Minimum of SC Clearance, MOD DV would be a preferrable Competivie salary plus Benefits and Bonuses Gloucester location - 3 days on site WHAT WILL THE SENIOR SYSTEMS ENGINEER BE DOING? As a Senior Systems Engineer, you'll join an expanding Corporate Services IT department that supports mission critical work completed by over 1000 end users across hundreds of servers. The unique nature of the business areas you and your team will support create complex and often time-critical demands to deliver effective, reliable and enduring IT platforms across 'conventional' on-premise systems, cloud computing and 'air-gapped' systems. As a Senior Systems Engineer, you'll be understanding, maintaining and developing specific aspects of an enterprise IT environment; encompassing tasks across technical design, implementation and support. SKILLS & EXPERIENCE REQUIRED: Systems engineering experience at technical lead level with vendor technologies such as Microsoft, Amazon (AWS), VMWare, RedHat of similar. Able to design, support and maintain internal IT environments, platforms and services at SME level or above. Awareness of Defence or National Security IT standards, a background within these domains would be preferential; including within environments that operate at multiple classification levels. Some exposure to Solution or Enterprise Architecture methods, you do not need to be a practitioner. KEY TECHNOLOGIES: Cloud platforms: Primarily AWS and Azure covering organisation design (layout), tenancy/account management, security, identity management, service provisioning and reporting functions. Identity and Directory services: Design, management and maintenance of Microsoft Active Directory, OpenLDAP, KeyCloak and Microsoft's enterprise Single Sign-On technologies. Mobile device management: Covering 300+ deployed mobile devices, applying best practice and industry standards. Cyber security and information assurance: Managing and maintaining intrusion detection apparatus, supporting queries/investigations and hardened configuration of IT equipment. DevSecOps and Site Reliability Engineering: Supporting enterprise software teams and their Ci/CD requirements using tools such as GitLab, Jenkins or SonarQube etc. Successful applicant must be a British national and must hold a minimum of SC Clearance, MOD DV security clearance would be preferred. TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to - I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search Henry Clay-Davies. I look forward to hearing from you. SENIOR SYSTEMS ENGINEER KEY SKILLS: SENIOR SYSTEMS ENGINEER / SYSTEMS ENGINEER / NATIONAL SECURITY / DEFENCE / GOVERNMENT / SECURITY CLEARED / SECURITY CLEARANCE / SECURITY CHECK / SC CLEARED / SC CLEARANCE / DEVELOPED VETTING / DEVELOPED VETTED / DV CLEARED / DV CLEARANCE / DEEP VETTED / DEEP VETTING
May 18, 2024
Full time
Minimum of SC Clearance, MOD DV would be a preferrable Competivie salary plus Benefits and Bonuses Gloucester location - 3 days on site WHAT WILL THE SENIOR SYSTEMS ENGINEER BE DOING? As a Senior Systems Engineer, you'll join an expanding Corporate Services IT department that supports mission critical work completed by over 1000 end users across hundreds of servers. The unique nature of the business areas you and your team will support create complex and often time-critical demands to deliver effective, reliable and enduring IT platforms across 'conventional' on-premise systems, cloud computing and 'air-gapped' systems. As a Senior Systems Engineer, you'll be understanding, maintaining and developing specific aspects of an enterprise IT environment; encompassing tasks across technical design, implementation and support. SKILLS & EXPERIENCE REQUIRED: Systems engineering experience at technical lead level with vendor technologies such as Microsoft, Amazon (AWS), VMWare, RedHat of similar. Able to design, support and maintain internal IT environments, platforms and services at SME level or above. Awareness of Defence or National Security IT standards, a background within these domains would be preferential; including within environments that operate at multiple classification levels. Some exposure to Solution or Enterprise Architecture methods, you do not need to be a practitioner. KEY TECHNOLOGIES: Cloud platforms: Primarily AWS and Azure covering organisation design (layout), tenancy/account management, security, identity management, service provisioning and reporting functions. Identity and Directory services: Design, management and maintenance of Microsoft Active Directory, OpenLDAP, KeyCloak and Microsoft's enterprise Single Sign-On technologies. Mobile device management: Covering 300+ deployed mobile devices, applying best practice and industry standards. Cyber security and information assurance: Managing and maintaining intrusion detection apparatus, supporting queries/investigations and hardened configuration of IT equipment. DevSecOps and Site Reliability Engineering: Supporting enterprise software teams and their Ci/CD requirements using tools such as GitLab, Jenkins or SonarQube etc. Successful applicant must be a British national and must hold a minimum of SC Clearance, MOD DV security clearance would be preferred. TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to - I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search Henry Clay-Davies. I look forward to hearing from you. SENIOR SYSTEMS ENGINEER KEY SKILLS: SENIOR SYSTEMS ENGINEER / SYSTEMS ENGINEER / NATIONAL SECURITY / DEFENCE / GOVERNMENT / SECURITY CLEARED / SECURITY CLEARANCE / SECURITY CHECK / SC CLEARED / SC CLEARANCE / DEVELOPED VETTING / DEVELOPED VETTED / DV CLEARED / DV CLEARANCE / DEEP VETTED / DEEP VETTING
Sopra Banking Software works with more than 1,500 banks, building societies and specialized finance providers across more than 80 countries worldwide. We help them to develop, deliver and operationalise their digital transformation strategies. Using our suite of digital banking products and services enables these organisations to deliver remarkable financial services to their clients. We are a DevOps team situated in the Specialized Finance division within Sopra Banking Software. Our mission is clear - enable product teams to deliver value quickly, reliably, and securely. We don't just maintain. We innovate. We re at the forefront of building our cloud-native infrastructure, offering cross-cutting capabilities spanning multiple products. What we do : We manage, automate, and develop our solutions using key technologies such as AWS, Kubernetes, Terraform, Serverless microservices, and React-based micro-frontends. We collaborate with a diverse range of teams, guiding them on their cloud journey. Beyond our core functions, we lend your expertise throughout the organization, serving as a pivotal support pillar. What will the role involve? Enhancing and developing across DevSecOps domains including security, automation, observability, recovery & resilience, using technologies like Kubernetes and Infrastructure as Code. Delivering high-quality solutions in languages like Typescript, Golang, and Python across disciplines such as full stack and microservices. Maintaining our cloud-native infrastructure capability through continuous improvement of infrastructure, processes, and products. Monitoring and providing support for a wide range of services running within the cloud-native infrastructure, and independently identifying and resolving a broad range of issues that might arise. Overseeing patching, access, and incident management. Ability to adopt, configure, and maintain third party products taking into account concerns such as security, cost, and functionality. Critically evaluating the delivery model of services and their suitability for run. Quickly and iteratively delivering value through continuous delivery principles. Assessing and optimizing operational processes and ways of working. Staying updated on industry best practices and champion their adoption. Ensuring adherence to standards like ISO 27001 and providing evidence of compliance. Offering on-call support to manage out of hours outages impacting our SLAs and striving to reduce incidents. Our team thrives on open communication, collaborative decision-making, and a flat hierarchy. We champion continuous learning, always staying up to date with emerging DevOps trends. Our motto? "You build it, you run it." We take immense pride in our service quality and provide on-call support. Organizationally, we re agile, employing a Kanban approach to streamline our work. We adopt a hybrid working pattern, with the team working together in the office two days per week. What we value : Passion for DevOps and technology. Willingness and ability to learn. Crafting innovative solutions to novel challenges. We are interested in hearing from you, if you have most of the following attributes: Experienced professional. Adaptable, quick learner comfortable with new domains. Good coding skills and the ability to work across multiple languages. We currently use Typescript, Golang, Python and Kotlin. Good understanding of development best practices and ability to apply them. Effective communicator across teams, functions, and organizations. Skilled in analysing architecture, products, and processes. Capable of innovating and building solutions to solve problems in line with long-term strategies Driven to enhance the organization and champion impactful solutions. Foundational understanding of DevSecOps design and tooling Foundational understanding of cloud technologies. We mainly work with AWS, but value experience with any cloud provider. It would be great if you had: Experience with a managed Kubernetes service such as EKS, AKS or GKE Experience with monitoring technologies such as Grafana and Prometheus Experience provisioning infrastructure using an IAC tool like Terraform If you do not have all of the above experience or skills we would still like to hear from you. As part of our hiring process new employees will be required to pass a confidential consumer credit check and DBS check. This is a straight forward credit check for CCJ s, bankruptcy and a criminal record check, however if you wish to know more about what is or is not acceptable please ask our recruitment team. Additional Information Sopra Banking Software are a certified Great Place to Work! We offer flexible hybrid working model of 2 days in office and 3 days working from home. All employees are supported to work from home with DSE assessments and IT equipment where required to be fully productive when remote working. By joining the Sopra Banking Software team you will enjoy a market competitive salary and our excellent rewards and benefits schemes including 25 days holiday with an option to buy up to 5 more, a 6% employer pension contribution, a buy one get one free employee share scheme, private medical insurance, critical illness cover, a health cash plan, and we offer flexible working arrangements to all employees, plus many more excellent benefits. We take pride in rewarding our colleagues through Summer parties, treat days in the offices, and a social budget for each department. At our organization, we are committed to fighting against all forms of discrimination. We foster a work environment that is inclusive and respectful of all differences. All of our positions are open to people with disabilities.
May 17, 2024
Full time
Sopra Banking Software works with more than 1,500 banks, building societies and specialized finance providers across more than 80 countries worldwide. We help them to develop, deliver and operationalise their digital transformation strategies. Using our suite of digital banking products and services enables these organisations to deliver remarkable financial services to their clients. We are a DevOps team situated in the Specialized Finance division within Sopra Banking Software. Our mission is clear - enable product teams to deliver value quickly, reliably, and securely. We don't just maintain. We innovate. We re at the forefront of building our cloud-native infrastructure, offering cross-cutting capabilities spanning multiple products. What we do : We manage, automate, and develop our solutions using key technologies such as AWS, Kubernetes, Terraform, Serverless microservices, and React-based micro-frontends. We collaborate with a diverse range of teams, guiding them on their cloud journey. Beyond our core functions, we lend your expertise throughout the organization, serving as a pivotal support pillar. What will the role involve? Enhancing and developing across DevSecOps domains including security, automation, observability, recovery & resilience, using technologies like Kubernetes and Infrastructure as Code. Delivering high-quality solutions in languages like Typescript, Golang, and Python across disciplines such as full stack and microservices. Maintaining our cloud-native infrastructure capability through continuous improvement of infrastructure, processes, and products. Monitoring and providing support for a wide range of services running within the cloud-native infrastructure, and independently identifying and resolving a broad range of issues that might arise. Overseeing patching, access, and incident management. Ability to adopt, configure, and maintain third party products taking into account concerns such as security, cost, and functionality. Critically evaluating the delivery model of services and their suitability for run. Quickly and iteratively delivering value through continuous delivery principles. Assessing and optimizing operational processes and ways of working. Staying updated on industry best practices and champion their adoption. Ensuring adherence to standards like ISO 27001 and providing evidence of compliance. Offering on-call support to manage out of hours outages impacting our SLAs and striving to reduce incidents. Our team thrives on open communication, collaborative decision-making, and a flat hierarchy. We champion continuous learning, always staying up to date with emerging DevOps trends. Our motto? "You build it, you run it." We take immense pride in our service quality and provide on-call support. Organizationally, we re agile, employing a Kanban approach to streamline our work. We adopt a hybrid working pattern, with the team working together in the office two days per week. What we value : Passion for DevOps and technology. Willingness and ability to learn. Crafting innovative solutions to novel challenges. We are interested in hearing from you, if you have most of the following attributes: Experienced professional. Adaptable, quick learner comfortable with new domains. Good coding skills and the ability to work across multiple languages. We currently use Typescript, Golang, Python and Kotlin. Good understanding of development best practices and ability to apply them. Effective communicator across teams, functions, and organizations. Skilled in analysing architecture, products, and processes. Capable of innovating and building solutions to solve problems in line with long-term strategies Driven to enhance the organization and champion impactful solutions. Foundational understanding of DevSecOps design and tooling Foundational understanding of cloud technologies. We mainly work with AWS, but value experience with any cloud provider. It would be great if you had: Experience with a managed Kubernetes service such as EKS, AKS or GKE Experience with monitoring technologies such as Grafana and Prometheus Experience provisioning infrastructure using an IAC tool like Terraform If you do not have all of the above experience or skills we would still like to hear from you. As part of our hiring process new employees will be required to pass a confidential consumer credit check and DBS check. This is a straight forward credit check for CCJ s, bankruptcy and a criminal record check, however if you wish to know more about what is or is not acceptable please ask our recruitment team. Additional Information Sopra Banking Software are a certified Great Place to Work! We offer flexible hybrid working model of 2 days in office and 3 days working from home. All employees are supported to work from home with DSE assessments and IT equipment where required to be fully productive when remote working. By joining the Sopra Banking Software team you will enjoy a market competitive salary and our excellent rewards and benefits schemes including 25 days holiday with an option to buy up to 5 more, a 6% employer pension contribution, a buy one get one free employee share scheme, private medical insurance, critical illness cover, a health cash plan, and we offer flexible working arrangements to all employees, plus many more excellent benefits. We take pride in rewarding our colleagues through Summer parties, treat days in the offices, and a social budget for each department. At our organization, we are committed to fighting against all forms of discrimination. We foster a work environment that is inclusive and respectful of all differences. All of our positions are open to people with disabilities.
The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business. You will be working in a team that is designing and building resilient and secure Cloud environments that proactively prevent security threats. The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to ensure that appropriate controls are in place Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments Participate in efforts that shape the company s security policies, procedures and standards for use in Cloud environments Create technical and managerial level security reports for Cloud-based applications and infrastructure Implement and tests network and security Disaster Recovery procedures to ensure business continuity Monitor use of sensitive data and regulates access to safeguard information Ensure the confidentiality and integrity of data during transmission, storage and processing Review violations of security procedures and discusses procedures with violators to ensure they are not repeated Provide support to end users regarding network and security related issues Main requirements: BSc/MSc in Information Security or any other related field Minimum 1 year working experience in Information Security, with proven focus in Cloud Security Deep technical knowledge of Amazon Web Services (AWS). Expertise in Microsoft Azure and Oracle Cloud will be considered an advantage Hands-on experience on AWS services such as IAM, Organizations, SSO, VPC, Transit Gateway, S3, EC2, RDS, ELB, CloudTrail, Config, Inspector, GuardDuty, WAF, etc Clear understanding of current threats to Cloud infrastructure and advanced knowledge of securing such environments Experience in DevSecOps methodologies is considered a plus Experience building and deploying applications to the cloud (AWS, Azure, etc.) using Infrastructure as Code tools such as Terraform is considered a plus Expertise in container security is considered a plus Ability to work autonomously with minimum supervision and to integrate well within a team Excellent problem solving and analytical skills Ability to quickly learn new technologies in depth Benefit from: Attractive remuneration Food allowance Intellectually stimulating work environment Continuous personal development and international training opportunities
May 17, 2024
Full time
The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business. You will be working in a team that is designing and building resilient and secure Cloud environments that proactively prevent security threats. The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to ensure that appropriate controls are in place Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments Participate in efforts that shape the company s security policies, procedures and standards for use in Cloud environments Create technical and managerial level security reports for Cloud-based applications and infrastructure Implement and tests network and security Disaster Recovery procedures to ensure business continuity Monitor use of sensitive data and regulates access to safeguard information Ensure the confidentiality and integrity of data during transmission, storage and processing Review violations of security procedures and discusses procedures with violators to ensure they are not repeated Provide support to end users regarding network and security related issues Main requirements: BSc/MSc in Information Security or any other related field Minimum 1 year working experience in Information Security, with proven focus in Cloud Security Deep technical knowledge of Amazon Web Services (AWS). Expertise in Microsoft Azure and Oracle Cloud will be considered an advantage Hands-on experience on AWS services such as IAM, Organizations, SSO, VPC, Transit Gateway, S3, EC2, RDS, ELB, CloudTrail, Config, Inspector, GuardDuty, WAF, etc Clear understanding of current threats to Cloud infrastructure and advanced knowledge of securing such environments Experience in DevSecOps methodologies is considered a plus Experience building and deploying applications to the cloud (AWS, Azure, etc.) using Infrastructure as Code tools such as Terraform is considered a plus Expertise in container security is considered a plus Ability to work autonomously with minimum supervision and to integrate well within a team Excellent problem solving and analytical skills Ability to quickly learn new technologies in depth Benefit from: Attractive remuneration Food allowance Intellectually stimulating work environment Continuous personal development and international training opportunities
DevSecOps Engineer - hybrid with travel to London An exciting DevSecOps Engineer opportunity working for a FTSE 100 business who has begun one of the biggest technology transformation programmes in Europe. Working for this global organisation, you will play a pivotal part in the digital transformation of the technology solutions and technology-led services the business provides to their customers. This is a key hire for the team who are looking for a candidate who can implement and maintain state of the art industry practices for making applications as secure as possible, whilst also improving developer efficiency. Working closely with cyber and product teams you will perform a critical role in ensuring that the company's products are built with security considerations from the ground up. As a DevSecOps Engineer you will focus on AWS hosted services, including Production, Development and Test environments. Constructing and maintaining the CI/CD pipelines will be among your main responsibilities. You will help the adoption of shift-left approach when participating in Continuous Delivery and adhering to standards and conventions outlined as part of quality and security measures. Skills and experience Experience in Infrastructure as Code (IaC) automations in CI/CD and AWS/Azure environments using Terraform. Extensive production experience using AWS and/or Azure technology stack, including Web apps, traffic manager, serverless functions, CDN, application insights, CloudWatch, pipelines, storage and security. Experience with implementing and maintaining Zero-Trust concepts and policy enforcement. Understanding of software development methodologies and programming languages. Deep knowledge of continuous integration and delivery tooling such as Github, ArgoCD, Docker, Kubernetes and Terraform. Understanding and experience using or deploying device-based trust applications (Okta Verify, Google Beyondcorp, Cloudflare Zero Trust, etc). Extensive knowledge of RBAC/ABAC concepts and operating policies. Excellent technical documentation and KB writing skills with the ability to contribute and present to developer communities. Work independently and organized, with the ability to prioritize a busy workload. Ability to collaborate with cross-functional team members that are dependencies to meet the customers need. Advanced level of technical troubleshooting experience for incident responses/planning. Experience of working within a regulated industry or working with standards and compliance frameworks is desirable.
May 17, 2024
Full time
DevSecOps Engineer - hybrid with travel to London An exciting DevSecOps Engineer opportunity working for a FTSE 100 business who has begun one of the biggest technology transformation programmes in Europe. Working for this global organisation, you will play a pivotal part in the digital transformation of the technology solutions and technology-led services the business provides to their customers. This is a key hire for the team who are looking for a candidate who can implement and maintain state of the art industry practices for making applications as secure as possible, whilst also improving developer efficiency. Working closely with cyber and product teams you will perform a critical role in ensuring that the company's products are built with security considerations from the ground up. As a DevSecOps Engineer you will focus on AWS hosted services, including Production, Development and Test environments. Constructing and maintaining the CI/CD pipelines will be among your main responsibilities. You will help the adoption of shift-left approach when participating in Continuous Delivery and adhering to standards and conventions outlined as part of quality and security measures. Skills and experience Experience in Infrastructure as Code (IaC) automations in CI/CD and AWS/Azure environments using Terraform. Extensive production experience using AWS and/or Azure technology stack, including Web apps, traffic manager, serverless functions, CDN, application insights, CloudWatch, pipelines, storage and security. Experience with implementing and maintaining Zero-Trust concepts and policy enforcement. Understanding of software development methodologies and programming languages. Deep knowledge of continuous integration and delivery tooling such as Github, ArgoCD, Docker, Kubernetes and Terraform. Understanding and experience using or deploying device-based trust applications (Okta Verify, Google Beyondcorp, Cloudflare Zero Trust, etc). Extensive knowledge of RBAC/ABAC concepts and operating policies. Excellent technical documentation and KB writing skills with the ability to contribute and present to developer communities. Work independently and organized, with the ability to prioritize a busy workload. Ability to collaborate with cross-functional team members that are dependencies to meet the customers need. Advanced level of technical troubleshooting experience for incident responses/planning. Experience of working within a regulated industry or working with standards and compliance frameworks is desirable.
As the Lead Security Specialist at HL, you will join a team of security experts working with various modern technologies to ensure the security of HL's products. You will oversee security issues and requirements for all product teams, dealing with complex projects daily and serving as the escalation point for the Product Security Specialist (PSS). You will lead threat modelling workshops and engage with key stakeholders to identify threats and recommend countermeasures. Additionally, you will lead a team of Product Security Specialists, providing leadership, technical guidance, and support in tailoring their development to meet their individual needs. What you'll be doing Overseeing security issues and requirements for all product teams/squads. Working within Product teams, you will be the single point of contact for security related matters ranging from daily significant change to complex Cloud serverless transformation projects. Leading a team of Product Security Specialist (PSS). Providing leadership, technical guidance, and support to the Product Security Specialists. You will lead/facilitate threat modelling workshops with SMEs. Engaging with key stakeholders to identify threats and recommend countermeasures. Collaborating with strategy, transformation, and digital engineering parts of HL to develop and manage the implementation of secure cloud architectures. Supporting in the creation and implementation of architecture blueprints and proof of concepts on Cloud platforms supporting best practice, secure by design. About you Demonstrable experience in a Security related role. A proven track record, of working with one or more of the main cloud vendor platforms, specifically AWS. Certifications such as AWS Solutions Architect, Azure Solutions Architect are desirable. Previous management experience. Excellent communication skills, including communicating complex technical concepts to non-technical stakeholders. Technical background across multiple security domains and familiarity with cloud security standards Experience within an Agile and DevSecOps context.TH Problem solving skills - with the ability to use own experience to develop pragmatic solutions and resolve complex issues. Accomplished in forging effective relationships at all levels, skilled at influencing and negotiating. Certifications such as CISSP, CEH, OSCP, or GSEC are preferrable. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages including a technical competency-based questions and a task. Working Schedule This role is based in Bristol head office, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern to enable you the option of working from home and coming into the office with 1 day in the office a week. Why Us? Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments. To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do. What's on offer? Discretionary annual bonus & annual pay review 25 days holiday plus bank holidays and 1-day additional Christmas closure time Option to purchase an additional 5 days holiday per year at annual enrolment Flexible working options available, including hybrid working Enhanced parental leave Pension scheme up to 11% employer contribution Sharesave scheme - have a real stake in HL's future Income Protection & Life insurance (4 x salary core level of cover) Private medical insurance Health care cash plans - including optical, dental, and out patientcare and an Employee Assistance Programme Gympass - gym memberships and wellbeing apps available Variety of travel to work schemes with free bike storage and shower facilities An inhouse barista serving subsidised coffee and snacks Join HL's sports, I&D networks and volunteering groups (two paid volunteering days per year) LifeWorks Discounts on services, restaurants and retailers dependant on role level Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age. This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information. Please note, we are unable to provide employment sponsorship to candidates.
May 16, 2024
Full time
As the Lead Security Specialist at HL, you will join a team of security experts working with various modern technologies to ensure the security of HL's products. You will oversee security issues and requirements for all product teams, dealing with complex projects daily and serving as the escalation point for the Product Security Specialist (PSS). You will lead threat modelling workshops and engage with key stakeholders to identify threats and recommend countermeasures. Additionally, you will lead a team of Product Security Specialists, providing leadership, technical guidance, and support in tailoring their development to meet their individual needs. What you'll be doing Overseeing security issues and requirements for all product teams/squads. Working within Product teams, you will be the single point of contact for security related matters ranging from daily significant change to complex Cloud serverless transformation projects. Leading a team of Product Security Specialist (PSS). Providing leadership, technical guidance, and support to the Product Security Specialists. You will lead/facilitate threat modelling workshops with SMEs. Engaging with key stakeholders to identify threats and recommend countermeasures. Collaborating with strategy, transformation, and digital engineering parts of HL to develop and manage the implementation of secure cloud architectures. Supporting in the creation and implementation of architecture blueprints and proof of concepts on Cloud platforms supporting best practice, secure by design. About you Demonstrable experience in a Security related role. A proven track record, of working with one or more of the main cloud vendor platforms, specifically AWS. Certifications such as AWS Solutions Architect, Azure Solutions Architect are desirable. Previous management experience. Excellent communication skills, including communicating complex technical concepts to non-technical stakeholders. Technical background across multiple security domains and familiarity with cloud security standards Experience within an Agile and DevSecOps context.TH Problem solving skills - with the ability to use own experience to develop pragmatic solutions and resolve complex issues. Accomplished in forging effective relationships at all levels, skilled at influencing and negotiating. Certifications such as CISSP, CEH, OSCP, or GSEC are preferrable. Knowledge of security principles, practices, and frameworks, such as OWASP, NIST, and ISO Awareness of security tools and technologies, such as SAST, DAST, IAST, SCA, WAF, IDS, IPS. Experience in conducting threat modelling and risk assessments. Interview process The interview process for this role is two stages including a technical competency-based questions and a task. Working Schedule This role is based in Bristol head office, BS1 5HL. This role is permanent, full time, 37.5 hours per week, Monday to Friday. We have returned to the office, however for this role we offer a hybrid flexible working pattern to enable you the option of working from home and coming into the office with 1 day in the office a week. Why Us? Here at HL, we're the UK's number 1 investment platform for private investors, based in Bristol. For more than 40 years we've helped investors save time, tax and money on their investments. To achieve our mission, we believe we have a workplace like no other, with constant learning, dynamic teams, and a great ethos. We're steered by core values that promote service, quality, innovation, and opportunity in everything we do. What's on offer? Discretionary annual bonus & annual pay review 25 days holiday plus bank holidays and 1-day additional Christmas closure time Option to purchase an additional 5 days holiday per year at annual enrolment Flexible working options available, including hybrid working Enhanced parental leave Pension scheme up to 11% employer contribution Sharesave scheme - have a real stake in HL's future Income Protection & Life insurance (4 x salary core level of cover) Private medical insurance Health care cash plans - including optical, dental, and out patientcare and an Employee Assistance Programme Gympass - gym memberships and wellbeing apps available Variety of travel to work schemes with free bike storage and shower facilities An inhouse barista serving subsidised coffee and snacks Join HL's sports, I&D networks and volunteering groups (two paid volunteering days per year) LifeWorks Discounts on services, restaurants and retailers dependant on role level Hargreaves Lansdown is an inclusive employer that values diversity in its workforce. We encourage applications from all individuals without regard to race, religion, gender, sexual orientation, national origin, disability or age. This role may also be available on a flexible working or part time basis - please ask the Recruitment & Onboarding team for more information. Please note, we are unable to provide employment sponsorship to candidates.
Senior Software Engineer IAM London As a Barclays Senior Software Engineer IAM, you will support in accelerating a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. Our Team empowers innovation, underpinned by engineering excellence and a culture of teamwork, learning and continuous improvement. Barclays is one of the world's largest and most respected financial institutions, established in 1690, with a legacy of success, quality and innovation. We offer careers that provide endless opportunity - helping millions of individuals and businesses thrive, and creating financial and digital solutions that the world now takes for granted. At Barclays, we offer a hybrid working experience that blends the positives of working alongside colleagues at our onsite locations, together with working from home. We have a structured approach where colleagues work at an onsite location on fixed, 'anchor', days of the week, for a minimum of two days a week or more, as set by the business area (or nearest equivalent if working part-time hours). Please discuss the working pattern requirements for the role you are applying for with the hiring manager. Please note that as we continue to embed our hybrid working environment, we remain in a test and learn phase, which means that working arrangements may be subject to change on reasonable notice to ensure we meet the needs of our business. What will you be doing? • Helping in the design, development and implementation of a centralised secure, scalable and efficient IAM platform • Assisting with the creation and maintenance of the technical roadmap for the evolution of the group wide IAM platform • Coaching, working with and facilitating colleagues and engineers to design, build and maintain the platform, following agile software development principles • Ensuring the highest levels of platform security and compliance are adhered to • Providing feedback and action activities to mature and improve operations and processes within the team and more broadly across the function • Engaging with partners across the bank and contributing to digital journeys innovation using the platform's IAM capabilities, demonstrating inner source culture • Demonstrating hands-on complex problem solving abilities through creation of innovative solutions using multiple components and development techniques What we're looking for: • Solid Experience in full stack development web and mobile front-end technologies such as React, Java, APIs & microservices, PostgreSQL, data structures, workflow • Knowledge of Site Reliability Engineering, automation, observability, incident management, resilience, disaster recovery, high availability, documentation • IAM engineering experience, authentication, authorisation, single sign-on, multi-factor authentication, user lifecycle management, hands on CI/CD approaches and technologies • Experience with Ping Identity/ForgeRock (product platform experience, system integration security features, extensions) Skills that will help you in the role: • Experience in DevSecOps, secure coding best practices, defensive programming, security testing, data security, network security, cloud security, security compliance and regulations • Infrastructure as Code, Ansible, Terraform and Containerisation, Docker, Kubernetes • Experience with AWS and Azure cloud component and services integration (RDS / Azure DB, S3 / Azure Blob) • Knowledge of authentication and Biometric system design, implementation and standards e.g. FIDO, NIST,ITL, security token engineering (JSON Web Tokens JWT / Password Authentication Where will you be working? In the heart of Canary Wharf, our headquarters at Churchill Place boasts onsite amenities such as; a gym, staff restaurant and deli bar, and is easily accessible by tube and bus links. With a population of around 5000 staff the atmosphere is second to none with a real buzz being created around the offices within.
May 16, 2024
Full time
Senior Software Engineer IAM London As a Barclays Senior Software Engineer IAM, you will support in accelerating a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. Our Team empowers innovation, underpinned by engineering excellence and a culture of teamwork, learning and continuous improvement. Barclays is one of the world's largest and most respected financial institutions, established in 1690, with a legacy of success, quality and innovation. We offer careers that provide endless opportunity - helping millions of individuals and businesses thrive, and creating financial and digital solutions that the world now takes for granted. At Barclays, we offer a hybrid working experience that blends the positives of working alongside colleagues at our onsite locations, together with working from home. We have a structured approach where colleagues work at an onsite location on fixed, 'anchor', days of the week, for a minimum of two days a week or more, as set by the business area (or nearest equivalent if working part-time hours). Please discuss the working pattern requirements for the role you are applying for with the hiring manager. Please note that as we continue to embed our hybrid working environment, we remain in a test and learn phase, which means that working arrangements may be subject to change on reasonable notice to ensure we meet the needs of our business. What will you be doing? • Helping in the design, development and implementation of a centralised secure, scalable and efficient IAM platform • Assisting with the creation and maintenance of the technical roadmap for the evolution of the group wide IAM platform • Coaching, working with and facilitating colleagues and engineers to design, build and maintain the platform, following agile software development principles • Ensuring the highest levels of platform security and compliance are adhered to • Providing feedback and action activities to mature and improve operations and processes within the team and more broadly across the function • Engaging with partners across the bank and contributing to digital journeys innovation using the platform's IAM capabilities, demonstrating inner source culture • Demonstrating hands-on complex problem solving abilities through creation of innovative solutions using multiple components and development techniques What we're looking for: • Solid Experience in full stack development web and mobile front-end technologies such as React, Java, APIs & microservices, PostgreSQL, data structures, workflow • Knowledge of Site Reliability Engineering, automation, observability, incident management, resilience, disaster recovery, high availability, documentation • IAM engineering experience, authentication, authorisation, single sign-on, multi-factor authentication, user lifecycle management, hands on CI/CD approaches and technologies • Experience with Ping Identity/ForgeRock (product platform experience, system integration security features, extensions) Skills that will help you in the role: • Experience in DevSecOps, secure coding best practices, defensive programming, security testing, data security, network security, cloud security, security compliance and regulations • Infrastructure as Code, Ansible, Terraform and Containerisation, Docker, Kubernetes • Experience with AWS and Azure cloud component and services integration (RDS / Azure DB, S3 / Azure Blob) • Knowledge of authentication and Biometric system design, implementation and standards e.g. FIDO, NIST,ITL, security token engineering (JSON Web Tokens JWT / Password Authentication Where will you be working? In the heart of Canary Wharf, our headquarters at Churchill Place boasts onsite amenities such as; a gym, staff restaurant and deli bar, and is easily accessible by tube and bus links. With a population of around 5000 staff the atmosphere is second to none with a real buzz being created around the offices within.
AWS/Security/DevSecOps/Control Tower/IAM Are you an enthusiastic security specialist in AWS? A top-tier DevSecOps Engineer? Are you eager to take charge of the technical direction for one of the most rapidly expanding companies in the PropTech sector? If so, and you have - 3+ years' experience as a DevSecOps Engineer or Security Engineer with AWS In depth knowledge of AWS security tools inc. SecurityHub, Inspector, Detective, CloudTrail, GuardDuty and CloudWatch Proficiency in AWS services and features, including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines Experience in implementing security automation using Scripting languages eg Python and infrastructure-as-code (IaC) tools Ability to perform security threat modelling and risk assessments to identify and prioritize security risks Experience with security incident response and handling, including log analysis and forensics Outstanding business stakeholder engagement and management experience, inc. presenting of solutions to the exec team Certifications such as AWS Certified Security Specialist are a plus 70/75K, Occasional Travel to the Midlands Required Then get in touch today, interviews next week for the right candidates!
May 16, 2024
Full time
AWS/Security/DevSecOps/Control Tower/IAM Are you an enthusiastic security specialist in AWS? A top-tier DevSecOps Engineer? Are you eager to take charge of the technical direction for one of the most rapidly expanding companies in the PropTech sector? If so, and you have - 3+ years' experience as a DevSecOps Engineer or Security Engineer with AWS In depth knowledge of AWS security tools inc. SecurityHub, Inspector, Detective, CloudTrail, GuardDuty and CloudWatch Proficiency in AWS services and features, including IAM, VPC, EC2, S3, RDS, Lambda, and CloudFormation Strong understanding of security best practices, principles, and frameworks, such as ISO 27001 controls and NIST Guidelines Experience in implementing security automation using Scripting languages eg Python and infrastructure-as-code (IaC) tools Ability to perform security threat modelling and risk assessments to identify and prioritize security risks Experience with security incident response and handling, including log analysis and forensics Outstanding business stakeholder engagement and management experience, inc. presenting of solutions to the exec team Certifications such as AWS Certified Security Specialist are a plus 70/75K, Occasional Travel to the Midlands Required Then get in touch today, interviews next week for the right candidates!
Senior Cloud Architect Joining Capco means joining an organisation that is committed to an inclusive working environment where you're encouraged to . We celebrate individuality and recognize that diversity and inclusion, in all forms, is critical to success. It's important to us that we recruit and develop as diverse a range of talent as we can and we believe that everyone brings something different to the table - so we'd love to know what makes you different. Such differences may mean we need to make changes to our process to allow you the best possible platform to succeed, and we are happy to cater to any reasonable adjustments you may require. You will find the section to let us know of these at the bottom of your application form or you can mention it directly to your recruiter at any stage and they will be happy to help. ABOUT CAPCO Capco is a global technology and business consultancy, focused on the financial services sector. We are passionate about helping our clients succeed in an ever-changing industry. We are/have: Experts in Banking & Payments, Capital Markets, Insurance and Wealth & Asset Management Deep knowledge in financial services offering, including eg Finance, Risk and Compliance, Financial Crime, Core Banking etc. Committed to growing our business and hiring the best talent to help us get there. A growing Cloud community of professionals from architecture to advisory to delivery, founded on real delivery expertise Focused on maintaining our nimble, agile and entrepreneurial culture Who are Capco Architects? We are a team of people who are curious and willing to never stop learning. We have a passion for new technologies and understand how they can help deal with today's business challenges. We have confidence in our ideas but we are modest about how we conduct ourselves. We have a proactive, innovative and flexible working style with a teaching mindset; coaching our junior architects through their work. What are we looking for? Capco are looking for Cloud Architects to help our clients solve a range of complex problems. We help clients design exceptional customer experiences and products, we also help them look hard at getting the best out of new technology and integrating it into their existing organisations. Our solution architects are pivotal team members, helping turn great ideas into actionable solutions using a range of business and technology capabilities. This is a role for you if you are looking for an outcome-oriented role, as part of a creative and dynamic team helping financial services clients make sense of the choices they face in the digital business environment. Role Description We are looking for Cloud Architects with hands-on experience who have proven experience delivering software solutions using the latest technologies and frameworks. As a Capco Cloud Architect you will/will be; Have deep technical knowledge of one or more cloud providers public offerings and is curious to learn others, as well as cloud agnostic approaches and technologies Be able to understand client's objectives and shape cloud solutions that best achieve the requirements of our clients Have personally made valuable contributions to cloud products & solutions and cloud orientated teams and can articulate the value to customers Industry/domain experience and expertise within at least one of Capital Markets, Retail Banking & Payments, Insurance or Wealth & Asset Management. Commercially minded with experience of business development & other capability development activities if joining at more senior grades (Principal Consultant/Managing Principal) Have the ability to communicate complex cloud concepts to non-experts with eloquence and confidence Be conscious of the importance of ensuring cloud solutions meet risk, compliance and audit needs Have a genuine interest in the emerging cloud practices and technologies being used in finance and other industries and creative about how to apply these to client use cases Proven experience of leading others and creating an environment that supports and inspires people to develop and deliver Understand current engineering practices experience of engineering best practices including DevOps, GitOps, Trunk based development etc Highly collaborative and sharing cloud knowledge with Capco colleagues during the full life cycle from project mobilisation to production implementation Have a passion for being part of the team that is forming the future of finance. Skills & Expertise You will have some or all of the following skills & experiences: A strong technical background with demonstrable expertise in at least one of AWS, GCP or Azure. Good knowledge and understanding of the cloud technology stack spanning compute, storage, security, monitoring, access management and networks An understanding of IAM principles, tools, role-based access controls and experience of implementing cloud security best practices. Range of cloud experience from cloud native solutioning, re-engineering for the cloud to workload lift and shift Experience and understanding of containers and implementing container platforms using Docker, GKE, AKS etc. Experience and understanding of Infrastructure as Code provisioning/management and tooling (eg: Hashicorp Terraform) Experience with design strategies and tools to deploy, monitor, and administer Cloud applications and the underlying services for Cloud. Experience with industry standard Cloud security frameworks (such as NIST, CSA and MITRE ATT&CK) and Cloud controls integration into DevSecOps toolchain Knowledge and experience of building Cloud security patterns aligned to industry best practice frameworks Great communication skills with the ability to present complex ideas to both technical and non-technical audiences including during sales conversations Extensive knowledge of modern technology trends, especially in the Cloud space. Desirable A background in proven cloud delivery is most important but it would be highly desirable to have achieved Solutions Architecture and/or Engineering certifications with AWS, GCP or Azure. WHY JOIN CAPCO? You will work on engaging projects with some of the largest banks in the world, on projects that will transform the financial services industry. We offer: A work culture focused on innovation and creating lasting value for our clients and employees Ongoing learning opportunities to help you acquire new skills or deepen existing expertise A flat, non-hierarchical structure that will enable you to work with senior partners and directly with clients A diverse, inclusive, meritocratic culture Enhanced and competitive family friendly benefits, including maternity/adoption/shared parental leave and paid leave for sickness, pregnancy loss, fertility treatment, menopause and bereavement
May 16, 2024
Full time
Senior Cloud Architect Joining Capco means joining an organisation that is committed to an inclusive working environment where you're encouraged to . We celebrate individuality and recognize that diversity and inclusion, in all forms, is critical to success. It's important to us that we recruit and develop as diverse a range of talent as we can and we believe that everyone brings something different to the table - so we'd love to know what makes you different. Such differences may mean we need to make changes to our process to allow you the best possible platform to succeed, and we are happy to cater to any reasonable adjustments you may require. You will find the section to let us know of these at the bottom of your application form or you can mention it directly to your recruiter at any stage and they will be happy to help. ABOUT CAPCO Capco is a global technology and business consultancy, focused on the financial services sector. We are passionate about helping our clients succeed in an ever-changing industry. We are/have: Experts in Banking & Payments, Capital Markets, Insurance and Wealth & Asset Management Deep knowledge in financial services offering, including eg Finance, Risk and Compliance, Financial Crime, Core Banking etc. Committed to growing our business and hiring the best talent to help us get there. A growing Cloud community of professionals from architecture to advisory to delivery, founded on real delivery expertise Focused on maintaining our nimble, agile and entrepreneurial culture Who are Capco Architects? We are a team of people who are curious and willing to never stop learning. We have a passion for new technologies and understand how they can help deal with today's business challenges. We have confidence in our ideas but we are modest about how we conduct ourselves. We have a proactive, innovative and flexible working style with a teaching mindset; coaching our junior architects through their work. What are we looking for? Capco are looking for Cloud Architects to help our clients solve a range of complex problems. We help clients design exceptional customer experiences and products, we also help them look hard at getting the best out of new technology and integrating it into their existing organisations. Our solution architects are pivotal team members, helping turn great ideas into actionable solutions using a range of business and technology capabilities. This is a role for you if you are looking for an outcome-oriented role, as part of a creative and dynamic team helping financial services clients make sense of the choices they face in the digital business environment. Role Description We are looking for Cloud Architects with hands-on experience who have proven experience delivering software solutions using the latest technologies and frameworks. As a Capco Cloud Architect you will/will be; Have deep technical knowledge of one or more cloud providers public offerings and is curious to learn others, as well as cloud agnostic approaches and technologies Be able to understand client's objectives and shape cloud solutions that best achieve the requirements of our clients Have personally made valuable contributions to cloud products & solutions and cloud orientated teams and can articulate the value to customers Industry/domain experience and expertise within at least one of Capital Markets, Retail Banking & Payments, Insurance or Wealth & Asset Management. Commercially minded with experience of business development & other capability development activities if joining at more senior grades (Principal Consultant/Managing Principal) Have the ability to communicate complex cloud concepts to non-experts with eloquence and confidence Be conscious of the importance of ensuring cloud solutions meet risk, compliance and audit needs Have a genuine interest in the emerging cloud practices and technologies being used in finance and other industries and creative about how to apply these to client use cases Proven experience of leading others and creating an environment that supports and inspires people to develop and deliver Understand current engineering practices experience of engineering best practices including DevOps, GitOps, Trunk based development etc Highly collaborative and sharing cloud knowledge with Capco colleagues during the full life cycle from project mobilisation to production implementation Have a passion for being part of the team that is forming the future of finance. Skills & Expertise You will have some or all of the following skills & experiences: A strong technical background with demonstrable expertise in at least one of AWS, GCP or Azure. Good knowledge and understanding of the cloud technology stack spanning compute, storage, security, monitoring, access management and networks An understanding of IAM principles, tools, role-based access controls and experience of implementing cloud security best practices. Range of cloud experience from cloud native solutioning, re-engineering for the cloud to workload lift and shift Experience and understanding of containers and implementing container platforms using Docker, GKE, AKS etc. Experience and understanding of Infrastructure as Code provisioning/management and tooling (eg: Hashicorp Terraform) Experience with design strategies and tools to deploy, monitor, and administer Cloud applications and the underlying services for Cloud. Experience with industry standard Cloud security frameworks (such as NIST, CSA and MITRE ATT&CK) and Cloud controls integration into DevSecOps toolchain Knowledge and experience of building Cloud security patterns aligned to industry best practice frameworks Great communication skills with the ability to present complex ideas to both technical and non-technical audiences including during sales conversations Extensive knowledge of modern technology trends, especially in the Cloud space. Desirable A background in proven cloud delivery is most important but it would be highly desirable to have achieved Solutions Architecture and/or Engineering certifications with AWS, GCP or Azure. WHY JOIN CAPCO? You will work on engaging projects with some of the largest banks in the world, on projects that will transform the financial services industry. We offer: A work culture focused on innovation and creating lasting value for our clients and employees Ongoing learning opportunities to help you acquire new skills or deepen existing expertise A flat, non-hierarchical structure that will enable you to work with senior partners and directly with clients A diverse, inclusive, meritocratic culture Enhanced and competitive family friendly benefits, including maternity/adoption/shared parental leave and paid leave for sickness, pregnancy loss, fertility treatment, menopause and bereavement
Xpertise are working with a leading force in the aviation industry who are seeking a talented DevSecOps Engineer to join their established team. This role will see you shape and mature the infrastructure security. You will work within the Engineering team and work closely with the cloud infrastructure team to build scalable cloud native security services. You can find more details about the role below: Job Tittle: DevSecOps Engineer Salary: Up to £85,000 (+ 20% bonus) Location: Remote (with occasional travel into the London office) Key skills needed: Hands on Terraform experience. Working with and developing GitHub Actions and Reusable Workflows CI/CD tooling and integrations experience Artefact management Programming experience DevOps Experience Strong experience working with AWS If keen please apply!
May 16, 2024
Full time
Xpertise are working with a leading force in the aviation industry who are seeking a talented DevSecOps Engineer to join their established team. This role will see you shape and mature the infrastructure security. You will work within the Engineering team and work closely with the cloud infrastructure team to build scalable cloud native security services. You can find more details about the role below: Job Tittle: DevSecOps Engineer Salary: Up to £85,000 (+ 20% bonus) Location: Remote (with occasional travel into the London office) Key skills needed: Hands on Terraform experience. Working with and developing GitHub Actions and Reusable Workflows CI/CD tooling and integrations experience Artefact management Programming experience DevOps Experience Strong experience working with AWS If keen please apply!
Xpertise are working with a leading force in the aviation industry who are seeking a talented DevSecOps Engineer to join their established team. This role will see you shape and mature the infrastructure security. You will work within the Engineering team and work closely with the cloud infrastructure team to build scalable cloud native security services.You can find more details about the role below:Job Tittle: DevSecOps EngineerSalary: Up to £85,000 (+ 20% bonus)Location: Remote (with occasional travel into the London office)Key skills needed: Hands on Terraform experience. Working with and developing GitHub Actions and Reusable Workflows CI/CD tooling and integrations experience Artefact management Programming experience DevOps Experience Strong experience working with AWS If keen please apply!
May 15, 2024
Full time
Xpertise are working with a leading force in the aviation industry who are seeking a talented DevSecOps Engineer to join their established team. This role will see you shape and mature the infrastructure security. You will work within the Engineering team and work closely with the cloud infrastructure team to build scalable cloud native security services.You can find more details about the role below:Job Tittle: DevSecOps EngineerSalary: Up to £85,000 (+ 20% bonus)Location: Remote (with occasional travel into the London office)Key skills needed: Hands on Terraform experience. Working with and developing GitHub Actions and Reusable Workflows CI/CD tooling and integrations experience Artefact management Programming experience DevOps Experience Strong experience working with AWS If keen please apply!
Job Title: OPNET Design Office Automation Architect (SC Active) Location: MoD Corsham Working Model: Hybrid - 2 to 3 days on-site required Duration: TBC Daily Rate: Market Competitive Outside IR35 SC Clearance required to be shortlisted for this role Overview The OpNET Design Office is responsible for the coherence and assurance of the design activity for the entirety of the OpNet Platform. This role reports directly to the Design Office Lead under governance of the System Design Authority and Core Product Owner. The primary focus of this role is to create, advise and assure OpNet designs for PAAS & Automation Architecture adoption. They must be conformant with vendor best practice, MoD security enforcement and the Defence Digital architectural patterns and guidance. Key responsibilities: - Support Act as the point of contact for automation architecture and design on behalf of the Design Office Lead. Interact with programme, project and engineering team leads to ensure cross team, cross technology coherence to satisfy the virtualisation requirements of the OpNet system. Support design vision creation, design decisions and design review as part of the end to end assurance process. Support to Programme and Project Stakeholder engagement and RAIDO Liaise with external (to NSoIT(D stakeholders to ensure end-to-end designs are being delivered across the wider Defence landscape. Liaise with team leads across the NSoIT(D) Programme and wider defence digital organisations to ensure a robust solution is delivered within Time, Cost and Performance. Design Identify, create and communicate HLDs across programme teams and the Design Office Support the review of all high and low-level designs for coherence, technical content and quality. Participate in Preliminary and Critical Design Reviews with stakeholders, both presenting and challenging design decisions, requirements alignment and supportability aspects. Align standards, frameworks and security with overall business and technology strategy. Support to the design of automation architecture elements to enable the system to function as part of the wider defence estate, during inception, transition and operations. Assure Ensuring that standards, frameworks and security postures align with overall business and technology strategies and policies. Identify capability gaps in existing architectures and recommend changes or enhancements in line with Agile and continuous improvement methods. Essential skills, qualifications, and experience In order to deliver this service, it is essential that individuals have: Automation and orchestration of secure software solutions with successful delivery on complex, large scale programmes utilising industry standard process and tooling where possible. A deep understanding of DevSecOps and Infrastructure Automation Design principles and operating within a secure CI/CD environment, is crucial. A deep understanding of declarative approaches using GitOps Proven demonstrable experience and proficiency in designing and architecting complex systems , with a focus on automating platform deployments. Strong experience in Infrastructure as Code (IaC) with knowledge in common tooling such as Ansible, Terraform, etc. Strong experience in Bare Metal Automation provisioning physical infrastructure Defining and documenting technical requirements and producing detailed solution architectures. Consulting and engineering in the development and design of automation best practices and implementation of solid security principles across the project to meet business goals along with customer and regulatory requirements. Rationalising designs & their alignment against architectural best practice. Demonstrable experience in the following: In-depth understanding of TOGAF (v9 foundation certification minimum) Familiarity with ArchiMate and other architectural tooling Experience in integrating software solutions with public cloud providers like AWS, Azure, or Google Cloud. Experience in implementing solutions using container orchestration e.g. Docker Compose, Kubernetes, OpenShift (preference for experience delivering VMware Tanzu solutions) Knowledge of security best practices and compliance standards related to VMware NSX environments. Knowledge of CI/CD platforms and DevSecOps techniques and best practise An understanding of Defence Lines of Development and MOD Capability Integration. Comprehensive knowledge of UK Defence deployed architectures, federations with coalition partners, security enforcing gateways and modern techniques for enforcement of security principles including VPN, VDI, hardware encryption and information flow handling. Experience in reviewing engineering designs and enhancing solutions against business requirements and Industry Best Practices. Experience in delivering to a least privilege security model. Must hold, or be willing to obtain SC clearance. Hold a valid Security Clearance (SC) Desirable skills, qualifications and experience .NET Framework, Powershell, PowerCLI, Python, Angular and other languages and frameworks Previous work in delivery of software-based programmes and projects Automation and Orchestration technologies and principals Security implementations such as PKI and proxy services in line with MOD Security assurance processes. Delivering in Agile and Waterfall project management environments Experience with the Atlassian Toolset - JIRA, Confluence and BitBucket for delivering Agile based projects. Understanding of JSP and over-arching HMG policy. A Computer Science university-based education at Bachelors or Masters level. Experience leveraging LLM, AI and ML for optimisation of software deliveries and documentation creation Experience in the implementation of standard infrastructure stacks such as Cisco, VMWare, Microsoft and Linux environments
May 15, 2024
Contractor
Job Title: OPNET Design Office Automation Architect (SC Active) Location: MoD Corsham Working Model: Hybrid - 2 to 3 days on-site required Duration: TBC Daily Rate: Market Competitive Outside IR35 SC Clearance required to be shortlisted for this role Overview The OpNET Design Office is responsible for the coherence and assurance of the design activity for the entirety of the OpNet Platform. This role reports directly to the Design Office Lead under governance of the System Design Authority and Core Product Owner. The primary focus of this role is to create, advise and assure OpNet designs for PAAS & Automation Architecture adoption. They must be conformant with vendor best practice, MoD security enforcement and the Defence Digital architectural patterns and guidance. Key responsibilities: - Support Act as the point of contact for automation architecture and design on behalf of the Design Office Lead. Interact with programme, project and engineering team leads to ensure cross team, cross technology coherence to satisfy the virtualisation requirements of the OpNet system. Support design vision creation, design decisions and design review as part of the end to end assurance process. Support to Programme and Project Stakeholder engagement and RAIDO Liaise with external (to NSoIT(D stakeholders to ensure end-to-end designs are being delivered across the wider Defence landscape. Liaise with team leads across the NSoIT(D) Programme and wider defence digital organisations to ensure a robust solution is delivered within Time, Cost and Performance. Design Identify, create and communicate HLDs across programme teams and the Design Office Support the review of all high and low-level designs for coherence, technical content and quality. Participate in Preliminary and Critical Design Reviews with stakeholders, both presenting and challenging design decisions, requirements alignment and supportability aspects. Align standards, frameworks and security with overall business and technology strategy. Support to the design of automation architecture elements to enable the system to function as part of the wider defence estate, during inception, transition and operations. Assure Ensuring that standards, frameworks and security postures align with overall business and technology strategies and policies. Identify capability gaps in existing architectures and recommend changes or enhancements in line with Agile and continuous improvement methods. Essential skills, qualifications, and experience In order to deliver this service, it is essential that individuals have: Automation and orchestration of secure software solutions with successful delivery on complex, large scale programmes utilising industry standard process and tooling where possible. A deep understanding of DevSecOps and Infrastructure Automation Design principles and operating within a secure CI/CD environment, is crucial. A deep understanding of declarative approaches using GitOps Proven demonstrable experience and proficiency in designing and architecting complex systems , with a focus on automating platform deployments. Strong experience in Infrastructure as Code (IaC) with knowledge in common tooling such as Ansible, Terraform, etc. Strong experience in Bare Metal Automation provisioning physical infrastructure Defining and documenting technical requirements and producing detailed solution architectures. Consulting and engineering in the development and design of automation best practices and implementation of solid security principles across the project to meet business goals along with customer and regulatory requirements. Rationalising designs & their alignment against architectural best practice. Demonstrable experience in the following: In-depth understanding of TOGAF (v9 foundation certification minimum) Familiarity with ArchiMate and other architectural tooling Experience in integrating software solutions with public cloud providers like AWS, Azure, or Google Cloud. Experience in implementing solutions using container orchestration e.g. Docker Compose, Kubernetes, OpenShift (preference for experience delivering VMware Tanzu solutions) Knowledge of security best practices and compliance standards related to VMware NSX environments. Knowledge of CI/CD platforms and DevSecOps techniques and best practise An understanding of Defence Lines of Development and MOD Capability Integration. Comprehensive knowledge of UK Defence deployed architectures, federations with coalition partners, security enforcing gateways and modern techniques for enforcement of security principles including VPN, VDI, hardware encryption and information flow handling. Experience in reviewing engineering designs and enhancing solutions against business requirements and Industry Best Practices. Experience in delivering to a least privilege security model. Must hold, or be willing to obtain SC clearance. Hold a valid Security Clearance (SC) Desirable skills, qualifications and experience .NET Framework, Powershell, PowerCLI, Python, Angular and other languages and frameworks Previous work in delivery of software-based programmes and projects Automation and Orchestration technologies and principals Security implementations such as PKI and proxy services in line with MOD Security assurance processes. Delivering in Agile and Waterfall project management environments Experience with the Atlassian Toolset - JIRA, Confluence and BitBucket for delivering Agile based projects. Understanding of JSP and over-arching HMG policy. A Computer Science university-based education at Bachelors or Masters level. Experience leveraging LLM, AI and ML for optimisation of software deliveries and documentation creation Experience in the implementation of standard infrastructure stacks such as Cisco, VMWare, Microsoft and Linux environments
Senior Cloud Security Engineer required by a high-tech software company with technical teams in the UK and US. The successful Senior Cloud Security Engineer will be join a growing security team within the business tasked with ensuring the secure architecture and operation of their SaaS products. The successful Senior Cloud Security Engineer is likely to have a technical background in infrastructure or devops and should have proven commercial experience in the cloud security space. The successful Senior Cloud Security Engineer will work closely with software development and devops teams and will be responsible for - Defining security requirements and solutions for SaaS services Maintaining and developing a culture of security Identifying, preventing and solving service vulnerabilities Providing general security oversight of SaaS services Working with DevOps teams to establish and maintain efficient DevSecOps processes Establishing security policies and standards for SaaS services 100% remote working Key experience A passion for software and/or cyber security In depth knowledge of AWS and Azure services Extensive experience working with multi-tenant cloud environments Scripting experience eg Bash, PowerShell, Python or similar Experience in any of the following areas would be advantageous but is not essential DevOps IaC technologies eg Terraform, CloudFormation or similar CI/CD If you are seeking a role of this nature please get in touch for more information. The role would be remote based with no requirement to work in the office. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
May 15, 2024
Full time
Senior Cloud Security Engineer required by a high-tech software company with technical teams in the UK and US. The successful Senior Cloud Security Engineer will be join a growing security team within the business tasked with ensuring the secure architecture and operation of their SaaS products. The successful Senior Cloud Security Engineer is likely to have a technical background in infrastructure or devops and should have proven commercial experience in the cloud security space. The successful Senior Cloud Security Engineer will work closely with software development and devops teams and will be responsible for - Defining security requirements and solutions for SaaS services Maintaining and developing a culture of security Identifying, preventing and solving service vulnerabilities Providing general security oversight of SaaS services Working with DevOps teams to establish and maintain efficient DevSecOps processes Establishing security policies and standards for SaaS services 100% remote working Key experience A passion for software and/or cyber security In depth knowledge of AWS and Azure services Extensive experience working with multi-tenant cloud environments Scripting experience eg Bash, PowerShell, Python or similar Experience in any of the following areas would be advantageous but is not essential DevOps IaC technologies eg Terraform, CloudFormation or similar CI/CD If you are seeking a role of this nature please get in touch for more information. The role would be remote based with no requirement to work in the office. Spectrum IT Recruitment (South) Limited is acting as an Employment Agency in relation to this vacancy.
Security Operations Engineer (£60k+) Edinburgh hybrid Are you ready to fortify digital defences in the heart of Edinburgh? Look no further as safeguarding customer assets is our client's top priority.Step into the frontline of security innovation. As a Security Operations Engineer, you'll tackle cutting-edge challenges in the Security, Resilience & Protection department. Collaborate with top-tier professionals and lead the charge in designing and implementing robust security controls.? What You'll Do:Optimise the Security Operations platform across endpoints, networks, and cloud.Spearhead Security Orchestration Automation and Response (SOAR) initiatives.Drive Security Data & Analytics with next-gen detection logic and analytics.? Essential Skills:Proven cyber security experience.Proficiency in supporting security tools like SOAR, SIEM, EDR, NGFW, and more.Industry certifications (CISSP/CCSP, CEH, etc.) or equivalent expertise.Hybrid environment expertise with Azure or AWS certifications as a bonus.Scripting prowess for automation and API interaction.Familiarity with microservices, Kubernetes, CI/CD pipelines, and DevSecOps principles.Ready to level up your career and make a real impact in the world of cyber security? Join today and be at the forefront of safeguarding tomorrow's digital landscape.
May 15, 2024
Full time
Security Operations Engineer (£60k+) Edinburgh hybrid Are you ready to fortify digital defences in the heart of Edinburgh? Look no further as safeguarding customer assets is our client's top priority.Step into the frontline of security innovation. As a Security Operations Engineer, you'll tackle cutting-edge challenges in the Security, Resilience & Protection department. Collaborate with top-tier professionals and lead the charge in designing and implementing robust security controls.? What You'll Do:Optimise the Security Operations platform across endpoints, networks, and cloud.Spearhead Security Orchestration Automation and Response (SOAR) initiatives.Drive Security Data & Analytics with next-gen detection logic and analytics.? Essential Skills:Proven cyber security experience.Proficiency in supporting security tools like SOAR, SIEM, EDR, NGFW, and more.Industry certifications (CISSP/CCSP, CEH, etc.) or equivalent expertise.Hybrid environment expertise with Azure or AWS certifications as a bonus.Scripting prowess for automation and API interaction.Familiarity with microservices, Kubernetes, CI/CD pipelines, and DevSecOps principles.Ready to level up your career and make a real impact in the world of cyber security? Join today and be at the forefront of safeguarding tomorrow's digital landscape.
A client of mine is looking for a DevSecOps project manager to come on board for an initial 3 months. Key for this role Proven ability with Delivering security technology integration Define Deliver and Support Strategic plans for implementing a database monitoring project Coordinate engineering resources and timetables with technology departments across the organisation conduct testing alongside engineers preservation of assets through implementing disaster recovery and back up procedures abd information security and control structures AWS Technical knowledge Imperva Sonar - AWS and database monitoring proijects (desirable) This will be a 3 months contract Outside IR35 Paying up to 582 per day This role will require you to be on site 2 times a week in either their London or Manchester office so please bear this in mind when applying and only apply if you are willing to commit to this!
May 15, 2024
Contractor
A client of mine is looking for a DevSecOps project manager to come on board for an initial 3 months. Key for this role Proven ability with Delivering security technology integration Define Deliver and Support Strategic plans for implementing a database monitoring project Coordinate engineering resources and timetables with technology departments across the organisation conduct testing alongside engineers preservation of assets through implementing disaster recovery and back up procedures abd information security and control structures AWS Technical knowledge Imperva Sonar - AWS and database monitoring proijects (desirable) This will be a 3 months contract Outside IR35 Paying up to 582 per day This role will require you to be on site 2 times a week in either their London or Manchester office so please bear this in mind when applying and only apply if you are willing to commit to this!
Opus Recruitment Solutions Ltd
Manchester, Lancashire
A client of mine is looking for a DevSecOps project manager to come on board for an initial 3 months. Key for this role Proven ability with Delivering security technology integration Define Deliver and Support Strategic plans for implementing a database monitoring project Coordinate engineering resources and timetables with technology departments across the organisation conduct testing alongside engineers preservation of assets through implementing disaster recovery and back up procedures abd information security and control structures AWS Technical knowledge Imperva Sonar - AWS and database monitoring proijects (desirable) This will be a 3 months contract Outside IR35 Paying up to £582 per day This role will require you to be on site 2 times a week in either their London or Manchester office so please bear this in mind when applying and only apply if you are willing to commit to this!
May 14, 2024
Full time
A client of mine is looking for a DevSecOps project manager to come on board for an initial 3 months. Key for this role Proven ability with Delivering security technology integration Define Deliver and Support Strategic plans for implementing a database monitoring project Coordinate engineering resources and timetables with technology departments across the organisation conduct testing alongside engineers preservation of assets through implementing disaster recovery and back up procedures abd information security and control structures AWS Technical knowledge Imperva Sonar - AWS and database monitoring proijects (desirable) This will be a 3 months contract Outside IR35 Paying up to £582 per day This role will require you to be on site 2 times a week in either their London or Manchester office so please bear this in mind when applying and only apply if you are willing to commit to this!
JOB TITLE: Lead DevOps Engineer - Prudential & Analytics Platform SALARY: £86,964 - £102,310 LOCATION(S): Leeds HOURS: Full-time WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at our Leeds Office About this opportunity A great opportunity has arisen to be part of a team within P&A platform working in the Strategic Lab as a Lead DevOps engineer; you'll play a key leadership role in our continued transformation journey by and you'll get involved with Cloud Architecture Testing & Automation Code Management Documentation and Design Participation in Communities of Practice, Guilds and improvement working groups and shares learning to members of their team and across the testing community. Prudential & Analytics (P&A) is on an exciting journey and there is no better a time to join us. The investments we are making in our people, data, and technology are leading to innovative projects; fresh possibilities have provided new ways for our people to work, learn and thrive. About us Like the modern Britain we serve, we're evolving. Investing billions in our people, data and tech to transform the way we meet the ever-changing needs of our 26 million customers. We're growing with purpose. Join us on our journey and you will too What we're looking for A confident and passionate DevOps engineers who will push the boundaries and help us build products that easily integrate. You'll have a broad understanding across all aspects of the software delivery lifecycle and related domains. Ideally, you'll be highly conversant with the concepts around APIs including deep understanding of API Gateways, REST & GraphQL, with strong hands-on experience in DevOps and automation. You should also have a good understanding of related technologies and fields such as Cyber Security, Networking, DevOps, Docker/Kubernetes, and experience of Cloud providers such as AWS, GCP or Azure, and productivity tools such as Jira, Confluence, Microsoft Teams. What we need from you: Detailed knowledge of and experience in DevOps/Continuous delivery and best practices, to be able to confidently design and implement solutions. Expertise in using DevSecOps tools and frameworks for managing infrastructure as code (IaC), Terraform. Expertise in Shell Scripting, YAML templates Strong understanding and expertise using configuration management and CI/CD automation practices and tools Jenkins, Harness, Spinnaker, Gradle, Nexus, Maven, Git Expertise in source code management, branching and deployment strategies. Cloud technologies and infrastructure : Hands-on experience with at least one of the 3 main cloud providers Google Cloud Platform (GCP), Microsoft Azure or Amazon Web Services (AWS) is essential. Experience in developing cloud and container-based solutions such as Kubernetes, Docker, Rancher and automating deployment of applications to Google Kubernetes Engine (GKE) and Azure Kubernetes Service (AKS). Experience with cloud services like container registry, secret management, networking. Strong interpersonal, communication and influencing skills. It would be great if you also had: Development experience using Java/NodeJS and strong understanding of SDLC. Strong understanding of Software Development Lifecycle (SDLC) including experience with building/integrating developer SDLC tools Strong experience of continuous monitoring such as Dynatrace, Splunk etc Strong experience of integrating continuous testing tools such as Selenium, Cucumber and other tools like SonarQube into CI and CD pipelines Experience of an API Management Platform (e.g. Apigee, API Connect or similar) Knowledge of Cyber security and techniques, such as OIDC, OAuth, SSL/TLS, and encryption to build secure and robust solutions. What you'll get to learn (any previous experience would be advantageous) Working with the cloud/GCP and the opportunities that it brings. Solving real world problems and being comfortable working in a complex regulated environment. Our focus is to ensure we are inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity, or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it is why we especially welcome applications from under-represented groups. We are disability confident. So, if you would like reasonable adjustments to be made to our recruitment processes, just let us know. We also offer a wide-ranging benefits package, which includes: A generous pension contribution of up to 15% An annual performance-related bonus Share schemes including free shares. Benefits you can adapt to your lifestyle, such as discounted shopping. 30 days' holiday, with bank holidays on top A range of wellbeing initiatives and generous parental leave policies Ready for a career where you can have a positive impact as you learn, grow, and thrive? Apply today and find out more. Join our journey.
May 14, 2024
Full time
JOB TITLE: Lead DevOps Engineer - Prudential & Analytics Platform SALARY: £86,964 - £102,310 LOCATION(S): Leeds HOURS: Full-time WORKING PATTERN: Our work style is hybrid, which involves spending at least two days per week currently, or 40% of our time, at our Leeds Office About this opportunity A great opportunity has arisen to be part of a team within P&A platform working in the Strategic Lab as a Lead DevOps engineer; you'll play a key leadership role in our continued transformation journey by and you'll get involved with Cloud Architecture Testing & Automation Code Management Documentation and Design Participation in Communities of Practice, Guilds and improvement working groups and shares learning to members of their team and across the testing community. Prudential & Analytics (P&A) is on an exciting journey and there is no better a time to join us. The investments we are making in our people, data, and technology are leading to innovative projects; fresh possibilities have provided new ways for our people to work, learn and thrive. About us Like the modern Britain we serve, we're evolving. Investing billions in our people, data and tech to transform the way we meet the ever-changing needs of our 26 million customers. We're growing with purpose. Join us on our journey and you will too What we're looking for A confident and passionate DevOps engineers who will push the boundaries and help us build products that easily integrate. You'll have a broad understanding across all aspects of the software delivery lifecycle and related domains. Ideally, you'll be highly conversant with the concepts around APIs including deep understanding of API Gateways, REST & GraphQL, with strong hands-on experience in DevOps and automation. You should also have a good understanding of related technologies and fields such as Cyber Security, Networking, DevOps, Docker/Kubernetes, and experience of Cloud providers such as AWS, GCP or Azure, and productivity tools such as Jira, Confluence, Microsoft Teams. What we need from you: Detailed knowledge of and experience in DevOps/Continuous delivery and best practices, to be able to confidently design and implement solutions. Expertise in using DevSecOps tools and frameworks for managing infrastructure as code (IaC), Terraform. Expertise in Shell Scripting, YAML templates Strong understanding and expertise using configuration management and CI/CD automation practices and tools Jenkins, Harness, Spinnaker, Gradle, Nexus, Maven, Git Expertise in source code management, branching and deployment strategies. Cloud technologies and infrastructure : Hands-on experience with at least one of the 3 main cloud providers Google Cloud Platform (GCP), Microsoft Azure or Amazon Web Services (AWS) is essential. Experience in developing cloud and container-based solutions such as Kubernetes, Docker, Rancher and automating deployment of applications to Google Kubernetes Engine (GKE) and Azure Kubernetes Service (AKS). Experience with cloud services like container registry, secret management, networking. Strong interpersonal, communication and influencing skills. It would be great if you also had: Development experience using Java/NodeJS and strong understanding of SDLC. Strong understanding of Software Development Lifecycle (SDLC) including experience with building/integrating developer SDLC tools Strong experience of continuous monitoring such as Dynatrace, Splunk etc Strong experience of integrating continuous testing tools such as Selenium, Cucumber and other tools like SonarQube into CI and CD pipelines Experience of an API Management Platform (e.g. Apigee, API Connect or similar) Knowledge of Cyber security and techniques, such as OIDC, OAuth, SSL/TLS, and encryption to build secure and robust solutions. What you'll get to learn (any previous experience would be advantageous) Working with the cloud/GCP and the opportunities that it brings. Solving real world problems and being comfortable working in a complex regulated environment. Our focus is to ensure we are inclusive every day, building an organisation that reflects modern society and celebrates diversity in all its forms. We want our people to feel that they belong and can be their best, regardless of background, identity, or culture. We were one of the first major organisations to set goals on diversity in senior roles, create a menopause health package, and a dedicated Working with Cancer initiative. And it is why we especially welcome applications from under-represented groups. We are disability confident. So, if you would like reasonable adjustments to be made to our recruitment processes, just let us know. We also offer a wide-ranging benefits package, which includes: A generous pension contribution of up to 15% An annual performance-related bonus Share schemes including free shares. Benefits you can adapt to your lifestyle, such as discounted shopping. 30 days' holiday, with bank holidays on top A range of wellbeing initiatives and generous parental leave policies Ready for a career where you can have a positive impact as you learn, grow, and thrive? Apply today and find out more. Join our journey.
Security Operations Engineer ( 60k+) Edinburgh hybrid Are you ready to fortify digital defences in the heart of Edinburgh? Look no further as safeguarding customer assets is our client's top priority. Step into the frontline of security innovation. As a Security Operations Engineer, you'll tackle cutting-edge challenges in the Security, Resilience & Protection department. Collaborate with top-tier professionals and lead the charge in designing and implementing robust security controls. ? What You'll Do: Optimise the Security Operations platform across endpoints, networks, and cloud. Spearhead Security Orchestration Automation and Response (SOAR) initiatives. Drive Security Data & Analytics with next-gen detection logic and analytics. ? Essential Skills: Proven cyber security experience. Proficiency in supporting security tools like SOAR, SIEM, EDR, NGFW, and more. Industry certifications (CISSP/CCSP, CEH, etc.) or equivalent expertise. Hybrid environment expertise with Azure or AWS certifications as a bonus. Scripting prowess for automation and API interaction. Familiarity with microservices, Kubernetes, CI/CD pipelines, and DevSecOps principles. Ready to level up your career and make a real impact in the world of cyber security? Join today and be at the forefront of safeguarding tomorrow's digital landscape.
May 14, 2024
Full time
Security Operations Engineer ( 60k+) Edinburgh hybrid Are you ready to fortify digital defences in the heart of Edinburgh? Look no further as safeguarding customer assets is our client's top priority. Step into the frontline of security innovation. As a Security Operations Engineer, you'll tackle cutting-edge challenges in the Security, Resilience & Protection department. Collaborate with top-tier professionals and lead the charge in designing and implementing robust security controls. ? What You'll Do: Optimise the Security Operations platform across endpoints, networks, and cloud. Spearhead Security Orchestration Automation and Response (SOAR) initiatives. Drive Security Data & Analytics with next-gen detection logic and analytics. ? Essential Skills: Proven cyber security experience. Proficiency in supporting security tools like SOAR, SIEM, EDR, NGFW, and more. Industry certifications (CISSP/CCSP, CEH, etc.) or equivalent expertise. Hybrid environment expertise with Azure or AWS certifications as a bonus. Scripting prowess for automation and API interaction. Familiarity with microservices, Kubernetes, CI/CD pipelines, and DevSecOps principles. Ready to level up your career and make a real impact in the world of cyber security? Join today and be at the forefront of safeguarding tomorrow's digital landscape.
Main duties and responsibilities Programming and build - You can design, write and iterate code from prototype to production-ready. You understand security, accessibility and version control. You can use a range of coding tools and languages. You can develop code that self-generates documentation that supports Data Scientists and Data Analysts. Technical understanding - You know about the specific technologies that underpin your ability to deliver the responsibilities and tasks of the role. You can apply the required breadth and depth of technical knowledge. Testing - You can plan, design, manage, execute and report tests, using appropriate tools and techniques, and work within regulations. You know how to ensure that risks associated with deployment are adequately understood and documented Problem resolution - You know how to log, analyse and manage problems in order to identify and implement the appropriate solution. You can ensure that the problem is fixed. You will work in the Data Engineering and Enablement Division that reports into the Data Operations Directorate. It's an exciting time to join as we seek to create leading Health Protection data capabilities that enable data scientists and data analysts to develop insights that inform public health decisions with resilience platforms and curated data assets. The role requires the ingestion of a wide range of data assets, building acquisition, orchestration, data pipelines and curated data marts and data egresses. We are seeking to mature our advanced capabilities with standardised practices, machine learning and agility needed to pro-active detect and respond to new public health issues. You will be involved in the delivery lifecycle from engaging with stakeholders on new initiatives, analysing use cases, developing optimal designs that where possible re-use and extend capabilities, and implement and operate the design. Our teams work collaboratively in an agile multi-disciplinary team mode and we are looking for engineers who have the ability to operate in feature teams, data operations and DevSecOps models. We are developing our engineering community of practice to share knowledge, enhance our standards and processes to provide a strong foundation to develop individuals, teams and innovation. Essential Criteria Strong at python, unit testing (pytest) and pep8 standards Writing robust data pipeline code that can run unattended Pandas data validation, manipulation, merging, joining and at times visualisation Unix environment, server health and management of ongoing running processes Github, git, pull requests, CI and code review Logging and reporting pragmatically Ability to troubleshoot and solve numerical and technical problems High attention to detail Excellent communication and facilitation skills evidenced through verbal and written means to a wide range of stakeholders Experience with Agile delivery Data engineering experience using Python, SQL, Spark and AWS Hands on ETL development experience utilizing Microsoft enterprise stack / Azure and AWS Glue Knowledge of data management platforms and development with SQLServer Experience with publishing data sets for visualisation and analysis Experience with supporting design of data models / data flows Ability to work as part of a team to develop and deliver end-to-end data warehouse solutions Analytical skill set with an ability to understand data requirements and support the development of data solutions Desirable Criteria Machine learning for engineering practices, such as meta driven intelligent ETL and pipeline processes Experience of working with JIRA (or Azure DevOps or similar tools) within an Agile/Scrum environment Experience/understanding of software and data lifecycle management Educated to degree level (not essential, experience is key). Relevant numerate, technical or computer science discipline would be an advantage for more info click the apply here button
Aug 16, 2023
Full time
Main duties and responsibilities Programming and build - You can design, write and iterate code from prototype to production-ready. You understand security, accessibility and version control. You can use a range of coding tools and languages. You can develop code that self-generates documentation that supports Data Scientists and Data Analysts. Technical understanding - You know about the specific technologies that underpin your ability to deliver the responsibilities and tasks of the role. You can apply the required breadth and depth of technical knowledge. Testing - You can plan, design, manage, execute and report tests, using appropriate tools and techniques, and work within regulations. You know how to ensure that risks associated with deployment are adequately understood and documented Problem resolution - You know how to log, analyse and manage problems in order to identify and implement the appropriate solution. You can ensure that the problem is fixed. You will work in the Data Engineering and Enablement Division that reports into the Data Operations Directorate. It's an exciting time to join as we seek to create leading Health Protection data capabilities that enable data scientists and data analysts to develop insights that inform public health decisions with resilience platforms and curated data assets. The role requires the ingestion of a wide range of data assets, building acquisition, orchestration, data pipelines and curated data marts and data egresses. We are seeking to mature our advanced capabilities with standardised practices, machine learning and agility needed to pro-active detect and respond to new public health issues. You will be involved in the delivery lifecycle from engaging with stakeholders on new initiatives, analysing use cases, developing optimal designs that where possible re-use and extend capabilities, and implement and operate the design. Our teams work collaboratively in an agile multi-disciplinary team mode and we are looking for engineers who have the ability to operate in feature teams, data operations and DevSecOps models. We are developing our engineering community of practice to share knowledge, enhance our standards and processes to provide a strong foundation to develop individuals, teams and innovation. Essential Criteria Strong at python, unit testing (pytest) and pep8 standards Writing robust data pipeline code that can run unattended Pandas data validation, manipulation, merging, joining and at times visualisation Unix environment, server health and management of ongoing running processes Github, git, pull requests, CI and code review Logging and reporting pragmatically Ability to troubleshoot and solve numerical and technical problems High attention to detail Excellent communication and facilitation skills evidenced through verbal and written means to a wide range of stakeholders Experience with Agile delivery Data engineering experience using Python, SQL, Spark and AWS Hands on ETL development experience utilizing Microsoft enterprise stack / Azure and AWS Glue Knowledge of data management platforms and development with SQLServer Experience with publishing data sets for visualisation and analysis Experience with supporting design of data models / data flows Ability to work as part of a team to develop and deliver end-to-end data warehouse solutions Analytical skill set with an ability to understand data requirements and support the development of data solutions Desirable Criteria Machine learning for engineering practices, such as meta driven intelligent ETL and pipeline processes Experience of working with JIRA (or Azure DevOps or similar tools) within an Agile/Scrum environment Experience/understanding of software and data lifecycle management Educated to degree level (not essential, experience is key). Relevant numerate, technical or computer science discipline would be an advantage for more info click the apply here button
Job Title Security Architect Advert People make Sage great. From our colleagues delivering ground-breaking solutions to the customers who use them: people have helped us grow for more than thirty years, and people are driving our future as a great SaaS company. We're writing our next chapter. Be part of it! At Sage, we recognize that the world of work has rapidly shifted over the last few years, particularly how we work. That is why we have committed to working in a hybrid way going forward. Human connection is an essential ingredient of the 4 principles that make up our Flexible Human Work hybrid framework and we want to be transparent in what that looks like when you join our Sage family. On one hand, our offices will continue to play an important role in our future and serve as a place for spontaneous conversations, connection, collaboration as well as focused time. On the other hand, we have learned to reimagine where and when we work and to unlock that flexibility and innovation for our colleagues offering them the opportunity to work flex across their home, Sage offices or customer sites. We invite you to join us and help us write our next chapter. Follow us on our social media sites to join in conversations about open positions and company news! . If you would like support with your application (or require any adjustments) please contact us at for assistance. All qualified applicants will be thoughtfully considered and never discriminated against based on their race, color, age, religion, sexual orientation, gender identity, national origin, disability or veteran status. Job Description About Sage Sage is the proud market leader in cloud business management solutions supporting millions of small and medium size businesses globally. Sage is the market leader for integrated accounting, payroll, and payment systems, supporting the ambition of the world's entrepreneurs. At Sage, we're focused on giving businesses of all sizes the technology to better manage everything from money to people. You'll be part of a global market leader but with a very local heart. We're a FTSE 100 company with £60m of new investment into the business, over 13,000 colleagues globally, and we continually give back. Sec authority Leading projects / SAIL specifics & technologies Ability to understand or some coding background. ISO27k - different ways of achieving it • Experience with gitops Iso compliance ------ Job description •You will be part of our Cloud Native DevSecOps security engineering team and will be primarily working on building enterprise containers solutions that involve Kubernetes, OpenShift, Docker and the surrounding K8s ecosystem. •In this role, you will be responsible for providing design and implementation expertise on Kubernetes for the DevSecOps solutions that are being built in the cloud. As a Kubernetes Subject Matter Expert, you will be providing guidance for design and architecture of Kubernetes clusters at a massive scale for the client organization (an innovative and progressive organization that operates at scale). •You will be implementing rapid POCs and Pilots of new capabilities to demonstrate feasibility of new solutions. •You will understand the developments in the CNCF community and have a great understanding of the overall CNCF ecosystem. You will present solutions to stakeholders to better educate them and help in the decision-making process for using the right technologies for solving the right problems. Core activities: •Have in-depth, hands-on experience building platforms at scale for containerized workloads, particularly leveraging Kubernetes, including cluster provisioning, operations, workload optimization, custom controllers/operators, workflow orchestration, logging monitoring, security, and troubleshooting. •Detailed understanding of core concepts for Kubernetes APIs and cluster architecture, as well as services and networking. •Hands on experience with Ingress of Nginx DevOps tools: Jenkins, Ansible, CI/CD, Docker Network and security management for hybrid environment •Evaluate, select, design and configure security infrastructure systems in a global environment. •Build, deploy and operate a wide range of robust and fit-for-purpose security tools and services, in a Cloud-first cullture •Ensure strong and effective security controls are in place to detect and mitigate risks across all on-prem and Cloud environments to meet business and regulatory requirements •Work closely and collaboratively with a large number of distributed Product teams and operational teams across UK and US and Europe, working in an AGILE delivery model. •Promote DevSecOps, leading by example to change existing systems and practices for the better, allowing all functions to do more with existing resources •Support and conduct internal audits, help mitigate findings and implement improvement measures. •Identify, integrate, monitor and improve infosec controls by understanding business processes. •Work in support of the Senior Information Security Engineer enhancing the security direction for the organisation including systems, networks, user services and vendor development efforts. •Troubleshoot security system and related issues. Assist with complex projects and ongoing support of security operations. •Assist in defining security requirements and review of system to determine if they have been designed to comply with established security standards. Develop new standards as necessary. •Assist other Information Security teams with evaluating technology to ensure adherence to developing standards and technical integration with current capabilities Skills required: •Have in-depth, hands-on experience building platforms at scale for containerized workloads, particularly leveraging Kubernetes, including cluster provisioning, operations, workload optimization, custom controllers/operators, workflow orchestration, logging monitoring, security, and troubleshooting. •Detailed understanding of core concepts for Kubernetes APIs and cluster architecture, as well as services and networking. •Hands on experience with Ingress of Nginx DevOps tools: Jenkins, Azure Devops,Ansible, CI/CD, Docker Network and security management for hybrid environment •Familiarity with Deploying Kubernetes •Proven experience in DevOps, Nginx and Kubernetes (Pod, Cluster, etc.) •Ability to push a point/right solution to different stakeholders (both technical and non-technical). •Proven experience of delivering Kubernetes project engagements. •Ability to troubleshoot issues faced in the working Kubernetes environment and CI/CD pipeline. •Design, implement, support and evaluate security-focused tools, vulnerably management tools and services. •Conduct periodic Vulnerability assessment. •Participate in incident handling and other related duties to support the information security function. •Cloud DevOps/Security Certifications in AWS/Azure is preferred. Key Responsibilities Infrastructure and automation as code. Building and api management. Why Join Sage? People make Sage great. From our colleagues delivering ground-breaking solutions to the customers who use them: people have helped us grow for more than thirty years, and people are driving our future as a great SaaS company. We're writing our next chapter. Be part of it! Experience has taught us that when our customers thrive, we thrive. As a team, we always start with what customers need. Through the good... and more challenging times. Innovating at pace so customers can manage their finances, operations and people. Every one of us shapes our culture at Sage - doing what's right and succeeding together, united by our commitment to each other. We encourage each other to grow in our roles, in our careers and as individuals. In addition, we offer competitive salary and bonus potential combined with benefits package. The benefits include generous pension scheme, cycle to work scheme, 25 days annual leave and holiday buy/sell, five volunteering days, career progression, access to 24/7 mental-health support, flexible work, inclusiveness and more! Function Global Information Security Country United Kingdom Office Location London;Newcastle Work Place type Hybrid
Sep 23, 2022
Full time
Job Title Security Architect Advert People make Sage great. From our colleagues delivering ground-breaking solutions to the customers who use them: people have helped us grow for more than thirty years, and people are driving our future as a great SaaS company. We're writing our next chapter. Be part of it! At Sage, we recognize that the world of work has rapidly shifted over the last few years, particularly how we work. That is why we have committed to working in a hybrid way going forward. Human connection is an essential ingredient of the 4 principles that make up our Flexible Human Work hybrid framework and we want to be transparent in what that looks like when you join our Sage family. On one hand, our offices will continue to play an important role in our future and serve as a place for spontaneous conversations, connection, collaboration as well as focused time. On the other hand, we have learned to reimagine where and when we work and to unlock that flexibility and innovation for our colleagues offering them the opportunity to work flex across their home, Sage offices or customer sites. We invite you to join us and help us write our next chapter. Follow us on our social media sites to join in conversations about open positions and company news! . If you would like support with your application (or require any adjustments) please contact us at for assistance. All qualified applicants will be thoughtfully considered and never discriminated against based on their race, color, age, religion, sexual orientation, gender identity, national origin, disability or veteran status. Job Description About Sage Sage is the proud market leader in cloud business management solutions supporting millions of small and medium size businesses globally. Sage is the market leader for integrated accounting, payroll, and payment systems, supporting the ambition of the world's entrepreneurs. At Sage, we're focused on giving businesses of all sizes the technology to better manage everything from money to people. You'll be part of a global market leader but with a very local heart. We're a FTSE 100 company with £60m of new investment into the business, over 13,000 colleagues globally, and we continually give back. Sec authority Leading projects / SAIL specifics & technologies Ability to understand or some coding background. ISO27k - different ways of achieving it • Experience with gitops Iso compliance ------ Job description •You will be part of our Cloud Native DevSecOps security engineering team and will be primarily working on building enterprise containers solutions that involve Kubernetes, OpenShift, Docker and the surrounding K8s ecosystem. •In this role, you will be responsible for providing design and implementation expertise on Kubernetes for the DevSecOps solutions that are being built in the cloud. As a Kubernetes Subject Matter Expert, you will be providing guidance for design and architecture of Kubernetes clusters at a massive scale for the client organization (an innovative and progressive organization that operates at scale). •You will be implementing rapid POCs and Pilots of new capabilities to demonstrate feasibility of new solutions. •You will understand the developments in the CNCF community and have a great understanding of the overall CNCF ecosystem. You will present solutions to stakeholders to better educate them and help in the decision-making process for using the right technologies for solving the right problems. Core activities: •Have in-depth, hands-on experience building platforms at scale for containerized workloads, particularly leveraging Kubernetes, including cluster provisioning, operations, workload optimization, custom controllers/operators, workflow orchestration, logging monitoring, security, and troubleshooting. •Detailed understanding of core concepts for Kubernetes APIs and cluster architecture, as well as services and networking. •Hands on experience with Ingress of Nginx DevOps tools: Jenkins, Ansible, CI/CD, Docker Network and security management for hybrid environment •Evaluate, select, design and configure security infrastructure systems in a global environment. •Build, deploy and operate a wide range of robust and fit-for-purpose security tools and services, in a Cloud-first cullture •Ensure strong and effective security controls are in place to detect and mitigate risks across all on-prem and Cloud environments to meet business and regulatory requirements •Work closely and collaboratively with a large number of distributed Product teams and operational teams across UK and US and Europe, working in an AGILE delivery model. •Promote DevSecOps, leading by example to change existing systems and practices for the better, allowing all functions to do more with existing resources •Support and conduct internal audits, help mitigate findings and implement improvement measures. •Identify, integrate, monitor and improve infosec controls by understanding business processes. •Work in support of the Senior Information Security Engineer enhancing the security direction for the organisation including systems, networks, user services and vendor development efforts. •Troubleshoot security system and related issues. Assist with complex projects and ongoing support of security operations. •Assist in defining security requirements and review of system to determine if they have been designed to comply with established security standards. Develop new standards as necessary. •Assist other Information Security teams with evaluating technology to ensure adherence to developing standards and technical integration with current capabilities Skills required: •Have in-depth, hands-on experience building platforms at scale for containerized workloads, particularly leveraging Kubernetes, including cluster provisioning, operations, workload optimization, custom controllers/operators, workflow orchestration, logging monitoring, security, and troubleshooting. •Detailed understanding of core concepts for Kubernetes APIs and cluster architecture, as well as services and networking. •Hands on experience with Ingress of Nginx DevOps tools: Jenkins, Azure Devops,Ansible, CI/CD, Docker Network and security management for hybrid environment •Familiarity with Deploying Kubernetes •Proven experience in DevOps, Nginx and Kubernetes (Pod, Cluster, etc.) •Ability to push a point/right solution to different stakeholders (both technical and non-technical). •Proven experience of delivering Kubernetes project engagements. •Ability to troubleshoot issues faced in the working Kubernetes environment and CI/CD pipeline. •Design, implement, support and evaluate security-focused tools, vulnerably management tools and services. •Conduct periodic Vulnerability assessment. •Participate in incident handling and other related duties to support the information security function. •Cloud DevOps/Security Certifications in AWS/Azure is preferred. Key Responsibilities Infrastructure and automation as code. Building and api management. Why Join Sage? People make Sage great. From our colleagues delivering ground-breaking solutions to the customers who use them: people have helped us grow for more than thirty years, and people are driving our future as a great SaaS company. We're writing our next chapter. Be part of it! Experience has taught us that when our customers thrive, we thrive. As a team, we always start with what customers need. Through the good... and more challenging times. Innovating at pace so customers can manage their finances, operations and people. Every one of us shapes our culture at Sage - doing what's right and succeeding together, united by our commitment to each other. We encourage each other to grow in our roles, in our careers and as individuals. In addition, we offer competitive salary and bonus potential combined with benefits package. The benefits include generous pension scheme, cycle to work scheme, 25 days annual leave and holiday buy/sell, five volunteering days, career progression, access to 24/7 mental-health support, flexible work, inclusiveness and more! Function Global Information Security Country United Kingdom Office Location London;Newcastle Work Place type Hybrid
Job Introduction We want the BBC to be as renowned for the quality of its engineering as it is for the quality of its content. We aspire to be the best, so that we can engineer outstanding digital products, at scale. Working here in an engineering leadership role means leading a world-class team and a chance to do the most meaningful work of your career BBC iPlayer is one of the UK's most well-known and loved brands, and we're looking for a passionate Software Engineering Team Lead to join a collaborative, cross-discipline, agile team. We welcome applications from all, regardless of age, gender, ethnicity, disability, sexuality, social background, religion and/or belief. It is an exciting time to join iPlayer, as our mission is to be the future of BBC TV. This is a place where your work impacts millions of iPlayer users every day. You will have the opportunity to work on a website that operates at a huge scale. We're looking for a Software Engineering Team Lead who cares about creating performant, accessible and operationally excellent systems that offer great user experiences. We're looking for someone who values communication and collaborative approaches to finding the right solution, and is willing and excited to learn new skills and share their knowledge with others. You'll manage an established team of engineers (5-6), and as Team Lead you'll be responsible for supporting and developing the team through line management to continued success. Role Responsibility Recruit, mentor and manage an effective software engineering team Be accountable for the design, development and operation of effective software that meets complex requirements for the immediate team and broader BBC Be hands-on wherever possible, pairing with team members to achieve the team's tasks and objectives Work in an agile, cross-discipline environment Work with delivery, product and UX leads to design software and create implementable specifications and tasks at product and roadmap level Learn new technologies, keep abreast of existing technologies and help introduce them where appropriate Promote skills, knowledge sharing and personal development Understand, contribute to, and promote the product goals/priorities Ensure the team's software works well in its operating environment Ensure that the team's technical product documentation is always complete, accurate and coherent Ensure troubleshooting and resolution of issues throughout the product life cycle including out-of-hours support for incident resolution Work with other technical leaders in the broader organisation to define, document and distribute best practice and standards Define, lead and encourage continuous improvement of the team's delivery and development processes Are you the right candidate? Essential Technical Skills & Experience: Expertise designing, building, owning, operating and supporting modern API applications that run in the Cloud (we use Typescript, NodeJS and AWS but open to experience with other similar technologies) Expertise in API architecture and key technologies (Lambda, SNS, S3, EC2) Expertise in modern development tools and practices (e.g CI/CD, DevSecOps, Pair Programming, TDD) Expertise in choosing and applying design patterns Developing software with scale, security and reliability in mind Essential Leadership Skills & Experience: Recruitment, line management and mentoring experience Effective leadership and collaboration inside and beyond a team The ability to influence diverse and senior stakeholders effectively Establishing and promoting best practices within teams Being flexible, and comfortable adapting to changing priorities, as well asprioritising work across multiple initiatives yourself Package Description Excellent career progression: The BBC offers great opportunities for ambitious individuals to seek new challenges and work on many different and varied products. Unrivalled training and development opportunities: Our in-house Academy hosts a wide range of internal and external courses and certification. A vibrant digital community: We have a strong focus on continuous improvement and engineering excellence. We host regular talks from internal and external speakers, and provide generous opportunities to attend industry events and conferences. Benefits: We offer a competitive salary package, a flexible 35-hour working week for work-life balance and 26 days holiday with the option to buy an extra 5 days, a defined pension scheme and discounted dental, health care, gym and much more. About the BBC We care a lot about our technology, for example keeping our stack up-to-date, following best practices and industry standards. Our current stack utilises ReactJS , React Router , Redux , Typescript and NodeJS on AWS , and all team members have the opportunity to steer our technical direction. We also care a lot about the people in our teams. There are great opportunities to grow your career within the team and BBC, and a mentorship programme to make sure you are well-supported. We believe strongly in developing talent from within the team. We have training and conference budgets, and 10% of your time is dedicated for you to explore, innovate and learn new technologies. There are also regular opportunities to collaborate with other teams around the BBC. We are happy to consider flexible work based on your personal situation, such as hybrid working. The BBC is committed to building a culturally diverse workforce and therefore strongly encourages applications from underrepresented groups. We are committed to equality of opportunity and welcome applications from individuals, regardless of their background.
Sep 23, 2022
Full time
Job Introduction We want the BBC to be as renowned for the quality of its engineering as it is for the quality of its content. We aspire to be the best, so that we can engineer outstanding digital products, at scale. Working here in an engineering leadership role means leading a world-class team and a chance to do the most meaningful work of your career BBC iPlayer is one of the UK's most well-known and loved brands, and we're looking for a passionate Software Engineering Team Lead to join a collaborative, cross-discipline, agile team. We welcome applications from all, regardless of age, gender, ethnicity, disability, sexuality, social background, religion and/or belief. It is an exciting time to join iPlayer, as our mission is to be the future of BBC TV. This is a place where your work impacts millions of iPlayer users every day. You will have the opportunity to work on a website that operates at a huge scale. We're looking for a Software Engineering Team Lead who cares about creating performant, accessible and operationally excellent systems that offer great user experiences. We're looking for someone who values communication and collaborative approaches to finding the right solution, and is willing and excited to learn new skills and share their knowledge with others. You'll manage an established team of engineers (5-6), and as Team Lead you'll be responsible for supporting and developing the team through line management to continued success. Role Responsibility Recruit, mentor and manage an effective software engineering team Be accountable for the design, development and operation of effective software that meets complex requirements for the immediate team and broader BBC Be hands-on wherever possible, pairing with team members to achieve the team's tasks and objectives Work in an agile, cross-discipline environment Work with delivery, product and UX leads to design software and create implementable specifications and tasks at product and roadmap level Learn new technologies, keep abreast of existing technologies and help introduce them where appropriate Promote skills, knowledge sharing and personal development Understand, contribute to, and promote the product goals/priorities Ensure the team's software works well in its operating environment Ensure that the team's technical product documentation is always complete, accurate and coherent Ensure troubleshooting and resolution of issues throughout the product life cycle including out-of-hours support for incident resolution Work with other technical leaders in the broader organisation to define, document and distribute best practice and standards Define, lead and encourage continuous improvement of the team's delivery and development processes Are you the right candidate? Essential Technical Skills & Experience: Expertise designing, building, owning, operating and supporting modern API applications that run in the Cloud (we use Typescript, NodeJS and AWS but open to experience with other similar technologies) Expertise in API architecture and key technologies (Lambda, SNS, S3, EC2) Expertise in modern development tools and practices (e.g CI/CD, DevSecOps, Pair Programming, TDD) Expertise in choosing and applying design patterns Developing software with scale, security and reliability in mind Essential Leadership Skills & Experience: Recruitment, line management and mentoring experience Effective leadership and collaboration inside and beyond a team The ability to influence diverse and senior stakeholders effectively Establishing and promoting best practices within teams Being flexible, and comfortable adapting to changing priorities, as well asprioritising work across multiple initiatives yourself Package Description Excellent career progression: The BBC offers great opportunities for ambitious individuals to seek new challenges and work on many different and varied products. Unrivalled training and development opportunities: Our in-house Academy hosts a wide range of internal and external courses and certification. A vibrant digital community: We have a strong focus on continuous improvement and engineering excellence. We host regular talks from internal and external speakers, and provide generous opportunities to attend industry events and conferences. Benefits: We offer a competitive salary package, a flexible 35-hour working week for work-life balance and 26 days holiday with the option to buy an extra 5 days, a defined pension scheme and discounted dental, health care, gym and much more. About the BBC We care a lot about our technology, for example keeping our stack up-to-date, following best practices and industry standards. Our current stack utilises ReactJS , React Router , Redux , Typescript and NodeJS on AWS , and all team members have the opportunity to steer our technical direction. We also care a lot about the people in our teams. There are great opportunities to grow your career within the team and BBC, and a mentorship programme to make sure you are well-supported. We believe strongly in developing talent from within the team. We have training and conference budgets, and 10% of your time is dedicated for you to explore, innovate and learn new technologies. There are also regular opportunities to collaborate with other teams around the BBC. We are happy to consider flexible work based on your personal situation, such as hybrid working. The BBC is committed to building a culturally diverse workforce and therefore strongly encourages applications from underrepresented groups. We are committed to equality of opportunity and welcome applications from individuals, regardless of their background.