YT Technologies are on the lookout for a skilled Software Engineer to help build cutting-edge DevSecOps software. Due to the nature of the work, only candidates eligible for eDV clearance will be considered Key Skills; High level experience with Java and additional languages such as Python Development experience in Linux environments Solid understanding of JUnit 5.x, unit testing, and mocking frameworks Confident using Git and working within Agile/SCRUM teams Experience mentoring junior developers Knowledge of Oracle/relational databases, MongoDB, and GitLab CI/CD Familiarity with Apache NiFi, JavaScript/TypeScript, and React Experience with Elasticsearch, Kibana, Hibernate, and the Atlassian suite (Bitbucket, Jira, Confluence) Desirable; Experience with JSF (PrimeFaces) Knowledge of AWS and cloud-ready developmen Exposure to microservices or serverless architecture Understanding of cloud migration challenges and maturing CI/CD pipeline Hands-on experience with AWS services such as EC2, EKS, Fargate, IAM, S3, Lambda Due to the nature of the work, only candidates eligible for eDV clearance will be considered If interested, and you match the above requirements, please apply with your most recent CV and I will be in touch to discuss further. JBRP1_UKTJ
24/11/2025
Full time
YT Technologies are on the lookout for a skilled Software Engineer to help build cutting-edge DevSecOps software. Due to the nature of the work, only candidates eligible for eDV clearance will be considered Key Skills; High level experience with Java and additional languages such as Python Development experience in Linux environments Solid understanding of JUnit 5.x, unit testing, and mocking frameworks Confident using Git and working within Agile/SCRUM teams Experience mentoring junior developers Knowledge of Oracle/relational databases, MongoDB, and GitLab CI/CD Familiarity with Apache NiFi, JavaScript/TypeScript, and React Experience with Elasticsearch, Kibana, Hibernate, and the Atlassian suite (Bitbucket, Jira, Confluence) Desirable; Experience with JSF (PrimeFaces) Knowledge of AWS and cloud-ready developmen Exposure to microservices or serverless architecture Understanding of cloud migration challenges and maturing CI/CD pipeline Hands-on experience with AWS services such as EC2, EKS, Fargate, IAM, S3, Lambda Due to the nature of the work, only candidates eligible for eDV clearance will be considered If interested, and you match the above requirements, please apply with your most recent CV and I will be in touch to discuss further. JBRP1_UKTJ
YT Technologies are on the lookout for a skilled Software Engineer to help build cutting-edge DevSecOps software. Due to the nature of the work, only candidates eligible for eDV clearance will be considered Key Skills; High level experience with Java and additional languages such as Python Development experience in Linux environments Solid understanding of JUnit 5.x, unit testing, and mocking framework
23/11/2025
Full time
YT Technologies are on the lookout for a skilled Software Engineer to help build cutting-edge DevSecOps software. Due to the nature of the work, only candidates eligible for eDV clearance will be considered Key Skills; High level experience with Java and additional languages such as Python Development experience in Linux environments Solid understanding of JUnit 5.x, unit testing, and mocking framework
Location Croydon CR0 2WF, Manchester M5 3LZ, Sheffield S3 8NU (All QAT roles require flexibility of location, including working from supplier sites and other business locations across the UK and occasionally abroad). About the job Job summary The Home Office Quality Assurance and Testing Team (QAT) is seeking individuals passionate about quality and engineering excellence to join their well-established, award-winning team. QAT delivers a large-scale shared service through 750 QA professionals, supporting essential UK services and fostering a strong culture of continuous improvement, particularly in DevOps and cloud environments. Recently recognised as Testing Team of the Year at the 2024 European Software Testing Awards and re-certified at TMMi level 5 with a global best score, the team prides itself on industry-leading quality standards. The Core Cloud team, a key part of Test Engineering, is building a new strategic hosting platform using Amazon Web Services, focusing on a product-centric approach and enhancing the developer experience at the Home Office. This Lead Test Engineer role is central to the Core Cloud platform, contributing to advancements in quality assurance and testing within a dynamic, collaborative, and innovative environment. Where business needs allow, some roles may be suitable for a combination of office and home-based working. Where this is the case, employees will be expected to spend a minimum of 60% of their working time in the office. Applicants can raise any queries to the email address at the bottom of the advert. Watch this video to hear from members of the team talking about the projects they work on and their experience of working here. Job description This role will particularly excite you if you are a quality engineering expert with a keen interest and experience in platform engineering, or equally if you are an experienced platform engineer with a keen interest in quality approaches in the field. You will deliver modern, effective test engineering and assurance, whilst maturing the quality of our cloud platform engineering practice. You will be responsible for solving interesting engineering challenges, including building, adopting, and improving automated test frameworks to deliver effective feedback at scale and pace for complex platform capabilities covering both functional and non-functional aspects. It is essential to ensure these are aligned to the overall platform-level test approaches and QAT principles. Collaboration is key in this role. You will work with engineering and delivery teams to make sure QAT is embedded by default into the development approach. Building healthy relationships with your team, the wider team, other Home Office Digital professions, and communicating effectively with senior business stakeholders will be crucial. To help the QAT practice thrive, you will also keep up to date with emerging tools and innovative quality approaches, applying them to improve engineering practice within the QAT Test Engineering community and the wider organisation, promoting quality outcomes and value. QAT/Engineering Tools and Technologies we use: We have a wide portfolio of tools across the programme including: Cloud: AWS (primary) and Azure Test Frameworks: Terrattest, Pytest, Serenity BDD (Selenium + RestAssured), Playwright, and several bespoke frameworks. DevOps: AWS LZA, GitHub and GitHub Actions, Jenkins, Docker, Kubernetes, Terraform Performance testing - Locust, JMeter Other tools - AWS FIS, Checkov, ZAP, SonarQube Observability and Monitoring - ELK, Grafana, Prometheus, Dynatrace. What you will do Your main day to day responsibilities will be: Setting the direction for QAT Strategy and Test Engineering within the AWS-focused strategic cloud platform. Developing and implementing innovative tooling and DevSecOps best practices. Guiding, mentoring, and supporting engineers at all levels, including junior QAT engineers. Providing technical advice to improve engineering processes and practices. Embedding Infrastructure as Code test frameworks and implementing a modern test pyramid aligned with CI/CD pipelines. Building scalable, efficient, and cost-effective quality engineering solutions, while measuring code quality and using risk-based decision-making to help the QAT practice thrive through innovation. Person specification Essential Criteria As a Lead Test Engineer, you will have experience of: Collaborating with a wide variety of stakeholders to implement effective quality measures and mechanisms. Strong technical automation skills with the ability to write well-structured reusable maintainable tests and test utilities (Java, Python, TS/JS preferred). Leading a technical team of test engineers, this includes experience with DevSecOps, Cloud Platforms, Containers, Networking, Infrastructure as Code (IaC), SCM e.g. GitHub / Bitbucket. Design and deliver platform test approaches involving test automation environments, utilising virtualisation and containerisation. Experienced with DevSecOps environment including IaC testing, Unit testing, Contract testing, API testing, E2E testing, Resilience testing. Develop and enhance platform test engineering tools to support QA, Testing and Software Development in complex environments, with experience in AWS, Linux, AWS SDK, Pytest and TerraTest, CI/CD tools. eg. Jenkins/ GitHub Actions/ArgoCD.
20/11/2025
Full time
Location Croydon CR0 2WF, Manchester M5 3LZ, Sheffield S3 8NU (All QAT roles require flexibility of location, including working from supplier sites and other business locations across the UK and occasionally abroad). About the job Job summary The Home Office Quality Assurance and Testing Team (QAT) is seeking individuals passionate about quality and engineering excellence to join their well-established, award-winning team. QAT delivers a large-scale shared service through 750 QA professionals, supporting essential UK services and fostering a strong culture of continuous improvement, particularly in DevOps and cloud environments. Recently recognised as Testing Team of the Year at the 2024 European Software Testing Awards and re-certified at TMMi level 5 with a global best score, the team prides itself on industry-leading quality standards. The Core Cloud team, a key part of Test Engineering, is building a new strategic hosting platform using Amazon Web Services, focusing on a product-centric approach and enhancing the developer experience at the Home Office. This Lead Test Engineer role is central to the Core Cloud platform, contributing to advancements in quality assurance and testing within a dynamic, collaborative, and innovative environment. Where business needs allow, some roles may be suitable for a combination of office and home-based working. Where this is the case, employees will be expected to spend a minimum of 60% of their working time in the office. Applicants can raise any queries to the email address at the bottom of the advert. Watch this video to hear from members of the team talking about the projects they work on and their experience of working here. Job description This role will particularly excite you if you are a quality engineering expert with a keen interest and experience in platform engineering, or equally if you are an experienced platform engineer with a keen interest in quality approaches in the field. You will deliver modern, effective test engineering and assurance, whilst maturing the quality of our cloud platform engineering practice. You will be responsible for solving interesting engineering challenges, including building, adopting, and improving automated test frameworks to deliver effective feedback at scale and pace for complex platform capabilities covering both functional and non-functional aspects. It is essential to ensure these are aligned to the overall platform-level test approaches and QAT principles. Collaboration is key in this role. You will work with engineering and delivery teams to make sure QAT is embedded by default into the development approach. Building healthy relationships with your team, the wider team, other Home Office Digital professions, and communicating effectively with senior business stakeholders will be crucial. To help the QAT practice thrive, you will also keep up to date with emerging tools and innovative quality approaches, applying them to improve engineering practice within the QAT Test Engineering community and the wider organisation, promoting quality outcomes and value. QAT/Engineering Tools and Technologies we use: We have a wide portfolio of tools across the programme including: Cloud: AWS (primary) and Azure Test Frameworks: Terrattest, Pytest, Serenity BDD (Selenium + RestAssured), Playwright, and several bespoke frameworks. DevOps: AWS LZA, GitHub and GitHub Actions, Jenkins, Docker, Kubernetes, Terraform Performance testing - Locust, JMeter Other tools - AWS FIS, Checkov, ZAP, SonarQube Observability and Monitoring - ELK, Grafana, Prometheus, Dynatrace. What you will do Your main day to day responsibilities will be: Setting the direction for QAT Strategy and Test Engineering within the AWS-focused strategic cloud platform. Developing and implementing innovative tooling and DevSecOps best practices. Guiding, mentoring, and supporting engineers at all levels, including junior QAT engineers. Providing technical advice to improve engineering processes and practices. Embedding Infrastructure as Code test frameworks and implementing a modern test pyramid aligned with CI/CD pipelines. Building scalable, efficient, and cost-effective quality engineering solutions, while measuring code quality and using risk-based decision-making to help the QAT practice thrive through innovation. Person specification Essential Criteria As a Lead Test Engineer, you will have experience of: Collaborating with a wide variety of stakeholders to implement effective quality measures and mechanisms. Strong technical automation skills with the ability to write well-structured reusable maintainable tests and test utilities (Java, Python, TS/JS preferred). Leading a technical team of test engineers, this includes experience with DevSecOps, Cloud Platforms, Containers, Networking, Infrastructure as Code (IaC), SCM e.g. GitHub / Bitbucket. Design and deliver platform test approaches involving test automation environments, utilising virtualisation and containerisation. Experienced with DevSecOps environment including IaC testing, Unit testing, Contract testing, API testing, E2E testing, Resilience testing. Develop and enhance platform test engineering tools to support QA, Testing and Software Development in complex environments, with experience in AWS, Linux, AWS SDK, Pytest and TerraTest, CI/CD tools. eg. Jenkins/ GitHub Actions/ArgoCD.
Senior DevOps Consultant (GitHub SME) Microsoft Gold Partner £70 75K - (RL8011) Job Title: Senior DevOps Consultant (GitHub SME) Reference: RL8011 Location: UK Salary: £70,000 £75,000 per annum Benefits: Flexible hybrid working, professional development support, well-being initiatives Start: ASAP The Client: A Microsoft Gold Partner and leading Digital Consultancy, helping organisations embrace Cloud transformation and unlock the potential of Digital, Data, and AI solutions. Their projects span multiple industries including Financial Services, Insurance, Public Services, Media & Telecommunications, Manufacturing, Health, Pharmaceuticals, Business Services, Ecology, and Logistics. They foster a collaborative, people-first culture where innovation, flexibility, and growth are actively encouraged, and they re trusted by some of the worlds most forward-thinking businesses to deliver outstanding results. The Candidate: you'll be an experienced DevOps professional with deep expertise in GitHub Enterprise administration, comfortable advising on governance, security, and best practice across large-scale environments. you'll thrive in collaborative settings, be confident assessing technical landscapes, and have the ability to recommend and implement effective improvements. The Role: As a Senior DevOps Consultant (GitHub SME), you'll take ownership of GitHub Enterprise governance and security, ensuring that development teams across the organisation follow best practices. you'll design and implement scalable structures, optimise automation workflows, and help shape secure and efficient CI/CD processes. This is a strategic, hands-on role suited to someone who enjoys working across teams to improve the way engineering is delivered at scale. Responsibilities: Administer GitHub Enterprise across large and complex organisational environments. Define and implement repository governance, access control, and change management processes. Enable and manage GitHub Advanced Security (GHAS) features including code scanning, secret scanning, and dependency management. Integrate GitHub with enterprise identity systems such as Azure AD/Entra ID for secure SSO. Support and optimise CI/CD pipelines and automation workflows (GitHub Actions). Assess current environments, identify gaps, and propose effective, scalable improvements. Essential Requirements: Proven experience managing GitHub Enterprise in enterprise-scale or multi-team environments. Strong understanding of governance, security, and repository structure best practices. Practical experience with GHAS, SSO integration, and DevOps automation (CI/CD). Strong analytical, problem-solving, and stakeholder communication skills. Desirable (Not Essential): Experience migrating from Bitbucket, GitLab, or SVN. Familiarity with Atlassian tools (Jira, Confluence). Broader knowledge of DevSecOps or cloud environments (Azure, AWS, or GCP). To apply for this Senior DevOps Consultant permanent job, please click the button below and submit your latest CV. Curo Services endeavours to respond to all applications, however this may not always be possible during periods of high volume. Thank you for your patience. Curo Services is a trading name of Curo Resourcing Ltd and acts as an Employment Business for contract and temporary recruitment as well as an Employment Agency in relation to permanent vacancies.
20/11/2025
Full time
Senior DevOps Consultant (GitHub SME) Microsoft Gold Partner £70 75K - (RL8011) Job Title: Senior DevOps Consultant (GitHub SME) Reference: RL8011 Location: UK Salary: £70,000 £75,000 per annum Benefits: Flexible hybrid working, professional development support, well-being initiatives Start: ASAP The Client: A Microsoft Gold Partner and leading Digital Consultancy, helping organisations embrace Cloud transformation and unlock the potential of Digital, Data, and AI solutions. Their projects span multiple industries including Financial Services, Insurance, Public Services, Media & Telecommunications, Manufacturing, Health, Pharmaceuticals, Business Services, Ecology, and Logistics. They foster a collaborative, people-first culture where innovation, flexibility, and growth are actively encouraged, and they re trusted by some of the worlds most forward-thinking businesses to deliver outstanding results. The Candidate: you'll be an experienced DevOps professional with deep expertise in GitHub Enterprise administration, comfortable advising on governance, security, and best practice across large-scale environments. you'll thrive in collaborative settings, be confident assessing technical landscapes, and have the ability to recommend and implement effective improvements. The Role: As a Senior DevOps Consultant (GitHub SME), you'll take ownership of GitHub Enterprise governance and security, ensuring that development teams across the organisation follow best practices. you'll design and implement scalable structures, optimise automation workflows, and help shape secure and efficient CI/CD processes. This is a strategic, hands-on role suited to someone who enjoys working across teams to improve the way engineering is delivered at scale. Responsibilities: Administer GitHub Enterprise across large and complex organisational environments. Define and implement repository governance, access control, and change management processes. Enable and manage GitHub Advanced Security (GHAS) features including code scanning, secret scanning, and dependency management. Integrate GitHub with enterprise identity systems such as Azure AD/Entra ID for secure SSO. Support and optimise CI/CD pipelines and automation workflows (GitHub Actions). Assess current environments, identify gaps, and propose effective, scalable improvements. Essential Requirements: Proven experience managing GitHub Enterprise in enterprise-scale or multi-team environments. Strong understanding of governance, security, and repository structure best practices. Practical experience with GHAS, SSO integration, and DevOps automation (CI/CD). Strong analytical, problem-solving, and stakeholder communication skills. Desirable (Not Essential): Experience migrating from Bitbucket, GitLab, or SVN. Familiarity with Atlassian tools (Jira, Confluence). Broader knowledge of DevSecOps or cloud environments (Azure, AWS, or GCP). To apply for this Senior DevOps Consultant permanent job, please click the button below and submit your latest CV. Curo Services endeavours to respond to all applications, however this may not always be possible during periods of high volume. Thank you for your patience. Curo Services is a trading name of Curo Resourcing Ltd and acts as an Employment Business for contract and temporary recruitment as well as an Employment Agency in relation to permanent vacancies.
Summer-Browning Associates
City Of Westminster, London
Summer-Browning Associates are currently supporting a Central Government client, who have a requirement for a Google Cloud Architect on an initial 12 month contract. What You'll Be Doing Designing and delivering secure, scalable, and resilient architectures in Google Cloud Platform (GCP) and Google Distributed Cloud (GDC) environments. Working within disconnected environments on data-severing solutions. Collaborating closely with engineering, DevOps, and security teams to ensure seamless integration from design through delivery. Implementing automation and Infrastructure as Code (IaC) for repeatable, auditable deployments. Providing technical leadership and mentorship, helping teams adopt best practice across cloud engineering and DevSecOps. Aligning designs with government security frameworks and enterprise architecture principles. Supporting ongoing system optimisation and capability development over the lifespan of the programme. What You'll Bring Proven hands-on experience as a Cloud Architect or Senior Cloud Engineer specialising in Google Cloud Platform. Practical knowledge of Google Distributed Cloud (GDC), Experience working in environments without direct internet connectivity. Strong engineering background with deep understanding of IaC (Terraform, Deployment Manager), automation, and CI/CD pipelines. Expertise in networking, IAM, containerisation (GKE/Kubernetes), and secure systems design. Confident working within highly regulated or classified environments where reliability and compliance are paramount. Strong communicator - able to bridge technical and non-technical stakeholders effectively. Desirables Prior experience working on government classified systems or within secure data centre environments. Experience of configuring and using AI technologies within cloud environments, including GCP AI technologies. Familiarity with NCSC guidance, UK Government cloud policies, or cross-domain architectures. Knowledge of multi-cloud integrations, edge computing, and data sovereignty requirements. NB: The ideal applicant will hold a minimum of SC level vetting and be willing to undertake DV level vetting.
19/11/2025
Contractor
Summer-Browning Associates are currently supporting a Central Government client, who have a requirement for a Google Cloud Architect on an initial 12 month contract. What You'll Be Doing Designing and delivering secure, scalable, and resilient architectures in Google Cloud Platform (GCP) and Google Distributed Cloud (GDC) environments. Working within disconnected environments on data-severing solutions. Collaborating closely with engineering, DevOps, and security teams to ensure seamless integration from design through delivery. Implementing automation and Infrastructure as Code (IaC) for repeatable, auditable deployments. Providing technical leadership and mentorship, helping teams adopt best practice across cloud engineering and DevSecOps. Aligning designs with government security frameworks and enterprise architecture principles. Supporting ongoing system optimisation and capability development over the lifespan of the programme. What You'll Bring Proven hands-on experience as a Cloud Architect or Senior Cloud Engineer specialising in Google Cloud Platform. Practical knowledge of Google Distributed Cloud (GDC), Experience working in environments without direct internet connectivity. Strong engineering background with deep understanding of IaC (Terraform, Deployment Manager), automation, and CI/CD pipelines. Expertise in networking, IAM, containerisation (GKE/Kubernetes), and secure systems design. Confident working within highly regulated or classified environments where reliability and compliance are paramount. Strong communicator - able to bridge technical and non-technical stakeholders effectively. Desirables Prior experience working on government classified systems or within secure data centre environments. Experience of configuring and using AI technologies within cloud environments, including GCP AI technologies. Familiarity with NCSC guidance, UK Government cloud policies, or cross-domain architectures. Knowledge of multi-cloud integrations, edge computing, and data sovereignty requirements. NB: The ideal applicant will hold a minimum of SC level vetting and be willing to undertake DV level vetting.
YT Technologies are on the lookout for a skilled Software Engineer to help build cutting-edge DevSecOps software. Due to the nature of the work, only candidates eligible for eDV clearance will be considered Key Skills; High level experience with Java and additional languages such as Python Development experience in Linux environments Solid understanding of JUnit 5.x, unit testing, and mocking frameworks Confident using Git and working within Agile/SCRUM teams Experience mentoring junior developers Knowledge of Oracle/relational databases, MongoDB, and GitLab CI/CD Familiarity with Apache NiFi, JavaScript/TypeScript, and React Experience with Elasticsearch, Kibana, Hibernate, and the Atlassian suite (Bitbucket, Jira, Confluence) Desirable; Experience with JSF (PrimeFaces) Knowledge of AWS and cloud-ready developmen Exposure to microservices or serverless architecture Understanding of cloud migration challenges and maturing CI/CD pipeline Hands-on experience with AWS services such as EC2, EKS, Fargate, IAM, S3, Lambda Due to the nature of the work, only candidates eligible for eDV clearance will be considered If interested, and you match the above requirements, please apply with your most recent CV and I will be in touch to discuss further.
14/11/2025
Full time
YT Technologies are on the lookout for a skilled Software Engineer to help build cutting-edge DevSecOps software. Due to the nature of the work, only candidates eligible for eDV clearance will be considered Key Skills; High level experience with Java and additional languages such as Python Development experience in Linux environments Solid understanding of JUnit 5.x, unit testing, and mocking frameworks Confident using Git and working within Agile/SCRUM teams Experience mentoring junior developers Knowledge of Oracle/relational databases, MongoDB, and GitLab CI/CD Familiarity with Apache NiFi, JavaScript/TypeScript, and React Experience with Elasticsearch, Kibana, Hibernate, and the Atlassian suite (Bitbucket, Jira, Confluence) Desirable; Experience with JSF (PrimeFaces) Knowledge of AWS and cloud-ready developmen Exposure to microservices or serverless architecture Understanding of cloud migration challenges and maturing CI/CD pipeline Hands-on experience with AWS services such as EC2, EKS, Fargate, IAM, S3, Lambda Due to the nature of the work, only candidates eligible for eDV clearance will be considered If interested, and you match the above requirements, please apply with your most recent CV and I will be in touch to discuss further.
We are seeking a highly experienced and strategic senior leader to oversee our Cyber Engineering, Identity & Access Management (IAM), and Data Loss Prevention (DLP) functions. This role will be responsible for driving the design, delivery, and governance of enterprise-wide security engineering solutions, while ensuring secure, scalable, and resilient identity and data protection services. The ideal candidate will combine deep technical expertise with strong leadership skills to shape the future of cybersecurity, identity, and data protection within the organization. This position is designated as a Senior Management Function (SMF) under the Financial Conduct Authority regime, carrying personal accountability for compliance, operational resilience, and security effectiveness. The Role: Strategic Leadership Define and execute the global strategy for Cyber Engineering, IAM, and DLP in alignment with the enterprise security and technology roadmap. Serve as a trusted advisor to the CISO, CIO, and executive leadership on emerging threats, secure architecture, identity, and data protection. Establish metrics and reporting to demonstrate effectiveness, risk reduction, and compliance with regulatory requirements (e.g., National Institute of Standards Cyber Security Framework (NIST CSF), Digital Operations Resilience Act (DORA), New Tork State Department of Financial Services (NYDFS), Sarbanes-Oxyley (SOX), and the Financia Conduct Authority(FCA). Cyber Engineering Oversight Lead engineering teams responsible for core security platforms, including endpoint protection, cloud security, network defense, vulnerability management, and DevSecOps integrations. Build and mature a comprehensive vulnerability management program, including continuous scanning, risk-based prioritization, remediation tracking, and Board-level reporting. Drive innovation by embedding security into cloud, hybrid, and modern application architectures ("Secure by Design" principles). Ensure the adoption of automation, orchestration, and advanced analytics to improve detection, response, and resiliency. Identity & Access Management Own enterprise-wide IAM strategy, including workforce and customer identity, privileged access management (PAM), identity governance and administration (IGA), and multi-factor authentication (MFA). Lead initiatives to modernize and integrate IAM platforms to support cloud adoption, Zero Trust, and frictionless user experiences. Partner with business and technology leaders to enable secure digital transformation through robust identity services. Data Loss Prevention (DLP) Advance a comprehensive Data Loss Prevention program to safeguard sensitive information across endpoints, cloud, email, and collaboration platforms. Establish enterprise-wide policies and controls to prevent unauthorized data exfiltration, insider threats, and regulatory breaches. Implement monitoring, classification, and enforcement mechanisms that balance data protection with business enablement. Partner with business, compliance, and data governance teams to align DLP strategy with General Data Protection Regulation, Financial Conduct Authority, Prudential Regulation Authority, Sarbanes-Oxley, and other global data protection requirements. Provide executive and Board-level reporting on data protection risks, incidents, and mitigation efforts. Governance, Risk & Compliance Ensure IAM, DLP, and security engineering practices meet regulatory, audit, and policy requirements. Define and maintain standards for identity lifecycle, access controls, data handling, and information protection. Oversee risk assessments and remediation programs tied to IAM, DLP, and security engineering platforms. Senior Management Function (FCA Responsibilities) As an FCA-designated Senior Management Function (SMF) role, the position carries individual accountability under the Senior Managers & Certification Regime (SM&CR). Specific responsibilities include: Personal accountability for ensuring cyber, IAM, and DLP controls are effective, proportionate, and aligned with FCA expectations for operational resilience and financial sector stability. Maintaining robust governance, oversight, and risk management frameworks for engineering, identity, and data protection, ensuring risks are identified, escalated, and remediated in line with FCA and PRA requirements. Demonstrating reasonable steps have been taken to oversee outsourced arrangements, third-party providers, and cloud services related to IAM, DLP, and cyber platforms. Ensuring Board and regulators receive timely, accurate, and complete information on cyber, identity, and data protection risks, vulnerabilities, and remediation activities. Acting as the point of accountability for operational resilience in cyber engineering, IAM, and DLP, supporting FCA requirements around impact tolerance, scenario testing, and response planning. Requirements: Progressive experience in cybersecurity, with extensive experience in leadership roles across IAM, cyber engineering, and/or data protection. Proven track record of leading global security programs at scale in complex, regulated environments (financial services strongly preferred). Expertise in IAM technologies (SailPoint, Okta, Azure AD, CyberArk, Ping Identity), DLP platforms (Symantec, Microsoft Purview, Forcepoint, Digital Guardian), and security engineering tools (EDR, CSPM, SIEM, SOAR, vulnerability management). Strong knowledge of Zero Trust, data protection regulations (GDPR, FCA, PRA), cloud-native security, and DevSecOps practices. Exceptional leadership, communication, and stakeholder engagement skills, with the ability to influence at Board and executive levels. Relevant certifications (CISSP, CISM, CCSP, CIPP/E, SABSA, or equivalent) preferred. We're committed to equal employment opportunity and provide application, interview and workplace adjustments and accommodations to all applicants. If you foresee any barriers, from the application process through to joining WTW, please email your recruiter.
12/11/2025
Full time
We are seeking a highly experienced and strategic senior leader to oversee our Cyber Engineering, Identity & Access Management (IAM), and Data Loss Prevention (DLP) functions. This role will be responsible for driving the design, delivery, and governance of enterprise-wide security engineering solutions, while ensuring secure, scalable, and resilient identity and data protection services. The ideal candidate will combine deep technical expertise with strong leadership skills to shape the future of cybersecurity, identity, and data protection within the organization. This position is designated as a Senior Management Function (SMF) under the Financial Conduct Authority regime, carrying personal accountability for compliance, operational resilience, and security effectiveness. The Role: Strategic Leadership Define and execute the global strategy for Cyber Engineering, IAM, and DLP in alignment with the enterprise security and technology roadmap. Serve as a trusted advisor to the CISO, CIO, and executive leadership on emerging threats, secure architecture, identity, and data protection. Establish metrics and reporting to demonstrate effectiveness, risk reduction, and compliance with regulatory requirements (e.g., National Institute of Standards Cyber Security Framework (NIST CSF), Digital Operations Resilience Act (DORA), New Tork State Department of Financial Services (NYDFS), Sarbanes-Oxyley (SOX), and the Financia Conduct Authority(FCA). Cyber Engineering Oversight Lead engineering teams responsible for core security platforms, including endpoint protection, cloud security, network defense, vulnerability management, and DevSecOps integrations. Build and mature a comprehensive vulnerability management program, including continuous scanning, risk-based prioritization, remediation tracking, and Board-level reporting. Drive innovation by embedding security into cloud, hybrid, and modern application architectures ("Secure by Design" principles). Ensure the adoption of automation, orchestration, and advanced analytics to improve detection, response, and resiliency. Identity & Access Management Own enterprise-wide IAM strategy, including workforce and customer identity, privileged access management (PAM), identity governance and administration (IGA), and multi-factor authentication (MFA). Lead initiatives to modernize and integrate IAM platforms to support cloud adoption, Zero Trust, and frictionless user experiences. Partner with business and technology leaders to enable secure digital transformation through robust identity services. Data Loss Prevention (DLP) Advance a comprehensive Data Loss Prevention program to safeguard sensitive information across endpoints, cloud, email, and collaboration platforms. Establish enterprise-wide policies and controls to prevent unauthorized data exfiltration, insider threats, and regulatory breaches. Implement monitoring, classification, and enforcement mechanisms that balance data protection with business enablement. Partner with business, compliance, and data governance teams to align DLP strategy with General Data Protection Regulation, Financial Conduct Authority, Prudential Regulation Authority, Sarbanes-Oxley, and other global data protection requirements. Provide executive and Board-level reporting on data protection risks, incidents, and mitigation efforts. Governance, Risk & Compliance Ensure IAM, DLP, and security engineering practices meet regulatory, audit, and policy requirements. Define and maintain standards for identity lifecycle, access controls, data handling, and information protection. Oversee risk assessments and remediation programs tied to IAM, DLP, and security engineering platforms. Senior Management Function (FCA Responsibilities) As an FCA-designated Senior Management Function (SMF) role, the position carries individual accountability under the Senior Managers & Certification Regime (SM&CR). Specific responsibilities include: Personal accountability for ensuring cyber, IAM, and DLP controls are effective, proportionate, and aligned with FCA expectations for operational resilience and financial sector stability. Maintaining robust governance, oversight, and risk management frameworks for engineering, identity, and data protection, ensuring risks are identified, escalated, and remediated in line with FCA and PRA requirements. Demonstrating reasonable steps have been taken to oversee outsourced arrangements, third-party providers, and cloud services related to IAM, DLP, and cyber platforms. Ensuring Board and regulators receive timely, accurate, and complete information on cyber, identity, and data protection risks, vulnerabilities, and remediation activities. Acting as the point of accountability for operational resilience in cyber engineering, IAM, and DLP, supporting FCA requirements around impact tolerance, scenario testing, and response planning. Requirements: Progressive experience in cybersecurity, with extensive experience in leadership roles across IAM, cyber engineering, and/or data protection. Proven track record of leading global security programs at scale in complex, regulated environments (financial services strongly preferred). Expertise in IAM technologies (SailPoint, Okta, Azure AD, CyberArk, Ping Identity), DLP platforms (Symantec, Microsoft Purview, Forcepoint, Digital Guardian), and security engineering tools (EDR, CSPM, SIEM, SOAR, vulnerability management). Strong knowledge of Zero Trust, data protection regulations (GDPR, FCA, PRA), cloud-native security, and DevSecOps practices. Exceptional leadership, communication, and stakeholder engagement skills, with the ability to influence at Board and executive levels. Relevant certifications (CISSP, CISM, CCSP, CIPP/E, SABSA, or equivalent) preferred. We're committed to equal employment opportunity and provide application, interview and workplace adjustments and accommodations to all applicants. If you foresee any barriers, from the application process through to joining WTW, please email your recruiter.
CBSbutler Holdings Limited trading as CBSbutler
Reading, Oxfordshire
Technical Architects x 3 + Contracts initially to end March 26 - but extensions expected + SC Cleared role + Hybrid working from Berkshire + 80 to 100 per hour - Inside IR35 Key Skills: + System & Service Architecture + Architectural Frameworks - TOGAF, MODAF, etc Technical Architect - Defence Systems As a Technical Architect , you'll define, assure, and evolve secure, mission-critical architectures across complex defence programmes. You'll act as the technical design authority, ensuring interoperability, resilience, and compliance with MOD and security standards. Key Responsibilities Define and govern system and service architectures for C4ISR, mission systems, and secure communications solutions. Lead architecture design, decomposition, and interface definition , ensuring traceability from requirements through to delivery. Apply and adapt architecture frameworks (MODAF, NAF, TOGAF) and secure-by-design principles . Conduct technical reviews and trade studies , balancing capability, risk, and through-life cost. Support bids, solution development, and stakeholder engagement at senior technical forums. Provide technical assurance and mentor engineers in architecture best practice and model-based design. What You'll Bring Proven experience in defence or mission system architecture , ideally spanning multiple domains (sensors, comms, data, or platform integration). Strong understanding of secure systems design , information assurance , and Defence Digital / JSP standards . Hands-on familiarity with cloud, networking, and cross-domain architectures . Experience applying Agile or SAFe methods within highly regulated environments. Excellent communication and influencing skills, with the ability to engage MOD and industry stakeholders. Desirable Certifications: TOGAF, ArchiMate, CISSP, AWS/Azure . Experience with DevSecOps , Infrastructure-as-Code , or automation in secure environments. Knowledge of Def Stan 00-055/056 , JSP 604 , or similar defence standards. Experience contributing to technology roadmaps and enterprise architecture strategies.
12/11/2025
Contractor
Technical Architects x 3 + Contracts initially to end March 26 - but extensions expected + SC Cleared role + Hybrid working from Berkshire + 80 to 100 per hour - Inside IR35 Key Skills: + System & Service Architecture + Architectural Frameworks - TOGAF, MODAF, etc Technical Architect - Defence Systems As a Technical Architect , you'll define, assure, and evolve secure, mission-critical architectures across complex defence programmes. You'll act as the technical design authority, ensuring interoperability, resilience, and compliance with MOD and security standards. Key Responsibilities Define and govern system and service architectures for C4ISR, mission systems, and secure communications solutions. Lead architecture design, decomposition, and interface definition , ensuring traceability from requirements through to delivery. Apply and adapt architecture frameworks (MODAF, NAF, TOGAF) and secure-by-design principles . Conduct technical reviews and trade studies , balancing capability, risk, and through-life cost. Support bids, solution development, and stakeholder engagement at senior technical forums. Provide technical assurance and mentor engineers in architecture best practice and model-based design. What You'll Bring Proven experience in defence or mission system architecture , ideally spanning multiple domains (sensors, comms, data, or platform integration). Strong understanding of secure systems design , information assurance , and Defence Digital / JSP standards . Hands-on familiarity with cloud, networking, and cross-domain architectures . Experience applying Agile or SAFe methods within highly regulated environments. Excellent communication and influencing skills, with the ability to engage MOD and industry stakeholders. Desirable Certifications: TOGAF, ArchiMate, CISSP, AWS/Azure . Experience with DevSecOps , Infrastructure-as-Code , or automation in secure environments. Knowledge of Def Stan 00-055/056 , JSP 604 , or similar defence standards. Experience contributing to technology roadmaps and enterprise architecture strategies.
CBSbutler Holdings Limited trading as CBSbutler
Reading, Oxfordshire
Senior Infrastructure Engineer x3 months+ +SC cleared role +Inside IR35 + 550 - 625 a day % on site in Reading Skills: +SC clearance +Vmware +Automation +Networking +MOD experience We're looking for a Senior Infrastructure Engineer to take a leading role in the design, implementation, and support of secure, high-performance platforms across on-premise, hybrid, and cloud environments. Acting as a technical authority in one or more key domains, you'll help shape the delivery of critical infrastructure solutions that underpin complex, mission-focused systems. What You'll Do Act as the technical authority for one or more platform engineering domains (cloud, virtualisation, automation, networking, or cyber tooling). Design and implement secure platforms across on-premise, hybrid, and cloud environments. Capture and interpret complex customer requirements to drive architecture and system design. Produce high- and low-level designs, aligned with secure-by-design and engineering best practices. Lead technical delivery within work packages, including planning, estimation, and progress reporting. Mentor and develop engineers, building technical capability and fostering a culture of excellence. Contribute to technology strategy, feasibility studies, and innovation initiatives. Engage confidently with stakeholders, presenting technical solutions and influencing decisions. What You'll Bring Proven technical expertise across multiple infrastructure domains, with a track record of delivering secure solutions. Strong balance between hands-on engineering and technical leadership. A problem-solving mindset and the ability to innovate under pressure. Experience with: Windows and Linux operating systems Virtualisation platforms (VMware, Hyper-V) and containerisation (Kubernetes, Docker) Networking (TCP/IP, DNS, DHCP, firewalls) Automation and scripting (PowerShell, Bash, Python, Ansible, Terraform) Cyber security controls and accreditation processes Systems engineering lifecycle from design to deployment Desirable Skills Experience with cloud platforms (AWS, Azure) and Infrastructure as Code (CloudFormation, Terraform) Integration of enterprise services such as Active Directory, PKI, SIEM, and monitoring tools Hands-on with DevSecOps tools and CI/CD pipelines Relevant industry certifications (VMware VCP, AWS Solutions Architect, Microsoft, Kubernetes, etc.) Experience presenting at technical boards or industry forums If you'd like to discuss this role in more detail, please send your updated CV to (url removed) and I will get in touch.
11/11/2025
Contractor
Senior Infrastructure Engineer x3 months+ +SC cleared role +Inside IR35 + 550 - 625 a day % on site in Reading Skills: +SC clearance +Vmware +Automation +Networking +MOD experience We're looking for a Senior Infrastructure Engineer to take a leading role in the design, implementation, and support of secure, high-performance platforms across on-premise, hybrid, and cloud environments. Acting as a technical authority in one or more key domains, you'll help shape the delivery of critical infrastructure solutions that underpin complex, mission-focused systems. What You'll Do Act as the technical authority for one or more platform engineering domains (cloud, virtualisation, automation, networking, or cyber tooling). Design and implement secure platforms across on-premise, hybrid, and cloud environments. Capture and interpret complex customer requirements to drive architecture and system design. Produce high- and low-level designs, aligned with secure-by-design and engineering best practices. Lead technical delivery within work packages, including planning, estimation, and progress reporting. Mentor and develop engineers, building technical capability and fostering a culture of excellence. Contribute to technology strategy, feasibility studies, and innovation initiatives. Engage confidently with stakeholders, presenting technical solutions and influencing decisions. What You'll Bring Proven technical expertise across multiple infrastructure domains, with a track record of delivering secure solutions. Strong balance between hands-on engineering and technical leadership. A problem-solving mindset and the ability to innovate under pressure. Experience with: Windows and Linux operating systems Virtualisation platforms (VMware, Hyper-V) and containerisation (Kubernetes, Docker) Networking (TCP/IP, DNS, DHCP, firewalls) Automation and scripting (PowerShell, Bash, Python, Ansible, Terraform) Cyber security controls and accreditation processes Systems engineering lifecycle from design to deployment Desirable Skills Experience with cloud platforms (AWS, Azure) and Infrastructure as Code (CloudFormation, Terraform) Integration of enterprise services such as Active Directory, PKI, SIEM, and monitoring tools Hands-on with DevSecOps tools and CI/CD pipelines Relevant industry certifications (VMware VCP, AWS Solutions Architect, Microsoft, Kubernetes, etc.) Experience presenting at technical boards or industry forums If you'd like to discuss this role in more detail, please send your updated CV to (url removed) and I will get in touch.
CBSbutler Holdings Limited trading as CBSbutler
Reading, Oxfordshire
Technical Architect months + % on site in Reading +Inside IR35 + 650 - 750 a day +SC cleared role Skills: +SC clearance +MOD experience +TOGAF We're looking for a Technical Architect to take the lead in defining, developing, and guiding the delivery of complex, secure systems and services. You'll act as a trusted technical authority-balancing customer needs, architectural principles, and security standards to deliver cutting-edge solutions. What You'll Do Serve as the technical authority across systems and services, ensuring robust, secure, and scalable solutions. Define and evolve architectures aligned with business objectives and secure-by-design principles. Contribute to strategic roadmaps, spotting opportunities for innovation and technology insertion. Lead technical reviews, trade-off analyses, and risk assessments for critical design decisions. Mentor and coach architects and engineers, raising technical capability across teams. Represent the organisation at senior customer forums, technical boards, and industry events. Support business development, contributing to technical designs, bids, and proposals. Champion best practice, reuse, and model-based design approaches within the architecture community. What You'll Bring Proven experience in system and service architecture (infrastructure, applications, data, networking, or cloud). Strong understanding of secure system design principles and cyber security standards. Familiarity with architecture frameworks such as TOGAF, MODAF, or NAF. Experience delivering within Agile or SAFe environments. The ability to influence strategy, guide technical direction, and mentor others. Excellent communication skills with confidence engaging senior stakeholders. Desirable Industry certifications (TOGAF, ArchiMate) or vendor certifications (AWS, Azure, Cisco, VMware). Experience contributing to enterprise technology roadmaps and modernisation initiatives. Exposure to DevSecOps, cloud-native, or automation approaches. Experience in service design and operational transformation. Confident presenting at technical boards or industry conferences. If you'd like to discuss this Technical Architect role in more detail, please send your updated CV to (url removed) and I will get in touch.
11/11/2025
Contractor
Technical Architect months + % on site in Reading +Inside IR35 + 650 - 750 a day +SC cleared role Skills: +SC clearance +MOD experience +TOGAF We're looking for a Technical Architect to take the lead in defining, developing, and guiding the delivery of complex, secure systems and services. You'll act as a trusted technical authority-balancing customer needs, architectural principles, and security standards to deliver cutting-edge solutions. What You'll Do Serve as the technical authority across systems and services, ensuring robust, secure, and scalable solutions. Define and evolve architectures aligned with business objectives and secure-by-design principles. Contribute to strategic roadmaps, spotting opportunities for innovation and technology insertion. Lead technical reviews, trade-off analyses, and risk assessments for critical design decisions. Mentor and coach architects and engineers, raising technical capability across teams. Represent the organisation at senior customer forums, technical boards, and industry events. Support business development, contributing to technical designs, bids, and proposals. Champion best practice, reuse, and model-based design approaches within the architecture community. What You'll Bring Proven experience in system and service architecture (infrastructure, applications, data, networking, or cloud). Strong understanding of secure system design principles and cyber security standards. Familiarity with architecture frameworks such as TOGAF, MODAF, or NAF. Experience delivering within Agile or SAFe environments. The ability to influence strategy, guide technical direction, and mentor others. Excellent communication skills with confidence engaging senior stakeholders. Desirable Industry certifications (TOGAF, ArchiMate) or vendor certifications (AWS, Azure, Cisco, VMware). Experience contributing to enterprise technology roadmaps and modernisation initiatives. Exposure to DevSecOps, cloud-native, or automation approaches. Experience in service design and operational transformation. Confident presenting at technical boards or industry conferences. If you'd like to discuss this Technical Architect role in more detail, please send your updated CV to (url removed) and I will get in touch.
DevSecOps Engineer Permanent UK (Hybrid - a few times per month) Up to 84k We're partnering with a respected, forward-thinking professional services firm that's serious about embedding security into every corner of its digital transformation journey. This is a pivotal hire within their growing tech function - they're after a DevSecOps Engineer (or Lead Software Security Engineer) who can champion secure-by-design principles and help shape the future of their digital products. You'll be joining a business that genuinely backs its people. They've built a collaborative, agile culture where innovation is encouraged and development is a priority. If you're someone who thrives on moving security left, guiding engineering teams with clarity, and making a real impact - this is your kind of role. What you'll be doing: You'll lead the charge in shifting the culture towards DevSecOps across multiple product teams, embedding security from the ground up. That means defining and rolling out a product security strategy that aligns with business goals, working closely with developers to automate and streamline security testing, and supporting pen test activity with smart, secure remediation. You'll be the go-to expert on application and cloud security, keeping documentation, training, and processes sharp and relevant. You'll also be reporting on compliance and presenting updates to senior leadership - making sure security stays front and centre. What they're looking for: A solid background in both software development and security - you're comfortable with code and risk in equal measure Proven experience integrating security into agile environments Strong working knowledge of Azure PaaS and Azure DevOps (CI/CD) Familiarity with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage with engineers and execs alike This is a visible, high-impact role at a business that sees IT as central to its future. There's room to grow, space to innovate, and genuine support from leadership. Whether it's training, mentoring, or flexible hybrid working, they'll give you the tools and trust to bring your best self. The role pays up to 84k and requires occasional travel to their London office (a few times per month). They're keen to move quickly - if this sounds like your next move, send your CV in for immediate consideration. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
27/10/2025
Full time
DevSecOps Engineer Permanent UK (Hybrid - a few times per month) Up to 84k We're partnering with a respected, forward-thinking professional services firm that's serious about embedding security into every corner of its digital transformation journey. This is a pivotal hire within their growing tech function - they're after a DevSecOps Engineer (or Lead Software Security Engineer) who can champion secure-by-design principles and help shape the future of their digital products. You'll be joining a business that genuinely backs its people. They've built a collaborative, agile culture where innovation is encouraged and development is a priority. If you're someone who thrives on moving security left, guiding engineering teams with clarity, and making a real impact - this is your kind of role. What you'll be doing: You'll lead the charge in shifting the culture towards DevSecOps across multiple product teams, embedding security from the ground up. That means defining and rolling out a product security strategy that aligns with business goals, working closely with developers to automate and streamline security testing, and supporting pen test activity with smart, secure remediation. You'll be the go-to expert on application and cloud security, keeping documentation, training, and processes sharp and relevant. You'll also be reporting on compliance and presenting updates to senior leadership - making sure security stays front and centre. What they're looking for: A solid background in both software development and security - you're comfortable with code and risk in equal measure Proven experience integrating security into agile environments Strong working knowledge of Azure PaaS and Azure DevOps (CI/CD) Familiarity with scripting languages like PowerShell, YAML, JSON Hands-on with application security tools and DevSecOps processes Understanding of frameworks and standards like OWASP, NIST SSDF, ISO27001, NCSC Experience with threat modelling, risk assessments, and secure design reviews Confident owning security strategy and tooling across complex product landscapes A strong communicator - able to engage with engineers and execs alike This is a visible, high-impact role at a business that sees IT as central to its future. There's room to grow, space to innovate, and genuine support from leadership. Whether it's training, mentoring, or flexible hybrid working, they'll give you the tools and trust to bring your best self. The role pays up to 84k and requires occasional travel to their London office (a few times per month). They're keen to move quickly - if this sounds like your next move, send your CV in for immediate consideration. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
Senior IDAM Engineer Must have current SC Clearance Location: Central London (Hybrid working) Contract: 6 months. Excellent day rate + outside IR35 We are seeking a Senior Identity & Access Management (IDAM/IAM) Engineer, experienced with Azure AD/Entra ID, ADFS, MFA, SSO and certificate based-authentication, to join a specialist End User Compute IT services provider, modernising secure digital workplaces for high-profile UK Central Government departments. Key Responsibilities Lead the design and implementation of IDAM solutions across hybrid and cloud environments Ensure authentication and authorisation frameworks are in place & align to Zero Trust principles. Manage provisioning, role-based access, and life cycle management across diverse platforms. Integrate IDAM services with cloud SaaS, endpoint, and security tooling. Support project delivery, including migrations and onboarding of new systems. Provide 3rd line escalation support for complex IDAM incidents and issues. Produce clear technical documentation, standards, and runbooks to support BAU operations. Skills sought with IDAM technologies such as Azure AD/Entra ID, ADFS, MFA, SSO, and certificate-based authentication. Implementing and managing identity life cycle management solutions. RBAC, privileged access management, and conditional access. Familiarity with Zero Trust models and government security frameworks (NCSC, ISO 27001). Scripting and automation (PowerShell, API integrations) for identity workflows. Supporting large-scale enterprise or government identity environments. Ability to work with cross-functional teams and communicate effectively with technical and non-technical stakeholders. Desirable skills : Okta, SailPoint, or similar enterprise IDAM tools; knowledge of DevSecOps integration; relevant certifications (Microsoft, CISSP, CISM). Please note current SC clearance is an essential requirement for this role. Apply now to progress!
07/10/2025
Contractor
Senior IDAM Engineer Must have current SC Clearance Location: Central London (Hybrid working) Contract: 6 months. Excellent day rate + outside IR35 We are seeking a Senior Identity & Access Management (IDAM/IAM) Engineer, experienced with Azure AD/Entra ID, ADFS, MFA, SSO and certificate based-authentication, to join a specialist End User Compute IT services provider, modernising secure digital workplaces for high-profile UK Central Government departments. Key Responsibilities Lead the design and implementation of IDAM solutions across hybrid and cloud environments Ensure authentication and authorisation frameworks are in place & align to Zero Trust principles. Manage provisioning, role-based access, and life cycle management across diverse platforms. Integrate IDAM services with cloud SaaS, endpoint, and security tooling. Support project delivery, including migrations and onboarding of new systems. Provide 3rd line escalation support for complex IDAM incidents and issues. Produce clear technical documentation, standards, and runbooks to support BAU operations. Skills sought with IDAM technologies such as Azure AD/Entra ID, ADFS, MFA, SSO, and certificate-based authentication. Implementing and managing identity life cycle management solutions. RBAC, privileged access management, and conditional access. Familiarity with Zero Trust models and government security frameworks (NCSC, ISO 27001). Scripting and automation (PowerShell, API integrations) for identity workflows. Supporting large-scale enterprise or government identity environments. Ability to work with cross-functional teams and communicate effectively with technical and non-technical stakeholders. Desirable skills : Okta, SailPoint, or similar enterprise IDAM tools; knowledge of DevSecOps integration; relevant certifications (Microsoft, CISSP, CISM). Please note current SC clearance is an essential requirement for this role. Apply now to progress!
Global Leader in software supply chain for DevOps, DevSecOps, and MLOps is seeking a pre-sales focused Solutions Architect to work closely with strategic customers and prospects. This role is ideal for someone who thrives at the intersection of technology and business, and who enjoys driving impactful conversations with technical and executive stakeholders. This is a hybrid role based out of London, with three days per week in the office. Excellent + OTE + Bens + Stock Key skills for the Solutions Architect - DevOps Significant experience in technical pre-sales, solutions architecture, or similar roles Strong relationship-building skills with both technical users and senior stakeholders in enterprise environments Practical knowledge and hands-on experience with Docker, Kubernetes, CI/CD pipelines, Git workflows, and build tools Familiarity with application security tools such as SCA, SAST, SBOM management, and container security Ability to build and manage modern software pipelines using diverse DevOps tooling Solid hands-on experience with major cloud platforms (AWS, Azure, GCP) - mandatory Background in software development is a significant advantage K ey responsibilities for the Solutions Architect DevOps - include Engage with customers to ensure their success in their DevOps and DevSecOps journey leveraging the software supply chain Platform Support Sales motion and significantly contribute to the customer journey to build technical wins and championship Train our customers, prospects and community about product offering and solutions Represent the company in events and conferences Influence the features and roadmap of products based on customer needs Stay current with the latest technology trends related to the DevOps and DevSecOps landscape Join a company trusted by thousands of enterprise customers software engineering teams to deliver secure continuous updates, and is used by the majority of the Fortune 100, and help shape the future of secure and efficient software delivery. Opus Resourcing acts as an employment agency with respect to permanent employment. Skills: CI/CD, AZURE, GIT, DEVOPS, DOCKER, KUBERNETES, AWS,presales,Security,cloud platforms,Application Security,SAST,Sales Engineering,Technical Sales Consulting,Pre-Sales Technical Consulting
06/10/2025
Full time
Global Leader in software supply chain for DevOps, DevSecOps, and MLOps is seeking a pre-sales focused Solutions Architect to work closely with strategic customers and prospects. This role is ideal for someone who thrives at the intersection of technology and business, and who enjoys driving impactful conversations with technical and executive stakeholders. This is a hybrid role based out of London, with three days per week in the office. Excellent + OTE + Bens + Stock Key skills for the Solutions Architect - DevOps Significant experience in technical pre-sales, solutions architecture, or similar roles Strong relationship-building skills with both technical users and senior stakeholders in enterprise environments Practical knowledge and hands-on experience with Docker, Kubernetes, CI/CD pipelines, Git workflows, and build tools Familiarity with application security tools such as SCA, SAST, SBOM management, and container security Ability to build and manage modern software pipelines using diverse DevOps tooling Solid hands-on experience with major cloud platforms (AWS, Azure, GCP) - mandatory Background in software development is a significant advantage K ey responsibilities for the Solutions Architect DevOps - include Engage with customers to ensure their success in their DevOps and DevSecOps journey leveraging the software supply chain Platform Support Sales motion and significantly contribute to the customer journey to build technical wins and championship Train our customers, prospects and community about product offering and solutions Represent the company in events and conferences Influence the features and roadmap of products based on customer needs Stay current with the latest technology trends related to the DevOps and DevSecOps landscape Join a company trusted by thousands of enterprise customers software engineering teams to deliver secure continuous updates, and is used by the majority of the Fortune 100, and help shape the future of secure and efficient software delivery. Opus Resourcing acts as an employment agency with respect to permanent employment. Skills: CI/CD, AZURE, GIT, DEVOPS, DOCKER, KUBERNETES, AWS,presales,Security,cloud platforms,Application Security,SAST,Sales Engineering,Technical Sales Consulting,Pre-Sales Technical Consulting
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
06/10/2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
06/10/2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Join us as a Senior Security Engineer for CIAM at Barclays, where you will bring to life a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Experience across configuration and integration with Hardware Security Module (HSM) and AWS Secrets Manager (ASM) tooling, certificate lifecycle management, e.g. rotation, revocation, and in automating security workflows Experience using GitLab CI/CD pipelines, AWS CLI or Chef. Strong experience with Cloud Security expertise across the following areas: AWS security controls, policies and automation, CLI tools, role based and attribute-based access controls, cryptographic protocols and secure key lifecycle management, advanced threat modelling, SOC operations, securing microservices and APIs, DevSecOps best practices, vulnerability scanning, tools, approaches, vulnerability patching and vendor management for security Strong experience in penetration testing and hands-on coding in at least one of the following: JavaScript, Java, Python. Some other highly desirable skills include: Experience in hands-on configuration, deployment and operation of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS) with embedded security gates, HTTP header signing, access token and data at rest encryption, PKI based self-sovereign identity, or open source You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To develop, implement and maintain solutions that support the safeguarding of the banks systems and sensitive information. Accountabilities Provision of subject matter expertise on security systems and engineering patterns. Development and implementation of protocols, algorithms, and software applications to protect sensitive data and systems. Management and protection of secrets, ensuring that they are securely generated, stored, and used. Execution of audits to monitor, identify and assess vulnerabilities in the banks infrastructure/software and support the response to potential security breaches. Identification of advancements in to support the innovation and adoption of new cryptographic technologies and techniques. Collaboration across the bank, including developers and security teams, to ensure that cryptographic solutions align with business objectives, security policies and regulatory requirements. Development/ Implementation and maintenance of Identity and Access Management solutions and systems. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
03/10/2025
Full time
Join us as a Senior Security Engineer for CIAM at Barclays, where you will bring to life a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Experience across configuration and integration with Hardware Security Module (HSM) and AWS Secrets Manager (ASM) tooling, certificate lifecycle management, e.g. rotation, revocation, and in automating security workflows Experience using GitLab CI/CD pipelines, AWS CLI or Chef. Strong experience with Cloud Security expertise across the following areas: AWS security controls, policies and automation, CLI tools, role based and attribute-based access controls, cryptographic protocols and secure key lifecycle management, advanced threat modelling, SOC operations, securing microservices and APIs, DevSecOps best practices, vulnerability scanning, tools, approaches, vulnerability patching and vendor management for security Strong experience in penetration testing and hands-on coding in at least one of the following: JavaScript, Java, Python. Some other highly desirable skills include: Experience in hands-on configuration, deployment and operation of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS) with embedded security gates, HTTP header signing, access token and data at rest encryption, PKI based self-sovereign identity, or open source You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To develop, implement and maintain solutions that support the safeguarding of the banks systems and sensitive information. Accountabilities Provision of subject matter expertise on security systems and engineering patterns. Development and implementation of protocols, algorithms, and software applications to protect sensitive data and systems. Management and protection of secrets, ensuring that they are securely generated, stored, and used. Execution of audits to monitor, identify and assess vulnerabilities in the banks infrastructure/software and support the response to potential security breaches. Identification of advancements in to support the innovation and adoption of new cryptographic technologies and techniques. Collaboration across the bank, including developers and security teams, to ensure that cryptographic solutions align with business objectives, security policies and regulatory requirements. Development/ Implementation and maintenance of Identity and Access Management solutions and systems. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
Join us as a Principal Engineer for CIAM at Barclays, where you will support the acceleration of a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Strong hands-on experience in the configuration, deployment and running of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS), including designing and implementing cloud-based, scalable and resilient IAM solutions for large corporate organisations. Experience with IAM engineering experience across authentication, authorisation, single sign-on, multi-factor authentication, identity lifecycle management, OAuth2.0, OpenID Connect, SAML and policy management Expertise with JavaScript, Java, Python, and must be comfortable with API and microservices development. Strong working knowledge of Site Reliability Engineering principles Experience with Cloud computing (AWS is essential, Azure is a plus) Some other highly desirable skills include: Experience in DevSecOps - knowledge of Product Operating Model Knowledge of Infrastructure as a Code tooling (Chef is essential, Ansible is a plus), containerization knowledge of authentication and biometric system design is highly desired. Open-source experience You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To drive technical excellence and innovation by leading the design and implementation of robust software solutions, providing mentorship to engineering teams, fostering cross-functional collaboration, and contributing to strategic planning to ensure the delivery of high-quality solutions aligned with business objectives. Accountabilities Provision of guidance and expertise to engineering teams to ensure alignment with best practices and foster a culture of technical excellence. Contribution to strategic planning by aligning technical decisions with business goals, anticipating future technology trends, and providing insights to optimize product roadmaps. Design and implementation of complex, scalable, and maintainable software solutions, considering long-term viability and business objectives. Mentoring and coaching to junior and mid-level engineers to foster professional growth and knowledge sharing, elevating the overall skillset and capabilities of the organization. Collaboration with business partners, product managers, designers, and other stakeholders to translate business requirements into technical solutions and ensure a cohesive approach to product development. Innovation within the organization by identifying and incorporating new technologies, methodologies, and industry practices into the engineering process. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
03/10/2025
Full time
Join us as a Principal Engineer for CIAM at Barclays, where you will support the acceleration of a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Strong hands-on experience in the configuration, deployment and running of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS), including designing and implementing cloud-based, scalable and resilient IAM solutions for large corporate organisations. Experience with IAM engineering experience across authentication, authorisation, single sign-on, multi-factor authentication, identity lifecycle management, OAuth2.0, OpenID Connect, SAML and policy management Expertise with JavaScript, Java, Python, and must be comfortable with API and microservices development. Strong working knowledge of Site Reliability Engineering principles Experience with Cloud computing (AWS is essential, Azure is a plus) Some other highly desirable skills include: Experience in DevSecOps - knowledge of Product Operating Model Knowledge of Infrastructure as a Code tooling (Chef is essential, Ansible is a plus), containerization knowledge of authentication and biometric system design is highly desired. Open-source experience You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To drive technical excellence and innovation by leading the design and implementation of robust software solutions, providing mentorship to engineering teams, fostering cross-functional collaboration, and contributing to strategic planning to ensure the delivery of high-quality solutions aligned with business objectives. Accountabilities Provision of guidance and expertise to engineering teams to ensure alignment with best practices and foster a culture of technical excellence. Contribution to strategic planning by aligning technical decisions with business goals, anticipating future technology trends, and providing insights to optimize product roadmaps. Design and implementation of complex, scalable, and maintainable software solutions, considering long-term viability and business objectives. Mentoring and coaching to junior and mid-level engineers to foster professional growth and knowledge sharing, elevating the overall skillset and capabilities of the organization. Collaboration with business partners, product managers, designers, and other stakeholders to translate business requirements into technical solutions and ensure a cohesive approach to product development. Innovation within the organization by identifying and incorporating new technologies, methodologies, and industry practices into the engineering process. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
Sr. Solutions Engineer New Logos Solutions Engineer UNITED KINGDOM Sr. Solutions Engineer New Logos - LONDON - UNITED KINGDOM Salary: £160,000 - £180,000 OTE, 80/20 split Location: London, UK, Hybrid role, 3 days in office Job Description: Thousands of customers, including the majority of the Fortune 100, trust us to manage, accelerate, and secure their software delivery from code to production.We are looking for a Senior Solutions Engineer to be on the front lines, working closely with our customers and prospects, guiding them on how to build robust DevSecOps processes. You will work with our sales, product, customer success & engineering teams to help customers understand the value of our Solution from a technical and business perspective. Responsibilities: Collaborate with account executives to understand Customer requirements and develop customized technical solutions. Translate business objectives into technical requirements and solution designs. Conduct discovery sessions, technical presentations, and product demonstrations for prospective customers. Conduct compelling Proof of Values (POVs), and product demonstrations to showcase the value and impact of our solutions. Support transition from pre-sales to post-sales, ensuring continuity and alignment of expectations. Respond to RFPs, RFIs, and technical questionnaires. Represent the company at industry events and conferences, highlighting the transformative potential of our products. Influence the product roadmap by communicating customer feedback and identifying trends in the DevOps and DevSecOps landscape. Stay ahead of industry trends, continuously enhancing your knowledge of emerging technologies in DevOps, cloud infrastructure, and software development. Requirements: 7+ years of experience in technical sales, presales, or sales engineering roles (experience withMEDDPICC is a plus). Fluency in English is required, with the ability to conduct business conversations and technical discussions. Proven expertise in DevOps tools and methodologies, including Docker, Kubernetes, CI servers,Git, Artifactory, and build tools. Strong experience building software pipelines using diverse DevOps tools. Hands-on experience with Linux and cloud platforms (AWS, Azure, or GCP) - mandatory. Familiarity with software architecture design, scalable product development, and on-premise/cloud hybrid environments. Experience delivering POVs and technical demonstrations to diverse stakeholders, fromtechnical teams to business leaders. A customer-centric mindset with a "can-do" attitude and a passion for learning and solvingcomplex problems. Exceptional communication and presentation skills, capable of translating technical conceptsinto business value for varied audiences. IND123
03/10/2025
Full time
Sr. Solutions Engineer New Logos Solutions Engineer UNITED KINGDOM Sr. Solutions Engineer New Logos - LONDON - UNITED KINGDOM Salary: £160,000 - £180,000 OTE, 80/20 split Location: London, UK, Hybrid role, 3 days in office Job Description: Thousands of customers, including the majority of the Fortune 100, trust us to manage, accelerate, and secure their software delivery from code to production.We are looking for a Senior Solutions Engineer to be on the front lines, working closely with our customers and prospects, guiding them on how to build robust DevSecOps processes. You will work with our sales, product, customer success & engineering teams to help customers understand the value of our Solution from a technical and business perspective. Responsibilities: Collaborate with account executives to understand Customer requirements and develop customized technical solutions. Translate business objectives into technical requirements and solution designs. Conduct discovery sessions, technical presentations, and product demonstrations for prospective customers. Conduct compelling Proof of Values (POVs), and product demonstrations to showcase the value and impact of our solutions. Support transition from pre-sales to post-sales, ensuring continuity and alignment of expectations. Respond to RFPs, RFIs, and technical questionnaires. Represent the company at industry events and conferences, highlighting the transformative potential of our products. Influence the product roadmap by communicating customer feedback and identifying trends in the DevOps and DevSecOps landscape. Stay ahead of industry trends, continuously enhancing your knowledge of emerging technologies in DevOps, cloud infrastructure, and software development. Requirements: 7+ years of experience in technical sales, presales, or sales engineering roles (experience withMEDDPICC is a plus). Fluency in English is required, with the ability to conduct business conversations and technical discussions. Proven expertise in DevOps tools and methodologies, including Docker, Kubernetes, CI servers,Git, Artifactory, and build tools. Strong experience building software pipelines using diverse DevOps tools. Hands-on experience with Linux and cloud platforms (AWS, Azure, or GCP) - mandatory. Familiarity with software architecture design, scalable product development, and on-premise/cloud hybrid environments. Experience delivering POVs and technical demonstrations to diverse stakeholders, fromtechnical teams to business leaders. A customer-centric mindset with a "can-do" attitude and a passion for learning and solvingcomplex problems. Exceptional communication and presentation skills, capable of translating technical conceptsinto business value for varied audiences. IND123
Hays Specialist Recruitment Limited
West Drayton, Middlesex
Contract duration - 6 months Location - Waterside - UB7 0GB Hybrid - 1 day per week from office and rest days from homeOur client has a varied and complex digital landscape. The DevSecOps specialist will report to DevSecOps manager in the Cyber Architecture team. Working closely with the Cyber team as well as the digital team to ensure cybersecurity is embedded across all digital platforms. Key skills & Responsibility Lead the integration of security into the software development lifecycle (SDLC) using DevSecOps principles. Define and implement release strategies with a strong emphasis on application security. Identify and remediate security vulnerabilities through detailed code reviews and automated tooling. Collaborate with cross-functional teams to establish secure coding standards and quality benchmarks. Provide expert consultancy and guidance to engineering teams, enabling them to meet strategic security goals. Drive adoption of security best practices across CI/CD pipelines and cloud-native environments. Accountabilities Provide technical cyber leadership across all development teams, focusing on application security for our various digital platforms (web and mobile). Secure our CI/CD pipelines and provide improvement plans and requirements to those that use them, while overseeing the consistent adoption of secure practices across teams. Support the vulnerability management process, raising awareness and embedding secure development principles with development teams. Evaluate, implement, support and communicate new tools and features to improve our security posture whilst supporting, consulting, and measuring the progression of adoption across our platform and development teams. Establish security testing approaches and tools to support iterative agile delivery, ensuring alignment with organisational objectives and secure development practices. Lead cyber digital reviews to promote consistency, quality, and alignment to cyber principles and patterns. Effectively communicate, reason, and influence stakeholders across business tech to promote the understanding of cyber digital security and embed it throughout design and delivery. Actively participate in and contribute to the client's cybersecurity guilds, driving innovation and alignment in digital security approaches. Support the client's Cyber Delivery Assurance Team and the wider business Cyber Team by acting as a subject-matter expert on all things digital security. Support the client's Cyber Change Team by assisting in change reviews. Required Skills & Experience: Proven experience in application security within a DevSecOps framework. Strong background in software engineering, with the ability to bridge development and security. Experience identifying security issues through code review. Recognised cybersecurity certifications or qualifications desirable. Deep technical expertise in security tools and methodologies, including: Static Application Security Testing (SAST) Dynamic Application Security Testing (DAST) Software Composition Analysis (SCA) Threat Modelling Demonstrated success in leading or advising teams on secure development practices. Senior-level experience with a solid understanding of cloud migration challenges and solutions. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Talent Solutions is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
03/10/2025
Full time
Contract duration - 6 months Location - Waterside - UB7 0GB Hybrid - 1 day per week from office and rest days from homeOur client has a varied and complex digital landscape. The DevSecOps specialist will report to DevSecOps manager in the Cyber Architecture team. Working closely with the Cyber team as well as the digital team to ensure cybersecurity is embedded across all digital platforms. Key skills & Responsibility Lead the integration of security into the software development lifecycle (SDLC) using DevSecOps principles. Define and implement release strategies with a strong emphasis on application security. Identify and remediate security vulnerabilities through detailed code reviews and automated tooling. Collaborate with cross-functional teams to establish secure coding standards and quality benchmarks. Provide expert consultancy and guidance to engineering teams, enabling them to meet strategic security goals. Drive adoption of security best practices across CI/CD pipelines and cloud-native environments. Accountabilities Provide technical cyber leadership across all development teams, focusing on application security for our various digital platforms (web and mobile). Secure our CI/CD pipelines and provide improvement plans and requirements to those that use them, while overseeing the consistent adoption of secure practices across teams. Support the vulnerability management process, raising awareness and embedding secure development principles with development teams. Evaluate, implement, support and communicate new tools and features to improve our security posture whilst supporting, consulting, and measuring the progression of adoption across our platform and development teams. Establish security testing approaches and tools to support iterative agile delivery, ensuring alignment with organisational objectives and secure development practices. Lead cyber digital reviews to promote consistency, quality, and alignment to cyber principles and patterns. Effectively communicate, reason, and influence stakeholders across business tech to promote the understanding of cyber digital security and embed it throughout design and delivery. Actively participate in and contribute to the client's cybersecurity guilds, driving innovation and alignment in digital security approaches. Support the client's Cyber Delivery Assurance Team and the wider business Cyber Team by acting as a subject-matter expert on all things digital security. Support the client's Cyber Change Team by assisting in change reviews. Required Skills & Experience: Proven experience in application security within a DevSecOps framework. Strong background in software engineering, with the ability to bridge development and security. Experience identifying security issues through code review. Recognised cybersecurity certifications or qualifications desirable. Deep technical expertise in security tools and methodologies, including: Static Application Security Testing (SAST) Dynamic Application Security Testing (DAST) Software Composition Analysis (SCA) Threat Modelling Demonstrated success in leading or advising teams on secure development practices. Senior-level experience with a solid understanding of cloud migration challenges and solutions. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Talent Solutions is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk
Technical Author (Contract) Rate: £425 - £460 all-in Duration: 6 months - Inside IR35 Location: 3 days onsite in Sheffield, Birmingham, or Edinburgh We are looking for a Technical Author to work alongside DevSecOps Engineers, translating technical findings into clear, concise documentation and presentations for senior security leadership. This role suits someone who thrives on bringing structure and clarity to complex information. Key Responsibilities Partner with DevSecOps Engineers to develop documentation, presentations, and reports. Translate highly technical concepts into clear, accessible content for both technical and non-technical audiences. Maintain and improve process documentation, technical manuals, and security reporting. Create professional, engaging presentations for senior stakeholders. Contribute to knowledge-sharing practices, ensuring accuracy and consistency across materials. Skills & Experience Proven background as a Technical Author/Writer in IT, DevOps, or cybersecurity. Proficient with Jira and Confluence (or similar documentation tools). Strong communication skills with the ability to simplify complex technical language. Experience developing presentations and structured documentation for senior leadership. Collaborative and detail-oriented, able to work closely with engineers and stakeholders.
03/10/2025
Contractor
Technical Author (Contract) Rate: £425 - £460 all-in Duration: 6 months - Inside IR35 Location: 3 days onsite in Sheffield, Birmingham, or Edinburgh We are looking for a Technical Author to work alongside DevSecOps Engineers, translating technical findings into clear, concise documentation and presentations for senior security leadership. This role suits someone who thrives on bringing structure and clarity to complex information. Key Responsibilities Partner with DevSecOps Engineers to develop documentation, presentations, and reports. Translate highly technical concepts into clear, accessible content for both technical and non-technical audiences. Maintain and improve process documentation, technical manuals, and security reporting. Create professional, engaging presentations for senior stakeholders. Contribute to knowledge-sharing practices, ensuring accuracy and consistency across materials. Skills & Experience Proven background as a Technical Author/Writer in IT, DevOps, or cybersecurity. Proficient with Jira and Confluence (or similar documentation tools). Strong communication skills with the ability to simplify complex technical language. Experience developing presentations and structured documentation for senior leadership. Collaborative and detail-oriented, able to work closely with engineers and stakeholders.
