Robert Walters is working in partnership with a national market leading business. They specialise in distribution, construction and building materials. With a long-standing history, they employ over 16,000 employees with an enterprise technology estate to support their business services. Due to continued growth, they are keen to appoint an Information Security Cloud Analyst, based out of the Northampton offices with a hybrid working model paying as salary up to £55,000 plus benefits. As an experienced Information Security Cloud Analyst, you will hold responsibility for maintaining and improving all security operational procedures. In addition to processes, technical controls, monitoring, detecting and responding to security threats. You will carryout threat intelligence and the management of security testing in order to reduce operation InfoSec risks. Information Security Cloud Analyst - Duties Config/Scheduling of vulnerability scans within vulnerability management programme Monitor/Prioritise/Remediation of identified vulnerabilities Organise penetration tests with 3rd party providers and remediate vulnerabilities on risk basis Investigate and resolution of InfoSec incidents, requests and investigations Ensure communication of incidents between SOC and technical support teams Support the ISI process for major cyber incidents SecOps reporting Searching/Identification/Resolution of IOCs and IOBs Enforce secure configurations and polices for on prem infrastructure Multi cloud platforms - AWS, GCP The permanent opportunity for an Information Security Cloud Analyst, will pay up to £55,000 plus benefits and offer a hybrid working model from their Northampton offices. This is an opportunity to join a market leading business that has grown year on year. For further information, please apply with an updated CV and contact Ajay Hayre on / Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
May 16, 2024
Full time
Robert Walters is working in partnership with a national market leading business. They specialise in distribution, construction and building materials. With a long-standing history, they employ over 16,000 employees with an enterprise technology estate to support their business services. Due to continued growth, they are keen to appoint an Information Security Cloud Analyst, based out of the Northampton offices with a hybrid working model paying as salary up to £55,000 plus benefits. As an experienced Information Security Cloud Analyst, you will hold responsibility for maintaining and improving all security operational procedures. In addition to processes, technical controls, monitoring, detecting and responding to security threats. You will carryout threat intelligence and the management of security testing in order to reduce operation InfoSec risks. Information Security Cloud Analyst - Duties Config/Scheduling of vulnerability scans within vulnerability management programme Monitor/Prioritise/Remediation of identified vulnerabilities Organise penetration tests with 3rd party providers and remediate vulnerabilities on risk basis Investigate and resolution of InfoSec incidents, requests and investigations Ensure communication of incidents between SOC and technical support teams Support the ISI process for major cyber incidents SecOps reporting Searching/Identification/Resolution of IOCs and IOBs Enforce secure configurations and polices for on prem infrastructure Multi cloud platforms - AWS, GCP The permanent opportunity for an Information Security Cloud Analyst, will pay up to £55,000 plus benefits and offer a hybrid working model from their Northampton offices. This is an opportunity to join a market leading business that has grown year on year. For further information, please apply with an updated CV and contact Ajay Hayre on / Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Senior SOC Analyst - Reading/Hybrid - Up to £65k + BenefitsSenior SOC Analyst required to join the growing cyber security team at a large enterprise that serves millions of customers!In this challenging and varied role, you will be responsible for maintaining Security Operations (SecOps) solutions, controls, and processes across the organisation. You will provide proactive risk remediation, will help with incident readiness & response and will also contribute to the continuous improvement of the security environment. This organisation is making a big investment in cyber and there are lots of initiatives and projects to get stuck into. If you are looking for a role where you can make an impact, influence the future and have your voice and opinions heard then look no further!As SOC Analyst you will bring a good understanding of SecOps concepts, technologies, and best practices and will collaborate effectively with cross-functional teams to ensure the highest level of security, compliance, and user experience.Amongst your responsibilities you will: Collaborate with stakeholders to ensure security controls align with business requirements and risk levels Develop and maintain SecOps documentation, policies, and procedures Maintain cybersecurity solutions across systems, applications, and infrastructure Investigate security alerts from the SIEM tool and take appropriate incident response actions. Communicate with stakeholders about security incidents, detailing actions taken. Support the Cyber Incident Response Manager by triaging events and conducting root cause analysis for security and privacy incidents. On-call duty is required for major incidents. Conduct proactive threat hunting to detect emerging cyber threats. Collect data for cybersecurity compliance dashboards and ensure compliance with GDPR, NIS, and ISO 27001. Monitor and optimize the performance of SecOps tools. Stay updated with industry trends and best practices to improve security operations. This is a SOC role that offers a good chance to test and advance your skills across a range of projects including the migration of legacy to more modern solutions. To be considered you must be a Security, Cyber or SOC professional who has ideally operated within an enterprise environment. You will have solid exposure to cyber security concepts and principles and must bring a sound knowledge of the Microsoft stack including O365, Windows and MFA (Multifactor Authenticator). You must also have hands-on experience utilising and configuring Microsoft Security Operations tools such as Sentinel and Defender.You will possess a good general understanding of IT/Infrastructure and will have strong analytical and problem-solving abilities. A strong communicator, you will have no trouble explaining complex IT or security problems in a simple manner to non-technical audiences. Industry certifications are desirable, ideally a Microsoft SecOps specific certification(s) e.g. Microsoft Security Operations Analyst (SC-200) and/or cyber security industry certification(s) such as CISSP, CISM, or CCSP.If you are Security, Cyber or SOC professional looking for a role which gives you new challenges, opportunity for growth and the chance to make a real impact then APPLY NOW!If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch.
May 16, 2024
Full time
Senior SOC Analyst - Reading/Hybrid - Up to £65k + BenefitsSenior SOC Analyst required to join the growing cyber security team at a large enterprise that serves millions of customers!In this challenging and varied role, you will be responsible for maintaining Security Operations (SecOps) solutions, controls, and processes across the organisation. You will provide proactive risk remediation, will help with incident readiness & response and will also contribute to the continuous improvement of the security environment. This organisation is making a big investment in cyber and there are lots of initiatives and projects to get stuck into. If you are looking for a role where you can make an impact, influence the future and have your voice and opinions heard then look no further!As SOC Analyst you will bring a good understanding of SecOps concepts, technologies, and best practices and will collaborate effectively with cross-functional teams to ensure the highest level of security, compliance, and user experience.Amongst your responsibilities you will: Collaborate with stakeholders to ensure security controls align with business requirements and risk levels Develop and maintain SecOps documentation, policies, and procedures Maintain cybersecurity solutions across systems, applications, and infrastructure Investigate security alerts from the SIEM tool and take appropriate incident response actions. Communicate with stakeholders about security incidents, detailing actions taken. Support the Cyber Incident Response Manager by triaging events and conducting root cause analysis for security and privacy incidents. On-call duty is required for major incidents. Conduct proactive threat hunting to detect emerging cyber threats. Collect data for cybersecurity compliance dashboards and ensure compliance with GDPR, NIS, and ISO 27001. Monitor and optimize the performance of SecOps tools. Stay updated with industry trends and best practices to improve security operations. This is a SOC role that offers a good chance to test and advance your skills across a range of projects including the migration of legacy to more modern solutions. To be considered you must be a Security, Cyber or SOC professional who has ideally operated within an enterprise environment. You will have solid exposure to cyber security concepts and principles and must bring a sound knowledge of the Microsoft stack including O365, Windows and MFA (Multifactor Authenticator). You must also have hands-on experience utilising and configuring Microsoft Security Operations tools such as Sentinel and Defender.You will possess a good general understanding of IT/Infrastructure and will have strong analytical and problem-solving abilities. A strong communicator, you will have no trouble explaining complex IT or security problems in a simple manner to non-technical audiences. Industry certifications are desirable, ideally a Microsoft SecOps specific certification(s) e.g. Microsoft Security Operations Analyst (SC-200) and/or cyber security industry certification(s) such as CISSP, CISM, or CCSP.If you are Security, Cyber or SOC professional looking for a role which gives you new challenges, opportunity for growth and the chance to make a real impact then APPLY NOW!If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch.
Information Security Analyst 60,000 - 70,000 per annum Full time - City - Hybrid Sponsorship is not available for this opportunity Is this the Information Security Analyst role for you? Crone Corkill are partnered with a very well respected organisation in the Legal sector as they look to add a new member to the Information Security team. Partnering with the Information Security Manager, you'll ensure the business aligns to ISO27001, conduct audits related to ISO27001 & NIST, generate InfoSec dashboards & metrics, as well as handle the onboarding of new suppliers. Due to the small size of the team, you'll often be required to work independently and assist with a variety of InfoSec related tasks. What will you do as an Information Security Analyst? Onboard suppliers and perform risk assessments, third party questionnaires, due diligence, gap analysis and make suggestions accordingly Ensure Security best practice is followed and ISO27001 compliance is met Generate metrics/dashboard for management reviews Assist in overseeing the ISMS from a GRC perspective Provide Information Security awareness training to tech & non-tech teams Plan audits, risk assessments and control implementations related to ISO27001 Provide a sound understanding of Cloud Security & Cloud Infrastructure principles/controls Assist the SecOps team with incident handling, response and escalations, as well as ensuring processes are documented in line with ISO27001 Manage technical risks via vulnerability management oversight & gap analysis, whilst also overseeing DLP alerts and creating reports What skills do you need as an Information Security Analyst? ISO27001 NIST Supplier onboarding Generating metrics & dashboards The ability to work independently Good knowledge of Cloud Security (open on platform) Experience in the Legal or Professional Service sectors (advantageous) Relevant InfoSec/Cyber certifications (very advantageous) What's in it for you? In return, you'll have the opportunity to work with a diverse group of colleagues, with inclusion at the forefront of their working culture. Though working in a small team, the business are dedicated to providing the training and development needed for you to be successful within the role - Whilst also giving you the chance to be deeply involved in a range of upcoming projects.
May 15, 2024
Full time
Information Security Analyst 60,000 - 70,000 per annum Full time - City - Hybrid Sponsorship is not available for this opportunity Is this the Information Security Analyst role for you? Crone Corkill are partnered with a very well respected organisation in the Legal sector as they look to add a new member to the Information Security team. Partnering with the Information Security Manager, you'll ensure the business aligns to ISO27001, conduct audits related to ISO27001 & NIST, generate InfoSec dashboards & metrics, as well as handle the onboarding of new suppliers. Due to the small size of the team, you'll often be required to work independently and assist with a variety of InfoSec related tasks. What will you do as an Information Security Analyst? Onboard suppliers and perform risk assessments, third party questionnaires, due diligence, gap analysis and make suggestions accordingly Ensure Security best practice is followed and ISO27001 compliance is met Generate metrics/dashboard for management reviews Assist in overseeing the ISMS from a GRC perspective Provide Information Security awareness training to tech & non-tech teams Plan audits, risk assessments and control implementations related to ISO27001 Provide a sound understanding of Cloud Security & Cloud Infrastructure principles/controls Assist the SecOps team with incident handling, response and escalations, as well as ensuring processes are documented in line with ISO27001 Manage technical risks via vulnerability management oversight & gap analysis, whilst also overseeing DLP alerts and creating reports What skills do you need as an Information Security Analyst? ISO27001 NIST Supplier onboarding Generating metrics & dashboards The ability to work independently Good knowledge of Cloud Security (open on platform) Experience in the Legal or Professional Service sectors (advantageous) Relevant InfoSec/Cyber certifications (very advantageous) What's in it for you? In return, you'll have the opportunity to work with a diverse group of colleagues, with inclusion at the forefront of their working culture. Though working in a small team, the business are dedicated to providing the training and development needed for you to be successful within the role - Whilst also giving you the chance to be deeply involved in a range of upcoming projects.
SailPoint Specialist: Remote (UK) Would shaping the security frameworks and practices of a company with a presence in over 100 counties appeal to you? If so please read on! I have partnered with one of the worlds leading manufacturing organisations who are looking to grow out their Cyber and IAM function rapidly. They have a number of high profile projects and implementations that are key to the company this year and need the best Analysts to come on board for the journey. Such is the importance of the role you will report to the Global CISO. What will you be responsible for? You will manage the product life cycle (provision/ securing and prevention of access) using recognised IAM tools and practices - SailPoint or BeyondTrust or Okta SSO ideally Accurately detail and document all life-cycle changes Identity issues and liaise with development and management teams to collaboratively overcome both workflow and security issues Continuing the collaboration theme IAM design/ implementation and support (IGA/ PAM etc) will be a key aspect of the role Provide in-depth analysis to improve IAM processes and standards Keep a key eye out for anomalies/ unauthorised access/ alert notifications and other SecOps red flags Preparation of detailed and analytical reports and observations Be the champion for company wide access compliance and cybersecurity standards What you will need for this position: CISSP certification is a must have for this role Demonstrable hands on experience using SailPoint is essential If you have used other security related tech such as BeyondTrust/ Okta SSO that would be another great addition A minimum of 4 years working within IAM and related projects Advanced knowledge of security best practices Knowledge of compliance mechanisms IAM technologies Being highly organised and with the ability to communicate (both written and verbally) clearly and efficiently If this role sounds like your next opportunity then please do apply right away!
May 15, 2024
Full time
SailPoint Specialist: Remote (UK) Would shaping the security frameworks and practices of a company with a presence in over 100 counties appeal to you? If so please read on! I have partnered with one of the worlds leading manufacturing organisations who are looking to grow out their Cyber and IAM function rapidly. They have a number of high profile projects and implementations that are key to the company this year and need the best Analysts to come on board for the journey. Such is the importance of the role you will report to the Global CISO. What will you be responsible for? You will manage the product life cycle (provision/ securing and prevention of access) using recognised IAM tools and practices - SailPoint or BeyondTrust or Okta SSO ideally Accurately detail and document all life-cycle changes Identity issues and liaise with development and management teams to collaboratively overcome both workflow and security issues Continuing the collaboration theme IAM design/ implementation and support (IGA/ PAM etc) will be a key aspect of the role Provide in-depth analysis to improve IAM processes and standards Keep a key eye out for anomalies/ unauthorised access/ alert notifications and other SecOps red flags Preparation of detailed and analytical reports and observations Be the champion for company wide access compliance and cybersecurity standards What you will need for this position: CISSP certification is a must have for this role Demonstrable hands on experience using SailPoint is essential If you have used other security related tech such as BeyondTrust/ Okta SSO that would be another great addition A minimum of 4 years working within IAM and related projects Advanced knowledge of security best practices Knowledge of compliance mechanisms IAM technologies Being highly organised and with the ability to communicate (both written and verbally) clearly and efficiently If this role sounds like your next opportunity then please do apply right away!
Lead Cloud Security Engineer Location: UK Remote Salary: £100k - £115k + Fantastic Benefits + Excellent Pension The Client: Our client, a prominent organisation, collaborates with the NHS to empower researchers in discovering disease causes and developing innovative treatments, with a focus on prioritising patients and participants. The Role: This opportunity would suit someone who is looking to do something that is impactful, where you can clearly see the results of the work that you're doing and help shape a Security Engineering function. You will lead on new and interesting projects that are the first of their kind and have a hugely positive social impact. Duties: Working with the cloud engineering team and providing expert advice on securing their use of Azure cloud services, Kubernetes and containers. In particular, providing guidance and a level of oversight for Azure network security and Key Vault. Encouraging and leading on a 'shift-left' approach to security. Overseeing and supporting the operation of Microsoft Defender for Cloud. Developing and getting wider buy-in for security policy as code (using OPA or similar). Assisting with maturing their use of and supporting the operation of Entra ID (previously AAD) for IAM, Identity Governance and Privileged Identity Management. Driving the work to secure their Data Platform, including their use of Databricks, Dagster and Snowflake along with in-house developed applications and CI/CD pipeline. Collaborate with wider tech and security teams on the implementation and operation of a robust Customer Identity and Access Management (CIAM) service. Supporting, coaching and mentoring members of the wider security team. Requirements: Proficient in writing Terraform, KQL and ideally Python and PowerShell. Significant experience of securing Azure and Azure security services (e.g. Key Vault, NSGs, WAF, etc.) Significant experience of securing Kubernetes (ideally AKS) and container security. Significant experience of automating security capabilities and operations and security/policy as code (e.g. with OPA, Azure Policy, etc.) Experience with Microsoft's Defender suite, in particular Defender for Cloud. Experience with Microsoft Entra ID (previously AAD), including the Identity Governance capabilities Hands-on experience with Microsoft Sentinel. Ideally experience of securing Github and Github actions (or similar). Ideally experience in securing data platforms (e.g. Databricks, Dagster, Snowflake). Experience in Threat Modelling. Exposure to Agile working and DevSecOps. Knowledge of ISO 27001. Relevant certifications, such as: Microsoft certifications (MS-500, AZ-500, AZ-700, SC-200, SC-300), CompTIA Security+ and Cloud+, Cloud Security Alliance CCSK, ISC2 CCSP Apply now for this exceptional opportunity to work with a dynamic team and further enhance your career. Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us. Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Key Words - KQL, Terraform, Python, Azure, Key Vault, Security, Microsoft, Sentinel, Microsoft Defender, Powershell, Dagster, Security Engineer, Security Consultant, Security Analyst, Cloud Security, Cyber Security, Engineer
May 14, 2024
Full time
Lead Cloud Security Engineer Location: UK Remote Salary: £100k - £115k + Fantastic Benefits + Excellent Pension The Client: Our client, a prominent organisation, collaborates with the NHS to empower researchers in discovering disease causes and developing innovative treatments, with a focus on prioritising patients and participants. The Role: This opportunity would suit someone who is looking to do something that is impactful, where you can clearly see the results of the work that you're doing and help shape a Security Engineering function. You will lead on new and interesting projects that are the first of their kind and have a hugely positive social impact. Duties: Working with the cloud engineering team and providing expert advice on securing their use of Azure cloud services, Kubernetes and containers. In particular, providing guidance and a level of oversight for Azure network security and Key Vault. Encouraging and leading on a 'shift-left' approach to security. Overseeing and supporting the operation of Microsoft Defender for Cloud. Developing and getting wider buy-in for security policy as code (using OPA or similar). Assisting with maturing their use of and supporting the operation of Entra ID (previously AAD) for IAM, Identity Governance and Privileged Identity Management. Driving the work to secure their Data Platform, including their use of Databricks, Dagster and Snowflake along with in-house developed applications and CI/CD pipeline. Collaborate with wider tech and security teams on the implementation and operation of a robust Customer Identity and Access Management (CIAM) service. Supporting, coaching and mentoring members of the wider security team. Requirements: Proficient in writing Terraform, KQL and ideally Python and PowerShell. Significant experience of securing Azure and Azure security services (e.g. Key Vault, NSGs, WAF, etc.) Significant experience of securing Kubernetes (ideally AKS) and container security. Significant experience of automating security capabilities and operations and security/policy as code (e.g. with OPA, Azure Policy, etc.) Experience with Microsoft's Defender suite, in particular Defender for Cloud. Experience with Microsoft Entra ID (previously AAD), including the Identity Governance capabilities Hands-on experience with Microsoft Sentinel. Ideally experience of securing Github and Github actions (or similar). Ideally experience in securing data platforms (e.g. Databricks, Dagster, Snowflake). Experience in Threat Modelling. Exposure to Agile working and DevSecOps. Knowledge of ISO 27001. Relevant certifications, such as: Microsoft certifications (MS-500, AZ-500, AZ-700, SC-200, SC-300), CompTIA Security+ and Cloud+, Cloud Security Alliance CCSK, ISC2 CCSP Apply now for this exceptional opportunity to work with a dynamic team and further enhance your career. Important Information: We endeavour to process your personal data in a fair and transparent manner. In applying for this role, Additional Resources will be acting in your best interest and may contact you in relation to the role, either by email, phone or text message. For more information see our Privacy Policy on our website. It is important you are aware of your individual rights and the provisions the company has put in place to protect your data. If you would like further information on the policy or GDPR please contact us. Additional Resources Ltd is an Employment Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Key Words - KQL, Terraform, Python, Azure, Key Vault, Security, Microsoft, Sentinel, Microsoft Defender, Powershell, Dagster, Security Engineer, Security Consultant, Security Analyst, Cloud Security, Cyber Security, Engineer
Azure DevOps Engineer Manchester £50-75K (depending on experience) + Great benefits Manchester/Hybrid An Azure DevOps Engineer is required for our public sector client who are based in Manchester. The DevOps Engineer will take technical responsibility for the design, development, integration and configuration of automation components and infrastructures. This role plans and drives development activities and system integrations, as well as builds capabilities including automation and continuous integration. The successful candidate will design large and complex systems, undertakes impact/risk analysis and will make decisions that balance functional and non-functional requirements. You will also ensure adherence to appropriate methods and tools; monitors standards; and will contribute to setting technical policies, guidelines and architecture. The ideal candidate will be hands on and will possess a deep understanding of the Azure ecosystem to join delivery teams working on some of the most exciting digital programmes within the education sector. The organisation has a clearly defined IT digital roadmap leading to 2024/2025. As an Azure expert, you'll work in small product teams alongside developers, architects, designers, analysts and product owners to deliver automation, tooling and cloud infrastructure. Experience required You'll have the expertise and confidence to lead the definition and support of the Azure, AWS and GCP delivery platform in complex engagements, typically working in multi-disciplinary teams. Familiarity with collaboration suites i.e. Atlassian products (Jira, Confluence) Hands on with any of Azure, AWS or GCP Services Automating cloud services Exposure towards Infrastructure Management, Data Migration. Scripting with one or more of the following: Powershell, Python, Go SecOps experience. Automating delivery of Infrastructure as Code (IaC) via Terraform. Deep understanding of CI/CD pipeline Code Repository Management (e.g. Gitlab, GitHub, Bitbucket) Architecture awareness and experience around enterprise scale applications and distributed systems DevOps mind-set towards Automation. Understanding of Security Compliance PCI DSS, ISO, Cyber Essentials, NIST. Desirable Criteria Experience with container technologies using Docker and Kubernetes Experience with Cloud Best Practices, Cost Optimisation and Architecture Automating configuration management Ansible. Knowledge around Identity Management, DNS, SAML 2.0. Benefits Learning and development opportunities -opportunity to obtain Azure qualifications.
May 13, 2024
Full time
Azure DevOps Engineer Manchester £50-75K (depending on experience) + Great benefits Manchester/Hybrid An Azure DevOps Engineer is required for our public sector client who are based in Manchester. The DevOps Engineer will take technical responsibility for the design, development, integration and configuration of automation components and infrastructures. This role plans and drives development activities and system integrations, as well as builds capabilities including automation and continuous integration. The successful candidate will design large and complex systems, undertakes impact/risk analysis and will make decisions that balance functional and non-functional requirements. You will also ensure adherence to appropriate methods and tools; monitors standards; and will contribute to setting technical policies, guidelines and architecture. The ideal candidate will be hands on and will possess a deep understanding of the Azure ecosystem to join delivery teams working on some of the most exciting digital programmes within the education sector. The organisation has a clearly defined IT digital roadmap leading to 2024/2025. As an Azure expert, you'll work in small product teams alongside developers, architects, designers, analysts and product owners to deliver automation, tooling and cloud infrastructure. Experience required You'll have the expertise and confidence to lead the definition and support of the Azure, AWS and GCP delivery platform in complex engagements, typically working in multi-disciplinary teams. Familiarity with collaboration suites i.e. Atlassian products (Jira, Confluence) Hands on with any of Azure, AWS or GCP Services Automating cloud services Exposure towards Infrastructure Management, Data Migration. Scripting with one or more of the following: Powershell, Python, Go SecOps experience. Automating delivery of Infrastructure as Code (IaC) via Terraform. Deep understanding of CI/CD pipeline Code Repository Management (e.g. Gitlab, GitHub, Bitbucket) Architecture awareness and experience around enterprise scale applications and distributed systems DevOps mind-set towards Automation. Understanding of Security Compliance PCI DSS, ISO, Cyber Essentials, NIST. Desirable Criteria Experience with container technologies using Docker and Kubernetes Experience with Cloud Best Practices, Cost Optimisation and Architecture Automating configuration management Ansible. Knowledge around Identity Management, DNS, SAML 2.0. Benefits Learning and development opportunities -opportunity to obtain Azure qualifications.
Main duties and responsibilities Programming and build - You can design, write and iterate code from prototype to production-ready. You understand security, accessibility and version control. You can use a range of coding tools and languages. You can develop code that self-generates documentation that supports Data Scientists and Data Analysts. Technical understanding - You know about the specific technologies that underpin your ability to deliver the responsibilities and tasks of the role. You can apply the required breadth and depth of technical knowledge. Testing - You can plan, design, manage, execute and report tests, using appropriate tools and techniques, and work within regulations. You know how to ensure that risks associated with deployment are adequately understood and documented Problem resolution - You know how to log, analyse and manage problems in order to identify and implement the appropriate solution. You can ensure that the problem is fixed. You will work in the Data Engineering and Enablement Division that reports into the Data Operations Directorate. It's an exciting time to join as we seek to create leading Health Protection data capabilities that enable data scientists and data analysts to develop insights that inform public health decisions with resilience platforms and curated data assets. The role requires the ingestion of a wide range of data assets, building acquisition, orchestration, data pipelines and curated data marts and data egresses. We are seeking to mature our advanced capabilities with standardised practices, machine learning and agility needed to pro-active detect and respond to new public health issues. You will be involved in the delivery lifecycle from engaging with stakeholders on new initiatives, analysing use cases, developing optimal designs that where possible re-use and extend capabilities, and implement and operate the design. Our teams work collaboratively in an agile multi-disciplinary team mode and we are looking for engineers who have the ability to operate in feature teams, data operations and DevSecOps models. We are developing our engineering community of practice to share knowledge, enhance our standards and processes to provide a strong foundation to develop individuals, teams and innovation. Essential Criteria Strong at python, unit testing (pytest) and pep8 standards Writing robust data pipeline code that can run unattended Pandas data validation, manipulation, merging, joining and at times visualisation Unix environment, server health and management of ongoing running processes Github, git, pull requests, CI and code review Logging and reporting pragmatically Ability to troubleshoot and solve numerical and technical problems High attention to detail Excellent communication and facilitation skills evidenced through verbal and written means to a wide range of stakeholders Experience with Agile delivery Data engineering experience using Python, SQL, Spark and AWS Hands on ETL development experience utilizing Microsoft enterprise stack / Azure and AWS Glue Knowledge of data management platforms and development with SQLServer Experience with publishing data sets for visualisation and analysis Experience with supporting design of data models / data flows Ability to work as part of a team to develop and deliver end-to-end data warehouse solutions Analytical skill set with an ability to understand data requirements and support the development of data solutions Desirable Criteria Machine learning for engineering practices, such as meta driven intelligent ETL and pipeline processes Experience of working with JIRA (or Azure DevOps or similar tools) within an Agile/Scrum environment Experience/understanding of software and data lifecycle management Educated to degree level (not essential, experience is key). Relevant numerate, technical or computer science discipline would be an advantage for more info click the apply here button
Aug 16, 2023
Full time
Main duties and responsibilities Programming and build - You can design, write and iterate code from prototype to production-ready. You understand security, accessibility and version control. You can use a range of coding tools and languages. You can develop code that self-generates documentation that supports Data Scientists and Data Analysts. Technical understanding - You know about the specific technologies that underpin your ability to deliver the responsibilities and tasks of the role. You can apply the required breadth and depth of technical knowledge. Testing - You can plan, design, manage, execute and report tests, using appropriate tools and techniques, and work within regulations. You know how to ensure that risks associated with deployment are adequately understood and documented Problem resolution - You know how to log, analyse and manage problems in order to identify and implement the appropriate solution. You can ensure that the problem is fixed. You will work in the Data Engineering and Enablement Division that reports into the Data Operations Directorate. It's an exciting time to join as we seek to create leading Health Protection data capabilities that enable data scientists and data analysts to develop insights that inform public health decisions with resilience platforms and curated data assets. The role requires the ingestion of a wide range of data assets, building acquisition, orchestration, data pipelines and curated data marts and data egresses. We are seeking to mature our advanced capabilities with standardised practices, machine learning and agility needed to pro-active detect and respond to new public health issues. You will be involved in the delivery lifecycle from engaging with stakeholders on new initiatives, analysing use cases, developing optimal designs that where possible re-use and extend capabilities, and implement and operate the design. Our teams work collaboratively in an agile multi-disciplinary team mode and we are looking for engineers who have the ability to operate in feature teams, data operations and DevSecOps models. We are developing our engineering community of practice to share knowledge, enhance our standards and processes to provide a strong foundation to develop individuals, teams and innovation. Essential Criteria Strong at python, unit testing (pytest) and pep8 standards Writing robust data pipeline code that can run unattended Pandas data validation, manipulation, merging, joining and at times visualisation Unix environment, server health and management of ongoing running processes Github, git, pull requests, CI and code review Logging and reporting pragmatically Ability to troubleshoot and solve numerical and technical problems High attention to detail Excellent communication and facilitation skills evidenced through verbal and written means to a wide range of stakeholders Experience with Agile delivery Data engineering experience using Python, SQL, Spark and AWS Hands on ETL development experience utilizing Microsoft enterprise stack / Azure and AWS Glue Knowledge of data management platforms and development with SQLServer Experience with publishing data sets for visualisation and analysis Experience with supporting design of data models / data flows Ability to work as part of a team to develop and deliver end-to-end data warehouse solutions Analytical skill set with an ability to understand data requirements and support the development of data solutions Desirable Criteria Machine learning for engineering practices, such as meta driven intelligent ETL and pipeline processes Experience of working with JIRA (or Azure DevOps or similar tools) within an Agile/Scrum environment Experience/understanding of software and data lifecycle management Educated to degree level (not essential, experience is key). Relevant numerate, technical or computer science discipline would be an advantage for more info click the apply here button
BAE Systems Digital Intelligence
Guildford, Surrey
Role description Our international clients include government and defence organisations focussed on their national cyber mission. We are looking for candidates with a strong understanding of cyber security operations which they can apply to helping customers improve their operations, gaining full value from their use of monitoring tools and threat intelligence. The role is to work onsite with international government clients, primarily in their security operations functions. This may involve working in classified environments. The role draws on technical skills to work with in-country teams to get the best use from their tooling, and is likely to have a significant coaching and upskilling element, as well as creating processes to help build effectiveness in the team. This role will involve international travel, so candidates need to be willing and able to travel for extended periods. Responsibilities Support customer with day-to-day security operations in a coaching capacity Understand Threat Intelligence and its use in an operational environment Use and support client teams in gaining value from their Security Operations technology Deliver security operations training to clients as required Support incident response to national scale incidents in a coaching capacity Establish and build relationships with stakeholders Formulate strategy for improvements to security operations, and communicate in business language to a range of stakeholders. Work with other teams within BAE to improve services on the basis of customer needs. Requirements Technical Basic Python and/or scripting skills Working with a range of security tooling/technology Strong understanding of security architecture, in particular networking Detailed understanding of threat intelligence and threat actors, TTPs and operationalising threat intelligence. Experience in investigating complex network intrusions (by state-sponsored groups or targeted ransomware attacks). Non-technical Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing) Coaching mindset: the longer term role is not to do the job for the customers, but to mentor them to do it themselves. Security process development Able to understand and adapt to different cultures and hierarchical structures. Self-starter and capable of independent working Desirable Software engineering experience Penetration testing skills Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance wellbeing. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. About BAE Systems Digital Intelligence We use our intelligence-led insights to help defend Governments, Nations and Societies from cyber-attacks and financial crime. Our customers depend on our evolving capabilities to help them safely grow their organisations. Our unprecedented access to threat intelligence, world-leading analysts and market-leading technology means we can help them to adapt, evolve and stay ahead of the criminals. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Our Government business unit houses four of our critical client groups: UK National Security, Global National Security, defence and central government. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours.
Sep 22, 2022
Full time
Role description Our international clients include government and defence organisations focussed on their national cyber mission. We are looking for candidates with a strong understanding of cyber security operations which they can apply to helping customers improve their operations, gaining full value from their use of monitoring tools and threat intelligence. The role is to work onsite with international government clients, primarily in their security operations functions. This may involve working in classified environments. The role draws on technical skills to work with in-country teams to get the best use from their tooling, and is likely to have a significant coaching and upskilling element, as well as creating processes to help build effectiveness in the team. This role will involve international travel, so candidates need to be willing and able to travel for extended periods. Responsibilities Support customer with day-to-day security operations in a coaching capacity Understand Threat Intelligence and its use in an operational environment Use and support client teams in gaining value from their Security Operations technology Deliver security operations training to clients as required Support incident response to national scale incidents in a coaching capacity Establish and build relationships with stakeholders Formulate strategy for improvements to security operations, and communicate in business language to a range of stakeholders. Work with other teams within BAE to improve services on the basis of customer needs. Requirements Technical Basic Python and/or scripting skills Working with a range of security tooling/technology Strong understanding of security architecture, in particular networking Detailed understanding of threat intelligence and threat actors, TTPs and operationalising threat intelligence. Experience in investigating complex network intrusions (by state-sponsored groups or targeted ransomware attacks). Non-technical Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing) Coaching mindset: the longer term role is not to do the job for the customers, but to mentor them to do it themselves. Security process development Able to understand and adapt to different cultures and hierarchical structures. Self-starter and capable of independent working Desirable Software engineering experience Penetration testing skills Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance wellbeing. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. About BAE Systems Digital Intelligence We use our intelligence-led insights to help defend Governments, Nations and Societies from cyber-attacks and financial crime. Our customers depend on our evolving capabilities to help them safely grow their organisations. Our unprecedented access to threat intelligence, world-leading analysts and market-leading technology means we can help them to adapt, evolve and stay ahead of the criminals. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Our Government business unit houses four of our critical client groups: UK National Security, Global National Security, defence and central government. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours.
Cloud Security Consultant £50k-£95k DOE + Benefits Positions UK-Wide Permanent As a trusted and preferred recruitment partner to this prestigious global consultancy, we have been asked to assist in the hire of Cloud Security Consultant's to join them in a technical client-facing role supporting and guiding clients with their Cloud migrations or security improvements to existing or expanding cloud adoption. What You'll Do -Help create and develop enterprise security use cases which align to the clients Cloud Security strategy and security baseline. -Design, develop and build security reference architectures for public, private and hybrid cloud-based systems. -Identity, design and deploy solutions to secure cloud usage. -Work with the wider business to develop standards, choose appropriate technology solutions and enable complete integration with or migration of clients' environments. -Identity, recommend and co-ordinate training sessions to coach others about security relevant technologies, processes, and tools. Mixed Experience of the Below Required -Security, configuration, and deployment models for 'as a service' systems (SaaS, PaaS, IaaS, FaaS) -Experience of cloud platforms (AWS, Azure, Google Cloud / GCP) -Design and implementation of secure cloud architectures and designs -Cloud protection and governance at various levels from network to applications -Service oriented architecture (SOA) and microservices -Secure software development -Threat modelling and design reviews of new technologies -Deployment orchestration, automation and security configuration management. Our client offers the chance to not only work on the UK's most exciting projects, but long-term career prospects, professional development, and a comprehensive and personalised benefits package. Applications are accepted from candidates at varying levels of experience. Your experience level will be assessed through interviews which will be the base for deciding the level of role offered if successful. Note: Part of working for a consultancy in a client-based role means you will need to be fully mobile and flexible with working location. You will be assigned a base location (closest to your home). You can claim expenses for travel from that base location to client site. You can also claim expenses for any overnight stays needed away from home. Base Locations are located across all parts of the UK. This position would be suitable for those who have held the following titles: Cloud Security Consultant, Cloud Security Engineer, Cloud Security Analyst, Cloud Security Architect, Cloud Security Specialist, Cloud Security SME, IT Security Consultant, SecOps Engineer, Security DevOps Engineer. Deerfoot IT Resources Ltd is one of the UK's leading IT Recruitment Agencies, trusted by many of the UK's leading employers since 1997. We will never send your CV anywhere without your authorisation and only after you have seen the complete details on this opportunity. Deerfoot is acting as an employment agency in relation to this vacancy. Each time Deerfoot sends a CV to a recruiting client we donate £1 to The Born Free Foundation ().
Oct 01, 2021
Full time
Cloud Security Consultant £50k-£95k DOE + Benefits Positions UK-Wide Permanent As a trusted and preferred recruitment partner to this prestigious global consultancy, we have been asked to assist in the hire of Cloud Security Consultant's to join them in a technical client-facing role supporting and guiding clients with their Cloud migrations or security improvements to existing or expanding cloud adoption. What You'll Do -Help create and develop enterprise security use cases which align to the clients Cloud Security strategy and security baseline. -Design, develop and build security reference architectures for public, private and hybrid cloud-based systems. -Identity, design and deploy solutions to secure cloud usage. -Work with the wider business to develop standards, choose appropriate technology solutions and enable complete integration with or migration of clients' environments. -Identity, recommend and co-ordinate training sessions to coach others about security relevant technologies, processes, and tools. Mixed Experience of the Below Required -Security, configuration, and deployment models for 'as a service' systems (SaaS, PaaS, IaaS, FaaS) -Experience of cloud platforms (AWS, Azure, Google Cloud / GCP) -Design and implementation of secure cloud architectures and designs -Cloud protection and governance at various levels from network to applications -Service oriented architecture (SOA) and microservices -Secure software development -Threat modelling and design reviews of new technologies -Deployment orchestration, automation and security configuration management. Our client offers the chance to not only work on the UK's most exciting projects, but long-term career prospects, professional development, and a comprehensive and personalised benefits package. Applications are accepted from candidates at varying levels of experience. Your experience level will be assessed through interviews which will be the base for deciding the level of role offered if successful. Note: Part of working for a consultancy in a client-based role means you will need to be fully mobile and flexible with working location. You will be assigned a base location (closest to your home). You can claim expenses for travel from that base location to client site. You can also claim expenses for any overnight stays needed away from home. Base Locations are located across all parts of the UK. This position would be suitable for those who have held the following titles: Cloud Security Consultant, Cloud Security Engineer, Cloud Security Analyst, Cloud Security Architect, Cloud Security Specialist, Cloud Security SME, IT Security Consultant, SecOps Engineer, Security DevOps Engineer. Deerfoot IT Resources Ltd is one of the UK's leading IT Recruitment Agencies, trusted by many of the UK's leading employers since 1997. We will never send your CV anywhere without your authorisation and only after you have seen the complete details on this opportunity. Deerfoot is acting as an employment agency in relation to this vacancy. Each time Deerfoot sends a CV to a recruiting client we donate £1 to The Born Free Foundation ().