357 jobs found

Cyber Security ArchitectApplylocations: UK - London ( St Botolph )time type: Full timeposted on: Posted Todayjob requisition id: 2026-548Job Title: Security ArchitectReporting to: International CISODirect Reports: N/APosition Type: Full TimeOverview: Why Tokio Marine HCC? Standing still is not an option in the current world of Insurance. TMHCC is one of the world's leading Specialty Insurers. With deep expertise in our chosen lines of business, our unparalleled track record and a solid balance sheet, TMHCC evaluates and manages risk like no one else in the industry. Looking beyond profit, empowering our people and delivering on our commitments are at the core of our customer values, along with a desire to grow and provide creative and innovative solutions to our clients.This role sits within: ITWe are the foundation for TMHCC's success - enabling the business to grow, compete, and innovate through technology, security, and solution design. From shaping strategy to delivering resilient operations, we ensure every capability is aligned to business value. Our inclusive and collaborative culture empowers everyone to explore ideas, solve meaningful challenges, and build fulfilling careers that make a real impact.Job Purpose:To define, lead, and evolve security architecture across the international business division of TMHCC, ensuring security is embedded by design across business and technology initiatives. As a senior member of the International Security team, you will provide strategic direction, establish security architectural standards, and work closely with architecture, engineering, infrastructure, and business teams to design secure, scalable solutions. Reporting to the International CISO, you will oversee the alignment of security controls with enterprise risk, regulatory requirements, and business objectives.Key Responsibilities: Define and maintain the enterprise security architecture framework, standards, and reference architectures aligned to industry best practices (e.g. NIST, SABSA, TOGAF). Provide architectural oversight and governance for major technology initiatives, ensuring security risks are identified, assessed, and mitigated early in the lifecycle. Lead the design and assurance of secure architectures across applications, cloud, infrastructure, and data platforms. Act as a trusted advisor to senior IT and Architecture leadership, translating business requirements into secure architectural solutions. Establish and enforce security design principles, patterns, and guardrails to support secure-by-design and DevSecOps practices. Drive the integration of security controls into enterprise platforms, including identity, network, cloud, and application ecosystems. Lead threat modelling and risk assessments for complex systems and emerging technologies in line with Enterprise Security architecture frameworks Collaborate with engineering, operations, and security teams to ensure consistent implementation of architectural standards and controls. Support regulatory compliance and audit activities by ensuring architectures align with internal policies and external requirements. Establish and maintain a robust, scalable security architecture that aligns with TMHCC's business strategy, risk appetite, and regulatory obligations. Provide effective architectural governance across programmes and projects, ensuring security risks are proactively identified and mitigated. Drive adoption of secure-by-design principles and architectural standards, improving consistency, resilience, and security maturity across the organisation.Skills and Experience Specification:Essential: Experience in cyber security, with significant experience in security architecture. Proven experience designing and implementing security architectures across cloud (AWS/Azure), applications, infrastructure, and data platforms. Experience applying security frameworks and standards (e.g. NIST CSF, CIS, SABSA, TOGAF). Deep understanding of identity and access management, network security, cloud security, and application security principles. Experience leading threat modelling, risk assessments, and security design reviews for complex systems in accordance with threat modelling frameworks (e.g. STRIDE). Ability to translate business and technical requirements into secure architectural designs and patterns. Strong stakeholder management skills, with experience influencing senior leadership and cross-functional teams. Experience establishing architectural governance, standards, and security design authority processes. Excellent communication skills, with the ability to articulate complex security concepts to both technical and non-technical audiences. Relevant certifications (e.g. CISSP, CCSP, or equivalent). Familiarity with Zero Trust architectures and modern security models.Desirable: Experience within financial services or regulated industries. Experience with applicable UK and EU regulation (e.g. DORA and GDPR) Experience with containerisation, Kubernetes, and microservices security. Knowledge of emerging technologies and security implications (e.g. AI/ML). General Architecture certifications (e.g. TOGAF) What We Offer The Tokio Marine HCC Group of Companies offers a competitive salary and employee benefit package. We are a successful, dynamic organization experiencing rapid growth and are seeking energetic and confident individuals to join our team of professionals.The Tokio Marine HCC Group of companies is an equal opportunity employer. Please visit for more information about our companies. success is our priority. In a world that is rapidly changing, TMHCC enables you to take on opportunities with confidence. At Tokio Marine HCC, we pride ourselves on hiring the smartest, most conscientious people, who want to make a difference no matter their background. And then we give them the support and trust they need. We're always looking for curious, creative transformative thinkers who want to change the status quo and have a passion for doing the right thing. If this is you, then we want you on our team.

Role - Senior Enterprise Architect Technology - Enterprise Architect/Segment lead Location - UK/Europe Business Unit - STG Compensation - Competitive (including bonus) Job Description AI-First Solutioning, Human + Agent Ways of Working & Large-Scale Modernisation Your role This is a senior strategic role within the Enterprise Strategic Architecture practice, focused on defining and delivering next-generation digital transformation programs for leading global organisations. The successful candidate will bring together deep technology expertise and strong business acumen to help clients navigate complex, large-scale modernisation initiatives. As AI becomes central to how enterprises transform, this role is expanding in scope: the architect must be equally comfortable designing cloud-native platforms, structuring human and agent collaborative workflows, and embedding AI-driven capabilities as first-class components of the overall solution. You will collaborate closely with sales and delivery teams across the full program lifecycle - from shaping solutions during presales through to governing technical quality in delivery. You will engage with CDOs, CTOs, and senior digital leaders at client organisations, contribute to industry thinking through published viewpoints and speaking engagements, and play an active role in identifying emerging technology opportunities that can be developed into compelling propositions for the market. Responsibilities Strategic Thinking - Candidate can articulate where AI agents replace human tasks vs. augment them in a $10M+ transformation context. Can draw a human+agent operating model for a business process - showing handoff logic, oversight points, and accountability chains. Understands that LLM inference is now a line item in program budgets and can estimate it at ROM level for a given use case volume. Design Depth - Has personally designed or reviewed an agentic system in production - e.g. a multi-step reasoning pipeline, an autonomous code review agent, or a RAG-powered enterprise knowledge layer. Can explain prompt architecture decisions (system prompt structuring, context compression strategies, few-shot vs. zero-shot tradeoffs) and how these affect both quality and cost. Understands model selection tradeoffs - when to use frontier models vs. fine-tuned smaller models vs. cached completions. Token Optimization Fluency - Has operationalised token efficiency at scale - structured prompt libraries, semantic caching, chunk sizing for RAG pipelines, output length controls, batching strategies. Can model cost-per-transaction for an AI-enabled workflow and present that as part of a business case. Understands how token spend interacts with context window limits across model families (GPT-4o, Claude, Gemini) and can make architecture trade-offs accordingly. Must Have Skills Agentic architecture design Multi-agent orchestration, tool-use design, human in-the-loop checkpoints, agent failure modes and recovery Human + agent workflow design Task decomposition across human and AI agents; escalation paths; accountability mapping in regulated environments Expertise in leveraging coding agents - GitHub Copilot, Claude, Devin.ai and similar - to accelerate software delivery within a structured, governed engineering lifecycle Design and governance of automated delivery pipelines using tools such as Harness, GitHub Actions, ArgoCD and Tekton; trunk-based development, progressive delivery and release automation Full-stack application development Architecture and delivery of modern full-stack applications; proficiency across frontend frameworks, API layers, backend services, and data tiers at enterprise scale Modern CI/CD & delivery pipelines Design and governance of automated delivery pipelines using tools such as Harness, GitHub Actions, ArgoCD and Tekton; trunk-based development, progressive delivery and release automation High-scalability integration Architecting event-driven and streaming integration at scale using Apache Kafka and Kafka Streams; asynchronous messaging patterns, schema registries, and real-time data pipelines across distributed systems NoSQL & enterprise data platforms Design of polyglot persistence architectures spanning NoSQL stores (MongoDB, Cassandra, DynamoDB), enterprise caching layers (Redis, Hazelcast, Memcached) and search platforms (Elasticsearch, OpenSearch) Hyperscaler resilience patterns Building highly available, fault-tolerant solutions on AWS, Azure and GCP - multi-region active/active, chaos engineering, SRE practices, availability zone failover, and disaster recovery at cloud scale Token economics & LLM costing Prompt compression, context window sizing, model tier selection, cost-per-transaction modelling at enterprise scale AI TCO & commercial modelling Inference cost projections, build-vs-buy for foundation models, ROI framing for AI-augmented delivery Digital transformation leadership AI-native program design spanning cloud, integration, agentic capability layers and responsible AI governance Enterprise integration patterns Streaming, API, event-driven and real-time patterns extending to RAG, vector stores, embedding services and LLM APIs as first-class integration nodes Chief Architect leadership Governing cross-domain architect teams while managing AI risk, hallucination mitigation and responsible AI policy at program level Multi-cloud architecture (15+ yrs) Hybrid IaaS/PaaS, multi-az/region, IaC automation first, DevSecOps, K8s orchestration Influencing & stakeholder leadership Builds and sustains networks across organisational boundaries through credibility and influence rather than authority; aligns diverse stakeholders - engineering, business, and executive - around a shared technology direction and drives teams to deliver outcomes in complex, matrixed environments CXO communication Articulates at the right level of abstraction and detail from developer to board level Preferred Should be excellent planner when it comes to perform release planning and other delivery planning. Should have excellent problem-solving skills Responsible for Coaching and mentoring team members BFSI/FS Domain exp Personal High analytical skills High customer orientation High quality awareness All aspects of employment at Infosys are based on merit, competence and performance. We are committed to embracing diversity and creating an inclusive environment for all employees. Infosys is proud to be an equal opportunity employer.

Senior Software Engineer (C# .NET)Applylocations: GB - Luton - Cap. Green 300time type: Full timeposted on: Posted Todayjob requisition id: R Job Description: Salary Range: £45,000 - £55,000 Leonardo UK operates a grade-based salary framework with broad bands. The salary range shown reflects the approved grade band for this role, or a narrower hiring range published within that band, and is benchmarked against the external market. Exceptions above the standard range are managed through governance controls to protect internal equity. Your Impact We are looking for talented Software Engineers with a solid foundation in C# .NET and a passion for learning and growing. If you are eager to develop your technical skills, leadership capabilities, and decision-making confidence, this role offers an excellent opportunity to advance your career. What You'll Bring Working within our Integrate Mission Solutions sector this role provides an opportunity to work on the latest defence technology within a mature development environment. Key skills and behaviours include: Hands on Experience : Around 4 years of practical experience in software engineering using C# .NET, delivering reliable solutions as part of a team. Technical Foundations: A good understanding of object-oriented design and familiarity with frameworks and tools such as WPF, WinForms, and Visual Studio. Exposure to microservices and containerisation is a plus. DevSecOps Awareness: Interest in automation across build, test, and deployment processes (CI/CD) and an understanding of Secure by Design principles. Lifecycle Knowledge: Experience with the software development lifecycle and Agile methodologies. Collaboration & Growth Mindset: Ability to work effectively in multi-disciplinary teams, share ideas, and learn from others. Continuous Improvement: Enthusiasm for adopting best practices and improving processes.This is not an exhaustive list, and we are keen to hear from you even if you might not have experience in all the above. The most important skill is a good attitude and willingness to learn. Security Clearance This role is subject to pre-employment screening in line with the UK Government's Baseline Personnel Security Standard (BPSS). An additional range of Personnel Security Controls referred to as National Security Vetting (NSV) may apply, this could include meeting the eligibility requirements for The Security Check (SC) or Developed Vetting (DV). For more information and guidance please visit: Why join us At Leonardo, our people are at the heart of everything we do. We offer a comprehensive, company-funded benefits package that supports your wellbeing, career development, and work-life balance. Whether you're looking to grow professionally, care for your health, or plan for the future, we're here to help you thrive. Time to Recharge: Enjoy generous leave with the opportunity to accrue up to 12 additional flexi-days each year. Secure your Future: Benefit from our award-winning pension scheme with up to 15% employer contribution. Your Wellbeing Matters: Free access to mental health support, financial advice, and employee-led networks championing inclusion and diversity (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity). Rewarding Performance : All employees at management level and below are eligible for our bonus scheme. Never Stop Learning : Free access to 4,000+ online courses via Coursera and LinkedIn Learning. Refer a friend: Receive a financial reward through our referral programme. Tailored Perks : Spend up to £500 annually on flexible benefits including private healthcare, dental, family cover, tech & lifestyle discounts, gym memberships and more. Flexible working: Flexible hours with hybrid working options. For part time opportunities, please talk to us about what might be possible for this role.For a full list of our company benefits please visit our website.Leonardo is a global leader in Aerospace, Defence, and Security. Headquartered in Italy, we employ over 53,000 people worldwide including 8,500 across 9 sites in the UK. Our employees are not just part of a team-they are key contributors to shaping innovation, advancing technology, and enhancing global safety.At Leonardo we are committed to building an inclusive, accessible, and welcoming workplace. We believe that a diverse workforce sparks creativity, drives innovation, and leads to better outcomes for our people and our customers. If you have any accessibility requirements to support you during the recruitment process, just let us know.Be part of something bigger - apply now! Primary Location: GB - Luton - Cap. Green 300 Contract Type: Permanent Hybrid Working: Hybrid

Senior Application/Product Security Engineer We're seeking a talented Senior Application/Product Security Engineer with hands on experience deploying, managing, and operating modern Vulnerability Management platforms. In this role, you'll work alongside technical product managers and engineers across the company to maintain Samsara's Vulnerability Management infrastructure and de risk software vulnerabilities to better protect our customers. You will be responsible for leading and owning the ongoing operation and maintenance of Samsara's vulnerability management program, ensuring consistent execution of processes, assisting in managing vulnerability scanning tools and refining detection capabilities, working closely with the Vulnerability Technical Program Manager to generate compliance reports, collaborating with engineering teams to track and support remediation of identified vulnerabilities, analyzing and triaging vulnerabilities, participating in security incident investigations related to high profile vulnerabilities, contributing to documentation and process improvements, championing Samsara's cultural principles, and being regularly on call to support the infrastructure. Responsibilities Lead and own ongoing operation and maintenance of Samsara's vulnerability management program, ensuring consistent execution of processes. Assist in managing vulnerability scanning tools and help refine detection capabilities to improve accuracy and reduce false positives. Work closely with the Vulnerability Technical Program Manager to generate and distribute monthly and quarterly compliance reports. Collaborate with engineering teams to track and support the remediation of identified vulnerabilities, providing guidance on best practices. Assist in analyzing and triaging vulnerabilities, escalating critical issues to senior security engineers or Security Operations as needed. Participate in security incident investigations related to high profile vulnerabilities, helping gather data and assess potential impact on Samsara infrastructure. Contribute to documentation and process improvements to streamline vulnerability management workflows. Champion Samsara's cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) in daily work. Qualifications 6+ years of relevant experience with demonstrated impact for security engineering and vulnerability management in an enterprise environment. Significant experience with vulnerability management tooling, in particular modern toolsets such as Wiz or Semgrep. Deep subject matter expertise with security engineering best practices for subjects such as CVSS, EPSS. Strong familiarity with common security vulnerabilities and the ability to judge their severity and impact on the business. Excellent development background with experience in Python or GoLang. Strong DevOps, DevSecOps, or SRE background with experience in AWS cloud services, and Terraform. Experience using security automation platforms such as Tines and serverless frameworks such as AWS Lambda. Deep understanding of Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), or Software Composition Analysis (SCA). An Ideal Candidate Also Has Practical experience managing vulnerabilities within a FedRAMP certified environment. Experience integrating vulnerability management into modern CI/CD pipelines with a "shift left" mentality. Benefits Our compensation program delivers above market total compensation through a combination of base salary, performance based bonus/variable pay, and equity in a high growth public company. In addition, we provide a flexible, employee led remote model, a professional development stipend, comprehensive health and parental leave plans, and other benefits designed to support long term success. Equal Employment Opportunity At Samsara, we welcome everyone regardless of their background. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, gender, gender identity, sexual orientation, protected veteran status, disability, age, and other characteristics protected by law. Equal Opportunity Statement Samsara is an inclusive work environment and is committed to ensuring equal opportunity in employment for qualified persons with disabilities.

Managing Engineer - Security (Hybrid)Applyremote type: Hybridlocations: Belfast 10 Mays Meadow: Der-Derry/Londonderrytime type: Full timeposted on: Posted Yesterdaytime left to apply: End Date: June 2, 2026 (5 days left to apply)job requisition id: R29646At Allstate, great things happen when our people work together to protect families and their belongings from life's uncertainties. And for more than 90 years, our innovative drive has kept us a step ahead of our customers' evolving needs. From advocating for seat belts, air bags and graduated driving laws, to being an industry leader in pricing sophistication, telematics, and, more recently, device and identity protection. Your role in the team Product Security Engineering designs, builds, and operates enterprise security controls as software products that integrate directly into the SDLC and core enterprise platforms. The organization applies modern engineering practices to create scalable, reliable, and developer friendly security capabilities that are embedded into the enterprise technology ecosystem and enable secure by default behaviors while minimizing friction for product and platform teams. The Managing Security Engineer is a hands on engineering leader responsible for leading a team that delivers and operates these security controls in production. This role blends deep technical leadership, people leadership, and delivery ownership: setting technical direction, guiding architecture and design decisions, coaching and developing engineers, and ensuring the team consistently ships high quality software that achieves measurable security and engineering outcomes. The Managing Security Engineer is accountable for the end to end success of the team's security products, including reliability, adoption, and operational health in production. Key Responsibilities Lead and manage an engineering team delivering security controls as software products, including hiring, onboarding, coaching, performance management, and career development Set technical direction for the team and drive high quality execution across design, implementation, deployment, and production support of security controls Serve as a hands on technical leader by contributing to architecture and design reviews, guiding technical decisions, performing code reviews, and supporting critical path implementation as needed Own operational outcomes for the team's products in production, including reliability, performance, and continuous improvement through feedback and learning loops Partner with Digital Product Managers, platform teams, and engineering stakeholders to effect alignment across roadmaps, priorities, and delivery plans spanning multiple product portfolios Build and sustain a strong engineering culture that emphasizes modern delivery practices (e.g., test driven development, paired programming, CI/CD), fast feedback, and continuous improvement Influence and innovate solutions to complex security challenges by translating security needs into scalable engineering approaches and reusable capabilities Facilitate effective agile execution (standups, planning, backlog refinement, retrospectives) while maintaining a strong focus on outcomes rather than ceremony Essential Skills: All applicants must demonstrate they have a legal right to work in the UK for employment at Allstate. Allstate is not providing sponsorship for this vacancy Minimum of 5 years of professional software engineering experience, including hands on production coding in modern languages (e.g., Java, JavaScript, Python) and ownership of production systems delivering measurable reliability, performance, or security outcomes A minimum of 2 years' experience leading engineers through hands on technical guidance, including architecture reviews, design decisions, and code reviews Proven background in building and operating scalable, distributed systems in cloud environments, including microservices based architectures Track record of designing, evolving, and integrating APIs and backend services, with attention to reliability, scalability, and security considerations Practical application of modern engineering practices such as test driven development, paired programming, CI/CD pipelines, and operational feedback loops including monitoring and observability Experience operating within agile delivery environments, partnering closely with Digital Product Managers and engineering stakeholders to deliver outcomes Desirable Skills Demonstrated depth in security engineering domains such as application security, cloud security, DevSecOps, or secure software development practices Practical experience designing or operating security controls embedded into CI/CD pipelines, developer workflows, or shared platform services Proven ability to influence technical decisions beyond the immediate team, driving adoption of secure patterns, standards, or reusable capabilities across product areas Experience mentoring senior engineers and emerging technical leaders, with a focus on raising engineering quality and long term team capability Strong organizational awareness and the ability to navigate cross team dependencies while maintaining delivery momentum and technical integrity Exposure to cloud native and containerized environments (e.g., Kubernetes, Docker, AWS and/or Azure) and the security considerations that accompany them Familiarity with security metrics and operational signals (e.g., control adoption, reliability, incident reduction) used to evaluate engineering and security outcomes Strong mindset of balancing delivery velocity, security rigor, and developer experience, making thoughtful tradeoffs appropriate to context Demonstrated commitment to building solutions that balance robust security guarantees with an excellent developer experience, without compromising one for the other Supervisory Responsibilities: This role has supervisory responsibilities and serves as the first level manager for a team of engineers. Posting closing date: Monday 1st June .59pm

S&P Global is looking for a DevSecOps Engineer specializing in Artifact Management & Software Supply Chain Security. The role involves securing enterprise artifacts throughout CI/CD pipelines, implementing policies for dependency management, and collaborating with engineering teams to ensure compliance with security standards. Qualified candidates should have a bachelor's degree in a relevant field and 3-6 years of experience in DevSecOps, along with strong skills with JFrog Artifactory and cloud environments.

London, United Kingdom Posted on 07/06/2026 Engagement:Inside IR35 Start Date:ASAP Overview We are supporting a leading investment banking client in London who is seeking an experiencedCyber Technical Delivery Managerto join a large-scale Cyber Security Transformation Programme. This role will be responsible for the successful delivery of complex cyber security initiatives across multiple technology domains, including Identity & Access Management (IAM), Security Operations, Cloud Security, Vulnerability Management, Data Protection, and Regulatory Compliance. The successful candidate will act as the bridge between technical engineering teams, cyber security stakeholders, business leaders, and third-party vendors, ensuring projects are delivered on time, within budget, and in line with regulatory and security requirements. Key Responsibilities Lead the end-to-end delivery of cyber security projects and workstreams. Develop and maintain project plans, milestones, RAID logs, budgets, and resource plans. Ensure delivery aligns with business objectives, security standards, and regulatory requirements. Manage dependencies across multiple technology and business teams. Drive project governance and reporting activities. Cyber Security Delivery Deliver initiatives across: Identity & Access Management (IAM) Privileged Access Management (PAM) Security Operations (SOC) SIEM Platforms Cloud Security Vulnerability Management Data Protection and DLP Security Monitoring and Threat Detection Secure File Transfer and Encryption Programmes Coordinate technical teams to ensure successful implementation of security controls and technologies. Stakeholder Management Engage with senior stakeholders across Cyber Security, Infrastructure, Cloud, Risk, Compliance, and Business Functions. Provide regular programme updates to senior management and governance forums. Manage relationships with third-party suppliers and technology vendors. Facilitate workshops, steering committees, and technical review sessions. Identify, manage, and mitigate project risks and issues. Ensure compliance with internal security policies and regulatory frameworks. Support audit, risk, and compliance activities. Track and report programme KPIs and delivery metrics. Requirements Required Skills & Experience Cyber Security Experience Strong understanding of enterprise cyber security principles and controls. IAM and Access Governance PAM Solutions SIEM and Security Monitoring Vulnerability Management Data Protection Security Compliance Programmes Familiarity with security frameworks and standards such as: NIST ISO 27001 CIS Controls Cyber Essentials Regulatory requirements within Financial Services Technical Knowledge Good understanding of: Microsoft Azure AWS Active Directory / Entra ID Security Monitoring Platforms Identity Management Solutions Network and Infrastructure Security Ability to engage effectively with technical architects, engineers, and security specialists. Delivery Management Proven experience delivering complex technology or cyber programmes within large enterprise environments. Strong project and programme management experience. Experience managing multiple workstreams simultaneously. Excellent RAID management and governance skills. Strong budget and financial management experience. Previous experience working within Investment Banking, Banking, or Financial Services. Experience delivering cyber security transformation programmes. Experience operating within regulated environments. Strong stakeholder management skills with the ability to engage at Executive and C-Level. Experience managing third-party suppliers and system integrators. Experience with: Microsoft Sentinel Splunk SailPoint CyberArk Okta CrowdStrike Microsoft Defender Suite Knowledge of DevSecOps practices. Exposure to cloud migration and security transformation programmes. Experience supporting regulatory remediation initiatives. Qualifications & Certifications One or more of the following would be advantageous: PMP CISSP CISM CISA CRISC Personal Attributes Strong leadership and organisational skills. Excellent communication and presentation abilities. Ability to influence stakeholders at all levels. Strong analytical and problem-solving mindset. Ability to operate effectively in fast-paced, complex environments. Self-motivated with a strong focus on delivery and outcomes. Successful delivery of cyber security projects and workstreams. Effective management of risks, issues, and dependencies. Timely implementation of security controls and technologies. Improved cyber security posture and compliance alignment. High-quality governance reporting and stakeholder engagement.

Cyber Technical Delivery Manager Location: London (Hybrid - 4 Days per Week Onsite) Contract Length:12 Months Engagement:Inside IR35 Industry:Investment Banking / Financial Services Start Date:ASAP Overview We are supporting a leading investment banking client in London who is seeking an experienced Cyber Technical Delivery Manager to join a large-scale Cyber Security Transformation Programme. This role will be responsible for the successful delivery of complex cyber security initiatives across multiple technology domains, including Identity & Access Management (IAM), Security Operations, Cloud Security, Vulnerability Management, Data Protection, and Regulatory Compliance. The successful candidate will act as the bridge between technical engineering teams, cyber security stakeholders, business leaders, and third-party vendors, ensuring projects are delivered on time, within budget, and in line with regulatory and security requirements. Key Responsibilities Programme & Project Delivery Lead the end-to-end delivery of cyber security projects and workstreams. Develop and maintain project plans, milestones, RAID logs, budgets, and resource plans. Ensure delivery aligns with business objectives, security standards, and regulatory requirements. Manage dependencies across multiple technology and business teams. Drive project governance and reporting activities. Cyber Security Delivery Deliver initiatives across: Identity & Access Management (IAM) Privileged Access Management (PAM) Security Operations (SOC) SIEM Platforms Cloud Security Vulnerability Management Data Protection and DLP Security Monitoring and Threat Detection Secure File Transfer and Encryption Programmes Coordinate technical teams to ensure successful implementation of security controls and technologies. Stakeholder Management Engage with senior stakeholders across Cyber Security, Infrastructure, Cloud, Risk, Compliance, and Business Functions. Provide regular programme updates to senior management and governance forums. Manage relationships with third-party suppliers and technology vendors. Facilitate workshops, steering committees, and technical review sessions. Risk & Governance Identify, manage, and mitigate project risks and issues. Ensure compliance with internal security policies and regulatory frameworks. Support audit, risk, and compliance activities. Track and report programme KPIs and delivery metrics. Requirements Required Skills & Experience Cyber Security Experience Strong understanding of enterprise cyber security principles and controls. Experience delivering projects involving: IAM and Access Governance PAM Solutions SIEM and Security Monitoring Cloud Security Endpoint Security Vulnerability Management Data Protection Security Compliance Programmes Familiarity with security frameworks and standards such as: NIST ISO 27001 CIS Controls Cyber Essentials Regulatory requirements within Financial Services Technical Knowledge Good understanding of: Microsoft Azure AWS Active Directory / Entra ID Security Monitoring Platforms Identity Management Solutions Network and Infrastructure Security Ability to engage effectively with technical architects, engineers, and security specialists. Delivery Management Proven experience delivering complex technology or cyber programmes within large enterprise environments. Strong project and programme management experience. Experience managing multiple workstreams simultaneously. Excellent RAID management and governance skills. Strong budget and financial management experience. Essential Experience Previous experience working within Investment Banking, Banking, or Financial Services. Experience delivering cyber security transformation programmes. Experience operating within regulated environments. Strong stakeholder management skills with the ability to engage at Executive and C-Level. Experience managing third-party suppliers and system integrators. Desirable Skills Experience with: Microsoft Sentinel Splunk SailPoint CyberArk Okta CrowdStrike Microsoft Defender Suite Knowledge of DevSecOps practices. Exposure to cloud migration and security transformation programmes. Experience supporting regulatory remediation initiatives. Qualifications & Certifications One or more of the following would be advantageous: PRINCE2 Practitioner PMP Agile Practitioner / Scrum Certification CISSP CISM CISA CRISC Personal Attributes Strong leadership and organisational skills. Excellent communication and presentation abilities. Ability to influence stakeholders at all levels. Strong analytical and problem-solving mindset. Ability to operate effectively in fast-paced, complex environments. Self motivated with a strong focus on delivery and outcomes. Key Deliverables Successful delivery of cyber security projects and workstreams. Effective management of risks, issues, and dependencies. Timely implementation of security controls and technologies. Improved cyber security posture and compliance alignment. High quality governance reporting and stakeholder engagement.

Senior Cyber Security Analyst (OWASP / SAST /DAST - Banking Client Application Security Secure Design Threat Modelling DevSecOps) Locations: London, Paris, Brussels, Amsterdam Rate: Flexible Duration: 12 months Job Overview We are looking for a Cyber Security Analyst specialising in Application Security and Secure Architecture to join a high-performing security team responsible for protecting large-scale enterprise platforms. This role focuses on embedding security into application design and development, performing security risk assessments, and ensuring that modern applications and platforms are built following secure-by-design principles. You will work closely with software engineers, architects, DevOps teams and security engineers to ensure security is integrated throughout the technology lifecycle. Key Responsibilities Application Security & Secure SDLC - Perform application security assessments across modern enterprise platforms, review application architecture and ensure alignment with secure-by-design principles, embed security into the software development lifecycle (SDLC), support development teams in implementing secure coding practices aligned with OWASP guidelines. Security Testing & DevSecOps - Define and review security testing activities including SAST, DAST and software composition analysis (SCA), work with engineering teams to integrate security scanning into CI/CD pipelines, analyse vulnerability scan results and support remediation of application security issues. Threat Modelling & Security Risk Assessments - Conduct threat modelling exercises using frameworks such as STRIDE or MITRE ATT&CK, identify potential security threats, vulnerabilities and attack scenarios within applications and supporting infrastructure, perform structured security risk assessments and provide remediation recommendations. Security Architecture & Secure Design - Review application and platform architectures to ensure appropriate security controls are implemented, translate high-level security policies into technical security requirements for development teams, work with architects to ensure applications are built following secure architecture patterns. Security Advisory - Provide security expertise to engineering teams, project managers and technology leaders, support security decision-making during application design and implementation, contribute to security best practices, standards and guidelines. Key Technical Skills Strong experience in application security and secure software development including Secure Software Development Lifecycle (SSDLC) OWASP Top 10 and secure coding practices Application security testing (SAST / DAST / SCA) Threat modelling methodologies (STRIDE, MITRE ATT&CK) Vulnerability management and remediation Secure architecture and design reviews DevSecOps and CI/CD security integration API security and modern application architectures Experience with Tools SAST / DAST platforms Code scanning tools CI/CD pipelines (GitHub, GitLab, Jenkins etc.) Container security platforms Cloud security tooling Technology Environment Cloud platforms (AWS, Azure or GCP) Containerised platforms (Docker / Kubernetes) Microservices architectures REST APIs and modern application frameworks Identity and access management solutions Ideal Candidate Background 7-12+ years experience in cyber security, strong focus on application security, experience working closely with software engineering teams, experience performing security architecture reviews, experience in DevSecOps environments, strong communication skills and ability to explain security risks clearly. Certifications (Optional) Relevant certifications may include: CISSP, OSCP, CSSLP, GIAC, Security+ or similar. What Makes This Role Interesting You will work in a highly technical security environment, collaborating directly with engineers and architects to secure modern platforms at scale. This role offers the opportunity to influence secure architecture, application security practices and DevSecOps adoption across complex enterprise systems.

Job Description: Your impact Are you ready to shape and lead solution designs that underpin the UK's most critical missions? At Leonardo, our Senior Solutions Architects are trusted experts who provide technical leadership across programmes, influence roadmaps, and ensure solutions are secure, resilient, and future-ready. Your work at Leonardo UK will see you take the lead in solving customer problems in an agile, innovative and team-centric manner. The role may involve a blended hybrid working model, with a mixture of working from home and working on site at one of our Leonardo offices to ensure close collaboration with the wider team and with our customers. What you will do as a Senior Solutions Architect Act as the technical authority for solution design across large-scale or multi-project programmes. Define and evolve architectures that balance customer needs, enterprise principles, and secure-by-design standards. Contribute to divisional and line-of-business roadmaps, identifying opportunities for technology insertion and innovation. Lead technical reviews, trade-off studies, and risk assessments for major design decisions. Mentor and coach Solutions Architects and Engineers, raising capability across the community. Represent Leonardo at senior customer forums, technical boards, and industry events. Support business winning, including solution strategy, bids, and proposal development. Champion best practice, reuse, and model-based design approaches across the architecture community. What you'll bring Extensive technical expertise with a proven track record of designing secure, integrated solutions. Ability to influence technical strategy and act as a recognised authority within your domain. Strong communication skills with the ability to engage effectively with senior stakeholders. Core areas (must have): Proven experience in solution architecture across multiple domains (infrastructure, applications, data, networking, cloud) Strong knowledge of enterprise and solution architecture frameworks (e.g. TOGAF, MODAF, NAF) Advanced understanding of secure system design principles and cyber security standards Experience shaping architectures within Agile or SAFe delivery environments Ability to mentor, coach, and provide thought leadership within a technical community Desirable: Industry certifications (TOGAF, AWS/Azure Architect, ArchiMate) Experience contributing to technology roadmaps and enterprise strategy Familiarity with service design, operational transformation, and digital modernisation Exposure to cloud-native, DevSecOps, and automation approaches Experience presenting at technical boards, customer forums, or industry conferences This is not an exhaustive list, and we are keen to hear from you even if you might not have experience in all the above. The most important skill is a good attitude and willingness to learn. Security Clearance This role is subject to pre-employment screening in line with the UK Government's Baseline Personnel Security Standard (BPSS). An additional range of Personnel Security Controls referred to as National Security Vetting (NSV) may apply, this could include meeting the eligibility requirements for The Security Check (SC) or Developed Vetting (DV). For more information and guidance please visit the following security page for candidates: Location This role can be based at one of our UK sites, typically Bristol, with hybrid/custom working options where appropriate. Customer is based in Reading. Why join us At Leonardo, our people are at the heart of everything we do. We offer a comprehensive, company-funded benefits package that supports your wellbeing, career development, and work-life balance. Whether you're looking to grow professionally, care for your health, or plan for the future, we're here to help you thrive. Time to Recharge: Enjoy generous leave with the opportunity to accrue up to 12 additional flexi-days each year. Secure your Future: Benefit from our award-winning pension scheme with up to 15% employer contribution. Your Wellbeing Matters: Free access to mental health support, financial advice, and employee-led networks championing inclusion and diversity (Enable, Pride, Equalise, Armed Forces, Carers, Wellbeing and Ethnicity). Rewarding Performance: All employees at management level and below are eligible for our bonus scheme. Never Stop Learning: Free access to 4,000+ online courses via Coursera and LinkedIn Learning. Refer a friend: Receive a financial reward through our referral programme. Tailored Perks: Spend up to £500 annually on flexible benefits including private healthcare, dental, family cover, tech & lifestyle discounts, gym memberships and more. Flexible working: Flexible hours with hybrid working options. For part time opportunities, please talk to us about what might be possible for this role. For a full list of our company benefits please visit our website. Leonardo is a global leader in Aerospace, Defence, and Security. Headquartered in Italy, we employ over 53,000 people worldwide including 8,500 across 9 sites in the UK. Our employees are not just part of a team-they are key contributors to shaping innovation, advancing technology, and enhancing global safety. At Leonardo we are committed to building an inclusive, accessible, and welcoming workplace. We believe that a diverse workforce sparks creativity, drives innovation, and leads to better outcomes for our people and our customers. If you have any accessibility requirements to support you during the recruitment process, just let us know. Be part of something bigger - apply now! Primary Location: GB - Bristol - Coldharbour Lane Additional Locations: GB - Basildon - Home Based Contract Type: Permanent Hybrid Working: Hybrid

Senior Cyber Security Analyst - Application Security / DevSecOps / Secure Design/SAST, DAST - London Contract (12 Months, Hybrid 8 Days onsite per month, remote rest). Inside of IR35 - must use umbrella. £600 per day. We are supporting a leading international organisation in the search for a Senior Cyber Security Analyst to join a high performing security engineering and assurance team. This role is ideal for a consultant with a strong background in Application Security, DevSecOps, Secure SDLC, Threat Modelling, and Cloud Security, who can work closely with engineering teams to embed security into modern software delivery environments. The successful consultant will operate across cloud native platforms, CI/CD pipelines, APIs, containers, and microservices architectures, helping drive secure by design principles across enterprise scale platforms. Key Responsibilities Perform security risk assessments, secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms Define and implement secure by design principles across software engineering and DevOps teams Embed security controls into CI/CD pipelines using modern DevSecOps practices Lead and support SAST, DAST, SCA, and container security integration activities Conduct application and infrastructure security assessments aligned to OWASP, NIST, and industry best practices Work closely with development teams to triage vulnerabilities and support remediation activities Define security requirements for modern application architectures including APIs, Microservices, Kubernetes/Containers, Cloud native platforms Support secure architecture reviews across AWS and/or Azure environments Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams Support vulnerability management, security governance, and secure delivery processes Required Skills & Experience Application Security & Secure SDLC OWASP Top 10 / ASVS Secure coding practices Threat modelling (STRIDE / MITRE ATT&CK) Security architecture and design reviews Vulnerability management and remediation Secure Software Development Lifecycle (SSDLC) DevSecOps & CI/CD Security integration of security tooling into CI/CD pipelines Experience with: GitHub, GitLab, Jenkins, Azure DevOps Hands on experience with: SAST, DAST, SCA, Secrets scanning, Container security, Cloud & Platform Security, AWS and/or Azure security, Kubernetes / Docker / container security, API security, IAM / Identity Federation / SSO, WAF and cloud native security tooling, Infrastructure as Code security (Terraform / Checkov / tfsec) Security tooling experience with: SonarQube, Checkmarx, Veracode, Fortify, OWASP ZAP, Burp Suite, Snyk, Aqua, Wiz, Prisma Cloud, Defender for Cloud, Sentinel Ideal Background 8-15+ years in Cyber Security Strong focus on Application Security and DevSecOps Experience working closely with engineering and platform teams Strong stakeholder engagement and communication skills Experience within regulated or enterprise environments (Financial services, government, or large scale enterprise) highly desirable Certifications desirable: CISSP, SABSA, GIAC, ISO 27001, Cloud security certifications (AWS / Azure) Rates depend on experience and client requirements.

Advanced Resource Managers Ltd is seeking a Software Engineer for a 12-month contract based in either Newcastle or Guildford. The role involves developing high-quality, scalable Java code and contributing to Agile ceremonies. Candidates should have experience in cloud services, unit testing, and DevSecOps practices. This position offers competitive pay at £60 per hour, Inside IR35, and the opportunity to work with a leading Defence and Aerospace company.

Software Engineer 12 month contract Can be based in Newcastle or Guildford Offering £60ph Inside IR35 Do you have experience with Java? Do you have experience in cloud services development? Do you want to work with an industry-leading company? If your answer to these is yes, then this could be the role for you! As the Software Engineer, you will be working alongside a market-leading Defence and Aerospace company who are constantly growing and developing. They are always looking to bring on new talents such as yourself and further develop your skills to enable you to grow within the company and industry. You will be involved in: Develop high-quality, readable, scalable, and easily maintained code, using Java and related technologies, meeting requirements and coding standards Develop reusable patterns and encourage innovation that will enhance team velocity Contribute to quality assurance by writing unit and automated tests Conduct design and code reviews to ensure code developed meets coding best practices guidelines, unit testing, security, and scalability and maintainability guidelines Ensure code is sufficiently documented and share knowledge of solutions implemented Participate in sprint planning, reviews, and daily stand-ups in a true Agile environment, contributing to agile based estimating Work with the scrum team to meet the sprint commitments Your skillset may include: Java Cloud Services development Unit testing DevSecOps awareness using tools such as Tekton, ArgoCD, SonarQube Red Hat Openshift container platform or Kubernetes Quarkus Framework Front-end development using Angular If this all sounds like something you will be interested in then simply apply and we can discuss the opportunity further!

About Scrumconnect Consulting Scrumconnect Consulting is a multi-award-winning digital consultancy, recognised for delivering impactful and innovative technology solutions across UK government departments. Our work has positively influenced the lives of over 40 million UK citizens. We are passionate about user-centred design, agile delivery, and building digital services that make a real difference. Our teams work at the forefront of innovation, helping organisations transform and deliver high-quality, scalable solutions that truly matter. ROLE PURPOSE Lead technical architecture across one or more work packages, ensuring all solutions align with client architectural principles, reference architecture, and approved integration patterns. Act as the primary technical authority between delivery teams and client Technical Design Authority (TDA). KEY RESPONSIBILITIES Define and govern solution architecture across cloud, data centre, and hybrid work packages in line with UKHO architecture principles (API-first, event-driven, secure by default, reuse). Produce and maintain architecture documentation including TDA artefacts, OpenAPI specifications, architecture decision records, and design review outputs. Align solutions to UKHO reference architectures including integration patterns, Azure cloud landing zones, and approved technology services. Support the UKHO TIME assessment (Tolerate, Invest, Migrate, Eliminate) to manage application life cycle and reduce technical debt. Contribute to DevSecOps practices including automated pipelines, infrastructure as code, observability (logging, metrics, alerting) and identity/security controls. Provide technical leadership to delivery teams and review design proposals from senior developers. Liaise with client architects, product owners, and security stakeholders at work package level. Ensure compliance with client security standards, MOD Secure by Design, NCSC principles, and CAF 4.0. Advise on AI coding tool usage ensuring adherence to client ITSO approval and dependable AI guidance. ESSENTIAL SKILLS & EXPERIENCE. Strong proficiency with Microsoft Azure services (WebApps, EventHub, KeyVault, Azure SQL, Application Insights, Logic Apps). Experience with Infrastructure as Code using Terraform and Bicep. Expertise in API design (RESTful and event-driven), integration patterns, and life cycle governance. Knowledge of cloud-native, hybrid, and data centre hosting architectures. Experience working to GDS service design standards and Technology Code of Practice. Excellent written communication for TDA artefacts and design documentation. DESIRABLE SKILLS & EXPERIENCE Experience within the maritime or hydrographic sector. Familiarity with geospatial data standards (GeoJSON, MBTiles, GML) Experience with NCSC Secure by Design and MOD Defence Digital standards. Diversity & Inclusion At Scrumconnect Consulting, we believe that diversity drives innovation and better outcomes. We are committed to fostering an inclusive environment where every individual is valued, respected, and supported. We welcome applications from candidates of all backgrounds and actively encourage individuals from underrepresented groups, including women, people with disabilities, and diverse communities, as well as those seeking flexible working arrangements. As a Disability Confident Level 1 employer, we are committed to providing reasonable adjustments throughout the recruitment process and during employment to ensure equal opportunities for all.

About Scrumconnect Consulting Scrumconnect Consulting is a multi-award-winning digital consultancy, recognised for delivering impactful and innovative technology solutions across UK government departments. Our work has positively influenced the lives of over 40 million UK citizens. We are passionate about user-centred design, agile delivery, and building digital services that make a real difference. Our teams work at the forefront of innovation, helping organisations transform and deliver high-quality, scalable solutions that truly matter. Role Purpose Join a blended agile delivery squad working on large-scale, secure digital services for a government client. As a Senior Developer, you will bring strong hands-on experience across both .NET and Python, contributing to cloud-native API development, Legacy modernisation, and DevSecOps practices - all within a Microsoft Azure environment and aligned to the highest engineering and security standards. Key Responsibilities Design, develop, and maintain full-stack applications and services using .NET Core and Python. Build and consume RESTful APIs following API-first and microservices design principles. Contribute to CI/CD pipelines in Azure DevOps - build, test, and deployment automation. Apply DevSecOps practices including SAST/DAST scanning, dependency management, and environment segregation. Participate in code reviews, uphold coding standards, and implement secure development practices. Support Legacy system modernisation - migrating from older Windows and .NET Framework environments. Produce clear technical documentation and contribute to architecture artefacts. Ensure all developed solutions meet WCAG AA accessibility standards. Work collaboratively with architects, lead developers, and delivery managers within an agile squad. Contribute to knowledge transfer and onboarding activities for client and team staff. Security Clearance - Mandatory SC (Security Check) clearance is mandatory for this role. Candidates must be eligible to obtain SC clearance. British nationality or a minimum of 5 years' UK residency is typically required. Clearance will be sponsored upon appointment. Essential Skills & Experience: Strong hands-on C# with solid grasp of OOP, design patterns, and SOLID principles. Experience building production-grade applications in both .NET Core and Framework environments. Core Languages - .NET Core 10.0 & .NET Framework 4.8 - Mandatory Python - Production-Grade Experience - Mandatory Proficiency with Astral UV, virtual environments, and Python dependency management. Ability to build, maintain, and deploy Python-based services and tooling. JavaScript/TypeScript Cloud, DevOps & Infrastructure - Mandatory Microsoft Azure - Cloud-Native Development Experience Azure DevOps - CI/CD Pipeline Design and Management Infrastructure as Code - Terraform and/or Bicep Containerisation - Docker and/or Kubernetes Development Practices - Mandatory RESTful API design, development, and life cycle management Secure development - SAST/DAST tooling, code review, OWASP awareness Technical documentation to a high standard On-site in Taunton, Somerset - 2 days per week minimum Desirable Skills & Experience Legacy Windows technologies - Win32, WPF, MFC/ATL, COM, MSI packaging. Geospatial data formats - GeoJSON, MBTiles, GML. Familiarity with MOD Secure by Design and NCSC software security standards. Experience working in UK public sector or government digital services. Python geospatial tooling or data pipeline experience. Tech Stack: Backend: .NET Core 10.0, .NET Framework 4.8, C#, Python (Astral UV), REST APIs, Microservices Frontend: JavaScript, TypeScript, HTML5, CSS3, WCAG AA Cloud & DevOps: Microsoft Azure, Azure DevOps, CI/CD, Terraform, Bicep, Docker, Kubernetes Security: SAST/DAST, Secure by Design, SC Clearance (Mandatory) Geospatial: GeoJSON, MBTiles, GML (desirable) Tools: Git, Jira, Confluence, Azure DevOps Boards Diversity & Inclusion At Scrumconnect Consulting, we believe that diversity drives innovation and better outcomes. We are committed to fostering an inclusive environment where every individual is valued, respected, and supported. We welcome applications from candidates of all backgrounds and actively encourage individuals from underrepresented groups, including women, people with disabilities, and diverse communities, as well as those seeking flexible working arrangements. As a Disability Confident Level 1 employer, we are committed to providing reasonable adjustments throughout the recruitment process and during employment to ensure equal opportunities for all.

About Scrumconnect Consulting Scrumconnect Consulting is a multi-award-winning digital consultancy, recognised for delivering impactful and innovative technology solutions across UK government departments. Our work has positively influenced the lives of over 40 million UK citizens. We are passionate about user-centred design, agile delivery, and building digital services that make a real difference. Our teams work at the forefront of innovation, helping organisations transform and deliver high-quality, scalable solutions that truly matter. Overview We are seeking an experienced Lead Technical Developer to provide hands-on technical leadership within a client delivery team. You will be responsible for driving engineering standards, code quality, and the technical direction of a work package, ensuring the delivery of secure, maintainable, and high-quality software aligned with client engineering standards. Key Responsibilities Technical Leadership Lead the technical design and implementation of features across cloud and data centre work packages. Define and enforce coding standards, code review processes, and secure development practices in line with client GitHub standards. Mentor and support senior and full-stack developers, ensuring consistent engineering excellence across the team. Collaborate closely with Solution Architects to ensure implementation aligns with approved architecture and technology standards. Lead technical onboarding activities and knowledge transfer to client personnel and successor suppliers. Architecture & Documentation Produce and contribute to architecture documentation and Technical Design Authority (TDA) artefacts at work package level. Ensure technical documentation is maintained to a high standard. DevOps & Security Own and maintain CI/CD pipeline quality using Azure DevOps. Contribute to the design and maintenance of automated deployment pipelines. Drive DevSecOps best practices, including: SAST/DAST security scanning Dependency management Environment segregation Secure software development practices Quality & Compliance Ensure all solutions meet WCAG AA accessibility standards. Provide guidance on the appropriate use of AI-assisted coding tools within approved enterprise environments. Security Clearance Requirement SC (Security Check) clearance is mandatory for this role. Candidates must be eligible to obtain SC clearance. Eligibility typically requires: British nationality, or A minimum of 5 years' continuous UK residency Clearance sponsorship will be provided upon appointment. Core Languages - Mandatory .NET (Core 10.0, Framework 4.8) & C# Extensive hands-on experience with .NET Core and .NET Framework 4.8 in production environments. Proficiency in C# with strong knowledge of modern design patterns, SOLID principles, and high- availability architectures. Python [MANDATORY] Proven Python development experience including use of Astral UV and virtual environments. Ability to build, maintain, and extend Python-based services and tooling within a DevSecOps context. JavaScript/TypeScript Cloud & DevOps - Mandatory Azure DevOps - CI/CD pipeline design, management, and optimisation. Infrastructure as Code - Terraform and/or Bicep. Containerisation - Docker, Kubernetes, or equivalent orchestration platforms. Cloud-native development on Microsoft Azure. Development Practices - Mandatory RESTful API design, development, and life cycle management. Secure development practices including SAST/DAST tooling and dependency management. Code review leadership - ability to set and enforce standards across a team. Technical documentation produced to a high standard. WCAG AA accessibility compliance across all developed solutions. Location (Mandatory) Ability to work on-site in Taunton, Somerset a minimum of 2 days per week . Desirable Skills & Experience Legacy Windows technologies - Win32, WPF, MFC/ATL, COM, MSI packaging. [DESIRABLE] Geospatial data formats - GeoJSON, MBTiles, GML. [DESIRABLE] MOD Secure by Design and NCSC software security standards. [DESIRABLE] Technology Stack Backend .NET Core 10.0, .NET Framework 4.8, C#, Python, REST APIs, Microservices Frontend JavaScript, TypeScript, HTML5, CSS3, WCAG AA Cloud & DevOps Microsoft Azure, Azure DevOps, CI/CD, Terraform, Bicep, Docker, Kubernetes Security SAST/DAST, Secure by Design, NCSC Standards, SC Clearance Tools Git, Jira, Confluence, Azure DevOps Boards Additional Information This role requires eligibility for SC Security Clearance. Candidates without existing clearance will be supported through the vetting process upon appointment. Please note that attendance in Taunton, Somerset, a minimum of two days per week , is a firm requirement of this engagement. Diversity & Inclusion At Scrumconnect Consulting, we believe that diversity drives innovation and better outcomes. We are committed to fostering an inclusive environment where every individual is valued, respected, and supported. We welcome applications from candidates of all backgrounds and actively encourage individuals from underrepresented groups, including women, people with disabilities, and diverse communities, as well as those seeking flexible working arrangements. As a Disability Confident Level 1 employer, we are committed to providing reasonable adjustments throughout the recruitment process and during employment to ensure equal opportunities for all.