40 jobs found

Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for people who are will be excited by the potential for Engine's technology to transform banking in different markets around the world. Our purpose is underpinned by five values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of our offices so that we're able to interact and collaborate in person. About the role: As a Cloud Security Engineer at Engine, you will be a hands-on builder, responsible for engineering and automating the security of our core platform. Your primary mission is to treat security as an engineering discipline, creating robust, scalable, and automated solutions to protect our cloud infrastructure and development lifecycle. You will spend your time writing code (Go, Python), defining secure infrastructure-as-code (Terraform), and building the tooling that ensures our platform is secure by design and compliant by default. This is a role for an engineer who loves to build, automate, and solve complex security problems through code. You'll be working on projects covering identity and access management, cloud and network security, vulnerability management, security monitoring, security hardening, compliance reviews, and more. It's a very varied role with lots of close interaction with the infrastructure, security engineering, cross cutting and compliance teams. Engine by Starling engineers are excited about helping us deliver new features, regardless of what their primary tech stack may be. Hear from the team in our latest Blog or our case studies with Women in Tech . Primarily, we are looking for an experienced Cloud Security Engineer to join our growing Security Engineering team, but we are also keen to talk to talented Cloud Engineers who possess strong programming skills and a genuine desire to apply their knowledge to solving security challenges. In this role, you will work closely with the GRC team and the various Engine Technology teams to make sure security is at the heart of all our technical processes. Your place within the team will depend on your individual strengths and interests. This role will cover a wide array of security areas across our multi-tenant SaaS cloud environments and internal infrastructure and will require a skilled individual to spearhead efforts in fortifying both infrastructure and application platforms, against potential threats. What you'll get to do? Design, build, and maintain security automation and tooling to enforce security controls and simplify compliance (e.g., automating evidence collection for frameworks like SOC 2, ISO 27001, or PCI DSS) Build, manage, and automate identity and access management controls to ensure secure access to our cloud platforms and applications Write and review Infrastructure-as-Code (Terraform) to securely configure our AWS and GCP environments Secure our CI/CD pipelines by implementing and interpreting results from SAST/DAST/SCA tools and ensuring the integrity of our software supply chain Develop and maintain preventative and detective security controls within our cloud environments, responding to and automating the remediation of security alerts Implement and automate technical controls based on the findings from security assessments, audits, and architecture reviews Engineer solutions to secure our Kubernetes environments, focusing on RBAC, network policies, and runtime security Collaborate with engineering teams to implement security best practices and provide hands-on support for remediation efforts Contribute to incident response efforts, including the investigation, remediation, and post-mortem analysis of security breaches Requirements What skills are essential: Strong, demonstrable hands-on experience in a software or infrastructure engineering role A genuine passion for security, demonstrated by a proactive desire to learn about emerging threats, vulnerabilities, and best practices Proficiency in at least one programming language, with a strong preference for Go, followed by Python A mature understanding of cloud security architecture, and a deep, practical hands-on experience securing core infrastructure and services within AWS or GCP Experience with Infrastructure-as-Code, specifically Terraform, for managing cloud environments An aptitude for building tools and automating workflows to solve complex problems A practical understanding of how to integrate security into the software development lifecycle Experience securing containerised environments (Kubernetes) and CI/CD pipelines (e.g., GitHub Actions, TeamCity) Strong scripting skills in Bash What skills are desirable, but not essential: Proven experience creating custom tools or scripts specifically to solve security challenges You have an in-depth knowledge of security principles, technologies, best practices and threat detection and mitigation strategies A deep understanding of security principles, common attack vectors (OWASP Top 10, MITRE ATT&CK), and the threat landscape The ability to identify potential threats, attack vectors, and vulnerabilities in systems and applications Experience in automating security controls for compliance frameworks like SOC 2, ISO 27001, or PCI DSS. Expertise in Kubernetes, securing clusters and meshes (Cilium is preferable), networking best practices and RBAC implementation (CKA, CKS qualifications are a plus) Container security knowledge including container image provenance (e.g. Sigstore, Notary) with an in-depth knowledge of container runtimes Strong understanding of network protocols & practices, firewalls, intrusion detection/prevention systems and WAFs Understanding of integrating security into the software development lifecycle Experience in Cryptography management & enhancements Experience configuring and utilising cloud-native security logging, monitoring, and detection services Experience performing secure code reviews and security approvals including the use of static and dynamic application security testing (SAST/DAST) tools Relevant security certifications such as AWS Security Specialist or GCP Professional Cloud Security Engineer Our Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Initial interview with our Staff Security Engineer - 45 minutes Take home technical task to be discussed in the next interview Technical interview with some of our Security Engineer team members - 1.5 hours Final interview with our CTO / deputy CTO 45 minutes Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer . click apply for full job details

IT Security Engineer Feltham (Hybrid) £45,000 - £55,000 Base + Benefits Overview The IT Security Engineer is responsible for designing, implementing, and maintaining the security controls that protect the organization's systems, networks, and data. This role works closely with IT, DevOps, and business teams to ensure that security is embedded throughout technology operations and architecture. The IT Security Engineer is key to detecting, preventing, and responding to cybersecurity threats in a proactive and efficient manner. Key Responsibilities: Security Architecture & Implementation Design, deploy, and manage security solutions including firewalls, intrusion detection/prevention systems, endpoint protection, SIEM, and identity management platforms. Implement secure network architecture and enforce segmentation and least-privilege access controls. Support secure cloud environments across Azure, AWS, or GCP (e.g., IAM, security groups, encryption, KMS). Threat Detection & Incident Response Monitor and analyze security alerts and network traffic for threats or suspicious activity. Lead or support incident response activities: investigation, containment, eradication, recovery, and reporting. Conduct root cause analysis and implement security hardening improvements. Vulnerability & Risk Management Run regular vulnerability scans and penetration testing activities; track remediation of findings. Evaluate risks and recommend security enhancements or compensating controls. Maintain asset inventories and ensure patching and configuration baselines are followed. Security Governance & Compliance Contribute to maintaining security standards and aligning with frameworks such as ISO 27001, NIST, CIS, or SOC 2. Support audits, evidence collection, and compliance reporting (e.g., GDPR, PCI-DSS). Develop and maintain documentation for policies, procedures, architecture, and runbooks. Collaboration & Knowledge Sharing Work with IT operations, cloud, and development teams to embed security in system and application designs. Provide expert security guidance during solution design, procurement, and change reviews. Support security awareness training and communicate best practices to employees. Qualifications Education: Bachelor's degree in information security, Computer Science, Networking, or a related field. Experience: 3+ years' experience in cybersecurity, network engineering, or IT infrastructure security roles. Certifications (Preferred): CompTIA Security+, CEH, OSCP, CISSP, CCSP, Azure/AWS security certifications. Skills & Competencies Strong knowledge of network security (TCP/IP, VPNs, DNS, firewalls). Experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and EDR platforms. Familiarity with scripting or automation (PowerShell, Python, Bash). Understanding of secure cloud architecture and Zero Trust principles. Ability to analyze complex technical issues and communicate clearly to technical and non-technical audiences.

Portsmouth - hybrid (2-3 days on-site per week) Permanent Up to £78,500 + bonus This is a prime opportunity to design and engineer the core platforms behind a rapidly growing Security Operations Centre (SOC), blending hands-on technical work with automation and solution design. You'll collaborate with analysts, architects, and customers to build reliable, scalable systems that accelerate threat detection and response, all in a collaborative culture that invests in your growth, wellbeing, and career progression. Job Title: Senior Security Engineer Job Type: Permanent Salary: Up to £78,500 (DOE) + Bonus Working arrangement: Hybrid Office Location: Portsmouth As a Senior Security Engineer, you will: Design, deploy, and maintain core SOC technologies (SIEM, EDR, SOAR, threat intelligence, and logging infrastructure). Develop and optimise detection use cases, correlation rules, and analytics content. Build and maintain automation workflows and integrations using automation platforms or custom scripting. Engineer secure log ingestion pipelines across hybrid cloud and on-prem environments. Support client onboarding, threat hunting, detection engineering, and process improvements. Mentor junior engineers and maintain documentation, diagrams, and standards. Required Experience/Skills: 5 years' experience in a SOC, security engineering, or cyber operations role. Strong hands-on experience with SIEM or EDR platforms (e.g., Microsoft Sentinel, Splunk, Defender, CrowdStrike, Elastic). Expertise in building and tuning detection rules, dashboards, and automation playbooks. Proficiency in scripting or automation (KQL, PowerShell, Python, or similar). Knowledge of log management, APIs, data normalisation, and cloud security (Azure, AWS, or M365). Solid understanding of network, system, and identity security fundamentals. Excellent problem-solving skills and a passion for continuous improvement. Experience with SOAR platforms (e.g., Microsoft Sentinel Automation, Cortex XSOAR, Splunk SOAR). Knowledge of MITRE ATT&CK mapping and detection engineering frameworks. Infrastructure-as-Code experience (Terraform, Bicep, or ARM templates). Exposure to threat hunting, vulnerability management, or integrations with ServiceNow/ITSM tools. Services offered by Computappoint Limited are those of an Employment Business and/or Employment Agency in relation to this vacancy.

Job Description What if you could do the kind of work the world needs? At WSP, you can access our global scale, contribute to landmark projects and connect with the brightest minds in your field to do the best work of your life. You can embrace your curiosity in a culture that celebrates new ideas and diverse perspectives. You can experience a world of opportunity and the chance to shape a career as unique as you. A little more about your role We are seeking a highly skilled and advanced technical cybersecurity professional, preferably a Microsoft MVP (Most Valuable Professional) to our Global Security Operations and Engineering team. The successful candidate will lead technical security initiatives, with a particular focus on Microsoft Cloud Security covering the full scope, i.e., to plan (architect), implement (build), and manage the security platforms and tools in use at WSP, especially the SOAR capabilities, including automation for the SOC. An important part of this role would be to coach and build the overall knowledge and capabilities within the team. And so, naturally, the incumbent would be an integral member of the team and would also get some good insight into other technology platforms, e.g. AD auditing solutions, PAM, our Threat Intelligence platforms etc. Key Responsibilities Work with a globally distributed team, taking inputs from the business, SOC, and management to roll out systems and troubleshoot (Tier-3) support for security issues Lead-guide the local Service Desk/ OSS teams with knowledge bases to resolve tickets at first instance for issues relating to security software and configurations Develop the automation (including playbooks, SOAR), scripts to monitor system-health, as well as management the SOC tools in use Extract data from systems and build reports for management; PowerBI skills would be an advantage Knowledge transfer and sharing Monitor and respond to feedback from the customers (employees and business stakeholders) Bring a problem-solving and solutions-mindset, coordinate with the IT teams as needed Finance/Budgetary Responsibilities Provide feedback on tooling and identify additional needs Plan for expanse of security tools to cover ongoing needs Evaluation of license usage and potential growth What we will be looking for you to demonstrate Significant technical skills in the security area, especially with Microsoft tools, (including but not limited to) MS Sentinel, Defender, Purview, Entra, AD, etc. A proven track record in improving and maturity existing security implementations and configurations Ruthless about securing the attack landscape, and hardening the existing systems in the enterprise hybrid landscape (end-user devices, servers, etc) Skills and experiences with other vendors and services would be an added advantage Solid knowledge about the overall security landscape, including Threat and Vulnerability Management, and the ability to guide on their remediation. Guide and implement automations, develop and fine-tune the SIEM detection rules to reduce manual efforts Cyber professional at heart, tracking and mitigating emerging cyber threats against the company (e.g. zero-day exploits, APTs etc). Experiences with other concepts and systems like Privileged Account Management, Key Management (certificates, keys, ciphers, etc.). Ability to lead security systems integration, e.g., defining the architecture to work with ticketing systems, e.g. integrating Defender to create-manage the tickets and communications in ServiceNow Knowledge of extracting relevant data, creating security reports etc. would be a definite advantage. Solid abilities to lead and plan the architecture, deliveries, and even more importantly coach and teach other members of the technical team to high levels of technology excellence Bachelor's degree or equivalent in Information Technology, Computer Science, Engineering, data sciences, or related field Strong analytical skills with a keen eye for detail and accuracy. Previous experiences in security tools and systems administration, including experience as a security administrator for security platforms Knowledge and experience in SIEM and Microsoft platforms (Microsoft Azure ecosystems), other vendor security systems are good experiences as well (e.g. CyberArk, Akeyless) Good knowledge of EDR systems e.g. MS Defender, KQL etc. (or alternatively the willingness to learn them) Planned and meticulous approach to deliveries. Knowledge and/or willingness to learn about advanced security capabilities, including integrations with other systems Imagine a better future for you and a better future for us all. Join our close-knit community of talented individuals who share your passion for making a positive impact. Our global team includes more than 69,000 employees, working together to make a difference in communities both close to home and around the world. With us, you can. Apply today. About Us We are one of the world's leading engineering and professional services firms. Our 72,800 passionate people are united by the common purpose of creating positive, long-lasting impacts on the communities we serve through a culture of innovation, integrity, and inclusion. With over 9,000 professionals across the UK and Ireland, we are dedicated to our local communities and propelled by international brainpower. WHAT'S IN IT FOR YOU? Work-life balance At WSP, we understand that work is just one aspect of your life. It's important to make time for you, your family, friends, interests and your community. Our hybrid working policy offers the flexibility to work from home two days a week, while also providing opportunities to collaborate in our modern offices across the UK. Inclusivity & Belonging We welcome applicants with varied backgrounds and experiences. We enable rewarding careers by encouraging people to bring their whole and authentic selves to work so that our work represents the fullest spectrum of society. We celebrate integrity and treat people with respect, supporting each other and embracing a culture of inclusion and belonging at WSP. We have our employee resource groups bring together employees and allies with different backgrounds to promote our culture of inclusivity. Health & Wellbeing We are committed to supporting our people, giving you the tools to make improvements to your health and wellbeing through our Thrive programme. Our Virtual GP service gives you access to an NHS or Irish Medical Council GP at a time and place that suits you - giving you peace of mind and quick access to medical advice when you need it most. We also provide reasonable workplace adjustments for those in need. Additionally, you can benefit from the Gymflex scheme, which offers up to 40% off annual gym memberships through our WSP flexible benefits program, as well as a comprehensive menopause support package. Flex your time To enhance work-life balance, WSP offers the "WSP My Hour," allowing you to take one hour each day for personal activities, with the flexibility to make up the time earlier or later that day. We also provide part-time and flexible working arrangements, the option to purchase additional leave, and the ability to use your bank holiday entitlement to suit you. Your development We understand the importance of development and training to you. That's why we foster a supportive environment that invests in your growth, whether through training, mentoring, or Chartership. Here at WSP we positively encourage applications from suitably qualified and eligible candidates regardless of sex, race, disability, age, sexual orientation, gender reassignment, religion or belief, marital status, pregnancy or maternity/paternity. As a Disability Confident leader, we will interview all disabled applicants who meet the essential criteria, please let us know if you require any workplace adjustments in support of your application.

Lead SailPoint Identity Security Cloud Engineer Remote (required to be onsite for PI planning ) 6 Month Contract Lorien's Financial Services client are currently recruiting for a Lead SailPoint Identity Security Cloud Engineer to join on a 6 month initial contract, inside IR35. A Lead SailPoint ISC Engineer will act as the subject matter expert for identity governance and automation across an already established team. The role involves leading design, implementation, and integration activities while setting technical standards and provide mentoring delivery teams. The successful candidate will be comfortable working remotely, managing complex multi-tenant environments, and ensuring the business maintains a secure scalable, and compliant identity posture. Essential skills: Proven experience leading enterprise deployments of SailPoint Identity Security Cloud. Strong integration experience with Active Directory, Entra ID, AWS, ServiceNow, and other authoritative sources. Excellent scripting and automation skills (BeanShell, PowerShell, Java, REST/SOAP APIs). Strong experience of developing and maintaining JML workflows. Demonstrable leadership in delivering complex IGA programmes. Strong understanding of identity lifecycle management, Zero Trust, and governance compliance. Financial services or regulated environment experience preferred. Desirable skills Familiarity with Agile delivery methodologies. SailPoint certification Identity Security Cloud Engineer, CISSP, CISM, or similar. Collaboration experience with MS Teams\Zoom collaboration. Identity AI adoption for risk-based access analytics and behavioural anomaly detection. Should this position be of interest please submit your CV and I will be in contact as required. Carbon60, Lorien & SRG - The Impellam Group STEM Portfolio are acting as an Employment Business in relation to this vacancy.

InterSystems provides the information engines that power some of the world's most important applications. In healthcare, finance, government, and other sectors where lives and livelihoods are at stake, InterSystems has been a strategic technology provider since 1978. InterSystems is a privately held company headquartered in Cambridge, Massachusetts (USA), with offices worldwide, and its software products are used daily by millions of people in more than 100 countries. For more information about InterSystems, the Cache database, Ensemble, HealthShare, and TrakCare. The Hosted Services organization was formed in 2015 to enable the delivery of fully managed and hosted TrakCare and other healthcare related solutions. With five established datacentre locations globally, and several contracts in the pipeline, Hosted Services is expected to continue to grow. To support this growth, we are now looking for a Network Engineer to work within our Hosting Services team to oversee the ongoing delivery, administration and security compliance of the network infrastructure underpinning our hosted services internationally. Responsibilities Provide expert-level support for the network infrastructure that underpins our data center based services. Ensure that network service levels are monitored, reviewed and reported on a regular basis, and that the necessary steps are taken to resolve any issues or negative trends that may be identified. Ensure that network and related activities are completed within agreed timelines and/or in line with agreed schedules. Work with technical architects, project managers and other stakeholders to identify, assess, select and present appropriate network solutions for their needs. Build and deploy agreed solutions within specified timelines. Develop, implement and test disaster recovery and/or network fail-over plans as required. Maintain operational acceptance criteria for network solutions to be supported by the hosting team, and work with the appropriate delivery teams to ensure that these are met before transition into production. Ensure that network and associated service components under management are monitored 24x7 for availability, capacity and performance. Monitor and report on network capacity across all network elements, and pro-actively identify and address potential issues in a timely manner. Ensure that agreed network and access processes are followed and, in particular, that events, incidents and requests are dealt with in a timely manner using the appropriate operational processes and tools. Ensure ongoing compliance with network and related security policies Ensure that network and related solutions are documented, including network diagrams, "as-built" configurations, IP address data, and support procedures e.g. "how to fail-over a connection", etc. Maintain good relationships with other team members, other teams, customers and suppliers in order to maximize team working and collaboration. Continue to look for ways that the service can be improved and, where agreed, lead or assist with the implementation of service improvements. In particular, focus on service automation opportunities in line with the wider hosted services strategy and available tools; continue to optimize performance, efficiency and utilization. Provide consultation to customers and stakeholders on in-life customer solutions. Provide 24x7 support as part of the wider hosting operations team. Required experience & qualifications Minimum of CCNP with routing and switching or security certification Strong knowledge and hands-on experience of configuring, troubleshooting and supporting Cisco and F5 networking equipment in a datacentre environment, specifically Cisco Nexus switches, Cisco ASA firewalls, F5 LTM and DNS load balancers. Strong network design and management skills and experience, including setting up firewall rules, dynamic routing, load balancing, intrusion detection and prevention, setting up remote access and site-to-site VPNs. Strong practical experience of following ITIL processes in a 24x7 operations environment with tight SLA and security compliance requirements. Practical experience with the majority of: Cisco Nexus 7000/9000 series, NX-OS, IOS, VDC, VPC, HSRP, STP, NTP, logging, port channels, layer 3 switching Cisco ASR (100x), IOS, XE, OSFP, BGP, VRF, NTP, logging Cisco ASA, IPS, ASAv, Multi-context IPSEC VPN, Anyconnect SSL VPN, NAT, ACLs F5 LTM, route domains, partitions, pools, nodes, irules, GTM - DNS Management, GLB Desirable skills: Good client and relationship management ability with excellent oral and written communication and presentation skills Able to demonstrate flexibility, motivation as well as excellent problem solving and team working Knowledge of service monitoring and alerting (Nagios, Cacti preferred). Knowledge of configuration management (Puppet preferred). Ability to manage 3rd party vendors e.g. F5, Cisco

We are looking for a technically capable and detail-oriented Engineer to join our sales and support team for a well-known Security Integrator . You will be responsible for supporting cloud-hosted systems on AWS, with a strong focus on containerized environments using Docker and Docker Swarm. Our systems provide critical infrastructure for physical and electronic security solutions, so reliability, responsiveness, and attention to detail are essential. You'll work closely with development, security, and infrastructure teams to ensure uptime, resilience, and ongoing improvement of our platform. Key Responsibilities: Provide support for cloud-hosted production and staging environments used in electronic security platforms. Monitor, maintain, and troubleshoot distributed containerized services using Docker and Docker Swarm. Respond to and resolve incidents, working to minimize downtime and ensure high system availability. Investigate system performance, log anomalies, and service issues, escalating when appropriate. Collaborate with DevOps and software engineering teams to implement improvements and automation. Maintain thorough documentation of system configurations, processes, and known issues. Assist in system upgrades, patching, and performance tuning. Support security compliance and auditing activities where applicable. Participate in an on-call support rotation. Required Skills & Experience: 2+ years of experience in a technical support, DevOps, or infrastructure engineering role. Strong hands-on experience with Docker and Docker Swarm in a production environment. Proficiency with core AWS services: EC2, S3, CloudWatch, IAM, ELB, ECS/ Fargate, and RDS. Solid understanding of Linux server environments, command-line operations, and scripting. Experience in supporting real-time or mission-critical systems (security, IoT, or similar sectors). Familiarity with log aggregation, monitoring, and alerting tools (e.g., ELK, Prometheus, Grafana). Good understanding of networking, VPNs, load balancing, DNS, and firewalls. Comfortable with Git and CI/CD workflows. Excellent troubleshooting skills and structured problem-solving approach. Strong written and verbal communication skills. Desirable / Nice to Have: Experience with Microsoft Azure cloud services. Background or familiarity with electronic security systems, access control, or surveillance technology. Exposure to Infrastructure as Code tools (e.g., Terraform, CloudFormation). Knowledge of container security and cloud compliance best practices. Experience with scripting languages (e.g., Python, Bash, PowerShell). Understanding of security certifications or industry compliance (e.g., ISO 27001, SOC 2) is a plus. Experience with Kubernetes or OpenShift for container orchestration. Familiarity with CI/CD pipelines and automation tools (e.g., GitHub Actions, Jenkins). Exposure to monitoring tools like Prometheus, Grafana, or ELK stack. Experience supporting enterprise customers in a B2B SaaS or software product company. Experience with access control and intrusion detection systems. Familiarity with virtualization technologies (e.g., VMware, Hyper-V). Knowledge of database systems (e.g., PostgreSQL, MS SQL). Relevant industry certifications (e.g., CompTIA Network+, Security+, CCNA). Experience providing technical training to end-users. Required Qualifications: Experience: 3+ years in a technical support, DevOps, or systems engineering role. Hands-on experience with Docker, docker-compose, and container lifecycle management. Experience supporting or integrating MinIO or similar S3-compatible object storage. Technical Skills: Familiarity with advanced networking concepts and protocols (TCP/IP, DNS, DHCP, VLANs, routing, proxies, firewall configuration, etc.). Strong Ubuntu Linux system administration and troubleshooting skills. Proficient in working with CLI tools and analyzing logs. Experience with storage solutions, volume mounts, and container data persistence. Soft Skills: Excellent communication skills for dealing with technical and non-technical users. Problem-solving mindset with attention to detail. Excellent troubleshooting and problem-solving skills with a logical and methodical approach. Ability to manage multiple priorities and respond promptly to issues. Mayflower is acting as an Employment Agency in relation to this vacancy.

Senior Detection & Response Engineer Cambridgeshire Based - 1-2 days a week on site We are looking for a highly experienced Senior Detection & Response Engineer to join our client's growing security team. In this critical role, you'll be instrumental in developing a best-in-class incident response function, leading investigations into complex security events, and building scalable detection and response capabilities across the organisation. This is an exciting opportunity to work at the heart of a modern security operation - building the tools, automation, and processes that enable the business to detect, respond to, and learn from security threats effectively. What You'll Be Doing: Investigate and respond to security events with clarity and precision; triage, analyse, and manage incidents from end to end Develop and improve detection and response processes, technologies, and work flows Design and implement tools to collect and analyse security telemetry from cloud environments Automate security workflows to enhance detection accuracy and reduce response time Build and fine-tune detection rules to focus efforts on high-fidelity alerts Create and maintain runbooks and incident response playbooks Lead proactive threat hunting and incorporate findings into defensive measures Develop custom scripts and detection logic for advanced monitoring Collaborate cross-functionally with engineering and product teams to strengthen the security posture Continuously enhance detection capabilities, playbooks, and incident response processes What We're Looking For: Proven experience in security engineering, incident response, and threat hunting within cloud-first environments Deep understanding of offensive security and real-world attack scenarios Demonstrated experience leading complex investigations involving multiple stakeholders Expertise in AWS security controls and cloud-native security services Proficient in coding/scripting for automation, alert enrichment, and custom detections Familiarity with adversary TTPs and the MITRE ATT&CK framework Experience with endpoint forensics, malware analysis, and security event correlation Hands-on experience with SIEM and SOAR platforms Solid understanding of operating system internals (macOS, Windows, Linux) Experience with security in a SaaS environment and working closely with engineering teams Background in using DevOps toolsets and programming languages for building security tools Ability to lead projects independently and deliver results with minimal supervision If you are interested and looking for a new role, please apply with a copy of your CV or email (url removed)

Cyber Security SOC Analyst - London/Remote Atrium EMEA is looking for an accomplished Cyber Security SOC Analyst to support the Security Incident Response Team. The team is growing, we require a strong individual contributor that will investigate, analyse, and contain security incidents. This is a fully remote role, with the occasional London office visit. You can be based anywhere in the UK • Strong ability to collaborate, delegate tasks and drive deadline compliance in a highly regulated, time sensitive environment. Triage, escalation, and assisting the response of cybersecurity, policy and privacy related events and incidents. Manage containment and remediation efforts of affected assets, IOCs, and TTPs • Integrate and collaborate with other subject matter experts throughout the organization • Liaison with Cyber Defense, Privacy, Compliance, Legal, and Architecture teams • Perform host-based digital forensics on Microsoft Windows systems primarily and other operating systems and document findings in clear and concise language • Analysis of network data (packets, logs) and endpoint data (logs, malicious artifacts) in both structured and unstructured methods. • Preserve evidence (both network and host) using forensically sound methods • Identify deficiencies in processes and tools, recommend security controls and/or corrective actions for mitigating technical and business risk. • Integrate and collaborate with other subject matter experts throughout the organization. Essential: • Solid experience of Google Secops/Googlesecops • BS/BA in Computer Science, Computer Engineering, Cyber Security, Forensics and/or equivalent work experience. • Certification in cybersecurity (e.g. Security+, CCNA Cyber Ops, BTL1 and/or BTL2, GCIH, CEH, CySA+, OSCP, CISSP, CCSP etc.) • IT Security or Cyber Security experience in any of the following areas: Incident Response & Digital Forensics. Cybersecurity Detection Engineering and Threat Hunting or Vulnerability Management • Experience analysing attack vectors, current threats, and security remediation strategies • Experience with SIEM technologies, EDR technologies, and/or Asset isolation tools • Experience with cloud environment • Networking experience (including the OSI Model, TCP/IP, DNS, HTTP, SMTP), System Administration, and Security Architecture • Knowledge or certification of Crowdstrike, Darktrace, Sentinel is a plus • Experience with scripting and automation (Python, Powershell, Bash, KQL etc) • Financial services sector, a benefit/ Shift work NOT required Click Apply now/contact Lianne to be considered for the Cyber Security SOC Analyst - London/Remote role

L2 SOC Analyst London based (1-3 days office) £40-45k Our client are looking for a Level 2 SOC Engineer. This is a key role in the detection and response lifecycle within our Security Operations Centre. The role You will be responsible for triaging, investigating, and responding to cybersecurity incidents across customer environments using tools such as Microsoft Sentinel and Defender XDR. The role requires strong analytical skills, attention to detail, The ability to execute response actions such as endpoint isolation, IOC blocking, malware scans, and user containment Threat monitoring and detection Threat intelligence and hunting SOAR and automation Skills MS Sentinel / Defender for Endpoint Understanding Mitre Att&ck framework Required 2+ years exp in a SOC environment Experience from MSSP/MSP supporting multiple clients British Citizen SC Clearance

I am currently assisting a client who operate in a regulated industry, financial services, who are currently embarking a programme of work focused on maturity/designing and implementing security posture utilising SIEM tools such as Google Chronicle & implementing UEBA/SOAR (Security Orchestration, Automation, and Response / User and Entity Behaviour Analytics) built on GCP/Google Cloud so Google SecOps/Security Operations experience is highly desirable. Key Responsibilities; - Enable and validate UEBA alerting within Chronicle SIEM, based on log sources - Deliver a minimum viable UEBA capability with tested detection logic - Provide engineering support to accelerate onboarding of log sources required for UEBA enrichment and detection fidelity - Demonstrate the ability to work with Google Chronicle and SecOps APIs, specifically for the purpose of updating and managing reference data - Conduct current state assessment of detection engineering capabilities and log source coverage - Design and implement detection use cases aligned to MITRE ATT&CK framework - Enable SOAR integration by identifying high-fidelity detections and mapping Key Technical / IT Security Skills; - Chronicle SIEM - Google SecOps - UEBA Tooling - Windows Event Logs - BindPlane - MITRE ATT&CK - Strong SOC background - SOAR playbooks - GCP Finer Details; - Outside IR35 - Contract until End of December, possibly longer - Hybrid, 4 times a month in the London office Please apply for consideration

Security Engineer - 3-month contract - Northampton/Remote My Customer is looking for a proactive Security Engineer to join their team and take ownership of monitoring, triaging, and responding to security alerts across their Microsoft security ecosystem. Strong experience troubleshooting and responding to alerts would be the main focus of the role. Strong expertise with Microsoft Defender and Sentinel is needed. Key Skills & Experience from the Security Engineer Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within Sentinel or similar). Understanding of threat detection, log analysis, and automation within Microsoft's security ecosystem. Key Responsibilities of the Security Engineer Monitor, investigate, and respond to security alerts and incidents in Microsoft Sentinel and Microsoft Defender . Perform detailed security event analysis and correlation, escalating incidents where necessary. Develop and optimise SOAR (Security Orchestration, Automation and Response) playbooks to enhance incident response and efficiency. Collaborate with wider IT and security teams to improve threat detection, incident handling, and response processes. Beneficial Experience Exposure to Operational Technology (OT) environments. Experience with Tenable (vulnerability management). Knowledge of Microsoft Purview (data governance, compliance, and information protection). The Security Engineer is required onsite, 2 days a week in Northampton and 3 days remote. Apply now to speak with VIQU IT in confidence about the Security Engineer role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We'll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.

Technical Support Engineer - Fire Safety Systems Manchester up to 40,000 + Benefits Full Time, Permanent Applause IT are offering an opportunity for a Technical Support Engineer with experience in fire safety systems to join a growing technical team at a market-leading security and life safety solutions provider. As demand grows for their fire product range, this newly created position sits at the core of their expanding support division, providing office-based support to customers and engineers across the UK. If you're from a field engineering background or already in technical support for fire systems and looking to broaden your product knowledge and career path, this could be the ideal next step. About the Role This role sits within a growing national technical support team, now operating seamlessly across two locations. With the business evolving into a single, unified technical centre of excellence, this position offers the chance to contribute to a true one-stop-shop security platform. Initially focused on fire safety systems, you'll handle 1st and 2nd line support queries from customers, installers, and internal colleagues. Over time, you'll be trained across access control, door entry and potentially home automation technologies, opening doors for long-term progression into site support or commissioning alongside the field engineering team. Key Responsibilities: Provide telephone and email-based technical support for fire alarm products and systems. Take ownership of customer cases, providing timely, accurate troubleshooting and guidance. Help document solutions and create customer-facing technical materials. Collaborate closely with field engineers, product teams and customer service. Over time, support site visits with senior engineers for fault finding or commissioning. Stay current with hardware/software updates and new product releases. Support wider system specification and training queries where required. What We're Looking For: Solid experience supporting or commissioning fire safety systems (e.g. Gent, Kentec, C-TEC, Advanced, Morley, Protec, Fike, Notifier, etc.). Good knowledge of UK fire safety regulations and product standards. A background in electrical/electronic engineering - BTEC Level 4, NVQ or equivalent. Previous experience in technical support or customer-facing engineering. Strong fault-finding and diagnostic abilities. Excellent communication and problem-solving skills, particularly under pressure. A team-first attitude - calm, dependable, and able to stay level-headed when dealing with issues. Full UK driving licence (essential for future progression into field support if desired). Desirable: Experience with security systems such as access control, door entry, and CCTV. Knowledge of Microsoft Windows and general IT systems. A minimum of 5 years' experience in the physical security or life safety industry. Benefits Include: Competitive salary with bonus 25 days holiday + bank holidays, increasing with service Life assurance (4x salary) Health & wellbeing support including 24/7 online GP Annual events calendar and employee recognition schemes Pension (salary sacrifice) Perkbox benefits platform Free fresh fruit, treat days, social events Christmas shutdown Additional Details: Location: Manchester - Office-based Hours: 37.5 per week (typically 08:30-17:30 with staggered starts) Interviews: Remote Teams interview followed by face-to-face in Manchester Start: ASAP If you're a confident technical problem-solver with hands-on experience in fire detection systems - and you're ready to join a growing team at the forefront of the security and life safety industry - click apply now to be considered for the Technical Support Engineer role. Technical Support Engineer - Fire Safety Systems - Manchester up to 40,000 + Benefits Full Time, Permanent

Job Role: IT Director Location: Marylebone, London, W1 Hybrid: 3 days in Office Salary: 100k - 120k plus benefits Firm Overview Our client long-established firm of Chartered Accountants. They deliver services to the highest standards, combining deep technical expertise with a forward-thinking outlook. They pride themselves on building enduring relationships with their clients, many of whom are ultra-high-net-worth individuals and families offering bespoke advice that spans generations. Their team is known for its intelligence, ingenuity, and exacting attention to detail. They are trusted advisers, providing not only technical excellence but also constructive challenge and strategic insight when needed. Their services span compliance and advisory work, with specialist expertise across sectors including family offices, real estate, financial services, entertainment and charities. They also support family offices and offer tailored private client services. Role Overview The IT Director will lead the Firm's technology operations and projects, ensuring that our IT infrastructure supports the firm's commitment to excellence and client service. They will collaborate with the partners in setting the firm's Tech strategy to ensure this aligns with the wider business aims. This is a pivotal role that combines hands-on leadership with strategic input, requiring a deep understanding of enterprise-grade IT systems within a cost-conscious, professional services environment. The successful candidate will report directly to the Partners and oversee one in-house IT engineer/manager. They will also manage relationships with external IT support providers and vendors. The IT Director will be responsible for ensuring that our systems are secure, scalable, and aligned with the Firm's high standards of governance and performance. Key Responsibilities Infrastructure & Operations - Oversee the Firm's cloud-based infrastructure (AVD on Microsoft Azure), ensuring performance, reliability, and scalability. - Oversee the Firm's line of business applications ( including the Microsoft suite, Teams, CCH Central, Virtual Cabinet, Caseware, Alphatax) - Manage hardware and software lifecycles, including procurement, deployment, and retirement. - Ensure robust update control, patch management, and system monitoring. Governance & Security - Implement and maintain strong IT governance frameworks, including risk management and compliance. - Lead cybersecurity strategy, including threat detection, incident response, and staff awareness training. - Ensure compliance with GDPR and other relevant regulations. Vendor & License Management - Manage relationships with external IT support providers and software vendors. - Negotiate contracts, monitor SLAs, and ensure cost-effective service delivery. - Maintain accurate records of software licenses and ensure compliance. Strategic Leadership - In conjunction with the partners, develop and execute an IT strategy that aligns with the Firm's business goals and client service ethos. - Advise Partners on emerging technologies and implement impactful solutions, including AI, automation, and data analytics. - Conduct horizon scanning to identify innovations that enhance operational efficiency and client experience. Project Management - Lead IT projects including system upgrades, software implementations, and process improvements. - Collaborate with internal stakeholders to define requirements and deliver tailored solutions. Training & Communication - Promote IT literacy across the Firm through structured training and informal support. - Communicate technical concepts clearly and effectively to non-technical audiences. - Foster a culture of continuous improvement and proactive problem-solving. Team Leadership - Supervise and mentor the in-house IT engineer/manager, providing guidance and performance management. - Build a collaborative, service-oriented IT function that reflects the Firm's values. Skills & Experience Essential - Proven experience as an IT Director or Head of IT in a professional services firm. - Strong technical knowledge of Microsoft 365, Azure, AVD and best-in-breed accounting and tax solutions. - Demonstrated success in IT operations, infrastructure management, and vendor oversight. - Deep understanding of cybersecurity principles and regulatory compliance. - Excellent communication, leadership, and stakeholder engagement skills. Desirable - Experience with AI and RPA tools and their application in professional services. - Familiarity with our line-of-business applications. - Project management certification or equivalent experience. - Exposure to ISO 27001 or similar standards. INDIT Planet Recruitment acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Planet Recruitment is an Equal Opportunities Employer. By applying for this role your details will be submitted to Planet Recruitment. Our Candidate Privacy Information Statement explains how we will use your information. Only candidates with the relevant skills and experience will be contacted after application, if you do not hear back from us within 7 days you have unfortunately been unsuccessful in your application. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and abilities to perform the duties of the position.

Job Title: DevSecOps Engineer - Security Automation Location: Remote (occasional on-site collaboration as needed) Start Date: ASAP Duration: 12-month contract (potential extension) Rate: 400 to 450 Overview Our client is seeking an experienced DevSecOps Engineer to design and implement automated security workflows across their infrastructure. After deciding against expanding their SOC to a full 24x7 model, the business is investing in automation to improve detection-to-response times and reduce manual intervention. The successful candidate will collaborate with SOC teams, developers, and infrastructure engineers to build automated remediation processes that can isolate or shut down affected systems when a threat is detected. Key Responsibilities Design and deploy automated security workflows and integrations between SOC tools and internal systems. Collaborate with SOC analysts, cloud, and development teams to streamline detection and response. Build infrastructure-as-code and automation scripts to support secure, repeatable operations. Document workflows and provide handover guidance to internal teams. Skills & Experience Strong experience in DevSecOps, Security Automation, or Infrastructure Engineering. Proficient in scripting languages (e.g. Python, PowerShell, Bash). Hands-on with IaC tools (Terraform, Ansible, CloudFormation). Solid understanding of SOC operations, incident response, and security monitoring. Preferred Background in large-scale or regulated environments. Knowledge of CI/CD pipelines and secure DevOps practices. Personal Attributes Proactive, analytical, and automation-focused. Excellent collaborator with strong communication skills. Comfortable working independently in a fast-paced, high-availability environment.

My client, a Global organisation based in Newcastle city centre are seeking an experienced Head of Security and Platform Engineering to start ASAP. This pivotal role takes the lead in delivering breakthrough improvements in reliability and performance across technology platforms, ensuring our systems consistently exceed expectations. As the leading force behind our cyber security agenda, you will champion a step change in modern security controls introducing cutting-edge measures that protect the business. You will lead four core technology towers, and inspire teams to set bold targets, measure progress, and celebrate success as we raise the bar for platform resilience, scalability, and security. Key Responsibilities: Strategic Leadership & Governance Define and drive the vision, strategy, and roadmaps for Platform towers, aligned with business objectives and risk appetite. Oversee integration and collaboration across the four core platform towers: Digital Workspace Services (DWS) Support and System Reliability Engineering (SSRE) Platform and Cloud Engineering (PaCE) Security & Network Operations (SNOPs) Establish and socialise the Cyber Security Strategy and Roadmap, ensuring alignment with enterprise resilience and regulatory requirements Cyber Security Leadership Shape the cyber security vision and build a corresponding technical roadmap which delivers a world class security controls across cloud infrastructure, networks, end points, identity & access management, application security, and threat detection. Collaborate closely with the SNOPs Lead to adapt the SNOPs roadmap priorities in line with shifts in industry, evolving threat landscape and regulatory requirements. Ensure effective 24/7 security operations (inc. security incident management) Collaborate closely with the Enterprise Resilience function (1st Line of Defence) to ensure integrated risk management and incident response. Promote stakeholder engagement and cross-functional collaboration to embed a culture of security awareness and ownership across the organisation. Operational Oversight Ensure high availability, performance, and security of all technology systems and infrastructure. Monitor and improve service levels, incident resolution times, and system reliability metrics. Lead cross-functional coordination for escalations, major incidents, and service continuity planning. Team Leadership & Development Provide leadership and direction to platform tower leads Foster a culture of continuous improvement, collaboration, and innovation across all teams. Support recruitment, onboarding, and capability development to meet evolving technology needs. Technology Platform Delivery Oversee the delivery and lifecycle management of: Microsoft 365 and collaboration platforms Cloud platforms (design, automation, cost optimisation) Network and security operations (compliance, threat management) Monitoring, observability, and backup/recovery systems Ensure alignment with architectural standards and regulatory requirements (e.g., DORA, Cyber Essentials Plus). Stakeholder Engagement Act as the escalation point for unresolved issues across platform towers. Collaborate with product teams, business units, and external vendors to ensure service excellence and alignment with user needs. Represent Technology in all relevant Information Security, Risk and project Committees, ensuring visibility and accountability for and robust management of cyber security risks. Represent Security and Platforms and in governance forums such as the Architectural Review Board (ARB). Essential Skills Proven leadership in managing cyber security and cross-functional technology teams in a complex, global environment. Deep understanding of IT infrastructure, cloud platforms (e.g., Azure), and enterprise collaboration tools (e.g., Microsoft 365). Strong grasp of ITIL-based service management, including incident, change, and problem management. Expertise in security and compliance frameworks, including DORA and Cyber Essentials Plus. Prior hands-on experience in delivering security solutions within enterprise environments Knowledge of disaster recovery, business continuity, and vulnerability management. Excellent communication, stakeholder management, and vendor negotiation skills. Qualifications Bachelor s degree in Computer Science, Information Systems, or a related field (Master s preferred). ITIL Foundation certification (Intermediate or Expert level desirable). Relevant cloud certifications (e.g., Microsoft Certified: Azure Solutions Architect, AWS Certified Solutions Architect). Experience 10+ years in IT leadership roles, with at least 5 years managing platform or infrastructure services. Demonstrated success in leading digital transformation or cloud migration initiatives. Experience working in regulated environments with a strong focus on security and compliance The role is Hybrid working 3 office days a week in a central Newcastle location great for transport links by train, car or bus. Apply now for immediate consideration.

I am currently assisting a client who operate in a regulated industry, financial services, who are currently embarking a programme of work focused on maturity/designing and implementing security posture utilising SIEM tools such as Google Chronicle & implementing UEBA/SOAR (Security Orchestration, Automation, and Response / User and Entity Behaviour Analytics) built on GCP/Google Cloud so Google SecOps/Security Operations experience is highly desirable. Key Responsibilities; - Enable and validate UEBA alerting within Chronicle SIEM, based on log sources - Deliver a minimum viable UEBA capability with tested detection logic - Provide engineering support to accelerate onboarding of log sources required for UEBA enrichment and detection fidelity - Demonstrate the ability to work with Google Chronicle and SecOps APIs, specifically for the purpose of updating and managing reference data - Conduct current state assessment of detection engineering capabilities and log source coverage - Design and implement detection use cases aligned to MITRE ATT&CK framework - Enable SOAR integration by identifying high-fidelity detections and mapping Key Technical / IT Security Skills; - Chronicle SIEM - Google SecOps - UEBA Tooling - Windows Event Logs - BindPlane - MITRE ATT&CK - Strong SOC background - SOAR playbooks - GCP Finer Details; - Outside IR35 - Contract until End of December, possibly longer - Hybrid, 4 times a month in the London office Please apply for consideration

Security Engineer 3-month contract Northampton/Remote My Customer is looking for a proactive Security Engineer to join their team and take ownership of monitoring, triaging, and responding to security alerts across their Microsoft security ecosystem. Strong experience troubleshooting and responding to alerts would be the main focus of the role. Strong expertise with Microsoft Defender and Sentinel is needed. Key Skills & Experience from the Security Engineer Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within Sentinel or similar). Understanding of threat detection, log analysis, and automation within Microsoft s security ecosystem. Key Responsibilities of the Security Engineer Monitor, investigate, and respond to security alerts and incidents in Microsoft Sentinel and Microsoft Defender . Perform detailed security event analysis and correlation, escalating incidents where necessary. Develop and optimise SOAR (Security Orchestration, Automation and Response) playbooks to enhance incident response and efficiency. Collaborate with wider IT and security teams to improve threat detection, incident handling, and response processes. Beneficial Experience Exposure to Operational Technology (OT) environments. Experience with Tenable (vulnerability management). Knowledge of Microsoft Purview (data governance, compliance, and information protection). The Security Engineer is required onsite, 2 days a week in Northampton and 3 days remote. Apply now to speak with VIQU IT in confidence about the Security Engineer role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We ll thank you with up to £1,000 if your referral is successful (terms apply). For more exciting roles and opportunities like this, please follow us on IT Recruitment.

I am currently looking for 2 experienced Cyber Security Engineers (DV Cleared) for a client, based in Milton Keynes with occasional travel to London. DV Clearance is essential - applicants without current clearance unfortunately cannot be considered. About the Role: These roles sit within a client's Cybersecurity Operations function. You will play a key part in designing, implementing, and maintaining the platforms that support enterprise-scale security operations. From SIEM and log collection to endpoint detection, automation, and integration, you'll help ensure the SOC team has the reliable and scalable infrastructure it needs to detect, investigate, and respond to threats. Responsibilities: Manage and optimise SIEM platforms (Splunk, Microsoft Sentinel, open-source alternatives) across hybrid-cloud environments Configure and maintain log/data pipelines from endpoints, cloud services, and network devices Ensure high availability, reliability, and performance of core security platforms Integrate new security tools into the ecosystem, including automation via APIs, Scripting, and AI Maintain clear documentation, diagrams, and procedures to support knowledge sharing and consistency Skills & Experience: Strong hands-on experience with SIEM technologies (Splunk, Sentinel, etc.) Knowledge of cloud platforms (Azure, AWS, GCP) and hybrid environments Scripting skills (Python, PowerShell) for automation and integration Experience with SOAR and SecDevOps practices (Git, GitHub, Azure DevOps, CI/CD) Good understanding of frameworks such as NIST, MITRE ATT&CK, CAF Background in Incident Response or SOC analysis is highly valued Soft Skills: Strong analytical and problem-solving mindset Effective communication and collaboration skills Ability to thrive in a fast-paced, dynamic environment Certifications (Splunk, Microsoft, SANS, etc.) are desirable but not required. Location: Milton Keynes (with some travel to London) Positions: 2 available If you're DV cleared and want to take on a challenging and rewarding role with a leading organisation, I'd love to hear from you.