Job Title: Cyber Security Operations Manager Location: Liverpool City Centre on a Hybrid working basis Salary: Up to 75,000 per annum Depending on experience Job Type: Permanent, Full Time Working Hours: 37.5 hours per week, Monday to Friday Acorn are looking to recruit a brand-new role as a Cyber Security Operations Manager. The Cyber Security Operations Manager will lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams, the manager ensures that security operations are proactive, resilient, and aligned with business needs. Responsibilities: Lead and manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication, recovery, and post-incident review. Coordinate major incident management with IT Infrastructure, Cloud, and Business teams. Ensure lessons learned are captured and drive meaningful improvement. Oversee the vulnerability management programme, ensuring timely identification, prioritisation, and remediation of risks. Partner with asset owners to ensure patches, configuration hardening, and remediation actions are completed. Support risk assessment processes and provide input to security governance and compliance teams. Ensure the design, tuning, and optimisation of detection rules, alerts, and correlation logic across security platforms. Drive automation initiatives using SOAR to improve response speed and reduce operational workload. Maintain robust coverage across cloud, on premise, network, and endpoint environments. Build capability through training, certifications, and knowledge-sharing programmes. Work with technology, business, and leadership teams to communicate risks, incidents, and security posture. Support audits, regulatory assessments, and customer assurance activities About you: Requirements: Experience managing a SOC or security operations function within a complex enterprise environment. Strong understanding of SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ATT&CK, ISO 27001, or CIS Controls. Demonstrated expertise in incident response and threat management. Experience working in hybrid cloud environments (Azure, AWS, or GCP). Grow with Acorn: We bring over 40 years of specialist insurance expertise to the table. From humble beginnings, we've grown into a national leader, now employing 1,700+ people across the UK. We're growing fast, with new opportunities emerging every week. That growth is largely due to the values we share: We run through walls for our customers and each other We challenge the status quo We succeed when we help those around us succeed We decide quickly when the smart thing to do is use our judgement Benefits: 35 days' holiday (including bank holidays) with additional buy/sell options 24/7 mental health support & free counselling available Grow with us: Through career fairs, leadership programs, and learning on the go! Flexible benefits, including early access to salary via our internal platform Hybrid working options to support work-life balance and individual needs Recognition awards, social events & more Our Commitment to our colleague's: Earn recognition and accreditation from leading organisations that share our commitment to people and growth: Mindful Employer Disability Confident Level 1 & 2 Menopause Friendly accredited Armed Forces Covenant signatory Great Places to Work 2024/25 Best Place to Work for Development Best Place to Work for Women Before applying, please know: If your application is successful, we will run relevant employment checks prior to your employment with us. These will include a standard criminal record check and an insolvency register check. Visa Requirements We can only consider applicants who have at least one year remaining on their Graduate or Post-Study Work visa. At the moment, we're not able to offer visa sponsorship. We're Here to Support You We're committed to creating an inclusive, supportive workplace where everyone can flourish. If you need any adjustments during the recruitment process-or once you're part of the team-we'll work with you to make sure you can do your best work. Please click the APPLY button to submit your CV for this role. Candidates with experience or relevant job titles of; Cyber Security Consultant, Head of Cyber Security, Cyber Security Operations Supervisor, IT Cloud Operations Manager may also be considered for this role.
02/04/2026
Full time
Job Title: Cyber Security Operations Manager Location: Liverpool City Centre on a Hybrid working basis Salary: Up to 75,000 per annum Depending on experience Job Type: Permanent, Full Time Working Hours: 37.5 hours per week, Monday to Friday Acorn are looking to recruit a brand-new role as a Cyber Security Operations Manager. The Cyber Security Operations Manager will lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams, the manager ensures that security operations are proactive, resilient, and aligned with business needs. Responsibilities: Lead and manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication, recovery, and post-incident review. Coordinate major incident management with IT Infrastructure, Cloud, and Business teams. Ensure lessons learned are captured and drive meaningful improvement. Oversee the vulnerability management programme, ensuring timely identification, prioritisation, and remediation of risks. Partner with asset owners to ensure patches, configuration hardening, and remediation actions are completed. Support risk assessment processes and provide input to security governance and compliance teams. Ensure the design, tuning, and optimisation of detection rules, alerts, and correlation logic across security platforms. Drive automation initiatives using SOAR to improve response speed and reduce operational workload. Maintain robust coverage across cloud, on premise, network, and endpoint environments. Build capability through training, certifications, and knowledge-sharing programmes. Work with technology, business, and leadership teams to communicate risks, incidents, and security posture. Support audits, regulatory assessments, and customer assurance activities About you: Requirements: Experience managing a SOC or security operations function within a complex enterprise environment. Strong understanding of SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ATT&CK, ISO 27001, or CIS Controls. Demonstrated expertise in incident response and threat management. Experience working in hybrid cloud environments (Azure, AWS, or GCP). Grow with Acorn: We bring over 40 years of specialist insurance expertise to the table. From humble beginnings, we've grown into a national leader, now employing 1,700+ people across the UK. We're growing fast, with new opportunities emerging every week. That growth is largely due to the values we share: We run through walls for our customers and each other We challenge the status quo We succeed when we help those around us succeed We decide quickly when the smart thing to do is use our judgement Benefits: 35 days' holiday (including bank holidays) with additional buy/sell options 24/7 mental health support & free counselling available Grow with us: Through career fairs, leadership programs, and learning on the go! Flexible benefits, including early access to salary via our internal platform Hybrid working options to support work-life balance and individual needs Recognition awards, social events & more Our Commitment to our colleague's: Earn recognition and accreditation from leading organisations that share our commitment to people and growth: Mindful Employer Disability Confident Level 1 & 2 Menopause Friendly accredited Armed Forces Covenant signatory Great Places to Work 2024/25 Best Place to Work for Development Best Place to Work for Women Before applying, please know: If your application is successful, we will run relevant employment checks prior to your employment with us. These will include a standard criminal record check and an insolvency register check. Visa Requirements We can only consider applicants who have at least one year remaining on their Graduate or Post-Study Work visa. At the moment, we're not able to offer visa sponsorship. We're Here to Support You We're committed to creating an inclusive, supportive workplace where everyone can flourish. If you need any adjustments during the recruitment process-or once you're part of the team-we'll work with you to make sure you can do your best work. Please click the APPLY button to submit your CV for this role. Candidates with experience or relevant job titles of; Cyber Security Consultant, Head of Cyber Security, Cyber Security Operations Supervisor, IT Cloud Operations Manager may also be considered for this role.
Job Tittle: EUC Architect Location: Belfast, Coleraine, Derry - Londonderry - 1 to 2 days per week onsite Contract Type: Permanent, Full-Time Salary: Circa £45000 - £47,000/Annum Are you ready to take your career to the next level? Our client, a forward-thinking organisation in the Information Technology sector, is seeking an enthusiastic and experienced End User Compute Architect to join their dynamic team. This is a hands-on technical architect role focused on designing, improving, and delivering modern End User Compute (EUC) services. You'll play a key role in shaping how staff and students access IT systems-driving innovation across device management, endpoint security, and cloud-based technologies. About the Role: As the End User Compute Architect, you will be at the forefront of implementing innovative deployment methodologies and technologies that elevate our end-user compute services. You will have the autonomy to influence the adoption of emerging technologies and play a vital role in shaping the future of our organisation's IT landscape. Who You Are: You possess expertise in cloud MDM/MAM technologies and have experience with endpoint management and security tools. You have a knack for Scripting (preferably PowerShell) and a background in managing technical delivery teams. You excel in problem-solving and have strong interpersonal skills to communicate effectively with both technical and non-technical stakeholders. Experienced in Microsoft Endpoint Manager (Intune) or Jamf Pro SCCM/MECM (imaging, patching, application deployment) VDI/Desktop as a Service (eg Azure Virtual Desktop) Endpoint Security (AV, EDR, threat protection) PowerShell Scripting and automation Key Responsibilities: Design and deliver modern End User Compute (EUC) services Lead the implementation of device management and deployment strategies Manage and enhance endpoint platforms (desktop, mobile, VDI) Drive adoption of cloud-based MDM/MAM solutions Manage and coordinate defined "evaluation and investigation" activity aimed at supporting and developing the integration and adoption of the use of corporate approved and centrally managed technology platforms and associated configurations. Initiate and execute centralised service management responsibilities, service performance monitoring, design of software and operating system deployment methods and the production of reporting and monitoring procedures relating to end user device security (eg virus and malware threats). Maintain, manage and develop the endpoint management platforms, endpoint security and Virtual Desktop Infrastructure, including image creation, deployment and maintenance, application packaging and deployment, deployment of security updates and vulnerability management. Research, develop, promote, and support endpoint management and deployment technologies and associated desktop tools. Continuously seek to automate processes including application deployments and management using major Scripting languages such as PowerShell and batch Scripting. Provide a technical consultancy and support service to ICT support staff and to faculty ICT support staff responsible for the deployment and delivery of staff and student services, via managed roll-out projects. Manage and develop the secure configuration and deployment of tailored policies responsible for ensuring effective deployment of endpoint protection capabilities. Represent the department as a technical liaison with maintenance and service providers to resolve operational problems and to contribute to cyclical customer-supplier reviews. Function as the primary technical resource and trusted advisory for internal stakeholder engagements pertaining to endpoint hardware configuration and life cycle management, corresponding procurement activities, endpoint compliance requirements and application requirements. Create technical content and guidance documentation and deliver training courses and knowledge transfer sessions pertaining to new and improved End User Compute services. Why Join Us? Be a part of a supportive and innovative team where your ideas and contributions matter. Enjoy a competitive salary and the opportunity for professional growth. Work in a flexible, hybrid environment that values work-life balance. If you are excited about leveraging technology to improve end-user experiences and meet the qualifications listed above, we would love to hear from you! Apply today to seize this opportunity to make a real impact! Note: Applications must be submitted through the official application form available at [our client's website]. CVs will not be accepted as a substitute for the application form. Join our client in shaping the future of technology. Your journey starts here! Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you.
02/04/2026
Full time
Job Tittle: EUC Architect Location: Belfast, Coleraine, Derry - Londonderry - 1 to 2 days per week onsite Contract Type: Permanent, Full-Time Salary: Circa £45000 - £47,000/Annum Are you ready to take your career to the next level? Our client, a forward-thinking organisation in the Information Technology sector, is seeking an enthusiastic and experienced End User Compute Architect to join their dynamic team. This is a hands-on technical architect role focused on designing, improving, and delivering modern End User Compute (EUC) services. You'll play a key role in shaping how staff and students access IT systems-driving innovation across device management, endpoint security, and cloud-based technologies. About the Role: As the End User Compute Architect, you will be at the forefront of implementing innovative deployment methodologies and technologies that elevate our end-user compute services. You will have the autonomy to influence the adoption of emerging technologies and play a vital role in shaping the future of our organisation's IT landscape. Who You Are: You possess expertise in cloud MDM/MAM technologies and have experience with endpoint management and security tools. You have a knack for Scripting (preferably PowerShell) and a background in managing technical delivery teams. You excel in problem-solving and have strong interpersonal skills to communicate effectively with both technical and non-technical stakeholders. Experienced in Microsoft Endpoint Manager (Intune) or Jamf Pro SCCM/MECM (imaging, patching, application deployment) VDI/Desktop as a Service (eg Azure Virtual Desktop) Endpoint Security (AV, EDR, threat protection) PowerShell Scripting and automation Key Responsibilities: Design and deliver modern End User Compute (EUC) services Lead the implementation of device management and deployment strategies Manage and enhance endpoint platforms (desktop, mobile, VDI) Drive adoption of cloud-based MDM/MAM solutions Manage and coordinate defined "evaluation and investigation" activity aimed at supporting and developing the integration and adoption of the use of corporate approved and centrally managed technology platforms and associated configurations. Initiate and execute centralised service management responsibilities, service performance monitoring, design of software and operating system deployment methods and the production of reporting and monitoring procedures relating to end user device security (eg virus and malware threats). Maintain, manage and develop the endpoint management platforms, endpoint security and Virtual Desktop Infrastructure, including image creation, deployment and maintenance, application packaging and deployment, deployment of security updates and vulnerability management. Research, develop, promote, and support endpoint management and deployment technologies and associated desktop tools. Continuously seek to automate processes including application deployments and management using major Scripting languages such as PowerShell and batch Scripting. Provide a technical consultancy and support service to ICT support staff and to faculty ICT support staff responsible for the deployment and delivery of staff and student services, via managed roll-out projects. Manage and develop the secure configuration and deployment of tailored policies responsible for ensuring effective deployment of endpoint protection capabilities. Represent the department as a technical liaison with maintenance and service providers to resolve operational problems and to contribute to cyclical customer-supplier reviews. Function as the primary technical resource and trusted advisory for internal stakeholder engagements pertaining to endpoint hardware configuration and life cycle management, corresponding procurement activities, endpoint compliance requirements and application requirements. Create technical content and guidance documentation and deliver training courses and knowledge transfer sessions pertaining to new and improved End User Compute services. Why Join Us? Be a part of a supportive and innovative team where your ideas and contributions matter. Enjoy a competitive salary and the opportunity for professional growth. Work in a flexible, hybrid environment that values work-life balance. If you are excited about leveraging technology to improve end-user experiences and meet the qualifications listed above, we would love to hear from you! Apply today to seize this opportunity to make a real impact! Note: Applications must be submitted through the official application form available at [our client's website]. CVs will not be accepted as a substitute for the application form. Join our client in shaping the future of technology. Your journey starts here! Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you.
The Company: A long-established organisation with over a century of experience in manufacturing and defense projects. With a focus on advancing engineering technology through innovative solutions, especially in the field of sustainable propulsion systems-moving from hybrid to alternative fuel technologies, including hydrogen. Their ongoing development is driven by a commitment to core values: safety, sustainability, quality, innovation, excellence, and teamwork. Overview: The IT Manager leads the delivery, security, reliability, and ongoing improvement of IT services and infrastructure, acting as the strategic link between technology and business objectives. Reporting to the Head of Finance and IT, this role oversees IT Infrastructure and Support functions, managing a team of two and ensuring seamless, secure, and scalable IT operations across the business. Key Responsibilities: People Leadership: Manage, mentor, and develop IT Infrastructure Engineer and IT Support Engineer. Oversee performance, resource planning, and foster a culture of accountability and continuous improvement. IT Operations & Service Delivery: Ensure delivery of reliable IT services that meet business SLAs. Oversee incident, problem, and change management processes, serving as an escalation point for technical issues. Infrastructure Management: Direct the design, implementation, and maintenance of on-premises, cloud, and hybrid IT infrastructure. Ensure system availability, resilience, and compliance with recovery and continuity plans. End-User Support: Drive high-quality, consistent end-user support. Oversee device life cycle, onboarding/offboarding, and enhance user satisfaction with a focus on self-service and knowledge sharing. Security & Compliance: Enforce IT security standards and compliance with policies and regulatory requirements. Oversee risk management, vulnerability patching, and audit readiness. Strategy & Budget: Develop and execute IT strategy in alignment with business goals. Manage IT budgets, vendor relationships, and prioritise technology investments. Process & Governance: Implement and maintain IT policies, procedures, and ITIL-aligned service management best practices. Track operational KPIs and optimise processes through documentation and automation. Experience: 5-10+ years' experience in IT operations or infrastructure/support; 2-5+ years in a management role Knowledge of business system/ERP implementation Experience with Cyber Essentials/Cyber Essentials Plus Experience managing infrastructure and service desk teams Strong technical knowledge (enterprise infrastructure, cloud platforms, IT support operations) Experience with ITSM frameworks (ITIL preferred), budgeting, and vendor management Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to diversity, equity and inclusion. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data:
02/04/2026
Full time
The Company: A long-established organisation with over a century of experience in manufacturing and defense projects. With a focus on advancing engineering technology through innovative solutions, especially in the field of sustainable propulsion systems-moving from hybrid to alternative fuel technologies, including hydrogen. Their ongoing development is driven by a commitment to core values: safety, sustainability, quality, innovation, excellence, and teamwork. Overview: The IT Manager leads the delivery, security, reliability, and ongoing improvement of IT services and infrastructure, acting as the strategic link between technology and business objectives. Reporting to the Head of Finance and IT, this role oversees IT Infrastructure and Support functions, managing a team of two and ensuring seamless, secure, and scalable IT operations across the business. Key Responsibilities: People Leadership: Manage, mentor, and develop IT Infrastructure Engineer and IT Support Engineer. Oversee performance, resource planning, and foster a culture of accountability and continuous improvement. IT Operations & Service Delivery: Ensure delivery of reliable IT services that meet business SLAs. Oversee incident, problem, and change management processes, serving as an escalation point for technical issues. Infrastructure Management: Direct the design, implementation, and maintenance of on-premises, cloud, and hybrid IT infrastructure. Ensure system availability, resilience, and compliance with recovery and continuity plans. End-User Support: Drive high-quality, consistent end-user support. Oversee device life cycle, onboarding/offboarding, and enhance user satisfaction with a focus on self-service and knowledge sharing. Security & Compliance: Enforce IT security standards and compliance with policies and regulatory requirements. Oversee risk management, vulnerability patching, and audit readiness. Strategy & Budget: Develop and execute IT strategy in alignment with business goals. Manage IT budgets, vendor relationships, and prioritise technology investments. Process & Governance: Implement and maintain IT policies, procedures, and ITIL-aligned service management best practices. Track operational KPIs and optimise processes through documentation and automation. Experience: 5-10+ years' experience in IT operations or infrastructure/support; 2-5+ years in a management role Knowledge of business system/ERP implementation Experience with Cyber Essentials/Cyber Essentials Plus Experience managing infrastructure and service desk teams Strong technical knowledge (enterprise infrastructure, cloud platforms, IT support operations) Experience with ITSM frameworks (ITIL preferred), budgeting, and vendor management Robert Half Ltd acts as an employment business for temporary positions and an employment agency for permanent positions. Robert Half is committed to diversity, equity and inclusion. Suitable candidates with equivalent qualifications and more or less experience can apply. Rates of pay and salary ranges are dependent upon your experience, qualifications and training. If you wish to apply, please read our Privacy Notice describing how we may process, disclose and store your personal data:
Infrastructure Analyst - Endpoint Patching & Vulnerability - 12 Months FTC: Endpoint Platforms, SCCM/MECM, Intune, MS O365, MS Defender, Meraki Systems, Apple Business Manager. 12 Month Fixed Term Contract | Birmingham, West Midlands (Hybrid) | £50,000 - £55,000 per annum Join an award - winning business to play a critical role in protecting & strengthening their digital estate. This is a rare opportunity for an experienced Infrastructure Analyst to take ownership of endpoint patching, vulnerability remediation and compliance across a large, complex Windows environment. Working hand-in-hand with Information Security, you'll make a real, measurable impact from day one. What you'll be doing: Partner with Information Security to understand vulnerability findings, agree priorities and deliver timely remediation. Coordinate, test and deploy Windows OS and application patches in line with change and release processes. Manage enterprise Endpoint platforms including SCCM/MECM, Intune, Meraki Systems Manager, Apple Business Manager, Microsoft 365 and Microsoft Defender. Support Endpoint-related projects including Windows upgrades and security tooling improvements. Maintain patching schedules, deployment rings and maintenance windows to minimise business disruption. Monitor patching outcomes, resolve failures and drive compliance across the estate. Produce clear compliance, remediation and audit-ready reporting for technical and non-technical stakeholders. Create and maintain high-quality documentation, runbooks and knowledge articles. Provide technical consultancy to projects and third-party partners. What you'll bring: Strong experience managing Windows endpoint platforms and life cycle management. Hands-on expertise with SCCM/MECM, Microsoft Intune and endpoint update policies. Good working knowledge of Meraki Systems Manager and mobile platforms (iOS/Android). Deep understanding of OS and third-party patch management and vulnerability remediation. Ability to work to risk-based priorities (severity, CVSS and remediation SLAs). Strong PowerShell skills to automate and optimise endpoint operations. Proven troubleshooting skills for complex patching and compliance issues. Experience working within a structured ITIL/change-managed environment. What you'll receive: £50,000 - £55,000 per annum (12-month Fixed Term Contract). 35-hour working week with flexibility to support work-life balance. Hybrid Working 26 days annual leave plus bank holidays. Generous Pension Private medical cover, dental plan, cycle-to-work and wellbeing schemes. Call Experis IT
02/04/2026
Infrastructure Analyst - Endpoint Patching & Vulnerability - 12 Months FTC: Endpoint Platforms, SCCM/MECM, Intune, MS O365, MS Defender, Meraki Systems, Apple Business Manager. 12 Month Fixed Term Contract | Birmingham, West Midlands (Hybrid) | £50,000 - £55,000 per annum Join an award - winning business to play a critical role in protecting & strengthening their digital estate. This is a rare opportunity for an experienced Infrastructure Analyst to take ownership of endpoint patching, vulnerability remediation and compliance across a large, complex Windows environment. Working hand-in-hand with Information Security, you'll make a real, measurable impact from day one. What you'll be doing: Partner with Information Security to understand vulnerability findings, agree priorities and deliver timely remediation. Coordinate, test and deploy Windows OS and application patches in line with change and release processes. Manage enterprise Endpoint platforms including SCCM/MECM, Intune, Meraki Systems Manager, Apple Business Manager, Microsoft 365 and Microsoft Defender. Support Endpoint-related projects including Windows upgrades and security tooling improvements. Maintain patching schedules, deployment rings and maintenance windows to minimise business disruption. Monitor patching outcomes, resolve failures and drive compliance across the estate. Produce clear compliance, remediation and audit-ready reporting for technical and non-technical stakeholders. Create and maintain high-quality documentation, runbooks and knowledge articles. Provide technical consultancy to projects and third-party partners. What you'll bring: Strong experience managing Windows endpoint platforms and life cycle management. Hands-on expertise with SCCM/MECM, Microsoft Intune and endpoint update policies. Good working knowledge of Meraki Systems Manager and mobile platforms (iOS/Android). Deep understanding of OS and third-party patch management and vulnerability remediation. Ability to work to risk-based priorities (severity, CVSS and remediation SLAs). Strong PowerShell skills to automate and optimise endpoint operations. Proven troubleshooting skills for complex patching and compliance issues. Experience working within a structured ITIL/change-managed environment. What you'll receive: £50,000 - £55,000 per annum (12-month Fixed Term Contract). 35-hour working week with flexibility to support work-life balance. Hybrid Working 26 days annual leave plus bank holidays. Generous Pension Private medical cover, dental plan, cycle-to-work and wellbeing schemes. Call Experis IT
Information Security Manager £70,000 - £80,000 London - hybrid working A well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a key time as the organisation expands its technical capability, with ambitious growth plans and multiple mergers and acquisitions planned. The business is looking for a hands-on InfoSec professional who can manage how data is handled, accessed, secured and maintained across its lifecycle. Responsibilities: Own and manage data lifecycle processes, ensuring data is secure, accessible and properly maintained from creation through to deletion Oversee third-party and supplier security, ensuring appropriate controls and risk management are in place Manage and process Data Subject Access Requests (DSARs) and related data handling activities Support patch management and vulnerability remediation across systems and applications Utilise tools such as Microsoft Purview to manage data visibility, classification and control Identify and mitigate information security risks across systems, suppliers and processes Collaborate with IT, Legal, HR and wider business teams to embed strong security practices Develop reporting and insights on security and data activities, ideally using Power BI Support ongoing security improvements in line with business growth and M&A activity Requirements: Strong experience in Information Security, with a focus on data handling and lifecycle management Practical experience managing third-party/supplier risk Good understanding of GDPR and data protection, particularly in real-world application (e.g. DSARs) Experience with Microsoft Purview (Varonis beneficial but not essential) Knowledge of patching and vulnerability management Ability to operate in a hands-on, delivery-focused environment rather than pure governance Strong stakeholder engagement and communication skills Power BI experience for reporting is highly desirable Based in Central London, with 4 days per week onsite initially, dropping to 3 after circa 3 months.
02/04/2026
Full time
Information Security Manager £70,000 - £80,000 London - hybrid working A well-established construction engineering business is seeking an experienced Information Security Manager to join them on a permanent basis. You'll be joining at a key time as the organisation expands its technical capability, with ambitious growth plans and multiple mergers and acquisitions planned. The business is looking for a hands-on InfoSec professional who can manage how data is handled, accessed, secured and maintained across its lifecycle. Responsibilities: Own and manage data lifecycle processes, ensuring data is secure, accessible and properly maintained from creation through to deletion Oversee third-party and supplier security, ensuring appropriate controls and risk management are in place Manage and process Data Subject Access Requests (DSARs) and related data handling activities Support patch management and vulnerability remediation across systems and applications Utilise tools such as Microsoft Purview to manage data visibility, classification and control Identify and mitigate information security risks across systems, suppliers and processes Collaborate with IT, Legal, HR and wider business teams to embed strong security practices Develop reporting and insights on security and data activities, ideally using Power BI Support ongoing security improvements in line with business growth and M&A activity Requirements: Strong experience in Information Security, with a focus on data handling and lifecycle management Practical experience managing third-party/supplier risk Good understanding of GDPR and data protection, particularly in real-world application (e.g. DSARs) Experience with Microsoft Purview (Varonis beneficial but not essential) Knowledge of patching and vulnerability management Ability to operate in a hands-on, delivery-focused environment rather than pure governance Strong stakeholder engagement and communication skills Power BI experience for reporting is highly desirable Based in Central London, with 4 days per week onsite initially, dropping to 3 after circa 3 months.
Infrastructure Engineer Remote - occasional travel to Bradford, Leeds or Sheffield 45,000 + annual company bonus & benefits Our client is looking for an experienced Infrastructure Engineer to be a key technical authority responsible for the implementation, and ongoing management of the Group's IT infrastructure across both on premises and Azure cloud environment. The role requires a self-driven, proactive professional with the ability to take initiative, lead projects from concept to completion, and ensure the delivery of robust, secure, and scalable infrastructure solutions supporting business-critical systems The role is remote however occasional site visits to West Yorkshire and South Yorkshire will be required for maintenance or specific project work. Key responsibilities: Implement, and maintain hybrid infrastructure solutions (Azure + on-prem) that meet performance, security, and compliance requirements. Manage and optimise Windows Server, SQL Server, and Azure environments including Virtual Machines, Networking, Storage, Backup, and Monitoring. Maintain and secure Active Directory, Group Policy, DNS, DHCP, and Azure AD (Entra ID) synchronisation. Ensure high availability and resilience across all servers, networks, and databases supporting business-critical applications. Deliver advanced troubleshooting and root cause analysis for complex infrastructure issues. Take ownership of infrastructure projects from design through to successful delivery, ensuring clear documentation, stakeholder engagement, and post-implementation review. Maintain alignment with Cyber Essentials Plus & GDPR Implement and manage endpoint protection, patch management, and vulnerability remediation. The following skills and experience will be essential: Strong expertise in Microsoft Azure IaaS & PaaS, Active Directory, Group Policy, DNS, DHCP, Windows Server (Apply online only), and SQL Server administration Deep understanding of LAN/WAN design, VLANs, VPNs, routing, switching, and firewall management Experience with Microsoft 365, Intune, and Endpoint Manager Proven experience managing secure environments aligned with Cyber Essentials Plus or ISO 27001 Full UK drivers license
01/04/2026
Full time
Infrastructure Engineer Remote - occasional travel to Bradford, Leeds or Sheffield 45,000 + annual company bonus & benefits Our client is looking for an experienced Infrastructure Engineer to be a key technical authority responsible for the implementation, and ongoing management of the Group's IT infrastructure across both on premises and Azure cloud environment. The role requires a self-driven, proactive professional with the ability to take initiative, lead projects from concept to completion, and ensure the delivery of robust, secure, and scalable infrastructure solutions supporting business-critical systems The role is remote however occasional site visits to West Yorkshire and South Yorkshire will be required for maintenance or specific project work. Key responsibilities: Implement, and maintain hybrid infrastructure solutions (Azure + on-prem) that meet performance, security, and compliance requirements. Manage and optimise Windows Server, SQL Server, and Azure environments including Virtual Machines, Networking, Storage, Backup, and Monitoring. Maintain and secure Active Directory, Group Policy, DNS, DHCP, and Azure AD (Entra ID) synchronisation. Ensure high availability and resilience across all servers, networks, and databases supporting business-critical applications. Deliver advanced troubleshooting and root cause analysis for complex infrastructure issues. Take ownership of infrastructure projects from design through to successful delivery, ensuring clear documentation, stakeholder engagement, and post-implementation review. Maintain alignment with Cyber Essentials Plus & GDPR Implement and manage endpoint protection, patch management, and vulnerability remediation. The following skills and experience will be essential: Strong expertise in Microsoft Azure IaaS & PaaS, Active Directory, Group Policy, DNS, DHCP, Windows Server (Apply online only), and SQL Server administration Deep understanding of LAN/WAN design, VLANs, VPNs, routing, switching, and firewall management Experience with Microsoft 365, Intune, and Endpoint Manager Proven experience managing secure environments aligned with Cyber Essentials Plus or ISO 27001 Full UK drivers license
Lead the cloud risk agenda for the world's most complex and prestigious organisations Our client is a leading global Advisory firm and we are seeking a Senior Manager to join their Technology Risk & Internal Audit practice, specialising in cloud and emerging technology risk . This role sits at the intersection of cloud security, regulation, and executive advisory , supporting global clients as they navigate large-scale cloud adoption, digital transformation, and increasing regulatory scrutiny. This is a leadership role for a credible cloud authority and trusted advisor and will suit someone equally comfortable designing cloud security architectures as advising Boards and Audit Committees. In this role, you will: Lead and deliver technology risk, internal audit, and cloud security engagements across global enterprises Design, assess, and optimise cloud security architectures and control frameworks across hyperscalers Advise senior stakeholders on cloud risk, regulatory compliance, and operating model transformation Support clients across a variety of sectors, including highly regulated environments , Drive practice growth , proposition development, and client relationships Build, mentor, and lead high-performing, multi-disciplinary teams What are we looking for: Cloud & Security Deep experience across AWS, Azure, Google Cloud (plus SAP, Oracle, Alibaba, IBM Bluemix) Expertise in cloud-native security , CNAPP, data protection, network security, and vulnerability management Strong hands-on exposure to Kubernetes, Terraform, Jenkins, Prisma Cloud , and DevSecOps Technology Risk & Regulation Proven background in Technology Risk / IT Internal Audit Strong knowledge of global regulatory and compliance frameworks , including: GDPR, SOx, ISO 27001 PRA, FCA, EBA, BaFin, OCC, FFIEC, Basel, MiFID II, NIS 2, TISAX, HIPAA Ability to translate complex technical risk into clear, board-level insight Leadership & Advisory Senior Manager-level consulting experience Track record of leading teams, mentoring talent, and managing senior stakeholders Experience delivering cloud-enabled transformation, system integration, and process optimisation Familiarity with Agile, COBIT, ITIL, Lean, Six Sigma Emerging Technology Exposure to AI, automation, LLMs, and data-driven security Interest in shaping the future of cloud risk and intelligent assurance What's on offer: High-impact role with real influence over strategy and growth Work on complex, high-profile cloud and regulatory challenges Clear progression toward Director and Partner Collaborative, international environment with access to cutting-edge technology If you are a senior cloud and technology risk professional and are ready to shape the agenda, lead at scale, and build a long-term advisory caree r, then make your application now! Parker Wright Consulting is acting as an Executive Recruitment Agency with respect to this role.
01/04/2026
Full time
Lead the cloud risk agenda for the world's most complex and prestigious organisations Our client is a leading global Advisory firm and we are seeking a Senior Manager to join their Technology Risk & Internal Audit practice, specialising in cloud and emerging technology risk . This role sits at the intersection of cloud security, regulation, and executive advisory , supporting global clients as they navigate large-scale cloud adoption, digital transformation, and increasing regulatory scrutiny. This is a leadership role for a credible cloud authority and trusted advisor and will suit someone equally comfortable designing cloud security architectures as advising Boards and Audit Committees. In this role, you will: Lead and deliver technology risk, internal audit, and cloud security engagements across global enterprises Design, assess, and optimise cloud security architectures and control frameworks across hyperscalers Advise senior stakeholders on cloud risk, regulatory compliance, and operating model transformation Support clients across a variety of sectors, including highly regulated environments , Drive practice growth , proposition development, and client relationships Build, mentor, and lead high-performing, multi-disciplinary teams What are we looking for: Cloud & Security Deep experience across AWS, Azure, Google Cloud (plus SAP, Oracle, Alibaba, IBM Bluemix) Expertise in cloud-native security , CNAPP, data protection, network security, and vulnerability management Strong hands-on exposure to Kubernetes, Terraform, Jenkins, Prisma Cloud , and DevSecOps Technology Risk & Regulation Proven background in Technology Risk / IT Internal Audit Strong knowledge of global regulatory and compliance frameworks , including: GDPR, SOx, ISO 27001 PRA, FCA, EBA, BaFin, OCC, FFIEC, Basel, MiFID II, NIS 2, TISAX, HIPAA Ability to translate complex technical risk into clear, board-level insight Leadership & Advisory Senior Manager-level consulting experience Track record of leading teams, mentoring talent, and managing senior stakeholders Experience delivering cloud-enabled transformation, system integration, and process optimisation Familiarity with Agile, COBIT, ITIL, Lean, Six Sigma Emerging Technology Exposure to AI, automation, LLMs, and data-driven security Interest in shaping the future of cloud risk and intelligent assurance What's on offer: High-impact role with real influence over strategy and growth Work on complex, high-profile cloud and regulatory challenges Clear progression toward Director and Partner Collaborative, international environment with access to cutting-edge technology If you are a senior cloud and technology risk professional and are ready to shape the agenda, lead at scale, and build a long-term advisory caree r, then make your application now! Parker Wright Consulting is acting as an Executive Recruitment Agency with respect to this role.
Applications Operations Analyst - LondonPermanent Hybrid Working Competitive Salary An international law firm is seeking an experienced Applications Operations Analyst to join its London office. This is a fantastic opportunity to play a key role in maintaining and improving the performance, security, and reliability of enterprise applications across a dynamic and fast-paced professional services environment. Reporting to the Manager of Applications Operations, the successful candidate will be responsible for day-to-day system support, patching, monitoring, and troubleshooting, while also contributing to process improvement, documentation, and integration stability. The role involves close collaboration with infrastructure, security, and business teams to ensure seamless application performance and user experience. Key Responsibilities: Perform system maintenance, patching, and upgrades in line with change management procedures Monitor application health and performance, proactively resolving issues Manage user access controls and support security audits Respond to incidents and service requests within SLA targets Support application deployments, integrations, and configuration changes Maintain documentation, runbooks, and support knowledge base articles Identify opportunities for automation and process optimisation Track and report on KPIs, system uptime, and user engagement metrics Collaborate with cross-functional teams to support scalability and performance tuning Ideal Candidate Profile: 3+ years of experience in enterprise application support or IT operations Strong troubleshooting and analytical skills Familiarity with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patching, and vulnerability remediation Exposure to ITIL practices and professional services environments Experience with documentation tools and scripting (e.g., PowerShell, Python) Relevant certifications (e.g., ITIL Foundation) preferred It offers the chance to work within a collaborative team and contribute to the ongoing improvement of critical business systems. To express interest or learn more, please get in touch directly. Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply. Ryder Reid Legal is a recruitment specialist. For over thirty years we've been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies.
01/04/2026
Full time
Applications Operations Analyst - LondonPermanent Hybrid Working Competitive Salary An international law firm is seeking an experienced Applications Operations Analyst to join its London office. This is a fantastic opportunity to play a key role in maintaining and improving the performance, security, and reliability of enterprise applications across a dynamic and fast-paced professional services environment. Reporting to the Manager of Applications Operations, the successful candidate will be responsible for day-to-day system support, patching, monitoring, and troubleshooting, while also contributing to process improvement, documentation, and integration stability. The role involves close collaboration with infrastructure, security, and business teams to ensure seamless application performance and user experience. Key Responsibilities: Perform system maintenance, patching, and upgrades in line with change management procedures Monitor application health and performance, proactively resolving issues Manage user access controls and support security audits Respond to incidents and service requests within SLA targets Support application deployments, integrations, and configuration changes Maintain documentation, runbooks, and support knowledge base articles Identify opportunities for automation and process optimisation Track and report on KPIs, system uptime, and user engagement metrics Collaborate with cross-functional teams to support scalability and performance tuning Ideal Candidate Profile: 3+ years of experience in enterprise application support or IT operations Strong troubleshooting and analytical skills Familiarity with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patching, and vulnerability remediation Exposure to ITIL practices and professional services environments Experience with documentation tools and scripting (e.g., PowerShell, Python) Relevant certifications (e.g., ITIL Foundation) preferred It offers the chance to work within a collaborative team and contribute to the ongoing improvement of critical business systems. To express interest or learn more, please get in touch directly. Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply. Ryder Reid Legal is a recruitment specialist. For over thirty years we've been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies.
Lead Application Security Engineer Bristol or London - 3 days a week on site £100,000 + great benefits An impressive financial services business is looking to hire a Lead Application Security Engineer to support this team with the risk and remediation activities. This business is going through a big technology transformation programme that is estimated to take 3 -5 years. The successful Lead Application Security Engineer will be part of this journey and have great technical exposure and the ability to rapidly progress. Working closely in one of transformation projects, the successful Lead Application Security Engineer will work closely with the wider security and technology teams to define the strategy and roadmap of technology changes moving forward. This is very much a play-manager role with the Lead Application Security Engineer being hands on day to day but also providing support and guidance to the rest of AppSec team Lead Application Security Engineer- Duties and Responsibilities The successful Lead Cloud Security Engineer will have responsibilities covering: Team Leadership Support the existing team, providing mentoring and fostering a collaborative team environment Take pragmatic risk-based approach to supporting the wider technology teams with the SDLC Foster strong relationships with engineering, architecture, platform and platform management to provide practical risk appropriate guidance Set the priorities for the AppSec team to make sure that the delivery of the AppSec services is impactful Application Security Technical Authority Act as the SME and for application security in the business and ensure that security controls are adopted early into the CI/CD pipelines Own and run the DAST, SAST and other AppSec tooling to ensure effective coverage across all in scope applications Create, roll out and maintain secure development practices and standards including threat modelling, secure coding practices for all applications and APIs Collaborate with the Vulnerability Engineering Lead to support the identifications, triages, and remediation programs in alignment with risk appetite, appropriate prioritisation and agreed SLAs Lead Application Security Engineer - Your Background The ideal Lead Application Security Engineer will have: Experience in a similar role, in both responsibility and scale Proven experience in Software Security Development or Application Security Proven experience in leading/coaching a team Hands on experience with implementing and operating AppSec tooling eg SAT and DAST, secret managements, and SCA Extensive experiences of integrating security into the CI/CD pipeline eg using AWS DevOps or GitHub Strong history of secure coding practices, threat modelling and vulnerability management in production Strong understanding of modern software development practices If this sounds like the role for you, hit the apply button NOW! We invite individuals from underrepresented groups to apply for any of our roles and are committed to supporting accessibility needs. Please click the apply button now or contact Abigail Moss for more information
01/04/2026
Full time
Lead Application Security Engineer Bristol or London - 3 days a week on site £100,000 + great benefits An impressive financial services business is looking to hire a Lead Application Security Engineer to support this team with the risk and remediation activities. This business is going through a big technology transformation programme that is estimated to take 3 -5 years. The successful Lead Application Security Engineer will be part of this journey and have great technical exposure and the ability to rapidly progress. Working closely in one of transformation projects, the successful Lead Application Security Engineer will work closely with the wider security and technology teams to define the strategy and roadmap of technology changes moving forward. This is very much a play-manager role with the Lead Application Security Engineer being hands on day to day but also providing support and guidance to the rest of AppSec team Lead Application Security Engineer- Duties and Responsibilities The successful Lead Cloud Security Engineer will have responsibilities covering: Team Leadership Support the existing team, providing mentoring and fostering a collaborative team environment Take pragmatic risk-based approach to supporting the wider technology teams with the SDLC Foster strong relationships with engineering, architecture, platform and platform management to provide practical risk appropriate guidance Set the priorities for the AppSec team to make sure that the delivery of the AppSec services is impactful Application Security Technical Authority Act as the SME and for application security in the business and ensure that security controls are adopted early into the CI/CD pipelines Own and run the DAST, SAST and other AppSec tooling to ensure effective coverage across all in scope applications Create, roll out and maintain secure development practices and standards including threat modelling, secure coding practices for all applications and APIs Collaborate with the Vulnerability Engineering Lead to support the identifications, triages, and remediation programs in alignment with risk appetite, appropriate prioritisation and agreed SLAs Lead Application Security Engineer - Your Background The ideal Lead Application Security Engineer will have: Experience in a similar role, in both responsibility and scale Proven experience in Software Security Development or Application Security Proven experience in leading/coaching a team Hands on experience with implementing and operating AppSec tooling eg SAT and DAST, secret managements, and SCA Extensive experiences of integrating security into the CI/CD pipeline eg using AWS DevOps or GitHub Strong history of secure coding practices, threat modelling and vulnerability management in production Strong understanding of modern software development practices If this sounds like the role for you, hit the apply button NOW! We invite individuals from underrepresented groups to apply for any of our roles and are committed to supporting accessibility needs. Please click the apply button now or contact Abigail Moss for more information
The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business. You will be working in a team that is designing and building resilient and secure Cloud environments that proactively prevent security threats. You will typically have industry accreditations like AWS Certified Security - Specialty The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to ensure that appropriate controls are in place Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments Participate in efforts that shape the company's security policies, procedures and standards for use in Cloud environments Create technical and managerial level security reports for Cloud-based applications and infrastructure Implement and tests network and security Disaster Recovery procedures to ensure business continuity Monitor use of sensitive data and regulates access to safeguard information Ensure the confidentiality and integrity of data during transmission, storage and processing Review violations of security procedures and discusses procedures with violators to ensure they are not repeated Provide support to end users regarding network and security related issues Main requirements: BSc/MSc in Information Security or any other related field Minimum 1 year working experience in Information Security, with proven focus in Cloud Security Deep technical knowledge of Amazon Web Services (AWS). Expertise in Microsoft Azure and Oracle Cloud will be considered an advantage Hands-on experience on AWS services such as IAM, Organizations, SSO, VPC, Transit Gateway, S3, EC2, RDS, ELB, CloudTrail, Config, Inspector, GuardDuty, WAF, etc Clear understanding of current threats to Cloud infrastructure and advanced knowledge of securing such environments Experience in DevSecOps methodologies is considered a plus Experience building and deploying applications to the cloud (AWS, Azure, etc.) using Infrastructure as Code tools such as Terraform is considered a plus Expertise in container security is considered a plus Ability to work autonomously with minimum supervision and to integrate well within a team Excellent problem solving and analytical skills Ability to quickly learn new technologies in depth Benefit from: Attractive remuneration Food allowance Intellectually stimulating work environment Continuous personal development and international training opportunities
01/04/2026
Full time
The Role: We are looking for a Cloud Security Engineer with experience on AWS, to join our growing team. The successful candidate will have an essential role in ensuring the information security of our business. You will be working in a team that is designing and building resilient and secure Cloud environments that proactively prevent security threats. You will typically have industry accreditations like AWS Certified Security - Specialty The main responsibilities of the position include: Design and build resilient Cloud infrastructures that are protected against security threats Develop and assess Cloud security solutions to secure systems, databases and networks Conduct assessment and make recommendations to ensure that appropriate controls are in place Gain insight into security incidents and threats by monitoring/analyzing logs and performing vulnerability assessments Participate in efforts that shape the company's security policies, procedures and standards for use in Cloud environments Create technical and managerial level security reports for Cloud-based applications and infrastructure Implement and tests network and security Disaster Recovery procedures to ensure business continuity Monitor use of sensitive data and regulates access to safeguard information Ensure the confidentiality and integrity of data during transmission, storage and processing Review violations of security procedures and discusses procedures with violators to ensure they are not repeated Provide support to end users regarding network and security related issues Main requirements: BSc/MSc in Information Security or any other related field Minimum 1 year working experience in Information Security, with proven focus in Cloud Security Deep technical knowledge of Amazon Web Services (AWS). Expertise in Microsoft Azure and Oracle Cloud will be considered an advantage Hands-on experience on AWS services such as IAM, Organizations, SSO, VPC, Transit Gateway, S3, EC2, RDS, ELB, CloudTrail, Config, Inspector, GuardDuty, WAF, etc Clear understanding of current threats to Cloud infrastructure and advanced knowledge of securing such environments Experience in DevSecOps methodologies is considered a plus Experience building and deploying applications to the cloud (AWS, Azure, etc.) using Infrastructure as Code tools such as Terraform is considered a plus Expertise in container security is considered a plus Ability to work autonomously with minimum supervision and to integrate well within a team Excellent problem solving and analytical skills Ability to quickly learn new technologies in depth Benefit from: Attractive remuneration Food allowance Intellectually stimulating work environment Continuous personal development and international training opportunities
Lead Application Security Engineer Bristol or London - 3 days a week on site £100,000 + great benefits An impressive financial services business is looking to hire a Lead Application Security Engineer to support this team with the risk and remediation activities. This business is going through a big technology transformation programme that is estimated to take 3 -5 years. The successful Lead Application Security Engineer will be part of this journey and have great technical exposure and the ability to rapidly progress. Working closely in one of transformation projects, the successful Lead Application Security Engineer will work closely with the wider security and technology teams to define the strategy and roadmap of technology changes moving forward. This is very much a play-manager role with the Lead Application Security Engineer being hands on day to day but also providing support and guidance to the rest of AppSec team Lead Application Security Engineer- Duties and Responsibilities The successful Lead Cloud Security Engineer will have responsibilities covering: Team Leadership Support the existing team, providing mentoring and fostering a collaborative team environment Take pragmatic risk-based approach to supporting the wider technology teams with the SDLC Foster strong relationships with engineering, architecture, platform and platform management to provide practical risk appropriate guidance Set the priorities for the AppSec team to make sure that the delivery of the AppSec services is impactful Application Security Technical Authority Act as the SME and for application security in the business and ensure that security controls are adopted early into the CI/CD pipelines Own and run the DAST, SAST and other AppSec tooling to ensure effective coverage across all in scope applications Create, roll out and maintain secure development practices and standards including threat modelling, secure coding practices for all applications and APIs Collaborate with the Vulnerability Engineering Lead to support the identifications, triages, and remediation programs in alignment with risk appetite, appropriate prioritisation and agreed SLAs Lead Application Security Engineer - Your Background The ideal Lead Application Security Engineer will have: Experience in a similar role, in both responsibility and scale Proven experience in Software Security Development or Application Security Proven experience in leading/coaching a team Hands on experience with implementing and operating AppSec tooling eg SAT and DAST, secret managements, and SCA Extensive experiences of integrating security into the CI/CD pipeline eg using AWS DevOps or GitHub Strong history of secure coding practices, threat modelling and vulnerability management in production Strong understanding of modern software development practices If this sounds like the role for you, hit the apply button NOW! We invite individuals from underrepresented groups to apply for any of our roles and are committed to supporting accessibility needs. Please click the apply button now or contact Abigail Moss for more information
01/04/2026
Full time
Lead Application Security Engineer Bristol or London - 3 days a week on site £100,000 + great benefits An impressive financial services business is looking to hire a Lead Application Security Engineer to support this team with the risk and remediation activities. This business is going through a big technology transformation programme that is estimated to take 3 -5 years. The successful Lead Application Security Engineer will be part of this journey and have great technical exposure and the ability to rapidly progress. Working closely in one of transformation projects, the successful Lead Application Security Engineer will work closely with the wider security and technology teams to define the strategy and roadmap of technology changes moving forward. This is very much a play-manager role with the Lead Application Security Engineer being hands on day to day but also providing support and guidance to the rest of AppSec team Lead Application Security Engineer- Duties and Responsibilities The successful Lead Cloud Security Engineer will have responsibilities covering: Team Leadership Support the existing team, providing mentoring and fostering a collaborative team environment Take pragmatic risk-based approach to supporting the wider technology teams with the SDLC Foster strong relationships with engineering, architecture, platform and platform management to provide practical risk appropriate guidance Set the priorities for the AppSec team to make sure that the delivery of the AppSec services is impactful Application Security Technical Authority Act as the SME and for application security in the business and ensure that security controls are adopted early into the CI/CD pipelines Own and run the DAST, SAST and other AppSec tooling to ensure effective coverage across all in scope applications Create, roll out and maintain secure development practices and standards including threat modelling, secure coding practices for all applications and APIs Collaborate with the Vulnerability Engineering Lead to support the identifications, triages, and remediation programs in alignment with risk appetite, appropriate prioritisation and agreed SLAs Lead Application Security Engineer - Your Background The ideal Lead Application Security Engineer will have: Experience in a similar role, in both responsibility and scale Proven experience in Software Security Development or Application Security Proven experience in leading/coaching a team Hands on experience with implementing and operating AppSec tooling eg SAT and DAST, secret managements, and SCA Extensive experiences of integrating security into the CI/CD pipeline eg using AWS DevOps or GitHub Strong history of secure coding practices, threat modelling and vulnerability management in production Strong understanding of modern software development practices If this sounds like the role for you, hit the apply button NOW! We invite individuals from underrepresented groups to apply for any of our roles and are committed to supporting accessibility needs. Please click the apply button now or contact Abigail Moss for more information
Information Security Analyst - Staffordshire Cyber Analyst to join the Information Security Team. Someone who can take those outputs from projects / tools and drive improvements. Looking for an experienced, proactive Security Analyst to ensure the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working with other departments to ensure security systems are secure, fit for purpose and protected to an optimal level. You will be responsible for driving the security scrutiny, culture, awareness, and adoption across the business. Security Toolsets and a Technical Mindset, you re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements Experienced in a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security systems. Analyse and interpret outputs to identify security weaknesses and recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties This is working for an excellent client who offer progression and development. This is an office-based role in Staffordshire and you will join a small, dedicated security team.
01/04/2026
Full time
Information Security Analyst - Staffordshire Cyber Analyst to join the Information Security Team. Someone who can take those outputs from projects / tools and drive improvements. Looking for an experienced, proactive Security Analyst to ensure the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working with other departments to ensure security systems are secure, fit for purpose and protected to an optimal level. You will be responsible for driving the security scrutiny, culture, awareness, and adoption across the business. Security Toolsets and a Technical Mindset, you re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements Experienced in a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security systems. Analyse and interpret outputs to identify security weaknesses and recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties This is working for an excellent client who offer progression and development. This is an office-based role in Staffordshire and you will join a small, dedicated security team.
Senior IT Infrastructure Engineer Annual Salary: £45,000 Location: Abingdon We are seeking a Senior IT Infrastructure Engineer to work for our client based in Abingdon - This role involves the implementation and ongoing management of their IT infrastructure across both on-premises and Azure cloud environments. The ideal candidate will be a proactive professional capable of leading projects from concept to completion and ensuring the delivery of robust, secure, and scalable infrastructure solutions. Day-to-day of the role: Implement and maintain hybrid infrastructure solutions (Azure + on-prem) that meet performance, security, and compliance requirements. Manage and optimise Windows Server, SQL Server, and Azure environments including Virtual Machines, Networking, Storage, Backup, and Monitoring. Maintain and secure Active Directory, Group Policy, DNS, DHCP, and Azure AD (Entra ID) synchronisation. Ensure high availability and resilience across all servers, networks, and databases supporting business-critical applications. Deliver advanced troubleshooting and root cause analysis for complex infrastructure issues. Proactively identify opportunities for improvement, automation, and optimisation across all infrastructure areas. Maintain alignment with Cyber Essentials Plus & GDPR, implement and manage endpoint protection, patch management, and vulnerability remediation. Ensure data protection and system continuity through effective backup, disaster recovery, and business continuity planning. Automate deployment and maintenance tasks using PowerShell, Azure Automation, or equivalent tools. Maintain infrastructure observability through tools and optimise cost, performance, and utilisation of Azure and on-prem resources. Required Skills & Qualifications: 10+ years hands-on experience in IT infrastructure roles, with at least 5 years in a senior or lead capacity. Strong expertise in Microsoft Azure IaaS & PaaS, Active Directory, Group Policy, DNS, DHCP, Windows Server , and SQL Server administration. Deep understanding of LAN/WAN design, VLANs, VPNs, routing, switching, and firewall management. Experience with Microsoft 365, Intune, and Endpoint Manager. Advanced PowerShell scripting and automation skills. Proven experience managing secure environments aligned with Cyber Essentials Plus or ISO 27001. Ability to work independently, prioritise effectively, and deliver projects to completion with minimal supervision. Degree in Computer Science, Information Technology, or equivalent experience. Desirable certifications include Microsoft Certified: Azure Administrator Associate (AZ-104) or Azure Solutions Architect Expert (AZ-305), MCSE, CompTIA Network+, ITIL Foundation. If you are interested in this position please apply online or for more information please contact me on
01/04/2026
Full time
Senior IT Infrastructure Engineer Annual Salary: £45,000 Location: Abingdon We are seeking a Senior IT Infrastructure Engineer to work for our client based in Abingdon - This role involves the implementation and ongoing management of their IT infrastructure across both on-premises and Azure cloud environments. The ideal candidate will be a proactive professional capable of leading projects from concept to completion and ensuring the delivery of robust, secure, and scalable infrastructure solutions. Day-to-day of the role: Implement and maintain hybrid infrastructure solutions (Azure + on-prem) that meet performance, security, and compliance requirements. Manage and optimise Windows Server, SQL Server, and Azure environments including Virtual Machines, Networking, Storage, Backup, and Monitoring. Maintain and secure Active Directory, Group Policy, DNS, DHCP, and Azure AD (Entra ID) synchronisation. Ensure high availability and resilience across all servers, networks, and databases supporting business-critical applications. Deliver advanced troubleshooting and root cause analysis for complex infrastructure issues. Proactively identify opportunities for improvement, automation, and optimisation across all infrastructure areas. Maintain alignment with Cyber Essentials Plus & GDPR, implement and manage endpoint protection, patch management, and vulnerability remediation. Ensure data protection and system continuity through effective backup, disaster recovery, and business continuity planning. Automate deployment and maintenance tasks using PowerShell, Azure Automation, or equivalent tools. Maintain infrastructure observability through tools and optimise cost, performance, and utilisation of Azure and on-prem resources. Required Skills & Qualifications: 10+ years hands-on experience in IT infrastructure roles, with at least 5 years in a senior or lead capacity. Strong expertise in Microsoft Azure IaaS & PaaS, Active Directory, Group Policy, DNS, DHCP, Windows Server , and SQL Server administration. Deep understanding of LAN/WAN design, VLANs, VPNs, routing, switching, and firewall management. Experience with Microsoft 365, Intune, and Endpoint Manager. Advanced PowerShell scripting and automation skills. Proven experience managing secure environments aligned with Cyber Essentials Plus or ISO 27001. Ability to work independently, prioritise effectively, and deliver projects to completion with minimal supervision. Degree in Computer Science, Information Technology, or equivalent experience. Desirable certifications include Microsoft Certified: Azure Administrator Associate (AZ-104) or Azure Solutions Architect Expert (AZ-305), MCSE, CompTIA Network+, ITIL Foundation. If you are interested in this position please apply online or for more information please contact me on
We are currently recruiting for multiple roles within a growing support and operations function, centred around Identity and Access Management/Oracle Identity Manager. These positions offer the opportunity to work in a fast-paced, service-driven environment, supporting critical systems, resolving escalations and driving operational excellence across the organisation. Job Title: Technical Consultant/Reporting Developer/EPM Consultant Location: Glasgow (Hybrid) Pay Rate: c. £300-£350 per day These roles will play a key part in ensuring the effective delivery of support and operations services, with a strong focus on incident resolution, SLA adherence and continuous improvement. You will work closely with internal teams and stakeholders to maintain system performance, enhance processes, and deliver high levels of customer satisfaction. Responsibilities include but are not limited to: Ensuring timely resolution of escalated incidents in line with SLAs and quality standards. Supporting and optimising Oracle Identity Manager within operational environments. Conducting vulnerability assessments and penetration testing (VAPT) to identify and mitigate risks. Performing root cause analysis and trend analysis to drive service improvements. Developing and maintaining standard operating procedures (SOPs) and technical documentation. Mentoring team members and promoting knowledge sharing across the function. Validating change implementation plans and ensuring compliance with operational controls. Supporting capacity planning and resource optimisation initiatives. Engaging with customers and stakeholders to communicate issues and ensure satisfaction. Preparing and presenting detailed reports and insights to business stakeholders. What we are looking for: Strong expertise in Oracle Identity Manager and identity management implementation. Proven experience in vulnerability assessment and penetration testing (VAPT). Solid understanding of service level agreements (SLAs) and quality compliance frameworks. Strong analytical skills with experience in performance and trend analysis. Excellent communication skills with the ability to engage effectively with stakeholders. Experience working in support and operations environments, handling escalations and incidents. Ability to document processes clearly and contribute to knowledge sharing initiatives. Relevant certifications in Oracle Identity Management or VAPT methodologies are desirable. These opportunities are well suited to professionals looking to deepen their expertise in IAM and operational support, while contributing to a high-performing, customer-focused environment. Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles. We practice a diverse and inclusive recruitment process that ensures equal opportunity for all we work with, irrespective of race, sexual orientation, mental or physical disability, age or gender. As an organisation, we encourage applications from all backgrounds and will ensure measures are met when required, to allow a fair process throughout. PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.
01/04/2026
Contractor
We are currently recruiting for multiple roles within a growing support and operations function, centred around Identity and Access Management/Oracle Identity Manager. These positions offer the opportunity to work in a fast-paced, service-driven environment, supporting critical systems, resolving escalations and driving operational excellence across the organisation. Job Title: Technical Consultant/Reporting Developer/EPM Consultant Location: Glasgow (Hybrid) Pay Rate: c. £300-£350 per day These roles will play a key part in ensuring the effective delivery of support and operations services, with a strong focus on incident resolution, SLA adherence and continuous improvement. You will work closely with internal teams and stakeholders to maintain system performance, enhance processes, and deliver high levels of customer satisfaction. Responsibilities include but are not limited to: Ensuring timely resolution of escalated incidents in line with SLAs and quality standards. Supporting and optimising Oracle Identity Manager within operational environments. Conducting vulnerability assessments and penetration testing (VAPT) to identify and mitigate risks. Performing root cause analysis and trend analysis to drive service improvements. Developing and maintaining standard operating procedures (SOPs) and technical documentation. Mentoring team members and promoting knowledge sharing across the function. Validating change implementation plans and ensuring compliance with operational controls. Supporting capacity planning and resource optimisation initiatives. Engaging with customers and stakeholders to communicate issues and ensure satisfaction. Preparing and presenting detailed reports and insights to business stakeholders. What we are looking for: Strong expertise in Oracle Identity Manager and identity management implementation. Proven experience in vulnerability assessment and penetration testing (VAPT). Solid understanding of service level agreements (SLAs) and quality compliance frameworks. Strong analytical skills with experience in performance and trend analysis. Excellent communication skills with the ability to engage effectively with stakeholders. Experience working in support and operations environments, handling escalations and incidents. Ability to document processes clearly and contribute to knowledge sharing initiatives. Relevant certifications in Oracle Identity Management or VAPT methodologies are desirable. These opportunities are well suited to professionals looking to deepen their expertise in IAM and operational support, while contributing to a high-performing, customer-focused environment. Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles. We practice a diverse and inclusive recruitment process that ensures equal opportunity for all we work with, irrespective of race, sexual orientation, mental or physical disability, age or gender. As an organisation, we encourage applications from all backgrounds and will ensure measures are met when required, to allow a fair process throughout. PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.
Role: Group Information & Cyber Security ManagerLocation: Leeds (Hybrid)Salary: £85,000 - £90,000Type: Permanent, Ful-TimeSummary: We are looking for a strategic and influential cyber security leader for a Group Information & Cyber Security Manager position in Leeds city centre. The main purpose of this role is to lead, develop, and continuously enhance the client's information and cyber security posture, ensuring the security, integrity and availability of all systems and data.This is a fantastic role for a highly experienced Information & Cyber leader to step into a high-visibility role that combines strategic influence, leadership, and the chance to take ownership of a company's security protocol. This role operates on a hybrid basis (2 days per week) in the Leeds city centre office with on-site parking. Key Responsibilities: Provide overall leadership for the organisation's information and cyber security function, continually strengthening the protection of systems and data to maintain confidentiality, integrity, and availability. Set the strategic vision and governance framework for all areas of cyber and information security across the Group. Manage third-party providers responsible for cyber monitoring, detection, and incident response, ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the Group-wide cyber security risk register, including conducting risk assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security-first culture across the organisation through awareness initiatives, training programmes, and targeted education efforts. Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and challenge at exec level Risk-based mindset with ability to balance security with operational and commercial needs Benefits: Salary: £85,000 - £90,000 Hybrid Working Company Pension Scheme Role: Group Information & Cyber Security ManagerLocation: Leeds (Hybrid)Salary: £85,000 - £90,000Type: Permanent, Ful-Time Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
01/04/2026
Full time
Role: Group Information & Cyber Security ManagerLocation: Leeds (Hybrid)Salary: £85,000 - £90,000Type: Permanent, Ful-TimeSummary: We are looking for a strategic and influential cyber security leader for a Group Information & Cyber Security Manager position in Leeds city centre. The main purpose of this role is to lead, develop, and continuously enhance the client's information and cyber security posture, ensuring the security, integrity and availability of all systems and data.This is a fantastic role for a highly experienced Information & Cyber leader to step into a high-visibility role that combines strategic influence, leadership, and the chance to take ownership of a company's security protocol. This role operates on a hybrid basis (2 days per week) in the Leeds city centre office with on-site parking. Key Responsibilities: Provide overall leadership for the organisation's information and cyber security function, continually strengthening the protection of systems and data to maintain confidentiality, integrity, and availability. Set the strategic vision and governance framework for all areas of cyber and information security across the Group. Manage third-party providers responsible for cyber monitoring, detection, and incident response, ensuring strong performance, resilience, and effective risk control. Maintain and take ownership of the Group-wide cyber security risk register, including conducting risk assessments, threat modelling, and defining mitigation strategies. Take the lead on security incident management, ensuring timely response, clear stakeholder communication, and ongoing improvement of processes. Ensure adherence to relevant regulations and industry standards, including ISO 27001, NIST, GDPR, and the UK Data Protection Act. Promote a strong security-first culture across the organisation through awareness initiatives, training programmes, and targeted education efforts. Requirements: Strong technical understanding across various security toolings, IAM, DLP, SIEM, EDR, and vulnerability management. Deep understanding of compliance frameworks including, ISO27001, NIST, GDPR, and industry best practice Collaborative leadership style with ability to influence and challenge at exec level Risk-based mindset with ability to balance security with operational and commercial needs Benefits: Salary: £85,000 - £90,000 Hybrid Working Company Pension Scheme Role: Group Information & Cyber Security ManagerLocation: Leeds (Hybrid)Salary: £85,000 - £90,000Type: Permanent, Ful-Time Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Cyber Security Manager Manchester - 2-3 days per week in the office £70,000 - £75,000 per annum Our client is seeking an experienced and forward thinking Cyber Security Manager to guide and strengthen their Cyber Security function. This position plays a key role in protecting their systems, data and customers, making sure the organisation stays ahead of new and evolving cyber threats. Sitting within the Governance, Risk, Compliance, Security and Internal IT division, you will take on a pivotal leadership role, driving the development and execution of their cyber security strategy. You will collaborate closely with Product, Engineering and Technology teams to ensure security is embedded throughout the organisation, while leading and nurturing a high performing security team. Key Responsibilities: Take ownership of shaping and delivering the organisation's overall cyber security strategy Monitor and manage cyber risks, emerging threats and potential vulnerabilities across the company Lead activities such as security testing, threat modelling and vulnerability reviews Build, maintain and regularly update incident response and disaster recovery plans Work closely with teams across the business to ensure security is built into products, projects and processes Promote a strong security culture by driving awareness initiatives and training programmes Provide leadership, guidance and development for the cyber security team Skills Knowledge & Expertise Proven leadership experience in cyber security within a regulated environment Experience working with Artificial Intelligence Strong technical knowledge of security tools (e.g. CrowdStrike, Sentinel, Purview, iBoss) Solid understanding of security frameworks (ISO 27001, PCI DSS, SOC 2) Experience in risk assessment, incident management and vulnerability testing Excellent communication skills across technical and non-technical audiences Strong analytical mindset with attention to detail Benefits: 25 days' holiday plus public holidays increasing with length of service. Birthday off work. 2 paid volunteer days a year Holiday Purchase scheme We operate a Salary Exchange pension scheme which you will be auto-enrolled into from day one of employment. £240 yearly Wellbeing Allowance Enhanced maternity, paternity, and adoption leave Cycle to work scheme Health cash plan Free breakfast & lunch when in the Manchester office Discounted Parking in Manchester Access to training - both internal and external Dog friendly office
01/04/2026
Full time
Cyber Security Manager Manchester - 2-3 days per week in the office £70,000 - £75,000 per annum Our client is seeking an experienced and forward thinking Cyber Security Manager to guide and strengthen their Cyber Security function. This position plays a key role in protecting their systems, data and customers, making sure the organisation stays ahead of new and evolving cyber threats. Sitting within the Governance, Risk, Compliance, Security and Internal IT division, you will take on a pivotal leadership role, driving the development and execution of their cyber security strategy. You will collaborate closely with Product, Engineering and Technology teams to ensure security is embedded throughout the organisation, while leading and nurturing a high performing security team. Key Responsibilities: Take ownership of shaping and delivering the organisation's overall cyber security strategy Monitor and manage cyber risks, emerging threats and potential vulnerabilities across the company Lead activities such as security testing, threat modelling and vulnerability reviews Build, maintain and regularly update incident response and disaster recovery plans Work closely with teams across the business to ensure security is built into products, projects and processes Promote a strong security culture by driving awareness initiatives and training programmes Provide leadership, guidance and development for the cyber security team Skills Knowledge & Expertise Proven leadership experience in cyber security within a regulated environment Experience working with Artificial Intelligence Strong technical knowledge of security tools (e.g. CrowdStrike, Sentinel, Purview, iBoss) Solid understanding of security frameworks (ISO 27001, PCI DSS, SOC 2) Experience in risk assessment, incident management and vulnerability testing Excellent communication skills across technical and non-technical audiences Strong analytical mindset with attention to detail Benefits: 25 days' holiday plus public holidays increasing with length of service. Birthday off work. 2 paid volunteer days a year Holiday Purchase scheme We operate a Salary Exchange pension scheme which you will be auto-enrolled into from day one of employment. £240 yearly Wellbeing Allowance Enhanced maternity, paternity, and adoption leave Cycle to work scheme Health cash plan Free breakfast & lunch when in the Manchester office Discounted Parking in Manchester Access to training - both internal and external Dog friendly office
Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. The Role: This role is part of our Public Safety Solutions Business Unit. The Information Security Manager is accountable for the organisation's information security strategy, governance, and compliance, ensuring the protection of systems and data that support UK public sector and emergency service operations. The role is critical in ensuring that services remain secure, resilient, and available, recognising the operational importance and potential impact on frontline emergency response. Key Responsibilities: Security Leadership & Assurance Own and be accountable for the organisation's overall security posture, ensuring alignment with business objectives and public sector expectations. Lead the implementation, maintenance, and continuous improvement of the ISMS in line with ISO/IEC 27001. Maintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls. Develop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity. Provide regular assurance reporting to senior leadership and stakeholders. Risk Management & Compliance Own and maintain the Security Risk Register, ensuring risks are identified, assessed, and managed in line with organisational risk appetite. Conduct and support risk assessments, internal audits, and external certification activities. Ensure compliance with relevant UK regulatory and security requirements, including GDPR and guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause analysis, and remediation. Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication. Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers). Service Resilience & Operational Security Ensure security is embedded in the design and operation of services supporting emergency response. Work closely with operational and technical teams to maintain high levels of system availability and resilience. Support business continuity and disaster recovery planning, testing, and continuous improvement. Security Awareness & Culture Develop and deliver targeted security awareness and training programmes. Promote a strong security culture, ensuring all staff understand their responsibilities in protecting critical services. Stakeholder Engagement Act as a trusted advisor to senior leadership, operational teams, and external stakeholders. Support engagement with public sector customers, providing assurance on security controls and practices. Collaborate with suppliers and partners to ensure security requirements are met across the supply chain. Qualifications & Skills: Proven experience in an information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials / Cyber Essentials Plus certification. Experience managing security risks, incidents, audits, and compliance activities in operational environments. Ability to balance strategic leadership with hands-on delivery in a small organisation. Strong understanding of service resilience, availability, and risk in mission-critical systems. Excellent communication skills, with the ability to engage both technical and non-technical stakeholders. By submitting an application to Saab UK, you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.
01/04/2026
Full time
Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. The Role: This role is part of our Public Safety Solutions Business Unit. The Information Security Manager is accountable for the organisation's information security strategy, governance, and compliance, ensuring the protection of systems and data that support UK public sector and emergency service operations. The role is critical in ensuring that services remain secure, resilient, and available, recognising the operational importance and potential impact on frontline emergency response. Key Responsibilities: Security Leadership & Assurance Own and be accountable for the organisation's overall security posture, ensuring alignment with business objectives and public sector expectations. Lead the implementation, maintenance, and continuous improvement of the ISMS in line with ISO/IEC 27001. Maintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls. Develop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity. Provide regular assurance reporting to senior leadership and stakeholders. Risk Management & Compliance Own and maintain the Security Risk Register, ensuring risks are identified, assessed, and managed in line with organisational risk appetite. Conduct and support risk assessments, internal audits, and external certification activities. Ensure compliance with relevant UK regulatory and security requirements, including GDPR and guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause analysis, and remediation. Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication. Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers). Service Resilience & Operational Security Ensure security is embedded in the design and operation of services supporting emergency response. Work closely with operational and technical teams to maintain high levels of system availability and resilience. Support business continuity and disaster recovery planning, testing, and continuous improvement. Security Awareness & Culture Develop and deliver targeted security awareness and training programmes. Promote a strong security culture, ensuring all staff understand their responsibilities in protecting critical services. Stakeholder Engagement Act as a trusted advisor to senior leadership, operational teams, and external stakeholders. Support engagement with public sector customers, providing assurance on security controls and practices. Collaborate with suppliers and partners to ensure security requirements are met across the supply chain. Qualifications & Skills: Proven experience in an information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials / Cyber Essentials Plus certification. Experience managing security risks, incidents, audits, and compliance activities in operational environments. Ability to balance strategic leadership with hands-on delivery in a small organisation. Strong understanding of service resilience, availability, and risk in mission-critical systems. Excellent communication skills, with the ability to engage both technical and non-technical stakeholders. By submitting an application to Saab UK, you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.
Job Title - Senior Data Manager Location - Manchester, UK Type - Contract Job Description: About the role The Trips Data Governance team manages data for all aspects of trips, excluding stays, enabling teams to understand and improve business performance and customer experience. They are currently seeking an experienced Data Manager to join their impactful Data Governance team to support the critical SAP Rise migration program. About the SAP Rise program: The programme is a key business modernisation initiative to migrate the current Booking Transport (BTL) SAP instance to a standardised cloud-based ERP system. The programme will introduce an interim architecture between the current platform and the SAP S/4 RISE ecosystem to test processes, data quality and governance, data contracts, and new capabilities, while supporting the transition to the North Star architecture where data flows directly from a modernised enterprise order platform. Role Overview: In this role, a Senior Data Manager combines technical knowledge, business insight, and expert communication to provide critical information about data systems. This position focuses on supporting business needs with high-quality data through monitoring, issue detection, impact quantification, end-to-end data corrections, standardization, and architectural optimization. A key aspect of the role is to advocate for a Data Quality mindset across the organization. You will report to a Senior Manager and collaborate with other Data Managers on strategic objectives for data quality, governance, metadata management and regulatory compliance. This is a hands-on role where you will work closely with Business Analysts, Data Engineers, Data Scientists, and Insights Analysts to build deliverables required for the SAP Rise program. Roles & Responsibilities As a Senior Data Manager I (Level G), your required competencies include: Independence in: AI & Ethics: Independent in ethical data handling, responsible AI, compliance, knowledge & prompt engineering, and AI application in Data Management. Change & Project Mgt.: Independent in change management, planning, monitoring & delivery, stakeholder management, and DQ implementation. Critical Thinking: Independent in decision making, and DQ - investigate & resolve. Data & Info. Management: Independent in MDM integrations, MDM policies, document & content lifecycle, document & content classification, data risk identification, data risk decision, data risk mitigation, metadata management, and data lifecycle management. Effective Communication: Independent in communication basics, cross-cultural relationships, and tailored messaging & motivational communication. Privacy & Security: Independent in high-pressure communication, regulatory knowledge, vulnerability & mitigation, and compliance-by-design. Software & Analytics: Independent in coding, visualisation, and Data Mgt. Adoption. Stewardship: Independent in identification & training. Strategy & Policy: Independent in data management strategy, policies, standards & playbooks, and maturity model & assessment. Solution Design: Independent in solution requirements. Expertise Critical Thinking: Expertise in root cause analysis. Data & Info. Management: Expertise in MDM requirements. Software & Analytics: Expertise in analysis (both listed entries), Data Mgt. Integration, and DQ Dimensions & Rules. Solution Design: Expertise in solution monitoring & iteration. Stewardship: Expertise in advocacy & support. Randstad Technologies is acting as an Employment Business in relation to this vacancy.
01/04/2026
Contractor
Job Title - Senior Data Manager Location - Manchester, UK Type - Contract Job Description: About the role The Trips Data Governance team manages data for all aspects of trips, excluding stays, enabling teams to understand and improve business performance and customer experience. They are currently seeking an experienced Data Manager to join their impactful Data Governance team to support the critical SAP Rise migration program. About the SAP Rise program: The programme is a key business modernisation initiative to migrate the current Booking Transport (BTL) SAP instance to a standardised cloud-based ERP system. The programme will introduce an interim architecture between the current platform and the SAP S/4 RISE ecosystem to test processes, data quality and governance, data contracts, and new capabilities, while supporting the transition to the North Star architecture where data flows directly from a modernised enterprise order platform. Role Overview: In this role, a Senior Data Manager combines technical knowledge, business insight, and expert communication to provide critical information about data systems. This position focuses on supporting business needs with high-quality data through monitoring, issue detection, impact quantification, end-to-end data corrections, standardization, and architectural optimization. A key aspect of the role is to advocate for a Data Quality mindset across the organization. You will report to a Senior Manager and collaborate with other Data Managers on strategic objectives for data quality, governance, metadata management and regulatory compliance. This is a hands-on role where you will work closely with Business Analysts, Data Engineers, Data Scientists, and Insights Analysts to build deliverables required for the SAP Rise program. Roles & Responsibilities As a Senior Data Manager I (Level G), your required competencies include: Independence in: AI & Ethics: Independent in ethical data handling, responsible AI, compliance, knowledge & prompt engineering, and AI application in Data Management. Change & Project Mgt.: Independent in change management, planning, monitoring & delivery, stakeholder management, and DQ implementation. Critical Thinking: Independent in decision making, and DQ - investigate & resolve. Data & Info. Management: Independent in MDM integrations, MDM policies, document & content lifecycle, document & content classification, data risk identification, data risk decision, data risk mitigation, metadata management, and data lifecycle management. Effective Communication: Independent in communication basics, cross-cultural relationships, and tailored messaging & motivational communication. Privacy & Security: Independent in high-pressure communication, regulatory knowledge, vulnerability & mitigation, and compliance-by-design. Software & Analytics: Independent in coding, visualisation, and Data Mgt. Adoption. Stewardship: Independent in identification & training. Strategy & Policy: Independent in data management strategy, policies, standards & playbooks, and maturity model & assessment. Solution Design: Independent in solution requirements. Expertise Critical Thinking: Expertise in root cause analysis. Data & Info. Management: Expertise in MDM requirements. Software & Analytics: Expertise in analysis (both listed entries), Data Mgt. Integration, and DQ Dimensions & Rules. Solution Design: Expertise in solution monitoring & iteration. Stewardship: Expertise in advocacy & support. Randstad Technologies is acting as an Employment Business in relation to this vacancy.
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
01/04/2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
01/04/2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
