Join us as a Principal Engineer for CIAM at Barclays, where you will support the acceleration of a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Strong hands-on experience in the configuration, deployment and running of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS), including designing and implementing cloud-based, scalable and resilient IAM solutions for large corporate organisations. Experience with IAM engineering experience across authentication, authorisation, single sign-on, multi-factor authentication, identity lifecycle management, OAuth2.0, OpenID Connect, SAML and policy management Expertise with JavaScript, Java, Python, and must be comfortable with API and microservices development. Strong working knowledge of Site Reliability Engineering principles Experience with Cloud computing (AWS is essential, Azure is a plus) Some other highly desirable skills include: Experience in DevSecOps - knowledge of Product Operating Model Knowledge of Infrastructure as a Code tooling (Chef is essential, Ansible is a plus), containerization knowledge of authentication and biometric system design is highly desired. Open-source experience You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To drive technical excellence and innovation by leading the design and implementation of robust software solutions, providing mentorship to engineering teams, fostering cross-functional collaboration, and contributing to strategic planning to ensure the delivery of high-quality solutions aligned with business objectives. Accountabilities Provision of guidance and expertise to engineering teams to ensure alignment with best practices and foster a culture of technical excellence. Contribution to strategic planning by aligning technical decisions with business goals, anticipating future technology trends, and providing insights to optimize product roadmaps. Design and implementation of complex, scalable, and maintainable software solutions, considering long-term viability and business objectives. Mentoring and coaching to junior and mid-level engineers to foster professional growth and knowledge sharing, elevating the overall skillset and capabilities of the organization. Collaboration with business partners, product managers, designers, and other stakeholders to translate business requirements into technical solutions and ensure a cohesive approach to product development. Innovation within the organization by identifying and incorporating new technologies, methodologies, and industry practices into the engineering process. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
13/10/2025
Full time
Join us as a Principal Engineer for CIAM at Barclays, where you will support the acceleration of a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Strong hands-on experience in the configuration, deployment and running of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS), including designing and implementing cloud-based, scalable and resilient IAM solutions for large corporate organisations. Experience with IAM engineering experience across authentication, authorisation, single sign-on, multi-factor authentication, identity lifecycle management, OAuth2.0, OpenID Connect, SAML and policy management Expertise with JavaScript, Java, Python, and must be comfortable with API and microservices development. Strong working knowledge of Site Reliability Engineering principles Experience with Cloud computing (AWS is essential, Azure is a plus) Some other highly desirable skills include: Experience in DevSecOps - knowledge of Product Operating Model Knowledge of Infrastructure as a Code tooling (Chef is essential, Ansible is a plus), containerization knowledge of authentication and biometric system design is highly desired. Open-source experience You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To drive technical excellence and innovation by leading the design and implementation of robust software solutions, providing mentorship to engineering teams, fostering cross-functional collaboration, and contributing to strategic planning to ensure the delivery of high-quality solutions aligned with business objectives. Accountabilities Provision of guidance and expertise to engineering teams to ensure alignment with best practices and foster a culture of technical excellence. Contribution to strategic planning by aligning technical decisions with business goals, anticipating future technology trends, and providing insights to optimize product roadmaps. Design and implementation of complex, scalable, and maintainable software solutions, considering long-term viability and business objectives. Mentoring and coaching to junior and mid-level engineers to foster professional growth and knowledge sharing, elevating the overall skillset and capabilities of the organization. Collaboration with business partners, product managers, designers, and other stakeholders to translate business requirements into technical solutions and ensure a cohesive approach to product development. Innovation within the organization by identifying and incorporating new technologies, methodologies, and industry practices into the engineering process. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
Lead Full Stack Java Developer - SC Cleared NEW PERMANENT OPPORTUNITY FOR A LEAD FULL-STACK JAVA DEVELOPER IN LONDON WITH SC CLEARANCE Location: London (Hybrid) Salary: £80,000 - £95,000 per annum Clearance: Active SC Clearance required To apply: email The Company Join a specialist technology consultancy delivering complex, mission-critical projects across UK Government and national security sectors. You'll be part of a collaborative, engineering-focused environment where innovation, reliability, and technical excellence drive everything they do. Their teams work closely with public sector clients to design, build, and modernise secure systems that underpin national operations - tackling some of the most demanding challenges in government technology. The Role As a Lead Full Stack Java Developer , you will guide a small team of engineers while remaining hands-on in the design and development of high-performance, secure applications. You'll play a key role across the full software lifecycle - from architecture and development to deployment and continuous improvement - ensuring solutions meet stringent performance and security standards. You'll work in a dynamic environment, collaborating with architects, DevOps specialists, and delivery leads to drive best practices and technical excellence across projects. Key Responsibilities Lead a team of developers delivering scalable, secure full-stack solutions for critical government systems. Design, build, and maintain Java-based back-end services and modern front-end interfaces. Collaborate with architects and technical leads to define system design and integration patterns. Ensure code quality, maintainability, and performance through code reviews and mentoring. Contribute to DevOps pipelines and CI/CD practices in secure environments. Champion engineering best practices and continuous improvement within the team. Skills & Experience Essential: Active SC Clearance (or eligible and willing to undergo clearance). Strong Java and Spring Boot development experience. Proven experience delivering full-stack solutions (e.g. React, Angular, or Vue). Good knowledge of microservices , RESTful APIs , and containerisation (Docker/Kubernetes). Experience working with AWS or other cloud environments. Understanding of secure software design and deployment in government or defence contexts. Excellent communication, leadership, and mentoring skills. Desirable: Experience with CI/CD pipelines (e.g. Jenkins, GitLab CI). Familiarity with infrastructure-as-code (Terraform, Ansible). Exposure to Agile and DevSecOps delivery models. Why Apply? High-impact work on systems that directly support UK Government missions. Technical autonomy and input into architecture and design decisions. Collaborative culture with a focus on professional growth. Competitive salary and comprehensive benefits package. If you're an experienced Full Stack Java Developer with SC Clearance who thrives on tackling complex challenges and leading technical teams, this is a chance to make a meaningful impact on projects that truly matter. Apply now to discuss this opportunity in more detail.
13/10/2025
Full time
Lead Full Stack Java Developer - SC Cleared NEW PERMANENT OPPORTUNITY FOR A LEAD FULL-STACK JAVA DEVELOPER IN LONDON WITH SC CLEARANCE Location: London (Hybrid) Salary: £80,000 - £95,000 per annum Clearance: Active SC Clearance required To apply: email The Company Join a specialist technology consultancy delivering complex, mission-critical projects across UK Government and national security sectors. You'll be part of a collaborative, engineering-focused environment where innovation, reliability, and technical excellence drive everything they do. Their teams work closely with public sector clients to design, build, and modernise secure systems that underpin national operations - tackling some of the most demanding challenges in government technology. The Role As a Lead Full Stack Java Developer , you will guide a small team of engineers while remaining hands-on in the design and development of high-performance, secure applications. You'll play a key role across the full software lifecycle - from architecture and development to deployment and continuous improvement - ensuring solutions meet stringent performance and security standards. You'll work in a dynamic environment, collaborating with architects, DevOps specialists, and delivery leads to drive best practices and technical excellence across projects. Key Responsibilities Lead a team of developers delivering scalable, secure full-stack solutions for critical government systems. Design, build, and maintain Java-based back-end services and modern front-end interfaces. Collaborate with architects and technical leads to define system design and integration patterns. Ensure code quality, maintainability, and performance through code reviews and mentoring. Contribute to DevOps pipelines and CI/CD practices in secure environments. Champion engineering best practices and continuous improvement within the team. Skills & Experience Essential: Active SC Clearance (or eligible and willing to undergo clearance). Strong Java and Spring Boot development experience. Proven experience delivering full-stack solutions (e.g. React, Angular, or Vue). Good knowledge of microservices , RESTful APIs , and containerisation (Docker/Kubernetes). Experience working with AWS or other cloud environments. Understanding of secure software design and deployment in government or defence contexts. Excellent communication, leadership, and mentoring skills. Desirable: Experience with CI/CD pipelines (e.g. Jenkins, GitLab CI). Familiarity with infrastructure-as-code (Terraform, Ansible). Exposure to Agile and DevSecOps delivery models. Why Apply? High-impact work on systems that directly support UK Government missions. Technical autonomy and input into architecture and design decisions. Collaborative culture with a focus on professional growth. Competitive salary and comprehensive benefits package. If you're an experienced Full Stack Java Developer with SC Clearance who thrives on tackling complex challenges and leading technical teams, this is a chance to make a meaningful impact on projects that truly matter. Apply now to discuss this opportunity in more detail.
BIG DATA ENGINEER - DV CLEARED NEW PERMANENT JOB OPPORTUNITY AVAILABLE WITHIN A LEADING NATIONAL SECURITY SME FOR A BIG DATA ENGINEER WITH DV CLEARANCE Permanent job opportunity for a Big Data Engineer Leading National Security & Defence SME Salary up to £80,000 plus clearance bonus London based organisation in an easily accessible location To apply please call or email WHO WE ARE? We are recruiting multiple Big Data Engineers to support urgent National Security & Defence projects in London. Due to the nature of these projects you must hold DV or enhanced DV Security Clearance. WHAT WILL THE BIG DATA ENGINEER BE DOING? You will be joining a leading SME who is working hard to support National Security projects within UK Govt. Departments in London. As part of a team, you will be responsible for implementing Big Data Solutions in Mission-Critical areas. WE NEED THE BIG DATA ENGINEER TO HAVE . Current DV clearance - Standard or Enhanced Must have experience with big data tools such as Hadoop, Cloudera or Elasticsearch Experience with Palantir Foundry is preferred but not essential Experience working in an Agile Scrum environment Experience in design, development, test and integration of software IT WOULD BE NICE FOR THE BIG DATA ENGINEER TO HAVE . Cloud based architectures Microservice architecture or server-less architecture Messaging / routing technologies such as Apache Nifi / RabbitMQ Experience of DevSecOps automated deployment tools such as Jenkins, Ansible, Docker TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to For further information please call me on . I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search Dominic Barbet. I look forward to hearing from you. BIG DATA ENGINEER - DV CLEARED KEY SKILLS: BIG DATA DEVELOPER / BIG DATA ENGINEER / SENIOR BIG DATA DEVELOPER / SENIOR BIG DATA ENIGNEER / DATA ENGINEER / DATA DEVELOPER / SENIOR SOFTWARE DEVELOPER LEAD SOFTWARE ENGINEER / LEAD SOFTWARE DEVELOPER / SENIOR SOFTWARE DEVELOPER / DV CLEARED / DV CLEARANCE / DEVELOPPED VETTING / DEVELOPED VETTED / DEEP VETTING / DEEP VETTED / SC CLEARED / SC CLEARANCE / SECURITY CLEARED / SECURITY CLEARANCE / NIFI / CLOUDERA / HADOOP / KAFKA / ELASTIC SEARCH
13/10/2025
Full time
BIG DATA ENGINEER - DV CLEARED NEW PERMANENT JOB OPPORTUNITY AVAILABLE WITHIN A LEADING NATIONAL SECURITY SME FOR A BIG DATA ENGINEER WITH DV CLEARANCE Permanent job opportunity for a Big Data Engineer Leading National Security & Defence SME Salary up to £80,000 plus clearance bonus London based organisation in an easily accessible location To apply please call or email WHO WE ARE? We are recruiting multiple Big Data Engineers to support urgent National Security & Defence projects in London. Due to the nature of these projects you must hold DV or enhanced DV Security Clearance. WHAT WILL THE BIG DATA ENGINEER BE DOING? You will be joining a leading SME who is working hard to support National Security projects within UK Govt. Departments in London. As part of a team, you will be responsible for implementing Big Data Solutions in Mission-Critical areas. WE NEED THE BIG DATA ENGINEER TO HAVE . Current DV clearance - Standard or Enhanced Must have experience with big data tools such as Hadoop, Cloudera or Elasticsearch Experience with Palantir Foundry is preferred but not essential Experience working in an Agile Scrum environment Experience in design, development, test and integration of software IT WOULD BE NICE FOR THE BIG DATA ENGINEER TO HAVE . Cloud based architectures Microservice architecture or server-less architecture Messaging / routing technologies such as Apache Nifi / RabbitMQ Experience of DevSecOps automated deployment tools such as Jenkins, Ansible, Docker TO BE CONSIDERED . Please either apply by clicking online or emailing me directly to For further information please call me on . I can make myself available outside of normal working hours to suit from 7am until 10pm. If unavailable, please leave a message and either myself or one of my colleagues will respond. By applying for this role, you give express consent for us to process & submit (subject to required skills) your application to our client in conjunction with this vacancy only. Also feel free to connect with me on LinkedIn, just search Dominic Barbet. I look forward to hearing from you. BIG DATA ENGINEER - DV CLEARED KEY SKILLS: BIG DATA DEVELOPER / BIG DATA ENGINEER / SENIOR BIG DATA DEVELOPER / SENIOR BIG DATA ENIGNEER / DATA ENGINEER / DATA DEVELOPER / SENIOR SOFTWARE DEVELOPER LEAD SOFTWARE ENGINEER / LEAD SOFTWARE DEVELOPER / SENIOR SOFTWARE DEVELOPER / DV CLEARED / DV CLEARANCE / DEVELOPPED VETTING / DEVELOPED VETTED / DEEP VETTING / DEEP VETTED / SC CLEARED / SC CLEARANCE / SECURITY CLEARED / SECURITY CLEARANCE / NIFI / CLOUDERA / HADOOP / KAFKA / ELASTIC SEARCH
Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for someone who will be excited by the potential for Engine's technology to transform banking in different markets around the world. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role We're seeking a passionate and experienced Vulnerability Lead to shape and lead the creation and ongoing operation of our comprehensive vulnerability management program. This is a unique opportunity to establish a critical security function, define best practices, and significantly enhance our overall security posture. A key aspect of this role involves the end-to-end management and continuous improvement of the vulnerability management programme. This includes defining scanning strategies, conducting risk-based triage and prioritisation, overseeing remediation efforts, and providing actionable reporting to enhance the Engine's security posture. What you'll get to do: Conduct vulnerability scans regularly and proactively as needed. Validate findings and use a risk-based approach. Enrich findings with threat intelligence and business impact to determine exploitability. Be an enabler for resolver groups by triaging and prioritising vulnerabilities to facilitate timely resolution of outstanding findings using a risk based approach Track and manage remediation through to closure with Technology and Security teams. Ensure timely patching of critical vulnerabilities in line with SLAs. Ensure visibility across the technology estate, including cloud environments. Coordinate scanning and coverage of data centre estate, cloud infrastructure, containers, mobile SDKs, and web apps. Process vulnerability data to provide reports, insights and metrics, that aid in the risk-based approach to vulnerability management. Identify and flag blind spots or gaps in scan coverage or asset inventory. Keep up with zero-day disclosures and emerging threats. Maintain and share dashboards and reports on vulnerability trends, KPIs, and SLA compliance. Review and update Vulnerability Management related documentation to align with internal and external compliance requirements, industry best practices and emerging threats (e.g. ISO 27001, PCI DSS/3DS, SOC 2 and NIST) Help define scanning schedules, thresholds, and automation opportunities. Collaborate with DevSecOps/Product Teams to embed security scanning into CI/CD pipelines. Assist in evaluating new tooling and processes for better automation and risk tracking. Requirements Essential Strong engineering and automation background with an interest in vulnerability management Strong automation skills with CI/CD experience Strong technical knowledge, including: Cloud Experience (AWS, GCP) Kubernetes and Container experience Infrastructure as code (Terraform) Dashboard creation, front-end experience Self-sufficient - can be a trusted escalation point across teams Can drive improvements to visibility and remediation workflows 5+ years experience in vulnerability management, security operations, infrastructure security or security engineering Familiarity with end-to-end vulnerability management lifecycle including associated tools and platforms Ability to work effectively with patching teams and co-ordinate remediation activities Understanding of CVSS scoring, OWASP Top 10 and MITRE ATT&CK Organised and able to track and report on remediation activities across multiple teams Can translate scan data into clear, risk-based reports for management teams Partner with the information security risk management team on assurance activities Desired Practical experience in one or more of the Vulnerability Management fields: Vulnerability Intelligence, AppSec Vulnerability Management, Vulnerability Management of cloud native workloads Open source scanning tool such as Trivy or similar Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with BISO Stage 2 - 60 min with Peers Stage 3 - Final with CTO/Deputy CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Engine by Starling and Starling will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
13/10/2025
Full time
Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for someone who will be excited by the potential for Engine's technology to transform banking in different markets around the world. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role We're seeking a passionate and experienced Vulnerability Lead to shape and lead the creation and ongoing operation of our comprehensive vulnerability management program. This is a unique opportunity to establish a critical security function, define best practices, and significantly enhance our overall security posture. A key aspect of this role involves the end-to-end management and continuous improvement of the vulnerability management programme. This includes defining scanning strategies, conducting risk-based triage and prioritisation, overseeing remediation efforts, and providing actionable reporting to enhance the Engine's security posture. What you'll get to do: Conduct vulnerability scans regularly and proactively as needed. Validate findings and use a risk-based approach. Enrich findings with threat intelligence and business impact to determine exploitability. Be an enabler for resolver groups by triaging and prioritising vulnerabilities to facilitate timely resolution of outstanding findings using a risk based approach Track and manage remediation through to closure with Technology and Security teams. Ensure timely patching of critical vulnerabilities in line with SLAs. Ensure visibility across the technology estate, including cloud environments. Coordinate scanning and coverage of data centre estate, cloud infrastructure, containers, mobile SDKs, and web apps. Process vulnerability data to provide reports, insights and metrics, that aid in the risk-based approach to vulnerability management. Identify and flag blind spots or gaps in scan coverage or asset inventory. Keep up with zero-day disclosures and emerging threats. Maintain and share dashboards and reports on vulnerability trends, KPIs, and SLA compliance. Review and update Vulnerability Management related documentation to align with internal and external compliance requirements, industry best practices and emerging threats (e.g. ISO 27001, PCI DSS/3DS, SOC 2 and NIST) Help define scanning schedules, thresholds, and automation opportunities. Collaborate with DevSecOps/Product Teams to embed security scanning into CI/CD pipelines. Assist in evaluating new tooling and processes for better automation and risk tracking. Requirements Essential Strong engineering and automation background with an interest in vulnerability management Strong automation skills with CI/CD experience Strong technical knowledge, including: Cloud Experience (AWS, GCP) Kubernetes and Container experience Infrastructure as code (Terraform) Dashboard creation, front-end experience Self-sufficient - can be a trusted escalation point across teams Can drive improvements to visibility and remediation workflows 5+ years experience in vulnerability management, security operations, infrastructure security or security engineering Familiarity with end-to-end vulnerability management lifecycle including associated tools and platforms Ability to work effectively with patching teams and co-ordinate remediation activities Understanding of CVSS scoring, OWASP Top 10 and MITRE ATT&CK Organised and able to track and report on remediation activities across multiple teams Can translate scan data into clear, risk-based reports for management teams Partner with the information security risk management team on assurance activities Desired Practical experience in one or more of the Vulnerability Management fields: Vulnerability Intelligence, AppSec Vulnerability Management, Vulnerability Management of cloud native workloads Open source scanning tool such as Trivy or similar Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with BISO Stage 2 - 60 min with Peers Stage 3 - Final with CTO/Deputy CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Engine by Starling and Starling will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for people who are will be excited by the potential for Engine's technology to transform banking in different markets around the world. Our purpose is underpinned by five values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of our offices so that we're able to interact and collaborate in person. About the role: As a Product Security Engineer at Engine, you will be a technical strategist responsible for proactively identifying and mitigating security risks across our platform and products. Your primary mission is to ensure we build secure systems by providing expert security analysis, architectural guidance, and process leadership. You will lead threat modelling sessions, conduct in-depth security reviews of new features, manage our penetration testing programme, and triage complex findings. This role requires a deep understanding of technology and attack vectors, combined with the ability to think strategically and communicate complex risks to both technical and non-technical stakeholders. Engine by Starling engineers are excited about helping us deliver new features, regardless of what their primary tech stack may be. Hear from the team in our latest Blog or our case studies with Women in Tech . We are looking for an experienced Product Security Engineer to join our growing Security Engineering team, working closely with the GRC team and the various Engine Technology teams to make sure security is at the heart of all our technical processes. Your place within the team will depend on your individual strengths and interests. This role will cover a wide array of security areas across our multi-tenant SaaS cloud environments and internal infrastructure and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential threats. What you'll get to do? Conduct comprehensive security architecture and design reviews, ensuring that security is embedded from the start Lead the threat modelling process (e.g., using STRIDE) for new products and features, identifying potential design flaws and defining security requirements Manage the end-to-end penetration testing lifecycle, from scoping engagements with technical teams to triaging, validating, and driving the remediation of findings Analyse and interpret results from security tools (SAST, DAST, vulnerability scanners) to prioritise and address the most critical risks Act as a key security advisor to engineering teams, providing expert guidance on security best practices, vulnerability mitigation, and secure design patterns Translate regulatory requirements (PCI DSS, SOC 2, ISO 27001) into concrete technical controls and implementation plans in collaboration with the GRC team Lead incident response efforts, including investigation and remediation of security breaches Support our internal security awareness and training programs and advocating the DevSecOps mindset that we have created across our technology teams Requirements What skills are essential: Significant experience in a security-focused role with a strong emphasis on risk analysis, threat detection, and architectural review Proven expertise in conducting threat modelling and security design reviews for complex, cloud-native applications (AWS/GCP, Kubernetes) Deep understanding of common application and infrastructure vulnerabilities (OWASP Top 10, MITRE ATT&CK) and their mitigation Experience managing penetration testing engagements and working with development teams on remediation Mature understanding and experience with cloud security architecture (AWS, Google Cloud) The ability to read and understand code (e.g., Go, Python) and Infrastructure-as-Code (Terraform) to effectively analyse security risks The ability to document security requirements from various stakeholders A practical understanding of how to integrate security into the software development lifecycle Excellent communication skills, with the ability to articulate complex technical risks to diverse audiences A thorough understanding of the incident response process and the principles of Zero Trust architecture A proactive approach to staying updated with the latest security threats, vulnerabilities, and mitigation techniques What skills are desirable, but not essential: Hands-on experience helping a company achieve and maintain compliance with frameworks like SOC 2, ISO 27001, or PCI DSS Experience in automating security controls and compliance checks against standards and frameworks which include SOC 2, ISO 27001, PCI DSS/3DS Experience performing secure code reviews and using SAST/DAST tools for security approvals Expertise in Kubernetes, securing clusters and meshes (Cilium is preferable), networking best practices and RBAC implementation (CKA, CKS qualifications are a plus) Container security knowledge including container image provenance (e.g. Sigstore, Notary) with an in-depth knowledge of container runtimes Strong understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs Understanding of integrating security into the software development lifecycle Experience performing secure code reviews and security approvals including the use of static and dynamic application security testing (SAST/DAST) tools Experience in Cryptography management & enhancements Experience configuring and utilising cloud-native security logging, monitoring, and detection services Experience with Infrastructure as Code and infrastructure provisioning tools (Cloudformation, Terraform) for analysis and review Scripting and programming skills (e.g., Python, Go) for creating proof-of-concepts or small scripts to validate findings Relevant security certifications such as ISC2 CC, CISSP, CCSP, CISM, AWS Security Specialist or GCP Professional Cloud Security Engineer Our Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Initial interview with our Staff Security Engineer - 45 minutes Take home technical task to be discussed in the next interview Technical interview with some of our Security and Information Security team members - 1.5 hours Final interview with our CTO / deputy CTO 45 minutes Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity . click apply for full job details
13/10/2025
Full time
Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for people who are will be excited by the potential for Engine's technology to transform banking in different markets around the world. Our purpose is underpinned by five values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of our offices so that we're able to interact and collaborate in person. About the role: As a Product Security Engineer at Engine, you will be a technical strategist responsible for proactively identifying and mitigating security risks across our platform and products. Your primary mission is to ensure we build secure systems by providing expert security analysis, architectural guidance, and process leadership. You will lead threat modelling sessions, conduct in-depth security reviews of new features, manage our penetration testing programme, and triage complex findings. This role requires a deep understanding of technology and attack vectors, combined with the ability to think strategically and communicate complex risks to both technical and non-technical stakeholders. Engine by Starling engineers are excited about helping us deliver new features, regardless of what their primary tech stack may be. Hear from the team in our latest Blog or our case studies with Women in Tech . We are looking for an experienced Product Security Engineer to join our growing Security Engineering team, working closely with the GRC team and the various Engine Technology teams to make sure security is at the heart of all our technical processes. Your place within the team will depend on your individual strengths and interests. This role will cover a wide array of security areas across our multi-tenant SaaS cloud environments and internal infrastructure and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential threats. What you'll get to do? Conduct comprehensive security architecture and design reviews, ensuring that security is embedded from the start Lead the threat modelling process (e.g., using STRIDE) for new products and features, identifying potential design flaws and defining security requirements Manage the end-to-end penetration testing lifecycle, from scoping engagements with technical teams to triaging, validating, and driving the remediation of findings Analyse and interpret results from security tools (SAST, DAST, vulnerability scanners) to prioritise and address the most critical risks Act as a key security advisor to engineering teams, providing expert guidance on security best practices, vulnerability mitigation, and secure design patterns Translate regulatory requirements (PCI DSS, SOC 2, ISO 27001) into concrete technical controls and implementation plans in collaboration with the GRC team Lead incident response efforts, including investigation and remediation of security breaches Support our internal security awareness and training programs and advocating the DevSecOps mindset that we have created across our technology teams Requirements What skills are essential: Significant experience in a security-focused role with a strong emphasis on risk analysis, threat detection, and architectural review Proven expertise in conducting threat modelling and security design reviews for complex, cloud-native applications (AWS/GCP, Kubernetes) Deep understanding of common application and infrastructure vulnerabilities (OWASP Top 10, MITRE ATT&CK) and their mitigation Experience managing penetration testing engagements and working with development teams on remediation Mature understanding and experience with cloud security architecture (AWS, Google Cloud) The ability to read and understand code (e.g., Go, Python) and Infrastructure-as-Code (Terraform) to effectively analyse security risks The ability to document security requirements from various stakeholders A practical understanding of how to integrate security into the software development lifecycle Excellent communication skills, with the ability to articulate complex technical risks to diverse audiences A thorough understanding of the incident response process and the principles of Zero Trust architecture A proactive approach to staying updated with the latest security threats, vulnerabilities, and mitigation techniques What skills are desirable, but not essential: Hands-on experience helping a company achieve and maintain compliance with frameworks like SOC 2, ISO 27001, or PCI DSS Experience in automating security controls and compliance checks against standards and frameworks which include SOC 2, ISO 27001, PCI DSS/3DS Experience performing secure code reviews and using SAST/DAST tools for security approvals Expertise in Kubernetes, securing clusters and meshes (Cilium is preferable), networking best practices and RBAC implementation (CKA, CKS qualifications are a plus) Container security knowledge including container image provenance (e.g. Sigstore, Notary) with an in-depth knowledge of container runtimes Strong understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs Understanding of integrating security into the software development lifecycle Experience performing secure code reviews and security approvals including the use of static and dynamic application security testing (SAST/DAST) tools Experience in Cryptography management & enhancements Experience configuring and utilising cloud-native security logging, monitoring, and detection services Experience with Infrastructure as Code and infrastructure provisioning tools (Cloudformation, Terraform) for analysis and review Scripting and programming skills (e.g., Python, Go) for creating proof-of-concepts or small scripts to validate findings Relevant security certifications such as ISC2 CC, CISSP, CCSP, CISM, AWS Security Specialist or GCP Professional Cloud Security Engineer Our Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Initial interview with our Staff Security Engineer - 45 minutes Take home technical task to be discussed in the next interview Technical interview with some of our Security and Information Security team members - 1.5 hours Final interview with our CTO / deputy CTO 45 minutes Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity . click apply for full job details
Senior Platform Engineer (Azure) Position Description At CGI we're transforming the way critical platforms are built, secured, and optimised, empowering clients to innovate faster and operate with confidence. As a Platform Engineer, you'll play a central role in delivering scalable, resilient, and secure infrastructure that underpins high-impact software solutions. You'll collaborate across agile Continuous Improvement Teams to drive automation, performance, and security using modern DevSecOps practices. This is your opportunity to make a measurable difference in shaping the digital backbone of vital services while growing your expertise within an inclusive, collaborative environment that encourages ownership, creativity, and continuous learning. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This is a hybrid/remote position with occasional travel. Your future duties and responsibilities In this role, you will take the lead in managing and evolving CGI's application platforms and infrastructure, driving automation, scalability, and security to support agile software delivery. You'll work closely with developers, architects, and security teams to embed resilience and reliability across the platform, ensuring optimal performance of production environments. You'll play a hands-on role in diagnosing complex issues, implementing infrastructure-as-code solutions, and promoting a culture of proactive improvement. You'll be encouraged to innovate, take ownership of solutions, and collaborate across teams to deliver measurable impact-supported by a culture that values creativity, trust, and professional growth. Key responsibilities: • Design & Maintain: Manage and enhance cloud and virtualised environments to deliver high availability and scalability • Automate & Optimise: Implement automation for provisioning, deployment, and maintenance using IaC and CaC tools • Monitor & Improve: Develop and maintain robust monitoring, alerting, and performance tuning processes • Secure & Comply: Integrate security controls into CI/CD pipelines, automating checks and compliance validation • Collaborate & Support: Partner with development and security teams to ensure seamless delivery across environments • Lead & Respond: Provide proactive incident management and participate in an out-of-hours support rota • Innovate & Evolve: Continuously evaluate emerging technologies to enhance platform reliability and efficiency Required qualifications to be successful in this role You'll bring proven experience in platform or DevOps engineering, with strong technical foundations in automation, cloud, and security. Your ability to combine hands-on engineering expertise with a problem-solving mindset will be key to success in this fast-moving environment. Essential: • Experience in platform engineering, DevOps, or SysOps roles • Strong knowledge of cloud services (preferably Azure) and container orchestration (e.g., Docker, Docker Swarm) • Proficiency in Infrastructure as Code tools (e.g., Terraform, ARM Templates) • Experience managing Linux and/or Windows Server environments • Hands-on experience with CI/CD tools (Azure DevOps, Jenkins) and version control (Git) • Familiarity with monitoring and observability tools (Prometheus, Grafana, Dynatrace) • Scripting and automation experience (Python, Bash, Ansible) • Understanding of security automation (SCA, SAST, DAST) and compliance frameworks (OWASP, CIS) • Willingness to participate in out-of-hours support on a rota basis Desirable: • Exposure to virtualised environments (e.g., vCloud) • Awareness of risk management and secure software lifecycle principles Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
13/10/2025
Full time
Senior Platform Engineer (Azure) Position Description At CGI we're transforming the way critical platforms are built, secured, and optimised, empowering clients to innovate faster and operate with confidence. As a Platform Engineer, you'll play a central role in delivering scalable, resilient, and secure infrastructure that underpins high-impact software solutions. You'll collaborate across agile Continuous Improvement Teams to drive automation, performance, and security using modern DevSecOps practices. This is your opportunity to make a measurable difference in shaping the digital backbone of vital services while growing your expertise within an inclusive, collaborative environment that encourages ownership, creativity, and continuous learning. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This is a hybrid/remote position with occasional travel. Your future duties and responsibilities In this role, you will take the lead in managing and evolving CGI's application platforms and infrastructure, driving automation, scalability, and security to support agile software delivery. You'll work closely with developers, architects, and security teams to embed resilience and reliability across the platform, ensuring optimal performance of production environments. You'll play a hands-on role in diagnosing complex issues, implementing infrastructure-as-code solutions, and promoting a culture of proactive improvement. You'll be encouraged to innovate, take ownership of solutions, and collaborate across teams to deliver measurable impact-supported by a culture that values creativity, trust, and professional growth. Key responsibilities: • Design & Maintain: Manage and enhance cloud and virtualised environments to deliver high availability and scalability • Automate & Optimise: Implement automation for provisioning, deployment, and maintenance using IaC and CaC tools • Monitor & Improve: Develop and maintain robust monitoring, alerting, and performance tuning processes • Secure & Comply: Integrate security controls into CI/CD pipelines, automating checks and compliance validation • Collaborate & Support: Partner with development and security teams to ensure seamless delivery across environments • Lead & Respond: Provide proactive incident management and participate in an out-of-hours support rota • Innovate & Evolve: Continuously evaluate emerging technologies to enhance platform reliability and efficiency Required qualifications to be successful in this role You'll bring proven experience in platform or DevOps engineering, with strong technical foundations in automation, cloud, and security. Your ability to combine hands-on engineering expertise with a problem-solving mindset will be key to success in this fast-moving environment. Essential: • Experience in platform engineering, DevOps, or SysOps roles • Strong knowledge of cloud services (preferably Azure) and container orchestration (e.g., Docker, Docker Swarm) • Proficiency in Infrastructure as Code tools (e.g., Terraform, ARM Templates) • Experience managing Linux and/or Windows Server environments • Hands-on experience with CI/CD tools (Azure DevOps, Jenkins) and version control (Git) • Familiarity with monitoring and observability tools (Prometheus, Grafana, Dynatrace) • Scripting and automation experience (Python, Bash, Ansible) • Understanding of security automation (SCA, SAST, DAST) and compliance frameworks (OWASP, CIS) • Willingness to participate in out-of-hours support on a rota basis Desirable: • Exposure to virtualised environments (e.g., vCloud) • Awareness of risk management and secure software lifecycle principles Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
13/10/2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Cyber Solutions Architect - Cloud Security £110,000 + Bonus (10%-20%) + Excellent Package London Hybrid x3 days onsite (London/City) Overview An excellent opportunity has arisen with a global investment bank who is seeking a Solutions Architect to design and implement security solutions that strengthen risk management, operational efficiency, and regulatory compliance. You'll work across business, application, and IT teams to develop integrated capabilities, contributing to both strategic projects and tactical initiatives globally. Role and Responsibilities Act as subject matter expert for CASB/CSPM architecture, design, and best practices Develop and integrate IT security solutions aligned with enterprise platforms and processes Lead requirements gathering, design, and technical implementation of new capabilities Enhance detection, protection, and automation of security controls across global environments Partner with internal teams and external service providers on complex security initiatives. Provide architectural guidance and contribute to the IT security roadmap and SaaS migration plans Mentor team members and promote process improvement and modernization across the security stack Skills and Experience Essential: Proven experience as an IT Security Solutions Architect with focus on CASB/CSPM or similar platforms Strong understanding of security architecture, risk management, and compliance frameworks. Experience producing high- and low-level designs and coordinating large-scale security implementations Knowledge of IGA (e.g., RSA IGL), email and proxy security, virtualization (VMware, Nutanix), and CyberArk Strong technical skills in SQL, Oracle, Linux, PowerShell, AD, LDAP, and API integrations (REST/SOAP, Ansible) Familiarity with CIS compliance, system hardening, and automation tools. Desirable: Experience with SaaS migrations, cloud-native security, and DevSecOps practices Relevant certifications (e.g., CCSP, CISSP, or cloud security credentials)
10/10/2025
Full time
Cyber Solutions Architect - Cloud Security £110,000 + Bonus (10%-20%) + Excellent Package London Hybrid x3 days onsite (London/City) Overview An excellent opportunity has arisen with a global investment bank who is seeking a Solutions Architect to design and implement security solutions that strengthen risk management, operational efficiency, and regulatory compliance. You'll work across business, application, and IT teams to develop integrated capabilities, contributing to both strategic projects and tactical initiatives globally. Role and Responsibilities Act as subject matter expert for CASB/CSPM architecture, design, and best practices Develop and integrate IT security solutions aligned with enterprise platforms and processes Lead requirements gathering, design, and technical implementation of new capabilities Enhance detection, protection, and automation of security controls across global environments Partner with internal teams and external service providers on complex security initiatives. Provide architectural guidance and contribute to the IT security roadmap and SaaS migration plans Mentor team members and promote process improvement and modernization across the security stack Skills and Experience Essential: Proven experience as an IT Security Solutions Architect with focus on CASB/CSPM or similar platforms Strong understanding of security architecture, risk management, and compliance frameworks. Experience producing high- and low-level designs and coordinating large-scale security implementations Knowledge of IGA (e.g., RSA IGL), email and proxy security, virtualization (VMware, Nutanix), and CyberArk Strong technical skills in SQL, Oracle, Linux, PowerShell, AD, LDAP, and API integrations (REST/SOAP, Ansible) Familiarity with CIS compliance, system hardening, and automation tools. Desirable: Experience with SaaS migrations, cloud-native security, and DevSecOps practices Relevant certifications (e.g., CCSP, CISSP, or cloud security credentials)
Are you an experienced Architect with a proven track record in designing complex solutions within a highly secure environment with DV clearance, experience and passion to work on solutions for defence and national security customers? We have openings at various levels for solution architects, lead architects, through to customer account CTOs to work with our customers and teams to define and lead the implementation of groundbreaking, and growth focussed secure solutions within the defence or national security arenas. This is a permanent role, mostly working on-site at locations across the South of England including, Hemel Hempstead, Salisbury, Portsmouth, Farnborough and Cheltenham. The role requires candidates to be holding a live DV clearance. What you will be doing: You will define the solutions architecture for large scale, complex, medium risk or highly specialised assignments or pre-sales assignments that may lead to major lead to major downstream revenue opportunities. Individuals are accountable for influencing, managing and driving the strategy of a defined area of the business within Sopra Steria or for the development of policy in their area of expertise. You will own the holistic Architecture, Design and Communication of solutions. You will focus on business, application and data layers but work closely with architects with domain specialisms of infrastructure, security and service, you will own solutions, both comprising of the existing capabilities, but also new services identified to meet the needs of existing and new clients. You will be responsible for producing outline designs which meet the functional and non-functional requirements, and which focuses on aspects such as: Ensure integration with existing systems while supporting business processes, usability, and performance objectives. Deliver designs that are maintainable, cost-effective, and scalable. Drive changes to services, processes, organizational structures, and operating models as needed. Provide technical leadership and oversight throughout implementation and change initiatives. Review services, applications, and data to ensure compliance with policies, standards, and IT strategy. Model existing and planned services using recognized architectural modeling languages. Build and maintain strong technical relationships with customers, guiding the design of new or existing functional capabilities. Advise customers and senior stakeholders on leveraging available services and features to maximize value. Monitor market trends and competitor activity in specialist areas, applying insights to ongoing service development and roadmap planning. Identify, manage, and report risks in a timely and transparent manner. What you will bring: Strong understanding of industry standards, models, and trends Proven experience delivering projects to MOD and/or UKIC Expertise in owning and designing complex solutions, particularly leveraging COTS products Hands-on experience delivering architectures in an Agile environment Deep knowledge of modern application and software development practices, including DevSecOps Strong security and cyber awareness, with experience in secure-by-design frameworks Solid IT architecture experience, including TOGAF Familiarity with modelling notations, such as Archimate and C4 Background in delivery and presales activities Employment Type: Full-time, Permanent Location: Cheltenham, Portsmouth, Salisbury or Hemel Hempstead Security Clearance Level: must be holding live DV clearance Internal Recruiter: Lee Salary: Dependant on Experience Benefits: Car Allowance (depends on Level), 25 days annual leave with the option to buy additional days, health cash plan or private health care (depends on Level), life assurance, pension, and generous flexible benefits fund (3% of base salary). Although this role is advertised as full-time, we believe that flexibility at work can promote work/life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if you're interested and need to work flexibly, we encourage you to apply and talk to us about what might be possible. Loved reading about this job and want to know more about us? Sopra Steria's Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client's goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK's most complex safety- and security-critical markets.
09/10/2025
Full time
Are you an experienced Architect with a proven track record in designing complex solutions within a highly secure environment with DV clearance, experience and passion to work on solutions for defence and national security customers? We have openings at various levels for solution architects, lead architects, through to customer account CTOs to work with our customers and teams to define and lead the implementation of groundbreaking, and growth focussed secure solutions within the defence or national security arenas. This is a permanent role, mostly working on-site at locations across the South of England including, Hemel Hempstead, Salisbury, Portsmouth, Farnborough and Cheltenham. The role requires candidates to be holding a live DV clearance. What you will be doing: You will define the solutions architecture for large scale, complex, medium risk or highly specialised assignments or pre-sales assignments that may lead to major lead to major downstream revenue opportunities. Individuals are accountable for influencing, managing and driving the strategy of a defined area of the business within Sopra Steria or for the development of policy in their area of expertise. You will own the holistic Architecture, Design and Communication of solutions. You will focus on business, application and data layers but work closely with architects with domain specialisms of infrastructure, security and service, you will own solutions, both comprising of the existing capabilities, but also new services identified to meet the needs of existing and new clients. You will be responsible for producing outline designs which meet the functional and non-functional requirements, and which focuses on aspects such as: Ensure integration with existing systems while supporting business processes, usability, and performance objectives. Deliver designs that are maintainable, cost-effective, and scalable. Drive changes to services, processes, organizational structures, and operating models as needed. Provide technical leadership and oversight throughout implementation and change initiatives. Review services, applications, and data to ensure compliance with policies, standards, and IT strategy. Model existing and planned services using recognized architectural modeling languages. Build and maintain strong technical relationships with customers, guiding the design of new or existing functional capabilities. Advise customers and senior stakeholders on leveraging available services and features to maximize value. Monitor market trends and competitor activity in specialist areas, applying insights to ongoing service development and roadmap planning. Identify, manage, and report risks in a timely and transparent manner. What you will bring: Strong understanding of industry standards, models, and trends Proven experience delivering projects to MOD and/or UKIC Expertise in owning and designing complex solutions, particularly leveraging COTS products Hands-on experience delivering architectures in an Agile environment Deep knowledge of modern application and software development practices, including DevSecOps Strong security and cyber awareness, with experience in secure-by-design frameworks Solid IT architecture experience, including TOGAF Familiarity with modelling notations, such as Archimate and C4 Background in delivery and presales activities Employment Type: Full-time, Permanent Location: Cheltenham, Portsmouth, Salisbury or Hemel Hempstead Security Clearance Level: must be holding live DV clearance Internal Recruiter: Lee Salary: Dependant on Experience Benefits: Car Allowance (depends on Level), 25 days annual leave with the option to buy additional days, health cash plan or private health care (depends on Level), life assurance, pension, and generous flexible benefits fund (3% of base salary). Although this role is advertised as full-time, we believe that flexibility at work can promote work/life balance, increase your motivation, reduce stress and improves performance and productivity. We support different ways of working and can offer a range of flexible working arrangements. So, if you're interested and need to work flexibly, we encourage you to apply and talk to us about what might be possible. Loved reading about this job and want to know more about us? Sopra Steria's Aerospace, Defence and Security business designs, develops and deploys digital solutions to Central Government clients. The work we do makes a real difference to the client's goal of National Security, and we operate in a unique and privileged environment. We are given time for professional development activities, and we coach and mentor our colleagues, sharing knowledge and learning from each other. We foster a culture in which employees feel valued and supported and have pride in their work for the customer, delivering outstanding rates of customer satisfaction in the UK's most complex safety- and security-critical markets.
Job Title: Technical Programme Manager Location: Welwyn Garden City / Hybrid, 3 days per week onsite (Opportunity for more flex working) Remuneration: Up to £750/day Contract Details: 6 Month Contract + scope for extensions Are you ready to take on a pivotal role in the heart of retail innovation? Our client is seeking a dynamic Technical Programme Manager to join their team! You'll play a crucial part in delivering key projects within Application Security and Vulnerability Management. If you thrive in fast-paced environments and have a passion for cyber security, this is the opportunity for you! Responsibilities: Own Delivery: Drive execution of specific workstreams aligned with FY25/26 commitments. Coordinate Teams: Lead cross-functional teams for timely project execution and issue resolution. Report Progress: Communicate risks and progress to the lead TPM, ensuring alignment with programme goals. Support Tech Excellence: Contribute to initiatives through structured planning and agile-inspired practices. Forward Planning: Provide insights and scoping support for FY26/27 planning. Technical & Domain Expertise: Solid grasp of Cyber Security fundamentals, especially in Application Security and Vulnerability Management. Familiarity with secure SDLC and DevSecOps practices. Experience with security tooling, including SAST, DAST, and vulnerability scanners. Ability to interpret technical risks into actionable tasks. Project Delivery Management: Proven track record in delivering projects within complex programmes. Skilled in project scoping, milestone planning, and dependency tracking. Strong risk and issue management capabilities, with proactive mitigation. Manage in-flight delivery while preparing for future planning. Stakeholder Engagement & Coordination: Effective communicator across Cyber, Engineering, and Product teams. Drive alignment on project goals, timelines, and deliverables. Engage with technical leads to unblock progress. Tooling & Reporting: Proficient in Jira and Confluence Cloud for task tracking and reporting. Define and monitor project-level KPIs and delivery metrics. Produce clear updates for programme-level roll-ups. Ways of Working & Delivery Enablement: Delivery-focused mindset with a pragmatic approach to agile methodologies. Experience applying lightweight governance for consistent delivery. Committed to continuous improvement and embedding best practices. Join us in shaping the future of retail technology! If you're excited about leading technical programmes and making a real impact, apply now! Our client values innovation, collaboration, and enthusiasm, and they can't wait to meet you!
09/10/2025
Full time
Job Title: Technical Programme Manager Location: Welwyn Garden City / Hybrid, 3 days per week onsite (Opportunity for more flex working) Remuneration: Up to £750/day Contract Details: 6 Month Contract + scope for extensions Are you ready to take on a pivotal role in the heart of retail innovation? Our client is seeking a dynamic Technical Programme Manager to join their team! You'll play a crucial part in delivering key projects within Application Security and Vulnerability Management. If you thrive in fast-paced environments and have a passion for cyber security, this is the opportunity for you! Responsibilities: Own Delivery: Drive execution of specific workstreams aligned with FY25/26 commitments. Coordinate Teams: Lead cross-functional teams for timely project execution and issue resolution. Report Progress: Communicate risks and progress to the lead TPM, ensuring alignment with programme goals. Support Tech Excellence: Contribute to initiatives through structured planning and agile-inspired practices. Forward Planning: Provide insights and scoping support for FY26/27 planning. Technical & Domain Expertise: Solid grasp of Cyber Security fundamentals, especially in Application Security and Vulnerability Management. Familiarity with secure SDLC and DevSecOps practices. Experience with security tooling, including SAST, DAST, and vulnerability scanners. Ability to interpret technical risks into actionable tasks. Project Delivery Management: Proven track record in delivering projects within complex programmes. Skilled in project scoping, milestone planning, and dependency tracking. Strong risk and issue management capabilities, with proactive mitigation. Manage in-flight delivery while preparing for future planning. Stakeholder Engagement & Coordination: Effective communicator across Cyber, Engineering, and Product teams. Drive alignment on project goals, timelines, and deliverables. Engage with technical leads to unblock progress. Tooling & Reporting: Proficient in Jira and Confluence Cloud for task tracking and reporting. Define and monitor project-level KPIs and delivery metrics. Produce clear updates for programme-level roll-ups. Ways of Working & Delivery Enablement: Delivery-focused mindset with a pragmatic approach to agile methodologies. Experience applying lightweight governance for consistent delivery. Committed to continuous improvement and embedding best practices. Join us in shaping the future of retail technology! If you're excited about leading technical programmes and making a real impact, apply now! Our client values innovation, collaboration, and enthusiasm, and they can't wait to meet you!
Senior IDAM Engineer Must have current SC Clearance Location: Central London (Hybrid working) Contract: 6 months. Excellent day rate + outside IR35 We are seeking a Senior Identity & Access Management (IDAM/IAM) Engineer, experienced with Azure AD/Entra ID, ADFS, MFA, SSO and certificate based-authentication, to join a specialist End User Compute IT services provider, modernising secure digital workplaces for high-profile UK Central Government departments. Key Responsibilities Lead the design and implementation of IDAM solutions across hybrid and cloud environments Ensure authentication and authorisation frameworks are in place & align to Zero Trust principles. Manage provisioning, role-based access, and life cycle management across diverse platforms. Integrate IDAM services with cloud SaaS, endpoint, and security tooling. Support project delivery, including migrations and onboarding of new systems. Provide 3rd line escalation support for complex IDAM incidents and issues. Produce clear technical documentation, standards, and runbooks to support BAU operations. Skills sought with IDAM technologies such as Azure AD/Entra ID, ADFS, MFA, SSO, and certificate-based authentication. Implementing and managing identity life cycle management solutions. RBAC, privileged access management, and conditional access. Familiarity with Zero Trust models and government security frameworks (NCSC, ISO 27001). Scripting and automation (PowerShell, API integrations) for identity workflows. Supporting large-scale enterprise or government identity environments. Ability to work with cross-functional teams and communicate effectively with technical and non-technical stakeholders. Desirable skills : Okta, SailPoint, or similar enterprise IDAM tools; knowledge of DevSecOps integration; relevant certifications (Microsoft, CISSP, CISM). Please note current SC clearance is an essential requirement for this role. Apply now to progress!
07/10/2025
Contractor
Senior IDAM Engineer Must have current SC Clearance Location: Central London (Hybrid working) Contract: 6 months. Excellent day rate + outside IR35 We are seeking a Senior Identity & Access Management (IDAM/IAM) Engineer, experienced with Azure AD/Entra ID, ADFS, MFA, SSO and certificate based-authentication, to join a specialist End User Compute IT services provider, modernising secure digital workplaces for high-profile UK Central Government departments. Key Responsibilities Lead the design and implementation of IDAM solutions across hybrid and cloud environments Ensure authentication and authorisation frameworks are in place & align to Zero Trust principles. Manage provisioning, role-based access, and life cycle management across diverse platforms. Integrate IDAM services with cloud SaaS, endpoint, and security tooling. Support project delivery, including migrations and onboarding of new systems. Provide 3rd line escalation support for complex IDAM incidents and issues. Produce clear technical documentation, standards, and runbooks to support BAU operations. Skills sought with IDAM technologies such as Azure AD/Entra ID, ADFS, MFA, SSO, and certificate-based authentication. Implementing and managing identity life cycle management solutions. RBAC, privileged access management, and conditional access. Familiarity with Zero Trust models and government security frameworks (NCSC, ISO 27001). Scripting and automation (PowerShell, API integrations) for identity workflows. Supporting large-scale enterprise or government identity environments. Ability to work with cross-functional teams and communicate effectively with technical and non-technical stakeholders. Desirable skills : Okta, SailPoint, or similar enterprise IDAM tools; knowledge of DevSecOps integration; relevant certifications (Microsoft, CISSP, CISM). Please note current SC clearance is an essential requirement for this role. Apply now to progress!
Step into the future of defence technology with an exceptional opportunity as a Senior Software Engineer. If you're passionate about innovation and looking to make a real impact, this role offers you the chance to work on cutting-edge projects that redefine what's possible in the industry. Join a forward-thinking team that values excellence, creativity, and career development. With flexible working hours, a competitive benefits package, and the opportunity to work on high-profile programmes, this is your chance to thrive in a role that truly matters. What You Will Do: - Define, design, develop, and test embedded and application software to deliver high-quality solutions on time. - Apply object-oriented design techniques to ensure code reusability and integration with testing frameworks. - Review system design artefacts to derive software requirements and architecture that meet high-level system needs. - Use modelling tools like RSA and EA to document and maintain software designs, ensuring accuracy for code generation. - Contribute to bids and proposals by generating technical estimates and identifying associated risks. - Propose and implement improvements in tools, processes, and techniques to enhance software development efficiency. What You Will Bring: - A degree in an engineering, mathematical, or science-based subject, or equivalent experience. - Proficiency in C/C++ and experience in embedded product development or Linux application/kernel/driver development. - Familiarity with best practice software development processes, including TDD/BDD, Continuous Integration, and DevSecOps. - Knowledge of object-oriented design, design patterns, and secure software development standards. - Experience with software testing and tools like version control, automated testing frameworks, and static analysis tools. As a Senior Software Engineer, you'll play a pivotal role in delivering innovative solutions that ensure the highest levels of security and trust for customers operating in critical environments. Your work will contribute to the company's mission of engineering excellence, helping to develop advanced cryptographic and key management solutions that protect vital information at both tactical and strategic levels. Location: This role is based in a highly collaborative and innovative environment in Maidenhead or Farnborough. Interested?: Don't miss the chance to advance your career while contributing to groundbreaking projects. Apply now to become a Senior Software Engineer and take the next step in shaping the future of defence technology. Your CV will be forwarded to Jonathan Lee Recruitment, a leading engineering and manufacturing recruitment consultancy established in 1978. The services advertised by Jonathan Lee Recruitment are those of an Employment Agency. In order for your CV to be processed effectively, please ensure your name, email address, phone number and location (post code OR town OR county, as a minimum) are included.
07/10/2025
Full time
Step into the future of defence technology with an exceptional opportunity as a Senior Software Engineer. If you're passionate about innovation and looking to make a real impact, this role offers you the chance to work on cutting-edge projects that redefine what's possible in the industry. Join a forward-thinking team that values excellence, creativity, and career development. With flexible working hours, a competitive benefits package, and the opportunity to work on high-profile programmes, this is your chance to thrive in a role that truly matters. What You Will Do: - Define, design, develop, and test embedded and application software to deliver high-quality solutions on time. - Apply object-oriented design techniques to ensure code reusability and integration with testing frameworks. - Review system design artefacts to derive software requirements and architecture that meet high-level system needs. - Use modelling tools like RSA and EA to document and maintain software designs, ensuring accuracy for code generation. - Contribute to bids and proposals by generating technical estimates and identifying associated risks. - Propose and implement improvements in tools, processes, and techniques to enhance software development efficiency. What You Will Bring: - A degree in an engineering, mathematical, or science-based subject, or equivalent experience. - Proficiency in C/C++ and experience in embedded product development or Linux application/kernel/driver development. - Familiarity with best practice software development processes, including TDD/BDD, Continuous Integration, and DevSecOps. - Knowledge of object-oriented design, design patterns, and secure software development standards. - Experience with software testing and tools like version control, automated testing frameworks, and static analysis tools. As a Senior Software Engineer, you'll play a pivotal role in delivering innovative solutions that ensure the highest levels of security and trust for customers operating in critical environments. Your work will contribute to the company's mission of engineering excellence, helping to develop advanced cryptographic and key management solutions that protect vital information at both tactical and strategic levels. Location: This role is based in a highly collaborative and innovative environment in Maidenhead or Farnborough. Interested?: Don't miss the chance to advance your career while contributing to groundbreaking projects. Apply now to become a Senior Software Engineer and take the next step in shaping the future of defence technology. Your CV will be forwarded to Jonathan Lee Recruitment, a leading engineering and manufacturing recruitment consultancy established in 1978. The services advertised by Jonathan Lee Recruitment are those of an Employment Agency. In order for your CV to be processed effectively, please ensure your name, email address, phone number and location (post code OR town OR county, as a minimum) are included.
Step into the future of defence technology with an exceptional opportunity as a Senior Software Engineer. If you're passionate about innovation and looking to make a real impact, this role offers you the chance to work on cutting-edge projects that redefine what's possible in the industry. Join a forward-thinking team that values excellence, creativity, and career development. With flexible working hours, a competitive benefits package, and the opportunity to work on high-profile programmes, this is your chance to thrive in a role that truly matters. What You Will Do: - Define, design, develop, and test embedded and application software to deliver high-quality solutions on time. - Apply object-oriented design techniques to ensure code reusability and integration with testing frameworks. - Review system design artefacts to derive software requirements and architecture that meet high-level system needs. - Use modelling tools like RSA and EA to document and maintain software designs, ensuring accuracy for code generation. - Contribute to bids and proposals by generating technical estimates and identifying associated risks. - Propose and implement improvements in tools, processes, and techniques to enhance software development efficiency. What You Will Bring: - A degree in an engineering, mathematical, or science-based subject, or equivalent experience. - Proficiency in C/C++ and experience in embedded product development or Linux application/kernel/driver development. - Familiarity with best practice software development processes, including TDD/BDD, Continuous Integration, and DevSecOps. - Knowledge of object-oriented design, design patterns, and secure software development standards. - Experience with software testing and tools like version control, automated testing frameworks, and static analysis tools. As a Senior Software Engineer, you'll play a pivotal role in delivering innovative solutions that ensure the highest levels of security and trust for customers operating in critical environments. Your work will contribute to the company's mission of engineering excellence, helping to develop advanced cryptographic and key management solutions that protect vital information at both tactical and strategic levels. Location: This role is based in a highly collaborative and innovative environment in Maidenhead or Farnborough. Interested?: Don't miss the chance to advance your career while contributing to groundbreaking projects. Apply now to become a Senior Software Engineer and take the next step in shaping the future of defence technology. Your CV will be forwarded to Jonathan Lee Recruitment, a leading engineering and manufacturing recruitment consultancy established in 1978. The services advertised by Jonathan Lee Recruitment are those of an Employment Agency.In order for your CV to be processed effectively, please ensure your name, email address, phone number and location (post code OR town OR county, as a minimum) are included.
07/10/2025
Full time
Step into the future of defence technology with an exceptional opportunity as a Senior Software Engineer. If you're passionate about innovation and looking to make a real impact, this role offers you the chance to work on cutting-edge projects that redefine what's possible in the industry. Join a forward-thinking team that values excellence, creativity, and career development. With flexible working hours, a competitive benefits package, and the opportunity to work on high-profile programmes, this is your chance to thrive in a role that truly matters. What You Will Do: - Define, design, develop, and test embedded and application software to deliver high-quality solutions on time. - Apply object-oriented design techniques to ensure code reusability and integration with testing frameworks. - Review system design artefacts to derive software requirements and architecture that meet high-level system needs. - Use modelling tools like RSA and EA to document and maintain software designs, ensuring accuracy for code generation. - Contribute to bids and proposals by generating technical estimates and identifying associated risks. - Propose and implement improvements in tools, processes, and techniques to enhance software development efficiency. What You Will Bring: - A degree in an engineering, mathematical, or science-based subject, or equivalent experience. - Proficiency in C/C++ and experience in embedded product development or Linux application/kernel/driver development. - Familiarity with best practice software development processes, including TDD/BDD, Continuous Integration, and DevSecOps. - Knowledge of object-oriented design, design patterns, and secure software development standards. - Experience with software testing and tools like version control, automated testing frameworks, and static analysis tools. As a Senior Software Engineer, you'll play a pivotal role in delivering innovative solutions that ensure the highest levels of security and trust for customers operating in critical environments. Your work will contribute to the company's mission of engineering excellence, helping to develop advanced cryptographic and key management solutions that protect vital information at both tactical and strategic levels. Location: This role is based in a highly collaborative and innovative environment in Maidenhead or Farnborough. Interested?: Don't miss the chance to advance your career while contributing to groundbreaking projects. Apply now to become a Senior Software Engineer and take the next step in shaping the future of defence technology. Your CV will be forwarded to Jonathan Lee Recruitment, a leading engineering and manufacturing recruitment consultancy established in 1978. The services advertised by Jonathan Lee Recruitment are those of an Employment Agency.In order for your CV to be processed effectively, please ensure your name, email address, phone number and location (post code OR town OR county, as a minimum) are included.
Outside IR35, Senior DevSecOps Architect / Consultant, hybrid, ISO 27001 My client is looking for a Senior DevSecOps Architect / Consultant to lead governance, architecture guidance, and assurance for cloud and infrastructure security across Microsoft Azure, AWS, and key SaaS platforms. This is a hybrid role, so you need to be flexible to attend meetings and workshops. This role is pivotal in defining technical blueprints, setting security standards, and ensuring regulatory compliance with Cyber Essentials Plus, ISO 27001, and Zero Trust principles. You will work closely with IT and platform teams to embed best practices, validate implementations, and support audit readiness across IaaS, PaaS, and SaaS environments. Responsibilities Define and maintain multi-cloud security standards and reference blueprints (e.g. Azure Policy/Initiatives, AWS Control Tower/SCPs) Own security architecture patterns and contribute to HLD/LLD, threat models, and risk assessments Set assurance criteria and control evidence requirements for internal teams and third-party vendors Establish policy-as-code requirements and maintain an exceptions register with expiry and risk ownership Define identity and access control standards (Entra ID Conditional Access, MFA, PIM; AWS IAM federation) Govern SaaS security onboarding (SSO, OAuth governance, DLP controls, vendor assessments) Specify telemetry and logging requirements for Microsoft Sentinel/SOC and review analytics/reporting Lead compliance mapping for ISO 27001 and curate audit-ready evidence packs Chair Cloud & Platform Security design reviews and participate in CAB for risk appraisal Strong regulatory sector experience Educate and influence teams through guidance, clinics, and coaching sessions Familiarity with IaaS, PaaS, SaaS risk models and audit frameworks Excellent written communication and facilitation skills to drive adoption and influence stakeholders Required Skills Experience with blueprint catalogues and architecture governance processes Working knowledge of containers/Kubernetes (AKS/EKS) policy models Azure: Policy/Initiatives, Defender for Cloud, Entra ID, PIM AWS: Control Tower, SCPs, Security Hub, GuardDuty, IAM Security & Monitoring: Microsoft Sentinel (KQL), Defender XDR, audit dashboards Documentation & Governance: Blueprint repositories, risk registers, ITSM/CAB records If this role sounds of interest please send me your cv for review ASAP
06/10/2025
Contractor
Outside IR35, Senior DevSecOps Architect / Consultant, hybrid, ISO 27001 My client is looking for a Senior DevSecOps Architect / Consultant to lead governance, architecture guidance, and assurance for cloud and infrastructure security across Microsoft Azure, AWS, and key SaaS platforms. This is a hybrid role, so you need to be flexible to attend meetings and workshops. This role is pivotal in defining technical blueprints, setting security standards, and ensuring regulatory compliance with Cyber Essentials Plus, ISO 27001, and Zero Trust principles. You will work closely with IT and platform teams to embed best practices, validate implementations, and support audit readiness across IaaS, PaaS, and SaaS environments. Responsibilities Define and maintain multi-cloud security standards and reference blueprints (e.g. Azure Policy/Initiatives, AWS Control Tower/SCPs) Own security architecture patterns and contribute to HLD/LLD, threat models, and risk assessments Set assurance criteria and control evidence requirements for internal teams and third-party vendors Establish policy-as-code requirements and maintain an exceptions register with expiry and risk ownership Define identity and access control standards (Entra ID Conditional Access, MFA, PIM; AWS IAM federation) Govern SaaS security onboarding (SSO, OAuth governance, DLP controls, vendor assessments) Specify telemetry and logging requirements for Microsoft Sentinel/SOC and review analytics/reporting Lead compliance mapping for ISO 27001 and curate audit-ready evidence packs Chair Cloud & Platform Security design reviews and participate in CAB for risk appraisal Strong regulatory sector experience Educate and influence teams through guidance, clinics, and coaching sessions Familiarity with IaaS, PaaS, SaaS risk models and audit frameworks Excellent written communication and facilitation skills to drive adoption and influence stakeholders Required Skills Experience with blueprint catalogues and architecture governance processes Working knowledge of containers/Kubernetes (AKS/EKS) policy models Azure: Policy/Initiatives, Defender for Cloud, Entra ID, PIM AWS: Control Tower, SCPs, Security Hub, GuardDuty, IAM Security & Monitoring: Microsoft Sentinel (KQL), Defender XDR, audit dashboards Documentation & Governance: Blueprint repositories, risk registers, ITSM/CAB records If this role sounds of interest please send me your cv for review ASAP
Job Role: Senior Security Engineer - CIAMLocation: Hybrid - City of LondonSalary: £100,000 - £120,000 + Bonus Are you an experienced Security Engineer with a passion for safeguarding systems and driving innovation in identity and access management? Do you thrive in complex environments where you can solve critical security challenges and influence long-term strategy? If you're driven by excellence, collaboration, and the opportunity to make an impact on a global financial institution, this could be the perfect role for you. Join us as a Senior Security Engineer, where you'll help shape a market-leading digital platform and deliver secure, cutting-edge customer experiences. Ideal Candidate: Strong hands-on expertise with Hardware Security Modules (HSM), AWS Secrets Manager, and certificate lifecycle management (rotation, revocation, automation) Experienced with GitLab CI/CD pipelines, AWS CLI, and automation tooling (Chef or similar) Proven background in Cloud Security, with deep knowledge of:- AWS security controls, policies, and automation- Role-based and attribute-based access controls- Cryptographic protocols and secure key lifecycle management- Securing microservices, APIs, and DevSecOps best practices Skilled in penetration testing and hands-on coding with JavaScript, Java, or Python Strong understanding of vulnerability scanning, remediation, and vendor management Collaborative mindset with the ability to partner across engineering, security, and product teams Desirable Skills: Hands-on configuration, deployment, and operation of ForgeRock IAM solutions (PingGateway, PingAM, PingIDM, PingDS) Knowledge of PKI-based identity, HTTP header signing, and advanced authentication protocols Exposure to both AWS and Azure environments Experience embedding security into the Software Development Lifecycle (SDLC) This is a hybrid role, with 2-3 days a week in the City of London. If you're ready to take on a high-impact role in one of the world's leading banks and help shape the future of secure digital identity, get in touch today to arrange a chat! Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
06/10/2025
Full time
Job Role: Senior Security Engineer - CIAMLocation: Hybrid - City of LondonSalary: £100,000 - £120,000 + Bonus Are you an experienced Security Engineer with a passion for safeguarding systems and driving innovation in identity and access management? Do you thrive in complex environments where you can solve critical security challenges and influence long-term strategy? If you're driven by excellence, collaboration, and the opportunity to make an impact on a global financial institution, this could be the perfect role for you. Join us as a Senior Security Engineer, where you'll help shape a market-leading digital platform and deliver secure, cutting-edge customer experiences. Ideal Candidate: Strong hands-on expertise with Hardware Security Modules (HSM), AWS Secrets Manager, and certificate lifecycle management (rotation, revocation, automation) Experienced with GitLab CI/CD pipelines, AWS CLI, and automation tooling (Chef or similar) Proven background in Cloud Security, with deep knowledge of:- AWS security controls, policies, and automation- Role-based and attribute-based access controls- Cryptographic protocols and secure key lifecycle management- Securing microservices, APIs, and DevSecOps best practices Skilled in penetration testing and hands-on coding with JavaScript, Java, or Python Strong understanding of vulnerability scanning, remediation, and vendor management Collaborative mindset with the ability to partner across engineering, security, and product teams Desirable Skills: Hands-on configuration, deployment, and operation of ForgeRock IAM solutions (PingGateway, PingAM, PingIDM, PingDS) Knowledge of PKI-based identity, HTTP header signing, and advanced authentication protocols Exposure to both AWS and Azure environments Experience embedding security into the Software Development Lifecycle (SDLC) This is a hybrid role, with 2-3 days a week in the City of London. If you're ready to take on a high-impact role in one of the world's leading banks and help shape the future of secure digital identity, get in touch today to arrange a chat! Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Lead Functional Consultant Not for Profit Sector Salary: competitive depending upon experience + benefits Where the job is based: Hybrid (home-based, working with Kerv Digital office/customer site visits as required) UK HQ, Seven House, 18 High Street, Longbridge, B31 2UQ Who we are: Dive into a world where technology meets innovation. At Kerv Digital, we're not just another tech company. We re the problem solvers, the magicians who transform complex challenges into seamless digital experiences. Utilising a powerful blend of Power Platform, DevSecOps, Data experiences, and Software Engineering, we create business solutions that truly resonate with our clients driving extreme value! With our roots planted in Birmingham and branches spreading across the globe from London to Bangalore, we're a proud member of the Kerv Group - a dynamic £112m revenue technology consultancy leader with a dedicated team of over 700 professionals, partnering with 800+ sector leaders. People come first always we are incredibly proud of our unparalleled work culture. Not just words on paper, we wear our "Great Place to Work" certifications from the UK and India like badges of honour. Dive into an ocean of opportunities in an atmosphere that celebrates collaboration. Sharpen your prowess with a global multi-discipline team and be guided by the industry's most forward-thinking architects. Non-Profit and Membership are a key sector for Kerv Digital and core to our organisational mission. A key driving principle behind Kerv Digital s Build Future mission statement is to do well by doing good . We continually strive to deliver meaningful social impact through the work we do and believe that this contributes to our commercial success as a business. Since its inception, Kerv Digital has been a business with a strong moral compass and clear social mission. Non-Profit and Membership organisations account for approximately 50% of our business. Required Skills: Experience of the Non-profit and Membership sector essential In-depth knowledge of D365 Customer Engagement first-party applications and the Power Platform. Capable of leading a team of functional consultants, collaborating with clients to design and build Dynamics 365 CE and Power Platform Solutions Proficiency in several of the following products: Sales, Customer Service, Customer insights, Power Apps, Power Automate, Power Pages, Copilot Studio and Power Bi End to End Implementation Experience essential especially in larger/more complex projects of Multiple Dynamics 365 CE or Power Platform end to end implementation including requirements analysis, design, configuration, testing, training, data migration and integrations, cutover and reporting Solution Design influence to provide ability to create and influence solution designs with a configuration first approach and only using customisation where essential to implementation and maintenance risks and costs Supporting and guiding the team in delivering workshops, creating functional designs, configuring solutions, supporting testing, assisting with data migration and integration needs, delivering training and supporting implementation Excellent written and verbal communication skills to understand and playback requirements and convey solution design concepts to customers and peers. A strong desire to help customers realise the benefit of their investment and understand the art of the possible. Be an awesome team player as the conduit between the customer, business analysts, solution architects, developers and quality assurance. Hands-on Dynamics 365 Customer Engagement customisation and configuration Understand which technology to use, and why, including when to use Pro-Code vs Low Code/No Code solutions. Microsoft certifications, e.g. multiple MCPs or an MCSE Understanding the Microsoft Dynamics product portfolio and its licensing Responsibilities: You ll probably need to demonstrate at least some experience with; Understanding the Out of the Box capabilities (and limitations) provided by Dynamics 365CE and the Power Platform, from form design to solution management to connectors to integrations. Demonstrate Out of the Box functionality to business and technical stakeholders illustrating how the product supports core business processes Requirements gathering, writing and evolution through business process identification, analysis and re-engineering Learn and become an expert in the in the Kerv Digital accelerators to solve common business scenarios faster. Become a design influencer into the future roadmap of the accelerators Crafting user stories, features and epics to be used across the presales, design, development and delivery lifecycles. Building Proof of Concepts to demonstrate and articulate solution designs. Implementing business and technical environment change safely and effectively, with the support of the Solution Architects and the Project Office Pre-sales engagement including technology evangelism, demonstration, adoption and other early opportunity activities such as bid-response writing Creating clear and effective documentation across multiple channels Using a proactive approach to ensure timescales are met, balancing a hands-on approach vs delegating to developers or other team members. Training end users and admins in the use of Dynamics 365 CE and the Power Platform Environment setup, configuration and Application Lifecycle Management Supporting, leading and coaching more junior project team members fostering a culture of wellbeing, inclusion and ensuring balanced workload levels Prioritise and assign tasks and make best use of available resource and skill levels in the team contributing to the project success Build relationships with other stakeholders in other disciplines across the project including within the client team and contribute to the successful management of dependencies between disciplines Other tasks as reasonably requested Desirable Skills: Candidates are expected to have some of the following skills; • Lead by example through sharing from previous experiences and providing implementation plans that mitigate risks to deliver a positive outcome • Remain calm and professional in fast paced environments and feel comfortable calling out concerns and seeking advice when needed • Embrace personal growth to yourself and others through learning, achievement and satisfaction • Be approachable to provide help, guidance and actively support junior colleagues helping them to uphold standards, manage their workload, ensure quality and cope with challenging situations • Embrace a culture of knowledge sharing so that we grow We re also looking for people that fit how we work, which is something like; • happiest working under their own direction, but fully supported when needed • an obvious attention to detail, we want you to obsess about the little things! • prepared to travel to client site if required • ability to identify and pick up new processes and software platforms quickly • ability to work effectively with remote teams in both in the UK and India • ability to work flexibly to deliver on-time to tight timescales What we can do for you: We re a transparent, honest and fiercely equal employer that believes completely in providing the best possible work experience for our employee s: Real Flexibility we re a family first organisation, and if the work gets done, you can work when and wherever you want. A healthy approach for most of our teams seems to be splitting three ways between home, customer sites and the office. Awesome Environment all of our employee s will tell you that we foster an easy going environment, are experts at what we do and care deeply about what we work on and the company was started specifically to find a way for people to take more enjoyment from their work. Interesting Work these days most of our customers are household names and many of our projects have an important impact on the world around us. The kind of things we do regularly include working with not-for-profits to transform how they leverage technology, working with public bodies to shape digital services and working with top tier private entities to bring genuinely new and meaningful products and services to market. Great Benefits all the usual suspects and then some. Some highlights include our choose-your-own tech approach to end-user devices, well stocked cupboards with tasty goodies (we re a food first company too), excellent professional development support including frequent in-house training for tech. you can t get trained on anywhere else and private healthcare. Full disclosure; some benefits can only be provided after probation. Recognition & Growth Recognized as a 'Great Place to Work' in both the UK and India, our commitment to excellence goes beyond our products and services. Our culture is a testament to the dedicated technologists who work tirelessly to drive our vision forward. Being a part of Kerv Digital means embracing a culture of innovation, collaboration, and mutual respect. Our teams in the UK and India thrive in an atmosphere that promotes continuous learning and growth. Join us at Kerv Digital, where we don t just build ground breaking technology - we build future. Don t take our word for it though . click apply for full job details
06/10/2025
Full time
Lead Functional Consultant Not for Profit Sector Salary: competitive depending upon experience + benefits Where the job is based: Hybrid (home-based, working with Kerv Digital office/customer site visits as required) UK HQ, Seven House, 18 High Street, Longbridge, B31 2UQ Who we are: Dive into a world where technology meets innovation. At Kerv Digital, we're not just another tech company. We re the problem solvers, the magicians who transform complex challenges into seamless digital experiences. Utilising a powerful blend of Power Platform, DevSecOps, Data experiences, and Software Engineering, we create business solutions that truly resonate with our clients driving extreme value! With our roots planted in Birmingham and branches spreading across the globe from London to Bangalore, we're a proud member of the Kerv Group - a dynamic £112m revenue technology consultancy leader with a dedicated team of over 700 professionals, partnering with 800+ sector leaders. People come first always we are incredibly proud of our unparalleled work culture. Not just words on paper, we wear our "Great Place to Work" certifications from the UK and India like badges of honour. Dive into an ocean of opportunities in an atmosphere that celebrates collaboration. Sharpen your prowess with a global multi-discipline team and be guided by the industry's most forward-thinking architects. Non-Profit and Membership are a key sector for Kerv Digital and core to our organisational mission. A key driving principle behind Kerv Digital s Build Future mission statement is to do well by doing good . We continually strive to deliver meaningful social impact through the work we do and believe that this contributes to our commercial success as a business. Since its inception, Kerv Digital has been a business with a strong moral compass and clear social mission. Non-Profit and Membership organisations account for approximately 50% of our business. Required Skills: Experience of the Non-profit and Membership sector essential In-depth knowledge of D365 Customer Engagement first-party applications and the Power Platform. Capable of leading a team of functional consultants, collaborating with clients to design and build Dynamics 365 CE and Power Platform Solutions Proficiency in several of the following products: Sales, Customer Service, Customer insights, Power Apps, Power Automate, Power Pages, Copilot Studio and Power Bi End to End Implementation Experience essential especially in larger/more complex projects of Multiple Dynamics 365 CE or Power Platform end to end implementation including requirements analysis, design, configuration, testing, training, data migration and integrations, cutover and reporting Solution Design influence to provide ability to create and influence solution designs with a configuration first approach and only using customisation where essential to implementation and maintenance risks and costs Supporting and guiding the team in delivering workshops, creating functional designs, configuring solutions, supporting testing, assisting with data migration and integration needs, delivering training and supporting implementation Excellent written and verbal communication skills to understand and playback requirements and convey solution design concepts to customers and peers. A strong desire to help customers realise the benefit of their investment and understand the art of the possible. Be an awesome team player as the conduit between the customer, business analysts, solution architects, developers and quality assurance. Hands-on Dynamics 365 Customer Engagement customisation and configuration Understand which technology to use, and why, including when to use Pro-Code vs Low Code/No Code solutions. Microsoft certifications, e.g. multiple MCPs or an MCSE Understanding the Microsoft Dynamics product portfolio and its licensing Responsibilities: You ll probably need to demonstrate at least some experience with; Understanding the Out of the Box capabilities (and limitations) provided by Dynamics 365CE and the Power Platform, from form design to solution management to connectors to integrations. Demonstrate Out of the Box functionality to business and technical stakeholders illustrating how the product supports core business processes Requirements gathering, writing and evolution through business process identification, analysis and re-engineering Learn and become an expert in the in the Kerv Digital accelerators to solve common business scenarios faster. Become a design influencer into the future roadmap of the accelerators Crafting user stories, features and epics to be used across the presales, design, development and delivery lifecycles. Building Proof of Concepts to demonstrate and articulate solution designs. Implementing business and technical environment change safely and effectively, with the support of the Solution Architects and the Project Office Pre-sales engagement including technology evangelism, demonstration, adoption and other early opportunity activities such as bid-response writing Creating clear and effective documentation across multiple channels Using a proactive approach to ensure timescales are met, balancing a hands-on approach vs delegating to developers or other team members. Training end users and admins in the use of Dynamics 365 CE and the Power Platform Environment setup, configuration and Application Lifecycle Management Supporting, leading and coaching more junior project team members fostering a culture of wellbeing, inclusion and ensuring balanced workload levels Prioritise and assign tasks and make best use of available resource and skill levels in the team contributing to the project success Build relationships with other stakeholders in other disciplines across the project including within the client team and contribute to the successful management of dependencies between disciplines Other tasks as reasonably requested Desirable Skills: Candidates are expected to have some of the following skills; • Lead by example through sharing from previous experiences and providing implementation plans that mitigate risks to deliver a positive outcome • Remain calm and professional in fast paced environments and feel comfortable calling out concerns and seeking advice when needed • Embrace personal growth to yourself and others through learning, achievement and satisfaction • Be approachable to provide help, guidance and actively support junior colleagues helping them to uphold standards, manage their workload, ensure quality and cope with challenging situations • Embrace a culture of knowledge sharing so that we grow We re also looking for people that fit how we work, which is something like; • happiest working under their own direction, but fully supported when needed • an obvious attention to detail, we want you to obsess about the little things! • prepared to travel to client site if required • ability to identify and pick up new processes and software platforms quickly • ability to work effectively with remote teams in both in the UK and India • ability to work flexibly to deliver on-time to tight timescales What we can do for you: We re a transparent, honest and fiercely equal employer that believes completely in providing the best possible work experience for our employee s: Real Flexibility we re a family first organisation, and if the work gets done, you can work when and wherever you want. A healthy approach for most of our teams seems to be splitting three ways between home, customer sites and the office. Awesome Environment all of our employee s will tell you that we foster an easy going environment, are experts at what we do and care deeply about what we work on and the company was started specifically to find a way for people to take more enjoyment from their work. Interesting Work these days most of our customers are household names and many of our projects have an important impact on the world around us. The kind of things we do regularly include working with not-for-profits to transform how they leverage technology, working with public bodies to shape digital services and working with top tier private entities to bring genuinely new and meaningful products and services to market. Great Benefits all the usual suspects and then some. Some highlights include our choose-your-own tech approach to end-user devices, well stocked cupboards with tasty goodies (we re a food first company too), excellent professional development support including frequent in-house training for tech. you can t get trained on anywhere else and private healthcare. Full disclosure; some benefits can only be provided after probation. Recognition & Growth Recognized as a 'Great Place to Work' in both the UK and India, our commitment to excellence goes beyond our products and services. Our culture is a testament to the dedicated technologists who work tirelessly to drive our vision forward. Being a part of Kerv Digital means embracing a culture of innovation, collaboration, and mutual respect. Our teams in the UK and India thrive in an atmosphere that promotes continuous learning and growth. Join us at Kerv Digital, where we don t just build ground breaking technology - we build future. Don t take our word for it though . click apply for full job details
Sales Engineer/Solutions Engineer with proven background in presales/sales engineering in the DevOps/DevSecOps/AppSec to enterprise customers, is required by a fast-growing market leader in the Software Supply Chain to attract new logos and help engineering teams build secure, scalable software delivery pipelines. London based role 3 days in the office. The package is market-leading plus OTE + Stock. What we're looking for as a Sales Engineer DevSecOps: Strong skills in pre-sales/Sales Engineering or technical consulting, with hands-on experience in DevOps, DevSecOps, or platform engineering. Hands-on knowledge of containerisation and building pipelines with tools like Docker, Kubernetes, Git, CI Servers, and cloud platforms (AWS, Azure, or GCP) Strong communication and presentation skills, with the ability to influence both technical and business audiences A proactive mindset with the confidence to lead client conversations and solve complex problems Fluent in English; and bilingual skills (French or Spanish or German others) are a plus What you'll be doing as a Sales Engineer DevSecOps: Collaborating with account executives/sales team to uncover technical requirements and design bespoke solutions Leading discovery workshops, technical presentations, and hands-on demos (including Proofs of Value/POV) and using MEDDPICC Supporting the full pre-sales life cycle, including RFPs, technical evaluations, and onboarding transition Acting as a trusted advisor, translating business challenges into technical strategies Representing the company at events and contributing to market feedback and product direction Staying current with DevOps trends and tools like Kubernetes, CI/CD, cloud-native development, and security automation This is a great opportunity to be part of a collaborative team, work with leading-edge technologies, and make a visible impact across for a company with a massive enterprise customer base. If you thrive in a consultative role and love solving real-world problems with elegant solutions, we'd love to hear from you.
06/10/2025
Full time
Sales Engineer/Solutions Engineer with proven background in presales/sales engineering in the DevOps/DevSecOps/AppSec to enterprise customers, is required by a fast-growing market leader in the Software Supply Chain to attract new logos and help engineering teams build secure, scalable software delivery pipelines. London based role 3 days in the office. The package is market-leading plus OTE + Stock. What we're looking for as a Sales Engineer DevSecOps: Strong skills in pre-sales/Sales Engineering or technical consulting, with hands-on experience in DevOps, DevSecOps, or platform engineering. Hands-on knowledge of containerisation and building pipelines with tools like Docker, Kubernetes, Git, CI Servers, and cloud platforms (AWS, Azure, or GCP) Strong communication and presentation skills, with the ability to influence both technical and business audiences A proactive mindset with the confidence to lead client conversations and solve complex problems Fluent in English; and bilingual skills (French or Spanish or German others) are a plus What you'll be doing as a Sales Engineer DevSecOps: Collaborating with account executives/sales team to uncover technical requirements and design bespoke solutions Leading discovery workshops, technical presentations, and hands-on demos (including Proofs of Value/POV) and using MEDDPICC Supporting the full pre-sales life cycle, including RFPs, technical evaluations, and onboarding transition Acting as a trusted advisor, translating business challenges into technical strategies Representing the company at events and contributing to market feedback and product direction Staying current with DevOps trends and tools like Kubernetes, CI/CD, cloud-native development, and security automation This is a great opportunity to be part of a collaborative team, work with leading-edge technologies, and make a visible impact across for a company with a massive enterprise customer base. If you thrive in a consultative role and love solving real-world problems with elegant solutions, we'd love to hear from you.
Global Leader in software supply chain for DevOps, DevSecOps, and MLOps is seeking a pre-sales focused Solutions Architect to work closely with strategic customers and prospects. This role is ideal for someone who thrives at the intersection of technology and business, and who enjoys driving impactful conversations with technical and executive stakeholders. This is a hybrid role based out of London, with three days per week in the office. Excellent + OTE + Bens + Stock Key skills for the Solutions Architect - DevOps Significant experience in technical pre-sales, solutions architecture, or similar roles Strong relationship-building skills with both technical users and senior stakeholders in enterprise environments Practical knowledge and hands-on experience with Docker, Kubernetes, CI/CD pipelines, Git workflows, and build tools Familiarity with application security tools such as SCA, SAST, SBOM management, and container security Ability to build and manage modern software pipelines using diverse DevOps tooling Solid hands-on experience with major cloud platforms (AWS, Azure, GCP) - mandatory Background in software development is a significant advantage K ey responsibilities for the Solutions Architect DevOps - include Engage with customers to ensure their success in their DevOps and DevSecOps journey leveraging the software supply chain Platform Support Sales motion and significantly contribute to the customer journey to build technical wins and championship Train our customers, prospects and community about product offering and solutions Represent the company in events and conferences Influence the features and roadmap of products based on customer needs Stay current with the latest technology trends related to the DevOps and DevSecOps landscape Join a company trusted by thousands of enterprise customers software engineering teams to deliver secure continuous updates, and is used by the majority of the Fortune 100, and help shape the future of secure and efficient software delivery. Opus Resourcing acts as an employment agency with respect to permanent employment. Skills: CI/CD, AZURE, GIT, DEVOPS, DOCKER, KUBERNETES, AWS,presales,Security,cloud platforms,Application Security,SAST,Sales Engineering,Technical Sales Consulting,Pre-Sales Technical Consulting
06/10/2025
Full time
Global Leader in software supply chain for DevOps, DevSecOps, and MLOps is seeking a pre-sales focused Solutions Architect to work closely with strategic customers and prospects. This role is ideal for someone who thrives at the intersection of technology and business, and who enjoys driving impactful conversations with technical and executive stakeholders. This is a hybrid role based out of London, with three days per week in the office. Excellent + OTE + Bens + Stock Key skills for the Solutions Architect - DevOps Significant experience in technical pre-sales, solutions architecture, or similar roles Strong relationship-building skills with both technical users and senior stakeholders in enterprise environments Practical knowledge and hands-on experience with Docker, Kubernetes, CI/CD pipelines, Git workflows, and build tools Familiarity with application security tools such as SCA, SAST, SBOM management, and container security Ability to build and manage modern software pipelines using diverse DevOps tooling Solid hands-on experience with major cloud platforms (AWS, Azure, GCP) - mandatory Background in software development is a significant advantage K ey responsibilities for the Solutions Architect DevOps - include Engage with customers to ensure their success in their DevOps and DevSecOps journey leveraging the software supply chain Platform Support Sales motion and significantly contribute to the customer journey to build technical wins and championship Train our customers, prospects and community about product offering and solutions Represent the company in events and conferences Influence the features and roadmap of products based on customer needs Stay current with the latest technology trends related to the DevOps and DevSecOps landscape Join a company trusted by thousands of enterprise customers software engineering teams to deliver secure continuous updates, and is used by the majority of the Fortune 100, and help shape the future of secure and efficient software delivery. Opus Resourcing acts as an employment agency with respect to permanent employment. Skills: CI/CD, AZURE, GIT, DEVOPS, DOCKER, KUBERNETES, AWS,presales,Security,cloud platforms,Application Security,SAST,Sales Engineering,Technical Sales Consulting,Pre-Sales Technical Consulting
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
06/10/2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
06/10/2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Jobs - Frequently Asked Questions
Use the location filter to find IT jobs in cities like London, Manchester, Birmingham, and across the UK.
Entry-level roles include IT support technician, junior developer, QA tester, and helpdesk analyst.
New jobs are posted daily. Set up alerts to be notified as soon as new roles match your preferences.
Key skills include problem-solving, coding, cloud computing, networking, and familiarity with tools like AWS or SQL.
Yes, many employers offer training or junior roles. Focus on building a strong CV with relevant coursework or personal projects.
