Lynx are working with a leading consultancy who partner with fast-moving engineering teams who build and run their businesses in the cloud. They need pragmatic, code-literate security specialists. The Role They're looking for a hands-on AWS Security Architect who lives and breathes AWS. You'll dissect designs, model attack paths, and show engineering teams what good really looks like. Depending on the engagement, you might run a threat model, assess CI/CD pipelines, learn a vendor DSL for a PoC, or build internal tooling. They don't expect you to know everything - just to be curious, practical, and willing to dive in. What You'll Do Threat Modelling & Architecture Reviews: Break down AWS services, map trust boundaries, build attack trees, and define security requirements before code ships. Security Automation: Build IaC-driven checks, Lambda/Step Function tooling, CI/CD gates, and CSPM rules to enforce secure defaults at scale. Hands-On Testing & Hardening: Perform cloud-native testing (IAM escalation, container escape attempts, infra abuse) and guide fixes directly via PRs. DevSecOps Enablement: Pair with platform teams, review Terraform/CloudFormation/Kubernetes, and promote least privilege, logging, and runtime controls. Knowledge Sharing: Contribute to documentation, demos, and continuous learning within the team. What You Bring Must-Haves Deep AWS internals knowledge Technical/IT degree (2:1 or above) Proven threat-modelling experience (STRIDE, attack trees, etc.) Strong coding skills (Python, Go, Rust, etc.) IaC expertise - Terraform, CrossPlane, Pulumi, CloudFormation, AWS CDK CI/CD security automation experience (GitHub Actions, GitLab CI, Jenkins, etc.) Nice-to-Haves AWS Security Specialty, SANS, OSCP (skills over certificates, though!) Multi-cloud or hybrid security experience Container security & supply-chain/SBOM tooling Applied cryptography fundamentals (KMS, envelope encryption, etc.) Incident response or red/blue/purple team exposure OSS security contributions or AWS community involvement
08/12/2025
Full time
Lynx are working with a leading consultancy who partner with fast-moving engineering teams who build and run their businesses in the cloud. They need pragmatic, code-literate security specialists. The Role They're looking for a hands-on AWS Security Architect who lives and breathes AWS. You'll dissect designs, model attack paths, and show engineering teams what good really looks like. Depending on the engagement, you might run a threat model, assess CI/CD pipelines, learn a vendor DSL for a PoC, or build internal tooling. They don't expect you to know everything - just to be curious, practical, and willing to dive in. What You'll Do Threat Modelling & Architecture Reviews: Break down AWS services, map trust boundaries, build attack trees, and define security requirements before code ships. Security Automation: Build IaC-driven checks, Lambda/Step Function tooling, CI/CD gates, and CSPM rules to enforce secure defaults at scale. Hands-On Testing & Hardening: Perform cloud-native testing (IAM escalation, container escape attempts, infra abuse) and guide fixes directly via PRs. DevSecOps Enablement: Pair with platform teams, review Terraform/CloudFormation/Kubernetes, and promote least privilege, logging, and runtime controls. Knowledge Sharing: Contribute to documentation, demos, and continuous learning within the team. What You Bring Must-Haves Deep AWS internals knowledge Technical/IT degree (2:1 or above) Proven threat-modelling experience (STRIDE, attack trees, etc.) Strong coding skills (Python, Go, Rust, etc.) IaC expertise - Terraform, CrossPlane, Pulumi, CloudFormation, AWS CDK CI/CD security automation experience (GitHub Actions, GitLab CI, Jenkins, etc.) Nice-to-Haves AWS Security Specialty, SANS, OSCP (skills over certificates, though!) Multi-cloud or hybrid security experience Container security & supply-chain/SBOM tooling Applied cryptography fundamentals (KMS, envelope encryption, etc.) Incident response or red/blue/purple team exposure OSS security contributions or AWS community involvement
Embedded Software Engineer Salary: 40K- 70K DOE + Benefits Experience Level: 3+ years (entry-level roles also available) Location: Derbyshire About the Organisation This organisation specialises in developing high-integrity, security-critical technologies where absolute reliability is essential. The engineering culture is built on excellence, innovation, and a commitment to exceeding customer expectations. You'll be joining a multi-disciplinary team working on complex problems, disruptive security technologies, and advanced embedded solutions. The work involves supporting government and industry partners on projects involving secure systems, applied cryptography, and cutting-edge software and microelectronics. About the Role This is an exciting opportunity for software engineers-ranging from early-career developers to highly experienced specialists-to contribute to the design, development, and testing of innovative embedded products and cyber-security technologies. The role involves analysing customer requirements, producing maintainable designs, participating in unit testing, contributing to code reviews, and creating documentation as required. Security, precision, and functional correctness will be central to your work. You'll thrive in this role if you are detail-driven, collaborative, and motivated to develop high-integrity software guided by formal specifications. The work includes both independent problem-solving and close teamwork within an expert engineering group. Skills & Experience Required Required Technical Skills Strong track record delivering embedded C/C++ solutions. Deep experience with multi-threaded embedded systems (RTOS). Register-level experience with ARM-based microcontrollers (e.g., STM32). Proficiency with embedded debugging tools (e.g., JTAG, ETM). Experience writing code to formal software standards (e.g., CERT C, MISRA). Hands-on experience with unit-test automation tools (e.g., LDRA, Parasoft). Familiarity with static analysis tools. Technical documentation and report writing. Desirable Skills C# development. Scripting languages (Python, Perl, Bash, PowerShell). Network security and vulnerability analysis. Understanding of IP standards. Experience with a range of CPU/MPU architectures. Requirements capture. Knowledge of cryptographic concepts. Personal Competencies Excellent attention to detail. Strong commitment to high quality standards. Effective communicator and team collaborator; able to work independently. Good judgement under pressure. Strong time-management and organisational skills. Takes ownership and resolves issues proactively. Experience Senior roles require 3+ years of relevant commercial experience. Entry-level opportunities are available for recent Computer Science or STEM graduates with strong potential. Conditions Due to the nature of the work, candidates must be British Citizens and able to obtain and maintain DV security clearance .
27/11/2025
Full time
Embedded Software Engineer Salary: 40K- 70K DOE + Benefits Experience Level: 3+ years (entry-level roles also available) Location: Derbyshire About the Organisation This organisation specialises in developing high-integrity, security-critical technologies where absolute reliability is essential. The engineering culture is built on excellence, innovation, and a commitment to exceeding customer expectations. You'll be joining a multi-disciplinary team working on complex problems, disruptive security technologies, and advanced embedded solutions. The work involves supporting government and industry partners on projects involving secure systems, applied cryptography, and cutting-edge software and microelectronics. About the Role This is an exciting opportunity for software engineers-ranging from early-career developers to highly experienced specialists-to contribute to the design, development, and testing of innovative embedded products and cyber-security technologies. The role involves analysing customer requirements, producing maintainable designs, participating in unit testing, contributing to code reviews, and creating documentation as required. Security, precision, and functional correctness will be central to your work. You'll thrive in this role if you are detail-driven, collaborative, and motivated to develop high-integrity software guided by formal specifications. The work includes both independent problem-solving and close teamwork within an expert engineering group. Skills & Experience Required Required Technical Skills Strong track record delivering embedded C/C++ solutions. Deep experience with multi-threaded embedded systems (RTOS). Register-level experience with ARM-based microcontrollers (e.g., STM32). Proficiency with embedded debugging tools (e.g., JTAG, ETM). Experience writing code to formal software standards (e.g., CERT C, MISRA). Hands-on experience with unit-test automation tools (e.g., LDRA, Parasoft). Familiarity with static analysis tools. Technical documentation and report writing. Desirable Skills C# development. Scripting languages (Python, Perl, Bash, PowerShell). Network security and vulnerability analysis. Understanding of IP standards. Experience with a range of CPU/MPU architectures. Requirements capture. Knowledge of cryptographic concepts. Personal Competencies Excellent attention to detail. Strong commitment to high quality standards. Effective communicator and team collaborator; able to work independently. Good judgement under pressure. Strong time-management and organisational skills. Takes ownership and resolves issues proactively. Experience Senior roles require 3+ years of relevant commercial experience. Entry-level opportunities are available for recent Computer Science or STEM graduates with strong potential. Conditions Due to the nature of the work, candidates must be British Citizens and able to obtain and maintain DV security clearance .
Role: Security Architect Location: Newport (Hybrid) Salary: Up to £53k 28.9% Pension The Opportunity Yolk Recruitment are excited to be working with an innovation-driven civil service organisation as they journey through an incredible digital transformation whilst prioritising forward thinking and excellent digital practices. Alongside this, they pride themselves on being a Stonewall Diversity Champion, which means they are part of Britain's leading best-practice employers' forum for sexual orientation and gender identity equality, diversity and inclusion. The Security Architect plays a key role in ensuring compliance with recognised security standards (e.g. ISO 27001, PCI DSS, Secure by Design, GovAssure). The role is central to embedding security architecture principles across cloud, on-premises, and hybrid platforms, providing expert guidance to technical teams and influencing decisions that safeguard data, services, and infrastructure. This position champions Secure by Design principles and supports assurance processes in line with national frameworks. It requires balancing strong security controls with enabling business outcomes, while fostering awareness and adoption of best practice security standards across the organisation. Main Responsibilities Ensure security architecture aligns with government and industry standards, legal frameworks, and best practices. Promote and embed Secure by Design principles across digital and technology teams. Manage the compliance roadmap, ensuring activities align with strategy and audit recommendations. Stay current with legislation, frameworks, and emerging security initiatives to inform decision-making and staff awareness. Recommend proportionate security controls and solutions that support business objectives. Provide expert guidance across system and infrastructure design, implementation, and operation. Advise stakeholders on risks, solutions, and approaches, tailoring communication for technical and non-technical audiences. Support compliance processes such as evidence gathering and submissions to external bodies. Contribute to incident response where architectural issues are identified. Collaborate with internal and external stakeholders to strengthen knowledge and outcomes. Essential Skills & Experience Broad technical knowledge across cloud and hybrid technologies. Strong understanding of governance, compliance, risk, and the CIA triad. Knowledge of security protocols, networking, identity management, authentication, authorisation, and cryptography. Excellent communication skills with the ability to adapt to varied audiences. Confident in evaluating options, making decisions, and prioritising effectively. Collaborative, proactive, and motivated to keep pace with evolving security threats and technologies. Think this one's for you If you think this Security Architect opportunity is for you then please apply online. Yolk Public Sector & Not-for-Profit team works with organisations across the UK to fulfil their recruitment needs and to achieve their D&I objectives. We recruit temporary, contract and permanent hires for 1 off specialist needs or for volume campaigns. We support our applicants to navigate the public sector recruitment processes and secure their dream jobs. Yolk Recruitment is an equal opportunities employer and embraces diversity in our workforce. We employ the best people for the job at hand and actively encourage applications from all qualified candidates, regardless of gender, age, race, religion, sexual orientation, disability, educational background, parental status, gender identity or any other protected characteristic. We champion and celebrate diversity at Yolk allowing our team to bring their whole selves to work.
03/10/2025
Full time
Role: Security Architect Location: Newport (Hybrid) Salary: Up to £53k 28.9% Pension The Opportunity Yolk Recruitment are excited to be working with an innovation-driven civil service organisation as they journey through an incredible digital transformation whilst prioritising forward thinking and excellent digital practices. Alongside this, they pride themselves on being a Stonewall Diversity Champion, which means they are part of Britain's leading best-practice employers' forum for sexual orientation and gender identity equality, diversity and inclusion. The Security Architect plays a key role in ensuring compliance with recognised security standards (e.g. ISO 27001, PCI DSS, Secure by Design, GovAssure). The role is central to embedding security architecture principles across cloud, on-premises, and hybrid platforms, providing expert guidance to technical teams and influencing decisions that safeguard data, services, and infrastructure. This position champions Secure by Design principles and supports assurance processes in line with national frameworks. It requires balancing strong security controls with enabling business outcomes, while fostering awareness and adoption of best practice security standards across the organisation. Main Responsibilities Ensure security architecture aligns with government and industry standards, legal frameworks, and best practices. Promote and embed Secure by Design principles across digital and technology teams. Manage the compliance roadmap, ensuring activities align with strategy and audit recommendations. Stay current with legislation, frameworks, and emerging security initiatives to inform decision-making and staff awareness. Recommend proportionate security controls and solutions that support business objectives. Provide expert guidance across system and infrastructure design, implementation, and operation. Advise stakeholders on risks, solutions, and approaches, tailoring communication for technical and non-technical audiences. Support compliance processes such as evidence gathering and submissions to external bodies. Contribute to incident response where architectural issues are identified. Collaborate with internal and external stakeholders to strengthen knowledge and outcomes. Essential Skills & Experience Broad technical knowledge across cloud and hybrid technologies. Strong understanding of governance, compliance, risk, and the CIA triad. Knowledge of security protocols, networking, identity management, authentication, authorisation, and cryptography. Excellent communication skills with the ability to adapt to varied audiences. Confident in evaluating options, making decisions, and prioritising effectively. Collaborative, proactive, and motivated to keep pace with evolving security threats and technologies. Think this one's for you If you think this Security Architect opportunity is for you then please apply online. Yolk Public Sector & Not-for-Profit team works with organisations across the UK to fulfil their recruitment needs and to achieve their D&I objectives. We recruit temporary, contract and permanent hires for 1 off specialist needs or for volume campaigns. We support our applicants to navigate the public sector recruitment processes and secure their dream jobs. Yolk Recruitment is an equal opportunities employer and embraces diversity in our workforce. We employ the best people for the job at hand and actively encourage applications from all qualified candidates, regardless of gender, age, race, religion, sexual orientation, disability, educational background, parental status, gender identity or any other protected characteristic. We champion and celebrate diversity at Yolk allowing our team to bring their whole selves to work.
Principal Firmware Engineer Luton Paying up to £80p/h (Umbrella) Responsibilities : Artificial Intelligence, including machine learning and genetic algorithms Auto-generated code using model driven engineering using MATLAB and Simulink tools Design tools such as Xilinx, TCL, Verilog, System Verilog and UVM Derivation of detailed Firmware requirements and architecture from system requirements A structured approach to firmware design (RTCA DO-254 or similar) Experience required: FPGA architectures such as Xilinx 7. Xilinx UltraScale; Intel (Altera) or Microsemi (Actel). Fast interfaces such as PCIe, Ethernet, and JESD is also required. Cryptography and anti-tamper techniques Electronics test methods and equipment HNC/HND or Undergraduate Degree (Electronic Engineering, Computer Science, AI, Games Programming, Physics, or Applied Physics) or you may just have lots of skills and experience gained through your hard work. Due to the nature of our work, any candidate must have 5 years UK residency and be capable of achieving full SC security clearance. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.
03/10/2025
Full time
Principal Firmware Engineer Luton Paying up to £80p/h (Umbrella) Responsibilities : Artificial Intelligence, including machine learning and genetic algorithms Auto-generated code using model driven engineering using MATLAB and Simulink tools Design tools such as Xilinx, TCL, Verilog, System Verilog and UVM Derivation of detailed Firmware requirements and architecture from system requirements A structured approach to firmware design (RTCA DO-254 or similar) Experience required: FPGA architectures such as Xilinx 7. Xilinx UltraScale; Intel (Altera) or Microsemi (Actel). Fast interfaces such as PCIe, Ethernet, and JESD is also required. Cryptography and anti-tamper techniques Electronics test methods and equipment HNC/HND or Undergraduate Degree (Electronic Engineering, Computer Science, AI, Games Programming, Physics, or Applied Physics) or you may just have lots of skills and experience gained through your hard work. Due to the nature of our work, any candidate must have 5 years UK residency and be capable of achieving full SC security clearance. Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.
Senior Security Specialist - Salary £50,000 to £55,000 Are you someone who is passionate about Cyber Security and looking for an excellent opportunity to use and expand your skills within a dedicated security advisory team? This role exists within Aviva's CISO team and is responsible for carrying out consultancy and risk assessment activities across multiple geographical areas, business areas and change disciplines. If you feel this is something to which you could bring benefit, or indeed, personally benefit from joining, please read on... A bit about the job: The purpose of this role is to integrate into the existing team to provide a top-class service to protect Aviva against current and new cyber related threats. To reduce the risk of change activity (IT and Cyber initiatives) to Aviva, the successful candidate will provide: Security consultancy advice and guidance, security review of solution designs including recommendations, advice and guidance to promote secure by design and carry out Information Security Risk Assessments (ISRA) to better manage Aviva risks against reputational damage, system outage and data loss potentially leading to regulatory fines, as data security becomes an ever greater focus across the globe. The role will require someone with in-depth technical knowledge, who can collaborate well with colleagues across multiple disciplines as the team works with technical and operational teams across the business, to ensure change activity meets Aviva's security requirements whilst adopting the necessary security controls. The team is made up of professional people who are passionate about providing a top-class service and protecting Aviva, whilst also supporting each other. This is accomplished through knowledge sharing and maintaining an enjoyable working environment. Skills and experience we're looking for: Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO 27005 etc). Information Security Management System frameworks and standards and their application. Knowledge of governance processes and practices, including ISMS monitoring and control management frameworks such as, ISO, ISF and COBIT, their relationships to other frameworks and the application within a financial services environment. Good working knowledge of one or more security technologies and domains, including, but not limited to network security, cyber security, data security, identity and access management, application security & cloud security and associated compliance frameworks such as SOX, PCI-DSS etc Security technologies (firewalls, WAFs, DLP, cryptography, vulnerability scanning, identity and access management, etc.) The ability to carry out threat modelling, vulnerability assessment, control effectiveness review and risk assessment of a proposal or design and deliver a comprehensive, easy consumable report targeted to audience and stakeholders What you'll get for this role: Starting salary between £45,000 and £55,000 (depending on location, skills, experience, and qualifications) Generous pension (starting level Aviva contributes 8% when you contribute 2%) Eligibility for annual performance bonus Family friendly parental and carer's leave 29 days holiday per year plus bank holidays and the option to buy/sell up to 5 additional days Up to 40% discount for Aviva products Brilliant flexible benefits including electric cars Aviva Matching Share Plan and Save As You Earn scheme 21 volunteering hours per year Aviva is for everyone: We are inclusive - we want applications from people with diverse backgrounds and experiences. Excited but not sure you tick every box? Research tells us that women, particularly, feel this way. So, regardless of gender, why not apply. And if you're in a job share just apply as a pair. We flex locations, hours and working patterns to suit our customers, business, and you. Most of our people are smart working - spending around 60% of their time in our offices and 40% at home. To find out more about working at Aviva take a look here We interview every disabled applicant who meets the minimum criteria for the job. Once you've applied, please send us an email stating that you have a disclosed disability, and we'll interview you. We'd love it if you could submit your application online. If you require an alternative method of applying, please give Alice a call on or send an email to .
22/09/2022
Full time
Senior Security Specialist - Salary £50,000 to £55,000 Are you someone who is passionate about Cyber Security and looking for an excellent opportunity to use and expand your skills within a dedicated security advisory team? This role exists within Aviva's CISO team and is responsible for carrying out consultancy and risk assessment activities across multiple geographical areas, business areas and change disciplines. If you feel this is something to which you could bring benefit, or indeed, personally benefit from joining, please read on... A bit about the job: The purpose of this role is to integrate into the existing team to provide a top-class service to protect Aviva against current and new cyber related threats. To reduce the risk of change activity (IT and Cyber initiatives) to Aviva, the successful candidate will provide: Security consultancy advice and guidance, security review of solution designs including recommendations, advice and guidance to promote secure by design and carry out Information Security Risk Assessments (ISRA) to better manage Aviva risks against reputational damage, system outage and data loss potentially leading to regulatory fines, as data security becomes an ever greater focus across the globe. The role will require someone with in-depth technical knowledge, who can collaborate well with colleagues across multiple disciplines as the team works with technical and operational teams across the business, to ensure change activity meets Aviva's security requirements whilst adopting the necessary security controls. The team is made up of professional people who are passionate about providing a top-class service and protecting Aviva, whilst also supporting each other. This is accomplished through knowledge sharing and maintaining an enjoyable working environment. Skills and experience we're looking for: Risk Assessment methods and frameworks (IRAM2, OCTAVE, NIST, ISO 27005 etc). Information Security Management System frameworks and standards and their application. Knowledge of governance processes and practices, including ISMS monitoring and control management frameworks such as, ISO, ISF and COBIT, their relationships to other frameworks and the application within a financial services environment. Good working knowledge of one or more security technologies and domains, including, but not limited to network security, cyber security, data security, identity and access management, application security & cloud security and associated compliance frameworks such as SOX, PCI-DSS etc Security technologies (firewalls, WAFs, DLP, cryptography, vulnerability scanning, identity and access management, etc.) The ability to carry out threat modelling, vulnerability assessment, control effectiveness review and risk assessment of a proposal or design and deliver a comprehensive, easy consumable report targeted to audience and stakeholders What you'll get for this role: Starting salary between £45,000 and £55,000 (depending on location, skills, experience, and qualifications) Generous pension (starting level Aviva contributes 8% when you contribute 2%) Eligibility for annual performance bonus Family friendly parental and carer's leave 29 days holiday per year plus bank holidays and the option to buy/sell up to 5 additional days Up to 40% discount for Aviva products Brilliant flexible benefits including electric cars Aviva Matching Share Plan and Save As You Earn scheme 21 volunteering hours per year Aviva is for everyone: We are inclusive - we want applications from people with diverse backgrounds and experiences. Excited but not sure you tick every box? Research tells us that women, particularly, feel this way. So, regardless of gender, why not apply. And if you're in a job share just apply as a pair. We flex locations, hours and working patterns to suit our customers, business, and you. Most of our people are smart working - spending around 60% of their time in our offices and 40% at home. To find out more about working at Aviva take a look here We interview every disabled applicant who meets the minimum criteria for the job. Once you've applied, please send us an email stating that you have a disclosed disability, and we'll interview you. We'd love it if you could submit your application online. If you require an alternative method of applying, please give Alice a call on or send an email to .
