (CSC) division, specifically the All-Hazards Response team, is on the lookout for a Senior Consultant. This role is ideally suited for candidates based in the UK or in mainland Europe. As a part of our dynamic and agile Response Group, the successful applicant will have the chance to enhance their skill set and knowledge, enabling them to contribute across various teams within the organization. Candidates should possess comprehensive experience in crisis management at both tactical and strategic levels and have a wide-ranging understanding of different industries. The position involves readiness to deploy globally at short notice, often in challenging situations, requiring confidence and the ability to provide immediate support and guidance to high-level / C-Suite stakeholders. What You Will Work On Summary You will deliver All Hazards Response services, providing expert advice and guidance to clients facing crises, from threats and violence to political and cyber-related issues. This role entails global deployment, often without prior notice, creating documentation in line with CSC's methodologies, conducting sensitive investigations, and potentially training as a subject matter expert for example as a crisis communications consultant. You will also support the development of junior team members and collaborate with the global consulting team on service delivery, maintaining accurate records across platforms such as Salesforce. Specifics Provide advice and guidance to clients in response to case activations on the following peril types: Active Assailant / Workplace Violence; Political Violence & Terrorism; Cyber Extortion; and Any other crisis-level event in which All-Hazard Response are engaged. Deployment globally in support of any new case activation, often with no notice. Produce all relevant documentation in support of assigned response cases, in line with CSC's doctrine and methodology. Coordinate and conduct sensitive investigational support to clients. Train as a Crisis Communications consultant. Support the development of more junior team members and work in cooperation with the wider global consulting team on all other aspects of consulting services delivery. Keep Salesforce and any other platforms used by Crisis24 up to date and accurate in relation to relevant accounts and proposals. Obtain the skill set and knowledge to actively respond as a Special Risks Response Consultant when required. Support to Insurance Partners Deliver onboarding briefings to new policy holders. Provide capability briefings in support of marketing the wider insurance policies. Assist in the delivery of update reports to insurance underwriters during ongoing cases. Generation of new response retainers, providing services to insurance partners or private clients. Direct engagement contracts for new response cases when insurance options are not present. Assist wider CSC team members in any business development briefings and activity when required. Support the implementation of a business development plan for the region. Scope, price, manage and/or oversee the development of client proposals and responses to RFPs. Represent CSC, Crisis24 and GardaWorld in client pitches/senior-level presentations/in-person meetings. Duty officer Following training, there may be a requirement to join the Duty Officer roster for All-Hazards Response activations. Account management Client liaison and account/client relationship management of new and existing consulting clients. Other Support the wider Crisis24 and GardaWorld business as required. Who You Will Work With Under the guidance of the Associate Director for All Hazards Response, you will collaborate on a variety of response cases and projects. These initiatives are diverse in terms of geography, industry, and complexity, necessitating effective management of pressures. You will be an integral part of both the Response Group and the wider CSC team, frequently assisting other teams within Crisis24 and GardaWorld. Owing to the sensitive nature of the case activity, All Hazards personnel are often visible to the highest levels of leadership within Crisis24 and GardaWorld. What You Will Bring Summary Candidates should have at least 10 years of experience in Crisis Management, preferably within a corporate or consulting environment, and a solid background in Security Risk and Crisis Management. You should be knowledgeable about crisis response processes, the specialist insurance market, and have a track record of developing new business opportunities. The role demands extensive global travel, often to high-risk areas, and requires strong analytical, problem-solving, and communication skills. Candidates must be adaptable, motivated to work irregular hours, and committed to continuous professional development. Specifics 10+ years of experience in Crisis Management, preferably in a corporate and/or consulting setting. Strong working knowledge of Security Risk and Crisis Management. In-depth knowledge and experience of crisis response processes. An understanding of specialist insurance markets. Demonstrable commercial experience developing new business opportunities. Extensive travel experience globally, including in high-threat/hostile environments. Strong analytical and problem-solving skills; a creative thinker who can apply initiative and create solutions to solve clients' problems. Ability to manage multiple cases simultaneously with strong attention to detail. Personable and able to communicate effectively at all levels with team members and clients, with the gravitas to influence at a very senior level, including verbal communications and presentations skills. Able to relate well to others with confidence and empathy, build trust and be calm and resourceful during difficult and emotive situations. The flexibility and motivation to work irregular hours and maintain quality delivery. Invested in development; maintains a high level of industry knowledge and awareness of geopolitical and security/crisis management issues and trends. The annual leave year runs from 1 January to 31 December. Your paid annual leave entitlement will be 25 days per annum (pro rata for part time hours). Group Life Insurance effective upon commencement of employment. Death in Service pays out at 4x base salary. Employee Assistance Program effective upon commencement of employment. Full details will be provided after joining the company. A Discretionary Bonus Scheme, effective in the year following your employment, and based on company performance in the previous fiscal year. Group Pension Scheme, to which you will be automatically enrolled from the beginning of the third month following start date: We will match your contributions up to 5%. The minimum contribution you can make to the scheme is 4%. You will be entitled to opt out should you wish. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws.
May 17, 2024
Full time
Crisis24, a GardaWorld company, is widely regarded as the leading integrated risk management, crisis response, consulting, and global protective solutions firm, serving the world's most influential people, disruptive brands, and prominent organizations. Championed by our advanced Global Operation Centers and our skilled team of intelligence analysts, we offer highly specialized services, security and consulting, with the technology and AI to power it all across the globe. At Crisis24, we go beyond mere employment; we pave the way to a realm where your skills become instrumental in shaping global security, guiding clients through a multifaceted and challenging landscape. Your journey with us will be deeply fulfilling, driven by a powerful sense of purpose and accomplishment. Within our thriving environment, you'll discover abundant chances for both personal and career advancement. Seize this moment to push your limits, broaden your expertise, and elevate your professional journey to unprecedented levels. Join the Crisis24 team today and be a part of something extraordinary where growth and impact converge. Crisis24's Crisis & Security Consulting (CSC) division, specifically the All-Hazards Response team, is on the lookout for a Senior Consultant. This role is ideally suited for candidates based in the UK or in mainland Europe. As a part of our dynamic and agile Response Group, the successful applicant will have the chance to enhance their skill set and knowledge, enabling them to contribute across various teams within the organization. Candidates should possess comprehensive experience in crisis management at both tactical and strategic levels and have a wide-ranging understanding of different industries. The position involves readiness to deploy globally at short notice, often in challenging situations, requiring confidence and the ability to provide immediate support and guidance to high-level / C-Suite stakeholders. What You Will Work On Summary You will deliver All Hazards Response services, providing expert advice and guidance to clients facing crises, from threats and violence to political and cyber-related issues. This role entails global deployment, often without prior notice, creating documentation in line with CSC's methodologies, conducting sensitive investigations, and potentially training as a subject matter expert for example as a crisis communications consultant. You will also support the development of junior team members and collaborate with the global consulting team on service delivery, maintaining accurate records across platforms such as Salesforce. Specifics Provide advice and guidance to clients in response to case activations on the following peril types: Active Assailant / Workplace Violence; Political Violence & Terrorism; Cyber Extortion; and Any other crisis-level event in which All-Hazard Response are engaged. Deployment globally in support of any new case activation, often with no notice. Produce all relevant documentation in support of assigned response cases, in line with CSC's doctrine and methodology. Coordinate and conduct sensitive investigational support to clients. Train as a Crisis Communications consultant. Support the development of more junior team members and work in cooperation with the wider global consulting team on all other aspects of consulting services delivery. Keep Salesforce and any other platforms used by Crisis24 up to date and accurate in relation to relevant accounts and proposals. Obtain the skill set and knowledge to actively respond as a Special Risks Response Consultant when required. Support to Insurance Partners Deliver onboarding briefings to new policy holders. Provide capability briefings in support of marketing the wider insurance policies. Assist in the delivery of update reports to insurance underwriters during ongoing cases. Generation of new response retainers, providing services to insurance partners or private clients. Direct engagement contracts for new response cases when insurance options are not present. Assist wider CSC team members in any business development briefings and activity when required. Support the implementation of a business development plan for the region. Scope, price, manage and/or oversee the development of client proposals and responses to RFPs. Represent CSC, Crisis24 and GardaWorld in client pitches/senior-level presentations/in-person meetings. Duty officer Following training, there may be a requirement to join the Duty Officer roster for All-Hazards Response activations. Account management Client liaison and account/client relationship management of new and existing consulting clients. Other Support the wider Crisis24 and GardaWorld business as required. Who You Will Work With Under the guidance of the Associate Director for All Hazards Response, you will collaborate on a variety of response cases and projects. These initiatives are diverse in terms of geography, industry, and complexity, necessitating effective management of pressures. You will be an integral part of both the Response Group and the wider CSC team, frequently assisting other teams within Crisis24 and GardaWorld. Owing to the sensitive nature of the case activity, All Hazards personnel are often visible to the highest levels of leadership within Crisis24 and GardaWorld. What You Will Bring Summary Candidates should have at least 10 years of experience in Crisis Management, preferably within a corporate or consulting environment, and a solid background in Security Risk and Crisis Management. You should be knowledgeable about crisis response processes, the specialist insurance market, and have a track record of developing new business opportunities. The role demands extensive global travel, often to high-risk areas, and requires strong analytical, problem-solving, and communication skills. Candidates must be adaptable, motivated to work irregular hours, and committed to continuous professional development. Specifics 10+ years of experience in Crisis Management, preferably in a corporate and/or consulting setting. Strong working knowledge of Security Risk and Crisis Management. In-depth knowledge and experience of crisis response processes. An understanding of specialist insurance markets. Demonstrable commercial experience developing new business opportunities. Extensive travel experience globally, including in high-threat/hostile environments. Strong analytical and problem-solving skills; a creative thinker who can apply initiative and create solutions to solve clients' problems. Ability to manage multiple cases simultaneously with strong attention to detail. Personable and able to communicate effectively at all levels with team members and clients, with the gravitas to influence at a very senior level, including verbal communications and presentations skills. Able to relate well to others with confidence and empathy, build trust and be calm and resourceful during difficult and emotive situations. The flexibility and motivation to work irregular hours and maintain quality delivery. Invested in development; maintains a high level of industry knowledge and awareness of geopolitical and security/crisis management issues and trends. The annual leave year runs from 1 January to 31 December. Your paid annual leave entitlement will be 25 days per annum (pro rata for part time hours). Group Life Insurance effective upon commencement of employment. Death in Service pays out at 4x base salary. Employee Assistance Program effective upon commencement of employment. Full details will be provided after joining the company. A Discretionary Bonus Scheme, effective in the year following your employment, and based on company performance in the previous fiscal year. Group Pension Scheme, to which you will be automatically enrolled from the beginning of the third month following start date: We will match your contributions up to 5%. The minimum contribution you can make to the scheme is 4%. You will be entitled to opt out should you wish. Information Security Protect the data and systems of Crisis24 and its stakeholders by adhering to policies, reporting incidents and potential problems, completing regular training, and identifying opportunities for improvement. Crisis24, A GardaWorld Company is dedicated to equal opportunity in employment. We are committed to a work environment that celebrates diversity. We do not discriminate against any individual based on race, color, sex, national origin, age, religion, marital or parental status, sexual orientation, gender identity, gender expression, military or veteran status, disability, or any factors protected by applicable laws.