College of Medical, Veterinary and Life Sciences
School of Psychology & Neuroscience
IT Infrastructure Manager
Vacancy Ref: 158172
Salary: Grade 8 £49,320 - £56,921 per annum
This post is full time and open ended (permanent). Relocation assistance will be provided where appropriate.
The University of Glasgow is seeking to appoint a talented and highly motivated IT Infrastructure Manager.
Reporting to the Computing Support Manager, the post holder will take a leading role in managing and maintaining the school’s IT Infrastructure, which is essential for the research, teaching and professional services of Psychology and Neuroscience. Your primary responsibility will be to collaborate with the Computing Support Manager, to manage and maintain the specialised core IT infrastructure, as well as provide user support and system development.
The post holder will work closely with the Computing Support Manager to ensure that infrastructure investments align with departmental needs and strategic priorities, optimizing resource allocation and financial planning. In addition, the successful candidate will be required to oversee the management and development of support staff, fostering a culture of excellence through the implementation of best practices, strategic talent development initiatives, and the execution of annual performance reviews.
For more information about the infrastructure and the scope of the job or for informal enquiries, please contact Raymond Elma, Raymond.Elma@glasgow.ac.uk
Job Purpose
Reporting to the Computing Support Manager, you will take a leading role in managing and maintaining the school’s IT Infrastructure, which is essential for the research, teaching and professional services of Psychology and Neuroscience. Your primary responsibility will be to collaborate with the Computing Support Manager, to manage and maintain the specialised core IT infrastructure, as well as provide user support and system development.
Main Duties and Responsibilities
Lead in evaluating and enhancing the effectiveness of the School’s IT Infrastructure, maximising service quality, efficiency and continuity.
Lead the management of infrastructure, data centres and server hardware across the product lifecycle.
Provide and manage core Linux and Microsoft Windows systems to ensure vital DNS, directory, desktop, and storage services remain available, secure and patched.
Lead the management of web services and Content Management Systems running Apache, PHP, Tomcat, MySQL/MariaDB, Python.
"Investigate new and emerging technologies through innovative design of complex systems and usage of specialist IT equipment for use in Psychology and Neuroscience teaching and research, to deliver strategic and operational benefits. Manage the allocated portion of the IT budget, ensuring an effective split between end-user and infrastructure management, and regularly present findings and budget impacts at the board level to align with organizational strategy and support informed decision-making."
Represent Psychology and Neuroscience at Campus and College IT forums, liaising with staff in Computing Service, and providing specialist advice in areas such as security, data storage and governance to enhance the efficiency and effectiveness of IT provision in the University.
"Manage the allocated portion of the IT budget, ensuring an effective split between end-user and infrastructure management. Collaborate with the Computing Support Manager to contribute to the Computing Support Department's budget from an infrastructure perspective, including costing for upgrades, maintenance, and other related expenses. Work closely to ensure that infrastructure investments align with departmental needs and strategic priorities, optimizing resource allocation and financial planning."
Oversee the management and development of support staff, fostering a culture of excellence through the implementation of best practices, strategic talent development initiatives, and the execution of annual performance reviews.
Lead end-to-end project management with a high degree of autonomy, ensuring successful project delivery from inception to completion. Oversee the creation of comprehensive documentation and provide training to colleagues as needed to support project objectives and knowledge transfer
Partner with the University Central IT to design and implement advanced IT security policies, ensuring alignment with institutional standards and enhancing the overall cybersecurity framework
Knowledge, Qualifications, Skills, and Experience Knowledge/Qualifications
Essential:
A1 Scottish Credit and Qualification Framework Level 9 (Ordinary Degree, Scottish Vocational Qualification level 4), or equivalent experience of personal development in a similar role or related role. A2 Ability to undertake the duties associated with this level of post A3 Comprehensive, expert current knowledge of IT standards, systems, and provision to support delivery of research and teaching.
Desirable:
B1 Microsoft Certified: Windows Server Hybrid Administrator Associate certification is highly desirable, with a strong emphasis on proficiency in managing local Active Directory environments.
B2 Proficiency in macOS management with JAMF certification is highly desirable.
B3 Experience of working in a Higher Education environment.
Skills Essential:
C1 Skills in LAMP platforms (Linux, Apache, MySQL, PHP).
C2Extensive experience in Linux/Unix administration, including user management (NIS Domain), monitoring, optimizing system performance, system updates, backups (ZFS) and network storage (NFS).
C2 Skill in managing and maintaining networking services (DNS, DHCP), which includes diagnosing and troubleshooting network problems.
C3 Expertise in Microsoft on prem Active Directory and Window Server 2019 and above.
C4 Ability to take a problem/project from conception to completion, interpreting and integrating technical and user needs appropriately.
C5 Ability to develop innovative solutions and to influence others to adopt them.
C6 Excellent interpersonal and communication (oral and written) skills.
C7 Demonstrable people/time/budget/project management skills of an appropriate level.
C8 Ability to work effectively with a high level of independence but also within a team.
C9 Strong analytical and innovative problem-solving skills.
C10 Ability to multitask successfully in a busy role with competing demands
C11 Ability to work flexibly and adapt to changing environments.
C12 Ability to collaborate with teams within our ogranisation (e.g Information Services Security Team and Network Infrastructure Team)
Desirable:
D1 Understanding of cybersecurity principles to protect data and computational resources. D2 Compliance with data privacy regulations and institutional IT policies. D3 Ability to implement and maintain secure access protocols. D4 Support for software installations, updates, and troubleshooting. D5 Ability to provide technical support to faculty and students. D6 Conducting training sessions on best practices for using the computing grid.
D7 Expertise in managing and maintaining high-performance computing (HPC) systems, Rocks Clusters or similar.
D8 Skills in Enterprise server software and storage technologies such as, Isilon, iDrac, Microsoft failover clusters and VMware VCenter.
F9 Proficiency in virtualisation and containerisation technologies (e.g., Docker, singularity).
Experience
Essential:
E1 Experience in leading a highly specialised infrastructure team.
E2 Substantial experience in server management and systems administration in a heterogeneous environment with a mix of Linux, Unix and MS Windows server technologies providing general services, such as backup, mail, DNS, DHCP, printing and user accounts.
E4 Installation and administration of enterprise level server hardware and software. Including, server management, virtualisation, and storage management.
E5 Significant experience of a higher-level programming or scripting language such as Shell Script, Python or PowerShell.
E6 Experience managing projects in a complex multidisciplinary organisation.
E7 Experience of taking responsibility for actions that can have considerable impact on the user community.
E8 Experience of negotiating with colleagues.
Desirable:
F1 Supporting Research in an academic environment.
F2 Supporting MySQL/MariaDB relational database servers.
F3 Security with network penetration testing, diagnosis, and patching.
F4 Experience of GDPR (General Data Protection Regulation), Caldecott and the processing of personal and medical data.
E5 Knowledge of libraries needed for GPU clusters and distributed computing frameworks
25/11/2024
Full time
College of Medical, Veterinary and Life Sciences
School of Psychology & Neuroscience
IT Infrastructure Manager
Vacancy Ref: 158172
Salary: Grade 8 £49,320 - £56,921 per annum
This post is full time and open ended (permanent). Relocation assistance will be provided where appropriate.
The University of Glasgow is seeking to appoint a talented and highly motivated IT Infrastructure Manager.
Reporting to the Computing Support Manager, the post holder will take a leading role in managing and maintaining the school’s IT Infrastructure, which is essential for the research, teaching and professional services of Psychology and Neuroscience. Your primary responsibility will be to collaborate with the Computing Support Manager, to manage and maintain the specialised core IT infrastructure, as well as provide user support and system development.
The post holder will work closely with the Computing Support Manager to ensure that infrastructure investments align with departmental needs and strategic priorities, optimizing resource allocation and financial planning. In addition, the successful candidate will be required to oversee the management and development of support staff, fostering a culture of excellence through the implementation of best practices, strategic talent development initiatives, and the execution of annual performance reviews.
For more information about the infrastructure and the scope of the job or for informal enquiries, please contact Raymond Elma, Raymond.Elma@glasgow.ac.uk
Job Purpose
Reporting to the Computing Support Manager, you will take a leading role in managing and maintaining the school’s IT Infrastructure, which is essential for the research, teaching and professional services of Psychology and Neuroscience. Your primary responsibility will be to collaborate with the Computing Support Manager, to manage and maintain the specialised core IT infrastructure, as well as provide user support and system development.
Main Duties and Responsibilities
Lead in evaluating and enhancing the effectiveness of the School’s IT Infrastructure, maximising service quality, efficiency and continuity.
Lead the management of infrastructure, data centres and server hardware across the product lifecycle.
Provide and manage core Linux and Microsoft Windows systems to ensure vital DNS, directory, desktop, and storage services remain available, secure and patched.
Lead the management of web services and Content Management Systems running Apache, PHP, Tomcat, MySQL/MariaDB, Python.
"Investigate new and emerging technologies through innovative design of complex systems and usage of specialist IT equipment for use in Psychology and Neuroscience teaching and research, to deliver strategic and operational benefits. Manage the allocated portion of the IT budget, ensuring an effective split between end-user and infrastructure management, and regularly present findings and budget impacts at the board level to align with organizational strategy and support informed decision-making."
Represent Psychology and Neuroscience at Campus and College IT forums, liaising with staff in Computing Service, and providing specialist advice in areas such as security, data storage and governance to enhance the efficiency and effectiveness of IT provision in the University.
"Manage the allocated portion of the IT budget, ensuring an effective split between end-user and infrastructure management. Collaborate with the Computing Support Manager to contribute to the Computing Support Department's budget from an infrastructure perspective, including costing for upgrades, maintenance, and other related expenses. Work closely to ensure that infrastructure investments align with departmental needs and strategic priorities, optimizing resource allocation and financial planning."
Oversee the management and development of support staff, fostering a culture of excellence through the implementation of best practices, strategic talent development initiatives, and the execution of annual performance reviews.
Lead end-to-end project management with a high degree of autonomy, ensuring successful project delivery from inception to completion. Oversee the creation of comprehensive documentation and provide training to colleagues as needed to support project objectives and knowledge transfer
Partner with the University Central IT to design and implement advanced IT security policies, ensuring alignment with institutional standards and enhancing the overall cybersecurity framework
Knowledge, Qualifications, Skills, and Experience Knowledge/Qualifications
Essential:
A1 Scottish Credit and Qualification Framework Level 9 (Ordinary Degree, Scottish Vocational Qualification level 4), or equivalent experience of personal development in a similar role or related role. A2 Ability to undertake the duties associated with this level of post A3 Comprehensive, expert current knowledge of IT standards, systems, and provision to support delivery of research and teaching.
Desirable:
B1 Microsoft Certified: Windows Server Hybrid Administrator Associate certification is highly desirable, with a strong emphasis on proficiency in managing local Active Directory environments.
B2 Proficiency in macOS management with JAMF certification is highly desirable.
B3 Experience of working in a Higher Education environment.
Skills Essential:
C1 Skills in LAMP platforms (Linux, Apache, MySQL, PHP).
C2Extensive experience in Linux/Unix administration, including user management (NIS Domain), monitoring, optimizing system performance, system updates, backups (ZFS) and network storage (NFS).
C2 Skill in managing and maintaining networking services (DNS, DHCP), which includes diagnosing and troubleshooting network problems.
C3 Expertise in Microsoft on prem Active Directory and Window Server 2019 and above.
C4 Ability to take a problem/project from conception to completion, interpreting and integrating technical and user needs appropriately.
C5 Ability to develop innovative solutions and to influence others to adopt them.
C6 Excellent interpersonal and communication (oral and written) skills.
C7 Demonstrable people/time/budget/project management skills of an appropriate level.
C8 Ability to work effectively with a high level of independence but also within a team.
C9 Strong analytical and innovative problem-solving skills.
C10 Ability to multitask successfully in a busy role with competing demands
C11 Ability to work flexibly and adapt to changing environments.
C12 Ability to collaborate with teams within our ogranisation (e.g Information Services Security Team and Network Infrastructure Team)
Desirable:
D1 Understanding of cybersecurity principles to protect data and computational resources. D2 Compliance with data privacy regulations and institutional IT policies. D3 Ability to implement and maintain secure access protocols. D4 Support for software installations, updates, and troubleshooting. D5 Ability to provide technical support to faculty and students. D6 Conducting training sessions on best practices for using the computing grid.
D7 Expertise in managing and maintaining high-performance computing (HPC) systems, Rocks Clusters or similar.
D8 Skills in Enterprise server software and storage technologies such as, Isilon, iDrac, Microsoft failover clusters and VMware VCenter.
F9 Proficiency in virtualisation and containerisation technologies (e.g., Docker, singularity).
Experience
Essential:
E1 Experience in leading a highly specialised infrastructure team.
E2 Substantial experience in server management and systems administration in a heterogeneous environment with a mix of Linux, Unix and MS Windows server technologies providing general services, such as backup, mail, DNS, DHCP, printing and user accounts.
E4 Installation and administration of enterprise level server hardware and software. Including, server management, virtualisation, and storage management.
E5 Significant experience of a higher-level programming or scripting language such as Shell Script, Python or PowerShell.
E6 Experience managing projects in a complex multidisciplinary organisation.
E7 Experience of taking responsibility for actions that can have considerable impact on the user community.
E8 Experience of negotiating with colleagues.
Desirable:
F1 Supporting Research in an academic environment.
F2 Supporting MySQL/MariaDB relational database servers.
F3 Security with network penetration testing, diagnosis, and patching.
F4 Experience of GDPR (General Data Protection Regulation), Caldecott and the processing of personal and medical data.
E5 Knowledge of libraries needed for GPU clusters and distributed computing frameworks
We're looking for a proactive and detail-oriented Cyber Security Officer to join our IT team. You'll support the Head of IT Governance in developing and delivering a Cyber Security Strategy and Information Security Management Plan , ensuring robust systems and processes are in place to protect the organisation. Key Responsibilities Support implementation of the cyber security strategy and management plan. Monitor global threats and assess potential organisational impact. Coordinate penetration testing and manage remediation actions. Assist with maintaining Cyber Essentials certification and internal audits. Work with IT colleagues to plan and implement security improvements. About You Strong skills in communication, report writing, planning, and problem solving. Genuine interest in cyber security and willingness to continue learning. Studying toward or interested in a Cyber Security qualification. Collaborative, detail-oriented, and proactive in a fast-paced environment. Benefits Supportive team with training and development opportunities. Benefits may include a pension scheme, staff discounts, cycle-to-work scheme, free parking, and early Friday finishes. Main Purpose Support the delivery of IT cyber security and compliance across all infrastructure and application services, ensuring adherence to legal, regulatory, and best-practice standards. Key Responsibilities Develop, implement, and maintain IT security policies, standards, and procedures. Lead the maintenance of Cyber Essentials accreditation and ensure ongoing compliance. Support the development and implementation of an Information Security Management System (ISMS) aligned with ISO 27001 standards. Monitor emerging threats, legislation, and industry changes, translating them into actionable requirements. Coordinate penetration testing and vulnerability assessments, ensuring remediation plans are completed effectively. Identify and plan critical patching and security updates with technical teams. Ensure security is embedded in all change requests, upgrades, and projects. Provide support for security incidents when required (time off in lieu applies). Prepare and deliver regular security and compliance reports, highlighting risks and recommending mitigation's in clear, non-technical language. Run cyber awareness campaigns and ensure staff training remains current and relevant. General Responsibilities Participate in organisational activities and training to maintain skills and knowledge. Take reasonable care for personal health and safety and that of others. Promote equality, diversity, and safeguarding in all aspects of work. Undertake additional duties or projects as required by management. Connect2Employment is a trading style of Luton & Kent Commercial Services LLP - A joint venture between Luton Borough Council & Commercial Services Kent Ltd. Connect2Employment is an equal opportunities Employment Agency & Business. It positively encourages applications from all suitably qualified and eligible candidates.
09/10/2025
Full time
We're looking for a proactive and detail-oriented Cyber Security Officer to join our IT team. You'll support the Head of IT Governance in developing and delivering a Cyber Security Strategy and Information Security Management Plan , ensuring robust systems and processes are in place to protect the organisation. Key Responsibilities Support implementation of the cyber security strategy and management plan. Monitor global threats and assess potential organisational impact. Coordinate penetration testing and manage remediation actions. Assist with maintaining Cyber Essentials certification and internal audits. Work with IT colleagues to plan and implement security improvements. About You Strong skills in communication, report writing, planning, and problem solving. Genuine interest in cyber security and willingness to continue learning. Studying toward or interested in a Cyber Security qualification. Collaborative, detail-oriented, and proactive in a fast-paced environment. Benefits Supportive team with training and development opportunities. Benefits may include a pension scheme, staff discounts, cycle-to-work scheme, free parking, and early Friday finishes. Main Purpose Support the delivery of IT cyber security and compliance across all infrastructure and application services, ensuring adherence to legal, regulatory, and best-practice standards. Key Responsibilities Develop, implement, and maintain IT security policies, standards, and procedures. Lead the maintenance of Cyber Essentials accreditation and ensure ongoing compliance. Support the development and implementation of an Information Security Management System (ISMS) aligned with ISO 27001 standards. Monitor emerging threats, legislation, and industry changes, translating them into actionable requirements. Coordinate penetration testing and vulnerability assessments, ensuring remediation plans are completed effectively. Identify and plan critical patching and security updates with technical teams. Ensure security is embedded in all change requests, upgrades, and projects. Provide support for security incidents when required (time off in lieu applies). Prepare and deliver regular security and compliance reports, highlighting risks and recommending mitigation's in clear, non-technical language. Run cyber awareness campaigns and ensure staff training remains current and relevant. General Responsibilities Participate in organisational activities and training to maintain skills and knowledge. Take reasonable care for personal health and safety and that of others. Promote equality, diversity, and safeguarding in all aspects of work. Undertake additional duties or projects as required by management. Connect2Employment is a trading style of Luton & Kent Commercial Services LLP - A joint venture between Luton Borough Council & Commercial Services Kent Ltd. Connect2Employment is an equal opportunities Employment Agency & Business. It positively encourages applications from all suitably qualified and eligible candidates.
We're looking for a proactive and detail-oriented Cyber Security Officer to join our IT team. You'll support the Head of IT Governance in developing and delivering a Cyber Security Strategy and Information Security Management Plan , ensuring robust systems and processes are in place to protect the organisation. Key Responsibilities Support implementation of the cyber security strategy and management plan. Monitor global threats and assess potential organisational impact. Coordinate penetration testing and manage remediation actions. Assist with maintaining Cyber Essentials certification and internal audits. Work with IT colleagues to plan and implement security improvements. About You Strong skills in communication, report writing, planning, and problem solving. Genuine interest in cyber security and willingness to continue learning. Studying toward or interested in a Cyber Security qualification. Collaborative, detail-oriented, and proactive in a fast-paced environment. Benefits Supportive team with training and development opportunities. Benefits may include a pension scheme, staff discounts, cycle-to-work scheme, free parking, and early Friday finishes. Main Purpose Support the delivery of IT cyber security and compliance across all infrastructure and application services, ensuring adherence to legal, regulatory, and best-practice standards. Key Responsibilities Develop, implement, and maintain IT security policies, standards, and procedures. Lead the maintenance of Cyber Essentials accreditation and ensure ongoing compliance. Support the development and implementation of an Information Security Management System (ISMS) aligned with ISO 27001 standards. Monitor emerging threats, legislation, and industry changes, translating them into actionable requirements. Coordinate penetration testing and vulnerability assessments, ensuring remediation plans are completed effectively. Identify and plan critical patching and security updates with technical teams. Ensure security is embedded in all change requests, upgrades, and projects. Provide support for security incidents when required (time off in lieu applies). Prepare and deliver regular security and compliance reports, highlighting risks and recommending mitigation's in clear, non-technical language. Run cyber awareness campaigns and ensure staff training remains current and relevant. General Responsibilities Participate in organisational activities and training to maintain skills and knowledge. Take reasonable care for personal health and safety and that of others. Promote equality, diversity, and safeguarding in all aspects of work. Undertake additional duties or projects as required by management. Connect2Employment is a trading style of Luton & Kent Commercial Services LLP - A joint venture between Luton Borough Council & Commercial Services Kent Ltd. Connect2Employment is an equal opportunities Employment Agency & Business. It positively encourages applications from all suitably qualified and eligible candidates.
09/10/2025
Full time
We're looking for a proactive and detail-oriented Cyber Security Officer to join our IT team. You'll support the Head of IT Governance in developing and delivering a Cyber Security Strategy and Information Security Management Plan , ensuring robust systems and processes are in place to protect the organisation. Key Responsibilities Support implementation of the cyber security strategy and management plan. Monitor global threats and assess potential organisational impact. Coordinate penetration testing and manage remediation actions. Assist with maintaining Cyber Essentials certification and internal audits. Work with IT colleagues to plan and implement security improvements. About You Strong skills in communication, report writing, planning, and problem solving. Genuine interest in cyber security and willingness to continue learning. Studying toward or interested in a Cyber Security qualification. Collaborative, detail-oriented, and proactive in a fast-paced environment. Benefits Supportive team with training and development opportunities. Benefits may include a pension scheme, staff discounts, cycle-to-work scheme, free parking, and early Friday finishes. Main Purpose Support the delivery of IT cyber security and compliance across all infrastructure and application services, ensuring adherence to legal, regulatory, and best-practice standards. Key Responsibilities Develop, implement, and maintain IT security policies, standards, and procedures. Lead the maintenance of Cyber Essentials accreditation and ensure ongoing compliance. Support the development and implementation of an Information Security Management System (ISMS) aligned with ISO 27001 standards. Monitor emerging threats, legislation, and industry changes, translating them into actionable requirements. Coordinate penetration testing and vulnerability assessments, ensuring remediation plans are completed effectively. Identify and plan critical patching and security updates with technical teams. Ensure security is embedded in all change requests, upgrades, and projects. Provide support for security incidents when required (time off in lieu applies). Prepare and deliver regular security and compliance reports, highlighting risks and recommending mitigation's in clear, non-technical language. Run cyber awareness campaigns and ensure staff training remains current and relevant. General Responsibilities Participate in organisational activities and training to maintain skills and knowledge. Take reasonable care for personal health and safety and that of others. Promote equality, diversity, and safeguarding in all aspects of work. Undertake additional duties or projects as required by management. Connect2Employment is a trading style of Luton & Kent Commercial Services LLP - A joint venture between Luton Borough Council & Commercial Services Kent Ltd. Connect2Employment is an equal opportunities Employment Agency & Business. It positively encourages applications from all suitably qualified and eligible candidates.
Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. Join Our Team as a Cyber Security Test Engineer! Are you passionate about automotive technology and cybersecurity? Do you want to play a pivotal role in ensuring the safety and security of cutting-edge vehicle systems? If so, we have an exciting opportunity for you! Bentley Motors, the leader in the prestigious automotive industry, is seeking a Cyber Security Test Engineer to join their dynamic team on a fixed-term contract for 4 months. This role offers a hybrid working model based out of our Crewe campus. If you're ready to make a difference, read on! Role: Cyber Security Test Engineer Duration: 4 Months (extension options) Location: Crewe (2 days in the office) Rate: 40.46 per hour (outside IR35) About the role: As a Cyber Security Test Engineer, you will report to the Functional Manager - Product Security Test & Incident Management. Your primary responsibility will be preparing and executing cybersecurity testing for automotive products in compliance with UNECE R.155 and China GB 44495 regulations. Your contributions will be vital in ensuring our vehicle systems meet regulatory requirements across global markets. Key Responsibilities: Manage Test Properties : Ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on test benches and vehicles. Develop Test Cases : Create cybersecurity test cases that align with regulatory requirements (e.g., UNECE R155, GB 44495). Execute Tests : Carry out cybersecurity test cases and generate comprehensive reports. Support Compliance Testing : Assist in cybersecurity homologation and compliance testing activities for global regions. Coordinate Testing : Plan and oversee various levels of product security testing throughout the development lifecycle. About You: We're looking for a delivery-focused and results-driven individual with a passion for cybersecurity in the automotive sector. The ideal candidate will have hands-on experience in product security testing and possess the following skills : Technical Competency : Strong knowledge of relevant regulations and standards such as UNECE R155, R156, ISO/SAE 21434, and GB 44495. Automotive Experience : Hands-on familiarity with CAN, Ethernet, diagnostics, and flashing/coding (Experience with Volkswagen Group tools is a plus!). Testing Frameworks : Solid understanding of cybersecurity testing methodologies, with additional experience in penetration testing being advantageous. Programming Skills : Proficiency in software development or scripting languages such as C, Java, Python, and CAPL. Communication Skills : Effective communication abilities across various levels, capable of delivering clear and professional presentations. Test Management: Experience in test planning, coordination, and management activities. Why Join Us? Bentley Motors is dedicated to becoming the creator of the world's most luxurious performance motor vehicles. With a global presence in 59 countries and over 125,000 customers, you'll be part of a unique organization that values teamwork and innovation. If you're excited about the prospect of contributing to the future of automotive cybersecurity, we want to hear from you! Driving Required: Yes Contract Type: Fixed Term Contract (4 months) Ready to take the next step in your career? Apply now and become part of a team that's at the forefront of automotive technology! Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Adecco is an employment consultancy and operates as an equal opportunities employer.
09/10/2025
Contractor
Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. Join Our Team as a Cyber Security Test Engineer! Are you passionate about automotive technology and cybersecurity? Do you want to play a pivotal role in ensuring the safety and security of cutting-edge vehicle systems? If so, we have an exciting opportunity for you! Bentley Motors, the leader in the prestigious automotive industry, is seeking a Cyber Security Test Engineer to join their dynamic team on a fixed-term contract for 4 months. This role offers a hybrid working model based out of our Crewe campus. If you're ready to make a difference, read on! Role: Cyber Security Test Engineer Duration: 4 Months (extension options) Location: Crewe (2 days in the office) Rate: 40.46 per hour (outside IR35) About the role: As a Cyber Security Test Engineer, you will report to the Functional Manager - Product Security Test & Incident Management. Your primary responsibility will be preparing and executing cybersecurity testing for automotive products in compliance with UNECE R.155 and China GB 44495 regulations. Your contributions will be vital in ensuring our vehicle systems meet regulatory requirements across global markets. Key Responsibilities: Manage Test Properties : Ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on test benches and vehicles. Develop Test Cases : Create cybersecurity test cases that align with regulatory requirements (e.g., UNECE R155, GB 44495). Execute Tests : Carry out cybersecurity test cases and generate comprehensive reports. Support Compliance Testing : Assist in cybersecurity homologation and compliance testing activities for global regions. Coordinate Testing : Plan and oversee various levels of product security testing throughout the development lifecycle. About You: We're looking for a delivery-focused and results-driven individual with a passion for cybersecurity in the automotive sector. The ideal candidate will have hands-on experience in product security testing and possess the following skills : Technical Competency : Strong knowledge of relevant regulations and standards such as UNECE R155, R156, ISO/SAE 21434, and GB 44495. Automotive Experience : Hands-on familiarity with CAN, Ethernet, diagnostics, and flashing/coding (Experience with Volkswagen Group tools is a plus!). Testing Frameworks : Solid understanding of cybersecurity testing methodologies, with additional experience in penetration testing being advantageous. Programming Skills : Proficiency in software development or scripting languages such as C, Java, Python, and CAPL. Communication Skills : Effective communication abilities across various levels, capable of delivering clear and professional presentations. Test Management: Experience in test planning, coordination, and management activities. Why Join Us? Bentley Motors is dedicated to becoming the creator of the world's most luxurious performance motor vehicles. With a global presence in 59 countries and over 125,000 customers, you'll be part of a unique organization that values teamwork and innovation. If you're excited about the prospect of contributing to the future of automotive cybersecurity, we want to hear from you! Driving Required: Yes Contract Type: Fixed Term Contract (4 months) Ready to take the next step in your career? Apply now and become part of a team that's at the forefront of automotive technology! Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Adecco is an employment consultancy and operates as an equal opportunities employer.
Penetration Tester - Leading Managed Services Provider Remote based. Salary: Up to 60k, depending on experience. A leading Managed Services Provider are seeking to recruit a technically skilled Cyber Security / Penetration Tester. This is a fantastic opportunity to join a well-established organisation delivering high-quality security services to enterprise clients across the UK. As a Penetration Tester, you will be responsible for conducting manual penetration testing across both application and infrastructure layers. You will contribute to secure build reviews, advise on secure design practices, and provide technical insight to both internal teams and clients. Key Responsibilities Perform manual penetration testing of web applications and infrastructure Conduct security build reviews across common operating systems (Windows, Redhat, Solaris) Analyse and harden database environments in line with security best practices Review and advise on web server design and implementation Produce clear and concise technical reports for a range of stakeholders Collaborate with internal teams and clients to support remediation and secure development Required Skills and Experience Proven experience in manual penetration testing (application and infrastructure) Strong understanding of TCP/IP and core networking principles Extensive experience testing web-based applications Familiarity with secure configuration and build reviews across major operating systems Comfortable programming in one or more languages (e.g. Python, Java, C#, Bash) Deep knowledge of database security and hardening techniques Solid technical understanding of web application architecture and server implementation Ideally you'll be working towards CREST Certified Web Application Tester or CREST Certified Infrastructure Tester or equivalent. If you are a technically driven Penetration Tester seeking a new challenge within a respected Managed Services Provider, we would be pleased to hear from you. Remote based. Paying up to 60k, depending on experience. Must be eligible for SC Clearance.
09/10/2025
Full time
Penetration Tester - Leading Managed Services Provider Remote based. Salary: Up to 60k, depending on experience. A leading Managed Services Provider are seeking to recruit a technically skilled Cyber Security / Penetration Tester. This is a fantastic opportunity to join a well-established organisation delivering high-quality security services to enterprise clients across the UK. As a Penetration Tester, you will be responsible for conducting manual penetration testing across both application and infrastructure layers. You will contribute to secure build reviews, advise on secure design practices, and provide technical insight to both internal teams and clients. Key Responsibilities Perform manual penetration testing of web applications and infrastructure Conduct security build reviews across common operating systems (Windows, Redhat, Solaris) Analyse and harden database environments in line with security best practices Review and advise on web server design and implementation Produce clear and concise technical reports for a range of stakeholders Collaborate with internal teams and clients to support remediation and secure development Required Skills and Experience Proven experience in manual penetration testing (application and infrastructure) Strong understanding of TCP/IP and core networking principles Extensive experience testing web-based applications Familiarity with secure configuration and build reviews across major operating systems Comfortable programming in one or more languages (e.g. Python, Java, C#, Bash) Deep knowledge of database security and hardening techniques Solid technical understanding of web application architecture and server implementation Ideally you'll be working towards CREST Certified Web Application Tester or CREST Certified Infrastructure Tester or equivalent. If you are a technically driven Penetration Tester seeking a new challenge within a respected Managed Services Provider, we would be pleased to hear from you. Remote based. Paying up to 60k, depending on experience. Must be eligible for SC Clearance.
Penetration Tester - Leading Managed Services Provider Remote based. Salary: Up to 60k, depending on experience. A leading Managed Services Provider are seeking to recruit a technically skilled Cyber Security / Penetration Tester. This is a fantastic opportunity to join a well-established organisation delivering high-quality security services to enterprise clients across the UK. As a Penetration Tester, you will be responsible for conducting manual penetration testing across both application and infrastructure layers. You will contribute to secure build reviews, advise on secure design practices, and provide technical insight to both internal teams and clients. Key Responsibilities Perform manual penetration testing of web applications and infrastructure Conduct security build reviews across common operating systems (Windows, Redhat, Solaris) Analyse and harden database environments in line with security best practices Review and advise on web server design and implementation Produce clear and concise technical reports for a range of stakeholders Collaborate with internal teams and clients to support remediation and secure development Required Skills and Experience Proven experience in manual penetration testing (application and infrastructure) Strong understanding of TCP/IP and core networking principles Extensive experience testing web-based applications Familiarity with secure configuration and build reviews across major operating systems Comfortable programming in one or more languages (e.g. Python, Java, C#, Bash) Deep knowledge of database security and hardening techniques Solid technical understanding of web application architecture and server implementation Ideally you'll be working towards CREST Certified Web Application Tester or CREST Certified Infrastructure Tester or equivalent. If you are a technically driven Penetration Tester seeking a new challenge within a respected Managed Services Provider, we would be pleased to hear from you. Remote based. Paying up to 60k, depending on experience. Must be eligible for SC Clearance.
09/10/2025
Full time
Penetration Tester - Leading Managed Services Provider Remote based. Salary: Up to 60k, depending on experience. A leading Managed Services Provider are seeking to recruit a technically skilled Cyber Security / Penetration Tester. This is a fantastic opportunity to join a well-established organisation delivering high-quality security services to enterprise clients across the UK. As a Penetration Tester, you will be responsible for conducting manual penetration testing across both application and infrastructure layers. You will contribute to secure build reviews, advise on secure design practices, and provide technical insight to both internal teams and clients. Key Responsibilities Perform manual penetration testing of web applications and infrastructure Conduct security build reviews across common operating systems (Windows, Redhat, Solaris) Analyse and harden database environments in line with security best practices Review and advise on web server design and implementation Produce clear and concise technical reports for a range of stakeholders Collaborate with internal teams and clients to support remediation and secure development Required Skills and Experience Proven experience in manual penetration testing (application and infrastructure) Strong understanding of TCP/IP and core networking principles Extensive experience testing web-based applications Familiarity with secure configuration and build reviews across major operating systems Comfortable programming in one or more languages (e.g. Python, Java, C#, Bash) Deep knowledge of database security and hardening techniques Solid technical understanding of web application architecture and server implementation Ideally you'll be working towards CREST Certified Web Application Tester or CREST Certified Infrastructure Tester or equivalent. If you are a technically driven Penetration Tester seeking a new challenge within a respected Managed Services Provider, we would be pleased to hear from you. Remote based. Paying up to 60k, depending on experience. Must be eligible for SC Clearance.
Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. Join Our Team as a Cyber Security Test Engineer! Are you passionate about automotive technology and cybersecurity? Do you want to play a pivotal role in ensuring the safety and security of cutting-edge vehicle systems? If so, we have an exciting opportunity for you! Bentley Motors, the leader in the prestigious automotive industry, is seeking a Cyber Security Test Engineer to join their dynamic team on a fixed-term contract for 4 months. This role offers a hybrid working model based out of our Crewe campus. If you're ready to make a difference, read on! Role: Cyber Security Test Engineer Duration: 4 Months (extension options) Location: Crewe (2 days in the office) Rate: £40.46 per hour (outside IR35) About the role: As a Cyber Security Test Engineer, you will report to the Functional Manager - Product Security Test & Incident Management. Your primary responsibility will be preparing and executing cybersecurity testing for automotive products in compliance with UNECE R.155 and China GB 44495 regulations. Your contributions will be vital in ensuring our vehicle systems meet regulatory requirements across global markets. Key Responsibilities: Manage Test Properties : Ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on test benches and vehicles. Develop Test Cases : Create cybersecurity test cases that align with regulatory requirements (e.g., UNECE R155, GB 44495). Execute Tests : Carry out cybersecurity test cases and generate comprehensive reports. Support Compliance Testing : Assist in cybersecurity homologation and compliance testing activities for global regions. Coordinate Testing : Plan and oversee various levels of product security testing throughout the development lifecycle. About You: We're looking for a delivery-focused and results-driven individual with a passion for cybersecurity in the automotive sector. The ideal candidate will have hands-on experience in product security testing and possess the following skills : Technical Competency : Strong knowledge of relevant regulations and standards such as UNECE R155, R156, ISO/SAE 21434, and GB 44495. Automotive Experience : Hands-on familiarity with CAN, Ethernet, diagnostics, and flashing/coding (Experience with Volkswagen Group tools is a plus!). Testing Frameworks : Solid understanding of cybersecurity testing methodologies, with additional experience in penetration testing being advantageous. Programming Skills : Proficiency in software development or scripting languages such as C, Java, Python, and CAPL. Communication Skills : Effective communication abilities across various levels, capable of delivering clear and professional presentations. Test Management: Experience in test planning, coordination, and management activities. Why Join Us? Bentley Motors is dedicated to becoming the creator of the world's most luxurious performance motor vehicles. With a global presence in 59 countries and over 125,000 customers, you'll be part of a unique organization that values teamwork and innovation. If you're excited about the prospect of contributing to the future of automotive cybersecurity, we want to hear from you! Driving Required: Yes Contract Type: Fixed Term Contract (4 months) Ready to take the next step in your career? Apply now and become part of a team that's at the forefront of automotive technology! Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Adecco is an employment consultancy and operates as an equal opportunities employer.
09/10/2025
Full time
Adecco is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone's chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. Join Our Team as a Cyber Security Test Engineer! Are you passionate about automotive technology and cybersecurity? Do you want to play a pivotal role in ensuring the safety and security of cutting-edge vehicle systems? If so, we have an exciting opportunity for you! Bentley Motors, the leader in the prestigious automotive industry, is seeking a Cyber Security Test Engineer to join their dynamic team on a fixed-term contract for 4 months. This role offers a hybrid working model based out of our Crewe campus. If you're ready to make a difference, read on! Role: Cyber Security Test Engineer Duration: 4 Months (extension options) Location: Crewe (2 days in the office) Rate: £40.46 per hour (outside IR35) About the role: As a Cyber Security Test Engineer, you will report to the Functional Manager - Product Security Test & Incident Management. Your primary responsibility will be preparing and executing cybersecurity testing for automotive products in compliance with UNECE R.155 and China GB 44495 regulations. Your contributions will be vital in ensuring our vehicle systems meet regulatory requirements across global markets. Key Responsibilities: Manage Test Properties : Ensure readiness for cybersecurity testing, including flashing, coding, debugging, analysis, and issue resolution on test benches and vehicles. Develop Test Cases : Create cybersecurity test cases that align with regulatory requirements (e.g., UNECE R155, GB 44495). Execute Tests : Carry out cybersecurity test cases and generate comprehensive reports. Support Compliance Testing : Assist in cybersecurity homologation and compliance testing activities for global regions. Coordinate Testing : Plan and oversee various levels of product security testing throughout the development lifecycle. About You: We're looking for a delivery-focused and results-driven individual with a passion for cybersecurity in the automotive sector. The ideal candidate will have hands-on experience in product security testing and possess the following skills : Technical Competency : Strong knowledge of relevant regulations and standards such as UNECE R155, R156, ISO/SAE 21434, and GB 44495. Automotive Experience : Hands-on familiarity with CAN, Ethernet, diagnostics, and flashing/coding (Experience with Volkswagen Group tools is a plus!). Testing Frameworks : Solid understanding of cybersecurity testing methodologies, with additional experience in penetration testing being advantageous. Programming Skills : Proficiency in software development or scripting languages such as C, Java, Python, and CAPL. Communication Skills : Effective communication abilities across various levels, capable of delivering clear and professional presentations. Test Management: Experience in test planning, coordination, and management activities. Why Join Us? Bentley Motors is dedicated to becoming the creator of the world's most luxurious performance motor vehicles. With a global presence in 59 countries and over 125,000 customers, you'll be part of a unique organization that values teamwork and innovation. If you're excited about the prospect of contributing to the future of automotive cybersecurity, we want to hear from you! Driving Required: Yes Contract Type: Fixed Term Contract (4 months) Ready to take the next step in your career? Apply now and become part of a team that's at the forefront of automotive technology! Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Adecco is an employment consultancy and operates as an equal opportunities employer.
Penetration Tester - Hybrid (Wokingham) - Circa 400 per day inside ir35 - 2/3 months+ All applicants must hold an active SC clearance. My client is a global leading IT consultancy. They are on the hunt for an SC cleared PEN Tester to join them on an assigment until the end of the year. Key Responsibilities Conduct manual and automated penetration tests on web applications, networks, APIs, and mobile platforms Identify, exploit, and document security vulnerabilities with detailed risk assessment Develop and execute red team exercises and threat simulations Collaborate with development and infrastructure teams to remediate findings Prepare comprehensive reports outlining findings, impact, and mitigation strategies Stay current with latest attack vectors, tools, and security trends Assist in security awareness training and internal education efforts Contribute to security policies and best practices development Required Skills & Qualifications Proven experience in penetration testing, ethical hacking, or red teaming Strong understanding of OWASP Top 10, MITRE ATT&CK, and CVSS scoring Proficiency with tools like Burp Suite, Metasploit, Nmap, Wireshark, Kali Linux Familiarity with scripting languages (Python, Bash, PowerShell) Knowledge of network protocols, operating systems, and cloud environments Relevant certifications (e.g., OSCP, CEH, GPEN, CRTP) are highly desirable Excellent analytical, communication, and report-writing skills" Penetration Tester - Hybrid (Wokingham) - Circa 400 per day inside ir35 - 2/3 months+ Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.
06/10/2025
Contractor
Penetration Tester - Hybrid (Wokingham) - Circa 400 per day inside ir35 - 2/3 months+ All applicants must hold an active SC clearance. My client is a global leading IT consultancy. They are on the hunt for an SC cleared PEN Tester to join them on an assigment until the end of the year. Key Responsibilities Conduct manual and automated penetration tests on web applications, networks, APIs, and mobile platforms Identify, exploit, and document security vulnerabilities with detailed risk assessment Develop and execute red team exercises and threat simulations Collaborate with development and infrastructure teams to remediate findings Prepare comprehensive reports outlining findings, impact, and mitigation strategies Stay current with latest attack vectors, tools, and security trends Assist in security awareness training and internal education efforts Contribute to security policies and best practices development Required Skills & Qualifications Proven experience in penetration testing, ethical hacking, or red teaming Strong understanding of OWASP Top 10, MITRE ATT&CK, and CVSS scoring Proficiency with tools like Burp Suite, Metasploit, Nmap, Wireshark, Kali Linux Familiarity with scripting languages (Python, Bash, PowerShell) Knowledge of network protocols, operating systems, and cloud environments Relevant certifications (e.g., OSCP, CEH, GPEN, CRTP) are highly desirable Excellent analytical, communication, and report-writing skills" Penetration Tester - Hybrid (Wokingham) - Circa 400 per day inside ir35 - 2/3 months+ Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
06/10/2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
06/10/2025
Full time
Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.
Penetration Tester - Red Team - Remote A renowned cyber security consultancy is growing their technical team with the addition of a Penetration Tester with experience of Red Team engagements. You'll join a talented team of cyber security specialists to work on a range of offensive security projects with clients across various industries, using bleeding-edge tooling to deliver a top class, bespoke service. You'll enjoy leading engagements that will offer brilliant exposure to different security specialisms, and be supported to develop your skills and career with professional qualifications. To be successful in this role, you should bring: A minimum of 2 years' experience working on red team engagements Strong background in penetration testing with skills in topics such as EDR evasion, exploit development, cloud exploitation etc. Coding experience in languages such as Python, C/C++, Rust or GO Professional certifications in Red Teaming - CREST CRTS, CSAS, CRTO, CRTL, OSCE etc. Due to the nature of the projects undertaken, the successful candidate must be eligible for UK Security Clearance. If you would like to learn more about this exciting opportunity to work on complex red team engagements, apply now!
03/10/2025
Full time
Penetration Tester - Red Team - Remote A renowned cyber security consultancy is growing their technical team with the addition of a Penetration Tester with experience of Red Team engagements. You'll join a talented team of cyber security specialists to work on a range of offensive security projects with clients across various industries, using bleeding-edge tooling to deliver a top class, bespoke service. You'll enjoy leading engagements that will offer brilliant exposure to different security specialisms, and be supported to develop your skills and career with professional qualifications. To be successful in this role, you should bring: A minimum of 2 years' experience working on red team engagements Strong background in penetration testing with skills in topics such as EDR evasion, exploit development, cloud exploitation etc. Coding experience in languages such as Python, C/C++, Rust or GO Professional certifications in Red Teaming - CREST CRTS, CSAS, CRTO, CRTL, OSCE etc. Due to the nature of the projects undertaken, the successful candidate must be eligible for UK Security Clearance. If you would like to learn more about this exciting opportunity to work on complex red team engagements, apply now!
Deerfoot Recruitment Solutions Limited
City, London
Threat Intelligence Analyst Fully Onsite in London Inside IR35 Contract Deerfoot Recruitment has been engaged to identify an experienced Threat Intelligence Analyst for a leading global banking organisation with an advanced cyber defence function in London. This is a fantastic opportunity to shape threat intelligence, work alongside Red/Blue Teams, and operationalise intelligence using the latest cybersecurity, penetration testing, and Breach & Attack Simulation (BAS) platforms. Key Responsibilities: Monitor and analyse global cyber threat landscapes, identifying threats, adversary tactics, and emerging risks Collaborate with Red Team, Blue Team, and Penetration Testing specialists to integrate intelligence into Breach & Attack Simulation (BAS) scenarios Act as a point of contact between threat intelligence, Red/Blue, and SOC teams to align threat modelling and adversary simulation Support threat hunting activities and provide tactical, contextual intelligence to stakeholders Model and assess threat actors, including motivations, capabilities, attack vectors, and impacts Leverage the MITRE ATT&CK framework for mapping adversary behaviours and detection Develop and update threat profiles, attack surface assessments, and adversary emulation plans Present high-quality threat briefings, risk assessments, and operational recommendations Participate in incident response, providing context, attributions, and support as required Required Skills & Experience: Extensive experience in threat intelligence, cybersecurity operations, or penetration testing Proven ability to work collaboratively with Red/Blue teams and Security Operations Centres (SOC) Hands-on experience with TIPs (Threat Intelligence Platforms), SIEM tools, and threat data enrichment solutions Practical exposure to Breach & Attack Simulation (BAS) tools for threat scenario development Strong knowledge of adversary TTPs, MITRE ATT&CK, and modern threat modelling techniques Technical proficiency with pentesting tools such as Metasploit Framework, Burp Suite, Kali Linux, and Pentera Experience producing actionable threat intelligence reports and clear technical briefings If you are ready to drive the next wave of cyber defense, apply via Deerfoot Recruitment today to learn more about this exciting contract opportunity. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate £1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd acts as an Employment Business in relation to this vacancy.
03/10/2025
Contractor
Threat Intelligence Analyst Fully Onsite in London Inside IR35 Contract Deerfoot Recruitment has been engaged to identify an experienced Threat Intelligence Analyst for a leading global banking organisation with an advanced cyber defence function in London. This is a fantastic opportunity to shape threat intelligence, work alongside Red/Blue Teams, and operationalise intelligence using the latest cybersecurity, penetration testing, and Breach & Attack Simulation (BAS) platforms. Key Responsibilities: Monitor and analyse global cyber threat landscapes, identifying threats, adversary tactics, and emerging risks Collaborate with Red Team, Blue Team, and Penetration Testing specialists to integrate intelligence into Breach & Attack Simulation (BAS) scenarios Act as a point of contact between threat intelligence, Red/Blue, and SOC teams to align threat modelling and adversary simulation Support threat hunting activities and provide tactical, contextual intelligence to stakeholders Model and assess threat actors, including motivations, capabilities, attack vectors, and impacts Leverage the MITRE ATT&CK framework for mapping adversary behaviours and detection Develop and update threat profiles, attack surface assessments, and adversary emulation plans Present high-quality threat briefings, risk assessments, and operational recommendations Participate in incident response, providing context, attributions, and support as required Required Skills & Experience: Extensive experience in threat intelligence, cybersecurity operations, or penetration testing Proven ability to work collaboratively with Red/Blue teams and Security Operations Centres (SOC) Hands-on experience with TIPs (Threat Intelligence Platforms), SIEM tools, and threat data enrichment solutions Practical exposure to Breach & Attack Simulation (BAS) tools for threat scenario development Strong knowledge of adversary TTPs, MITRE ATT&CK, and modern threat modelling techniques Technical proficiency with pentesting tools such as Metasploit Framework, Burp Suite, Kali Linux, and Pentera Experience producing actionable threat intelligence reports and clear technical briefings If you are ready to drive the next wave of cyber defense, apply via Deerfoot Recruitment today to learn more about this exciting contract opportunity. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate £1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd acts as an Employment Business in relation to this vacancy.
Join us as a Senior Security Engineer for CIAM at Barclays, where you will bring to life a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Experience across configuration and integration with Hardware Security Module (HSM) and AWS Secrets Manager (ASM) tooling, certificate lifecycle management, e.g. rotation, revocation, and in automating security workflows Experience using GitLab CI/CD pipelines, AWS CLI or Chef. Strong experience with Cloud Security expertise across the following areas: AWS security controls, policies and automation, CLI tools, role based and attribute-based access controls, cryptographic protocols and secure key lifecycle management, advanced threat modelling, SOC operations, securing microservices and APIs, DevSecOps best practices, vulnerability scanning, tools, approaches, vulnerability patching and vendor management for security Strong experience in penetration testing and hands-on coding in at least one of the following: JavaScript, Java, Python. Some other highly desirable skills include: Experience in hands-on configuration, deployment and operation of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS) with embedded security gates, HTTP header signing, access token and data at rest encryption, PKI based self-sovereign identity, or open source You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To develop, implement and maintain solutions that support the safeguarding of the banks systems and sensitive information. Accountabilities Provision of subject matter expertise on security systems and engineering patterns. Development and implementation of protocols, algorithms, and software applications to protect sensitive data and systems. Management and protection of secrets, ensuring that they are securely generated, stored, and used. Execution of audits to monitor, identify and assess vulnerabilities in the banks infrastructure/software and support the response to potential security breaches. Identification of advancements in to support the innovation and adoption of new cryptographic technologies and techniques. Collaboration across the bank, including developers and security teams, to ensure that cryptographic solutions align with business objectives, security policies and regulatory requirements. Development/ Implementation and maintenance of Identity and Access Management solutions and systems. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
03/10/2025
Full time
Join us as a Senior Security Engineer for CIAM at Barclays, where you will bring to life a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Experience across configuration and integration with Hardware Security Module (HSM) and AWS Secrets Manager (ASM) tooling, certificate lifecycle management, e.g. rotation, revocation, and in automating security workflows Experience using GitLab CI/CD pipelines, AWS CLI or Chef. Strong experience with Cloud Security expertise across the following areas: AWS security controls, policies and automation, CLI tools, role based and attribute-based access controls, cryptographic protocols and secure key lifecycle management, advanced threat modelling, SOC operations, securing microservices and APIs, DevSecOps best practices, vulnerability scanning, tools, approaches, vulnerability patching and vendor management for security Strong experience in penetration testing and hands-on coding in at least one of the following: JavaScript, Java, Python. Some other highly desirable skills include: Experience in hands-on configuration, deployment and operation of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS) with embedded security gates, HTTP header signing, access token and data at rest encryption, PKI based self-sovereign identity, or open source You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To develop, implement and maintain solutions that support the safeguarding of the banks systems and sensitive information. Accountabilities Provision of subject matter expertise on security systems and engineering patterns. Development and implementation of protocols, algorithms, and software applications to protect sensitive data and systems. Management and protection of secrets, ensuring that they are securely generated, stored, and used. Execution of audits to monitor, identify and assess vulnerabilities in the banks infrastructure/software and support the response to potential security breaches. Identification of advancements in to support the innovation and adoption of new cryptographic technologies and techniques. Collaboration across the bank, including developers and security teams, to ensure that cryptographic solutions align with business objectives, security policies and regulatory requirements. Development/ Implementation and maintenance of Identity and Access Management solutions and systems. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
About Claranet Founded at the beginning of the dot com bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP) in the UK to being one of the leading business modernisation experts, who deliver solutions across 11+ countries. At Claranet, we're experienced in implementing progressive technology solutions which help our customers solve their epic business challenges. We're committed to understanding their problems, delivering answers quickly, and making a lasting impact to their business. We are agile, focused and experienced in business modernisation. Our approach helps customers make genuine, significant shifts in their business strategy, to deliver financial savings, boost innovation, and create a resilient business. We continually invest in our people and the latest technologies, so our customers get peace of mind knowing that they have access to the best talent and services. In the UK we have over 500 staff working in London, Gloucester, Warrington, and Leeds, or as homeworkers. Working for Claranet Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean with). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms, and app supported benefit access. But what we think makes us different is 'Team Claranet,' our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee's fundraising efforts. Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality.) Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce. We are also very proud members of Tech Talent Charter, a government supported, industry-led membership group created to address the UK's tech talent shortage and diversity gap through collective action. Our Vision Our vision is to become the most trusted technology solutions partner; renowned for being the best and brightest, having lasting impact with our customers and delivering exceptional returns to our stakeholders. Duties and Responsibilities Essential duties and responsibilities Build and nurture excellent relationships with new logo customers by understanding their needs, ensuring exceptional service and seamless customer journeys. Identify new business opportunities across Claranet UK's full portfolio of products and services leveraging support from relevant Sales Specialists on qualified opportunities where necessary. Utilise market trends and customer needs analysis to identify new business opportunities across a range of channels such as direct relationships, internal referrals, Alliances, and marketing campaigns. Collaborate across the Business Development team to develop and execute Go-To-Market plans Partner with the Bid Management team to progress bid activity for growth opportunities identified. Provide regular updates to the Director of Business Development on financial forecast, performance, customer satisfaction and other KPIs. Nurture the Sales Development Representatives (SDR), work closely with them to refine their process and strategies. Position Specifications Behavioural competencies - organisational and behavioural fit. Immensely organised - you need to be able to prioritise your clients and opportunities whilst ensuring you maintain focus on meeting KPIs Hungry for new business - This role is focused around bringing in new business. Flexible and creative to take considered risks. Inquisitive and persistent, able to hunt out new business opportunity. Learn and adapt quickly to changing situations. Initiative-taking and able to work under pressure. Ability to travel to different sites and locations on a weekly basis. Manages conflict and challenges in an open and constructive manner. Critical competencies - technical fit Demonstrated experience in an Sales Development Representative role or Business Development Executive role working for a MSSP, MSP or Independent Software Vendor (ISV). Demonstratable experience discussing IT-related business challenges with senior stakeholders Demonstratable experience with stakeholder management, understanding how to develop and progress relationships with prospects and clients Strong personal digital skills in Word, Excel, PowerPoint, Generative AI Strong experience in sales solutions such as: intent data platforms, Salesforce, Linkedin SalesNav, email platforms Proven track-record on meeting or exceeding sales-related KPIs (you may be required to provide evidence) Working knowledge of at least three of the following technology areas - PaaS, IaaS, SD-WAN, Penetration Testing, MDR/EDR, PowerBI, Ethernet / Broadband, Private Cloud, Databases.
03/10/2025
Full time
About Claranet Founded at the beginning of the dot com bubble in 1996, our CEO Charles Nasser had a light bulb moment to develop a truly customer-focused IT business. Since then, Claranet has grown from an Internet Service Provider (ISP) in the UK to being one of the leading business modernisation experts, who deliver solutions across 11+ countries. At Claranet, we're experienced in implementing progressive technology solutions which help our customers solve their epic business challenges. We're committed to understanding their problems, delivering answers quickly, and making a lasting impact to their business. We are agile, focused and experienced in business modernisation. Our approach helps customers make genuine, significant shifts in their business strategy, to deliver financial savings, boost innovation, and create a resilient business. We continually invest in our people and the latest technologies, so our customers get peace of mind knowing that they have access to the best talent and services. In the UK we have over 500 staff working in London, Gloucester, Warrington, and Leeds, or as homeworkers. Working for Claranet Here at Claranet we pride ourselves on going the extra mile for and with our employees (yes, we really mean with). We offer an extensive benefits package that you can tailor to your needs, inclusive of a matching contribution pension scheme, healthcare, insurance, dental, discounted gyms, and app supported benefit access. But what we think makes us different is 'Team Claranet,' our dedicated internal part of the business that supports you with matters close to your heart. We proudly support local charities in each of our office locations, support employees with paid charity leave, organise key charity fundraising event per year and have a dedicated committee responsible for supporting employee's fundraising efforts. Claranet are one of the 10 founding members of TC4RE (Technology Community for Racial Equality.) Being a part of a group of leading UK technology organisations, we are dedicated to building a more diverse and inclusive workforce. We are also very proud members of Tech Talent Charter, a government supported, industry-led membership group created to address the UK's tech talent shortage and diversity gap through collective action. Our Vision Our vision is to become the most trusted technology solutions partner; renowned for being the best and brightest, having lasting impact with our customers and delivering exceptional returns to our stakeholders. Duties and Responsibilities Essential duties and responsibilities Build and nurture excellent relationships with new logo customers by understanding their needs, ensuring exceptional service and seamless customer journeys. Identify new business opportunities across Claranet UK's full portfolio of products and services leveraging support from relevant Sales Specialists on qualified opportunities where necessary. Utilise market trends and customer needs analysis to identify new business opportunities across a range of channels such as direct relationships, internal referrals, Alliances, and marketing campaigns. Collaborate across the Business Development team to develop and execute Go-To-Market plans Partner with the Bid Management team to progress bid activity for growth opportunities identified. Provide regular updates to the Director of Business Development on financial forecast, performance, customer satisfaction and other KPIs. Nurture the Sales Development Representatives (SDR), work closely with them to refine their process and strategies. Position Specifications Behavioural competencies - organisational and behavioural fit. Immensely organised - you need to be able to prioritise your clients and opportunities whilst ensuring you maintain focus on meeting KPIs Hungry for new business - This role is focused around bringing in new business. Flexible and creative to take considered risks. Inquisitive and persistent, able to hunt out new business opportunity. Learn and adapt quickly to changing situations. Initiative-taking and able to work under pressure. Ability to travel to different sites and locations on a weekly basis. Manages conflict and challenges in an open and constructive manner. Critical competencies - technical fit Demonstrated experience in an Sales Development Representative role or Business Development Executive role working for a MSSP, MSP or Independent Software Vendor (ISV). Demonstratable experience discussing IT-related business challenges with senior stakeholders Demonstratable experience with stakeholder management, understanding how to develop and progress relationships with prospects and clients Strong personal digital skills in Word, Excel, PowerPoint, Generative AI Strong experience in sales solutions such as: intent data platforms, Salesforce, Linkedin SalesNav, email platforms Proven track-record on meeting or exceeding sales-related KPIs (you may be required to provide evidence) Working knowledge of at least three of the following technology areas - PaaS, IaaS, SD-WAN, Penetration Testing, MDR/EDR, PowerBI, Ethernet / Broadband, Private Cloud, Databases.
Hayley Dexis has an exciting opportunity available for a driven Infrastructure Engineer - Cyber Security Engineer to support the busy team at our headquarters in Halesowen. You will join us on a full time, permanent basis and in return, you will receive a competitive salary. Hayley Dexis is the largest independent distributor of engineering products and consumables (hydraulics, bearings, fasteners, fluid power, PPE, tools, lubricants etc) in the UK. With a commitment to innovation and excellence, we provide cutting-edge solutions to our clients across various industries, ensuring the efficient and reliable operation of fluid power systems. We are an equal opportunities employer, currently employing over 1,300 people who continue to be a cornerstone of our business and are fundamental to providing industry-leading customer service. About the Cyber Security Engineer role. We are seeking a dedicated Infrastructure Engineers focusing on Cyber Security to join our team. The successful candidate will be responsible for maintaining and protecting our organisation's digital infrastructure by identifying and remediating vulnerabilities and threats, implementing security measures, and monitoring network activity. Key responsibilities include: Monitor Networks and Systems: Continuously monitor the organisation's networks and systems for security breaches or intrusions. Threat Detection and Response: Detect and respond to threats or security incidents by analysing data from various incident reports and alerts. Security Audits: Perform regular audits to ensure that systems and networks are operating securely. Security Tools Implementation: Implement security tools to enhance network and system security. Penetration Testing: Work with 3rd Parties to conduct penetration testing to identify vulnerabilities in the system. Stay Updated: Stay updated on the latest intelligence, including hackers' methodologies, to anticipate security breaches. Reporting: Prepare reports that document security breaches and the extent of the damage caused. Cyber Security Incident Response: Work with the IT Manager to maintain and update cyber incident response plans and procedures. Conduct Security Attack Simulations: Undertake security assessments such as Phishing attacks. Change Management: Participate in the change management process. Training: Train staff in security awareness and procedures. Working Arrangement & Hours: Monday to Friday, working 40 hours per week, with occasional on-call duties for security incidents. This is an on-site role based at our headquarters in Halesowen. What we're looking for in our Cyber Security Engineer: Bachelor's degree in Computer Science, Information Technology, or a related field. Experience in IT Infrastructure including security. Proficiency in supporting Active Directory, server, network and security technologies such as firewalls, antivirus, and intrusion detection systems. Excellent analytical and problem-solving skills. Ability to work under pressure and handle multiple tasks simultaneously. Strong communication and interpersonal skills. What you'll get in return. From 23 days annual leave (plus public/bank holidays) increased with length of service. Training provided through our own Hayley Academy. Company pension (if eligible). Life Assurance cover (x2 salary). Invitation to healthcare schemes. Wellness programmes. Uniform and PPE provided. Excellent opportunities and career prospects available. The recruitment process. Adverts will close on Sunday 12th October (we will extend should this be required) Candidates who are shortlisted will be invited to complete online testing from 13th October to be completed by 15th October. Video interviews will be completed by our Talent Acquisition Partner on 17th October. Face to face interviews will take place on site in Halesowen on 23/24 October. Finally We know sometimes you might feel that you don't meet the criteria or have a question that you would like to ask - we're here to help so please ask us! You can contact us here; We aim to get back to everyone that applies and are super keen to speak to talented people for upcoming positions. Please inform our careers team if you require any adjustments throughout the recruitment process. Don't miss out on this fantastic opportunity to join the team at Hayley Group - please click 'apply' now to become our Infrastructure Engineer - Cyber Security - we'd love to hear from you!
03/10/2025
Full time
Hayley Dexis has an exciting opportunity available for a driven Infrastructure Engineer - Cyber Security Engineer to support the busy team at our headquarters in Halesowen. You will join us on a full time, permanent basis and in return, you will receive a competitive salary. Hayley Dexis is the largest independent distributor of engineering products and consumables (hydraulics, bearings, fasteners, fluid power, PPE, tools, lubricants etc) in the UK. With a commitment to innovation and excellence, we provide cutting-edge solutions to our clients across various industries, ensuring the efficient and reliable operation of fluid power systems. We are an equal opportunities employer, currently employing over 1,300 people who continue to be a cornerstone of our business and are fundamental to providing industry-leading customer service. About the Cyber Security Engineer role. We are seeking a dedicated Infrastructure Engineers focusing on Cyber Security to join our team. The successful candidate will be responsible for maintaining and protecting our organisation's digital infrastructure by identifying and remediating vulnerabilities and threats, implementing security measures, and monitoring network activity. Key responsibilities include: Monitor Networks and Systems: Continuously monitor the organisation's networks and systems for security breaches or intrusions. Threat Detection and Response: Detect and respond to threats or security incidents by analysing data from various incident reports and alerts. Security Audits: Perform regular audits to ensure that systems and networks are operating securely. Security Tools Implementation: Implement security tools to enhance network and system security. Penetration Testing: Work with 3rd Parties to conduct penetration testing to identify vulnerabilities in the system. Stay Updated: Stay updated on the latest intelligence, including hackers' methodologies, to anticipate security breaches. Reporting: Prepare reports that document security breaches and the extent of the damage caused. Cyber Security Incident Response: Work with the IT Manager to maintain and update cyber incident response plans and procedures. Conduct Security Attack Simulations: Undertake security assessments such as Phishing attacks. Change Management: Participate in the change management process. Training: Train staff in security awareness and procedures. Working Arrangement & Hours: Monday to Friday, working 40 hours per week, with occasional on-call duties for security incidents. This is an on-site role based at our headquarters in Halesowen. What we're looking for in our Cyber Security Engineer: Bachelor's degree in Computer Science, Information Technology, or a related field. Experience in IT Infrastructure including security. Proficiency in supporting Active Directory, server, network and security technologies such as firewalls, antivirus, and intrusion detection systems. Excellent analytical and problem-solving skills. Ability to work under pressure and handle multiple tasks simultaneously. Strong communication and interpersonal skills. What you'll get in return. From 23 days annual leave (plus public/bank holidays) increased with length of service. Training provided through our own Hayley Academy. Company pension (if eligible). Life Assurance cover (x2 salary). Invitation to healthcare schemes. Wellness programmes. Uniform and PPE provided. Excellent opportunities and career prospects available. The recruitment process. Adverts will close on Sunday 12th October (we will extend should this be required) Candidates who are shortlisted will be invited to complete online testing from 13th October to be completed by 15th October. Video interviews will be completed by our Talent Acquisition Partner on 17th October. Face to face interviews will take place on site in Halesowen on 23/24 October. Finally We know sometimes you might feel that you don't meet the criteria or have a question that you would like to ask - we're here to help so please ask us! You can contact us here; We aim to get back to everyone that applies and are super keen to speak to talented people for upcoming positions. Please inform our careers team if you require any adjustments throughout the recruitment process. Don't miss out on this fantastic opportunity to join the team at Hayley Group - please click 'apply' now to become our Infrastructure Engineer - Cyber Security - we'd love to hear from you!
Hayley Dexis has an exciting opportunity available for a driven Infrastructure Engineer - Cyber Security Engineer to support the busy team at our headquarters in Halesowen. You will join us on a full time, permanent basis and in return, you will receive a competitive salary. Hayley Dexis is the largest independent distributor of engineering products and consumables (hydraulics, bearings, fasteners, fluid power, PPE, tools, lubricants etc) in the UK. With a commitment to innovation and excellence, we provide cutting-edge solutions to our clients across various industries, ensuring the efficient and reliable operation of fluid power systems. We are an equal opportunities employer, currently employing over 1,300 people who continue to be a cornerstone of our business and are fundamental to providing industry-leading customer service. About the Cyber Security Engineer role. We are seeking a dedicated Infrastructure Engineers focusing on Cyber Security to join our team. The successful candidate will be responsible for maintaining and protecting our organisation s digital infrastructure by identifying and remediating vulnerabilities and threats, implementing security measures, and monitoring network activity. Key responsibilities include: Monitor Networks and Systems: Continuously monitor the organisation s networks and systems for security breaches or intrusions. Threat Detection and Response: Detect and respond to threats or security incidents by analysing data from various incident reports and alerts. Security Audits: Perform regular audits to ensure that systems and networks are operating securely. Security Tools Implementation: Implement security tools to enhance network and system security. Penetration Testing: Work with 3rd Parties to conduct penetration testing to identify vulnerabilities in the system. Stay Updated: Stay updated on the latest intelligence, including hackers methodologies, to anticipate security breaches. Reporting: Prepare reports that document security breaches and the extent of the damage caused. Cyber Security Incident Response: Work with the IT Manager to maintain and update cyber incident response plans and procedures. Conduct Security Attack Simulations: Undertake security assessments such as Phishing attacks. Change Management: Participate in the change management process. Training: Train staff in security awareness and procedures. Working Arrangement & Hours: Monday to Friday, working 40 hours per week, with occasional on-call duties for security incidents. This is an on-site role based at our headquarters in Halesowen. What we re looking for in our Cyber Security Engineer: Bachelor s degree in Computer Science, Information Technology, or a related field. Experience in IT Infrastructure including security. Proficiency in supporting Active Directory, server, network and security technologies such as firewalls, antivirus, and intrusion detection systems. Excellent analytical and problem-solving skills. Ability to work under pressure and handle multiple tasks simultaneously. Strong communication and interpersonal skills. What you ll get in return. From 23 days annual leave (plus public/bank holidays) increased with length of service. Training provided through our own Hayley Academy. Company pension (if eligible). Life Assurance cover (x2 salary). Invitation to healthcare schemes. Wellness programmes. Uniform and PPE provided. Excellent opportunities and career prospects available. The recruitment process. Adverts will close on Sunday 12th October (we will extend should this be required) Candidates who are shortlisted will be invited to complete online testing from 13th October to be completed by 15th October. Video interviews will be completed by our Talent Acquisition Partner on 17th October. Face to face interviews will take place on site in Halesowen on 23/24 October. Finally We know sometimes you might feel that you don't meet the criteria or have a question that you would like to ask - we're here to help so please ask us! You can contact us here; (url removed) We aim to get back to everyone that applies and are super keen to speak to talented people for upcoming positions. Please inform our careers team if you require any adjustments throughout the recruitment process. Don t miss out on this fantastic opportunity to join the team at Hayley Group please click apply now to become our Infrastructure Engineer - Cyber Security - we'd love to hear from you!
03/10/2025
Full time
Hayley Dexis has an exciting opportunity available for a driven Infrastructure Engineer - Cyber Security Engineer to support the busy team at our headquarters in Halesowen. You will join us on a full time, permanent basis and in return, you will receive a competitive salary. Hayley Dexis is the largest independent distributor of engineering products and consumables (hydraulics, bearings, fasteners, fluid power, PPE, tools, lubricants etc) in the UK. With a commitment to innovation and excellence, we provide cutting-edge solutions to our clients across various industries, ensuring the efficient and reliable operation of fluid power systems. We are an equal opportunities employer, currently employing over 1,300 people who continue to be a cornerstone of our business and are fundamental to providing industry-leading customer service. About the Cyber Security Engineer role. We are seeking a dedicated Infrastructure Engineers focusing on Cyber Security to join our team. The successful candidate will be responsible for maintaining and protecting our organisation s digital infrastructure by identifying and remediating vulnerabilities and threats, implementing security measures, and monitoring network activity. Key responsibilities include: Monitor Networks and Systems: Continuously monitor the organisation s networks and systems for security breaches or intrusions. Threat Detection and Response: Detect and respond to threats or security incidents by analysing data from various incident reports and alerts. Security Audits: Perform regular audits to ensure that systems and networks are operating securely. Security Tools Implementation: Implement security tools to enhance network and system security. Penetration Testing: Work with 3rd Parties to conduct penetration testing to identify vulnerabilities in the system. Stay Updated: Stay updated on the latest intelligence, including hackers methodologies, to anticipate security breaches. Reporting: Prepare reports that document security breaches and the extent of the damage caused. Cyber Security Incident Response: Work with the IT Manager to maintain and update cyber incident response plans and procedures. Conduct Security Attack Simulations: Undertake security assessments such as Phishing attacks. Change Management: Participate in the change management process. Training: Train staff in security awareness and procedures. Working Arrangement & Hours: Monday to Friday, working 40 hours per week, with occasional on-call duties for security incidents. This is an on-site role based at our headquarters in Halesowen. What we re looking for in our Cyber Security Engineer: Bachelor s degree in Computer Science, Information Technology, or a related field. Experience in IT Infrastructure including security. Proficiency in supporting Active Directory, server, network and security technologies such as firewalls, antivirus, and intrusion detection systems. Excellent analytical and problem-solving skills. Ability to work under pressure and handle multiple tasks simultaneously. Strong communication and interpersonal skills. What you ll get in return. From 23 days annual leave (plus public/bank holidays) increased with length of service. Training provided through our own Hayley Academy. Company pension (if eligible). Life Assurance cover (x2 salary). Invitation to healthcare schemes. Wellness programmes. Uniform and PPE provided. Excellent opportunities and career prospects available. The recruitment process. Adverts will close on Sunday 12th October (we will extend should this be required) Candidates who are shortlisted will be invited to complete online testing from 13th October to be completed by 15th October. Video interviews will be completed by our Talent Acquisition Partner on 17th October. Face to face interviews will take place on site in Halesowen on 23/24 October. Finally We know sometimes you might feel that you don't meet the criteria or have a question that you would like to ask - we're here to help so please ask us! You can contact us here; (url removed) We aim to get back to everyone that applies and are super keen to speak to talented people for upcoming positions. Please inform our careers team if you require any adjustments throughout the recruitment process. Don t miss out on this fantastic opportunity to join the team at Hayley Group please click apply now to become our Infrastructure Engineer - Cyber Security - we'd love to hear from you!
The role Are you a strategic cybersecurity leader ready to make a meaningful impact on the future of digital financial services? Do you have deep experience in safeguarding complex architectures and managing cyber risks across cloud and hybrid environments? If so, we have a pivotal opportunity for you. The Money and Pensions Service (MaPS), supporting the delivery of the Pensions Dashboard Programme (PDP), is looking for a Cyber Security Lead to join our team. This is a critical leadership role, overseeing the full security lifecycle - from architecture and policy development to operational resilience and incident response - across complex hybrid environments with a strong emphasis on cloud security (AWS and Azure). Your leadership will be central to ensuring that digital financial infrastructure remains secure, compliant, and future-resilient, working at the intersection of innovation, regulation, and public trust. The role also involves oversight of third-party security providers and suppliers, ensuring that outsourced services meet contractual, technical, and regulatory expectations while delivering value for public money. Join us and play a key role in securing the UK's next-generation financial ecosystem The Cyber Security Lead will report directly to the Head of Information Security and will play a pivotal role in safeguarding the integrity and resilience of the Pensions Dashboard Programme (PDP) within the Money and Pensions Service (MaPS). Key accountabilities Responsibilities Working in close partnership with third-party security and service providers to ensure systems and networks are proactively monitored, security events are accurately detected and triaged, and incidents are responded to base on their severity and business impact. Leading the design, assurance, and continuous improvement of security systems and tooling, ensuring alignment with national cyber standards and best practices (e.g. NCSC, ISO 27001, NIST). Collaborating with architects, risk owners, and delivery teams to embed secure design principles and ensure the security operations centre (SOC) is equipped to handle emerging threats effectively. Lead security assurance activities including penetration tests, technical risk assessments, assurance reviews, and third-party security evaluations to ensure alignment with internal and external standards. Chairing PDP security governance and technical authority forums to ensure pension providers and schemes connect to the ecosystem in a secure and compliant manner. Representing security within change boards and design authorities and ensuring that security non-functional requirements (NFRs) are clearly defined, prioritised, and tracked within product and service delivery. Maintaining compliance with national cybersecurity standards, regulatory expectations, and internal frameworks by authoring, updating, and enforcing the PDP Code of Connection (CoCo) security requirements, ensuring all participants meet defined security criteria before connecting to the ecosystem. Skills & experience Experience. Knowledge of supporting the design or implementation of secure systems, you can support the design and review of system architectures through the application of patterns and principles.Experience of defining secure architecture principles and applying them to the design and review of on-premises and cloud-based systems, particularly within AWS and Azure environments.Knowledge of embedding security requirements throughout the solution lifecycle, from initial design through development, testing, and into operational deployment.Demonstrate a strong understanding of leading operational security functions, including SOC operations, threat intelligence, and vulnerability management.Experience of managing the incident response lifecycle, including triage, containment, investigation, remediation, and conducting post-incident reviews.Ability to establish and improve incident response playbooks and escalation processes to ensure readiness for cyber threats and regulatory reporting.Experience of providing strategic cyber risk oversight, working with risk owners to advise on exposure and inform proportionate, evidence-based decisions.Demonstrate capability in planning, scoping, and reviewing security assurance activities, including penetration tests, IT health checks, and vulnerability assessments.Ability to interpret technical findings and ensure remediation actions are appropriately prioritised and managed through to resolution.Experience of maintaining a technical risk register and developing appropriate compensating controls where residual risks exceed tolerance thresholds.Experience of supporting and informing risk-based decisions working with risk owners to advise and give feedback.Knowledge of chairing security authority and governance forums and contributing to broader cross-government cybersecurity initiatives.Experience of influencing security decisions within digital transformation and change programmes, ensuring services are secure by design.Understanding of how to embed security into agile and DevSecOps processes by feeding non-functional requirements (NFRs) into delivery backlogs.Ability to work collaboratively with architecture, product, engineering, and delivery teams to shape secure digital services.Experience of managing third-party and outsourced security providers to ensure alignment with contractual, regulatory, and technical expectations.Demonstrate ability to conduct supplier assurance, including onboarding assessments, ongoing security reviews, audits, and compliance monitoring.Experience of providing both internal and external security consultancy on a wide range of issues, offering expert advice across strategy, operations, risk, and compliance.Ability to respond to challenges and manage stakeholder expectations.Experience of research and innovation with the ability to advise on developments to security properties in technology and design
02/10/2025
Full time
The role Are you a strategic cybersecurity leader ready to make a meaningful impact on the future of digital financial services? Do you have deep experience in safeguarding complex architectures and managing cyber risks across cloud and hybrid environments? If so, we have a pivotal opportunity for you. The Money and Pensions Service (MaPS), supporting the delivery of the Pensions Dashboard Programme (PDP), is looking for a Cyber Security Lead to join our team. This is a critical leadership role, overseeing the full security lifecycle - from architecture and policy development to operational resilience and incident response - across complex hybrid environments with a strong emphasis on cloud security (AWS and Azure). Your leadership will be central to ensuring that digital financial infrastructure remains secure, compliant, and future-resilient, working at the intersection of innovation, regulation, and public trust. The role also involves oversight of third-party security providers and suppliers, ensuring that outsourced services meet contractual, technical, and regulatory expectations while delivering value for public money. Join us and play a key role in securing the UK's next-generation financial ecosystem The Cyber Security Lead will report directly to the Head of Information Security and will play a pivotal role in safeguarding the integrity and resilience of the Pensions Dashboard Programme (PDP) within the Money and Pensions Service (MaPS). Key accountabilities Responsibilities Working in close partnership with third-party security and service providers to ensure systems and networks are proactively monitored, security events are accurately detected and triaged, and incidents are responded to base on their severity and business impact. Leading the design, assurance, and continuous improvement of security systems and tooling, ensuring alignment with national cyber standards and best practices (e.g. NCSC, ISO 27001, NIST). Collaborating with architects, risk owners, and delivery teams to embed secure design principles and ensure the security operations centre (SOC) is equipped to handle emerging threats effectively. Lead security assurance activities including penetration tests, technical risk assessments, assurance reviews, and third-party security evaluations to ensure alignment with internal and external standards. Chairing PDP security governance and technical authority forums to ensure pension providers and schemes connect to the ecosystem in a secure and compliant manner. Representing security within change boards and design authorities and ensuring that security non-functional requirements (NFRs) are clearly defined, prioritised, and tracked within product and service delivery. Maintaining compliance with national cybersecurity standards, regulatory expectations, and internal frameworks by authoring, updating, and enforcing the PDP Code of Connection (CoCo) security requirements, ensuring all participants meet defined security criteria before connecting to the ecosystem. Skills & experience Experience. Knowledge of supporting the design or implementation of secure systems, you can support the design and review of system architectures through the application of patterns and principles.Experience of defining secure architecture principles and applying them to the design and review of on-premises and cloud-based systems, particularly within AWS and Azure environments.Knowledge of embedding security requirements throughout the solution lifecycle, from initial design through development, testing, and into operational deployment.Demonstrate a strong understanding of leading operational security functions, including SOC operations, threat intelligence, and vulnerability management.Experience of managing the incident response lifecycle, including triage, containment, investigation, remediation, and conducting post-incident reviews.Ability to establish and improve incident response playbooks and escalation processes to ensure readiness for cyber threats and regulatory reporting.Experience of providing strategic cyber risk oversight, working with risk owners to advise on exposure and inform proportionate, evidence-based decisions.Demonstrate capability in planning, scoping, and reviewing security assurance activities, including penetration tests, IT health checks, and vulnerability assessments.Ability to interpret technical findings and ensure remediation actions are appropriately prioritised and managed through to resolution.Experience of maintaining a technical risk register and developing appropriate compensating controls where residual risks exceed tolerance thresholds.Experience of supporting and informing risk-based decisions working with risk owners to advise and give feedback.Knowledge of chairing security authority and governance forums and contributing to broader cross-government cybersecurity initiatives.Experience of influencing security decisions within digital transformation and change programmes, ensuring services are secure by design.Understanding of how to embed security into agile and DevSecOps processes by feeding non-functional requirements (NFRs) into delivery backlogs.Ability to work collaboratively with architecture, product, engineering, and delivery teams to shape secure digital services.Experience of managing third-party and outsourced security providers to ensure alignment with contractual, regulatory, and technical expectations.Demonstrate ability to conduct supplier assurance, including onboarding assessments, ongoing security reviews, audits, and compliance monitoring.Experience of providing both internal and external security consultancy on a wide range of issues, offering expert advice across strategy, operations, risk, and compliance.Ability to respond to challenges and manage stakeholder expectations.Experience of research and innovation with the ability to advise on developments to security properties in technology and design
IT Security Manager Hybrid We are seeking an experienced IT Security Manager to lead our clients security function across the EMEA region. Reporting to the Head of IT Infrastructure, you will manage a team of internal security analysts as well as external consultants and managed services providers. This role requires strong interpersonal skills to collaborate effectively with IT Infrastructure teams across multiple European sites, as well as wider business units within the group. The successful candidate will take ownership of their Information Security Management System (ISMS) , supporting ISO 27001 certification, ensuring compliance with relevant regulations, and safeguarding our IT assets. You will also play a proactive role in shaping and delivering future security programmes as part of the Global IT Security Team. Key Responsibilities Lead and manage the IT security team, including outsourced SOC/MDR/DFIR providers. Maintain and enhance our ISMS, including policies, procedures, registers, and reports. Ensure compliance with ISO 27001, ISAE 3402 Type II, and NIS2 requirements. Prepare and present regular security reports to senior management. Liaise with external auditors, customers, and vendors as required. Conduct regular security assessments, penetration tests, and risk analyses. Monitor networks and systems for breaches, incidents, and vulnerabilities. Respond to and manage security incidents, including investigation, mitigation, and reporting. Oversee user access controls, identity management, and data protection measures. Lead Business Continuity and Disaster Recovery (BC/DR) planning and testing. Manage and deliver IT security awareness training for staff and end users. Qualifications & Experience Bachelor's degree in Computer Science, Information Security, or related field. Professional certification (CISM, CISSP, or equivalent) required. 7+ years' experience in IT security, with at least 3 years in a leadership or managerial role. Strong knowledge of ISO 27001, ISAE 3402, and related frameworks. Experience with security technologies such as XDR, MDR, EDR, SIEM, NAC, IDS/IPS, and SASE. Proven background in incident response, risk management, and ISMS operation. Essential Skills Demonstrated leadership and team management experience. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Ability to prioritise effectively and perform under pressure. What they Offer An influential leadership role in a global organisation. Opportunity to shape security programmes and strategy at an international level. Competitive salary and benefits package. Professional development and certification support. If you are a proven IT Security leader with the vision, expertise, and drive to safeguard critical systems and data, we would like to hear from you. IT Security Manager Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
02/10/2025
Full time
IT Security Manager Hybrid We are seeking an experienced IT Security Manager to lead our clients security function across the EMEA region. Reporting to the Head of IT Infrastructure, you will manage a team of internal security analysts as well as external consultants and managed services providers. This role requires strong interpersonal skills to collaborate effectively with IT Infrastructure teams across multiple European sites, as well as wider business units within the group. The successful candidate will take ownership of their Information Security Management System (ISMS) , supporting ISO 27001 certification, ensuring compliance with relevant regulations, and safeguarding our IT assets. You will also play a proactive role in shaping and delivering future security programmes as part of the Global IT Security Team. Key Responsibilities Lead and manage the IT security team, including outsourced SOC/MDR/DFIR providers. Maintain and enhance our ISMS, including policies, procedures, registers, and reports. Ensure compliance with ISO 27001, ISAE 3402 Type II, and NIS2 requirements. Prepare and present regular security reports to senior management. Liaise with external auditors, customers, and vendors as required. Conduct regular security assessments, penetration tests, and risk analyses. Monitor networks and systems for breaches, incidents, and vulnerabilities. Respond to and manage security incidents, including investigation, mitigation, and reporting. Oversee user access controls, identity management, and data protection measures. Lead Business Continuity and Disaster Recovery (BC/DR) planning and testing. Manage and deliver IT security awareness training for staff and end users. Qualifications & Experience Bachelor's degree in Computer Science, Information Security, or related field. Professional certification (CISM, CISSP, or equivalent) required. 7+ years' experience in IT security, with at least 3 years in a leadership or managerial role. Strong knowledge of ISO 27001, ISAE 3402, and related frameworks. Experience with security technologies such as XDR, MDR, EDR, SIEM, NAC, IDS/IPS, and SASE. Proven background in incident response, risk management, and ISMS operation. Essential Skills Demonstrated leadership and team management experience. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Ability to prioritise effectively and perform under pressure. What they Offer An influential leadership role in a global organisation. Opportunity to shape security programmes and strategy at an international level. Competitive salary and benefits package. Professional development and certification support. If you are a proven IT Security leader with the vision, expertise, and drive to safeguard critical systems and data, we would like to hear from you. IT Security Manager Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
We're looking for Security Architect (2 headcounts) to shape and enhance the security architecture of our client's IT systems. You'll assess risks, model threats, and identify vulnerabilities while ensuring solutions align with "Secure by Design" principles, standards, and industry best practice. You will have the opportunity to propose strategy and strengthen cyber resilience across the organisation What you'll do: Design, implement, and enhance secure end-to-end IT solutions aligned with business objectives and risk appetite. Identify vulnerabilities, perform threat modelling, conduct risk assessments, and evaluate security controls. Ensure solutions comply with 'Secure by Design' principles, corporate policies, and industry frameworks. Assess vulnerabilities, lead risk mitigation, and ensure compliance with industry standards (ISO 27001, NIST, NCSC). Contribute to security design documentation, options papers, and client presentations. Collaborate across 1st, 2nd, and 3rd lines of defense on cyber risk, compliance, and governance. Create and present design documentation, options papers, risk assessments, and stakeholder briefings. Contribute to reference architectures, established patterns, principles, and security guidelines. Monitor emerging cyber threats, analyze risks, and lead mitigation plans. Collaborate with partners, suppliers, and internal lines of defense to ensure compliance and governance. Continuously assess and improve processes, controls, and reporting to enable informed, risk-based decisions. What you'll bring: Strong knowledge of networking, cloud security (AWS/Azure), and modern security concepts. Familiarity with vulnerability management, penetration testing, and security frameworks. Experience with security standards (ISO 27001/27002/27017/27018). Minimum 5 years in cybersecurity, with certifications like CISSP, CISM, CCSP, or CRISC preferred. Eligible to work in the UK and have SC Security Clearance . Team-oriented, detail-focused, excellent communicator, self-motivated, and persuasive. Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
02/10/2025
Full time
We're looking for Security Architect (2 headcounts) to shape and enhance the security architecture of our client's IT systems. You'll assess risks, model threats, and identify vulnerabilities while ensuring solutions align with "Secure by Design" principles, standards, and industry best practice. You will have the opportunity to propose strategy and strengthen cyber resilience across the organisation What you'll do: Design, implement, and enhance secure end-to-end IT solutions aligned with business objectives and risk appetite. Identify vulnerabilities, perform threat modelling, conduct risk assessments, and evaluate security controls. Ensure solutions comply with 'Secure by Design' principles, corporate policies, and industry frameworks. Assess vulnerabilities, lead risk mitigation, and ensure compliance with industry standards (ISO 27001, NIST, NCSC). Contribute to security design documentation, options papers, and client presentations. Collaborate across 1st, 2nd, and 3rd lines of defense on cyber risk, compliance, and governance. Create and present design documentation, options papers, risk assessments, and stakeholder briefings. Contribute to reference architectures, established patterns, principles, and security guidelines. Monitor emerging cyber threats, analyze risks, and lead mitigation plans. Collaborate with partners, suppliers, and internal lines of defense to ensure compliance and governance. Continuously assess and improve processes, controls, and reporting to enable informed, risk-based decisions. What you'll bring: Strong knowledge of networking, cloud security (AWS/Azure), and modern security concepts. Familiarity with vulnerability management, penetration testing, and security frameworks. Experience with security standards (ISO 27001/27002/27017/27018). Minimum 5 years in cybersecurity, with certifications like CISSP, CISM, CCSP, or CRISC preferred. Eligible to work in the UK and have SC Security Clearance . Team-oriented, detail-focused, excellent communicator, self-motivated, and persuasive. Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates
Senior Penetration Tester Location: Fully Remote (UK-Based) Salary Range: £50,000 - £85,000 (dependent on experience) Position: Permanent, Full-Time My client is a dynamic and growing cybersecurity consultancy dedicated to providing top-tier security services to a diverse range of clients. They believe in empowering the team with the flexibility of remote work while tackling challenging and engaging projects that make a real difference to their clients' security posture. The Role We are seeking a highly skilled and motivated Senior Penetration Tester to join our remote team. You will be responsible for leading and executing complex penetration tests against a variety of systems, networks, and applications. The ideal candidate is not just a proficient tester but a critical thinker who can articulate risks clearly and provide pragmatic remediation advice to clients. Key Responsibilities Plan, lead, and execute sophisticated penetration tests across infrastructure, web applications, APIs, and internal networks. Conduct advanced Red Team exercises to simulate real-world adversary attacks and test organisational defences. Produce high-quality, clear, and concise reports for both technical and executive audiences, detailing findings, risks, and actionable remediation strategies. Mentor and provide guidance to junior members of the team, promoting best practices and knowledge sharing. Collaborate with clients to scope engagements, present findings, and provide expert advice on mitigating identified vulnerabilities. Stay abreast of the latest security vulnerabilities, attack vectors, tools, and methodologies. Contribute to the continuous improvement of our testing methodologies and service offerings. Essential Skills & Qualifications Must hold active CREST Certified Tester (CRT) certification. (Non-negotiable) Proven commercial experience in a penetration testing role. Deep technical knowledge of networking protocols, operating systems (Windows, Linux), and common infrastructure vulnerabilities. Strong experience in web application penetration testing (OWASP Top 10). Proficiency with common penetration testing tools (e.g., Burp Suite Pro, Metasploit, Nmap, Cobalt Strike, etc.). Excellent written and verbal communication skills, with a proven ability to write detailed technical reports. A proactive and self-motivated attitude, capable of working effectively in a fully remote environment. Desirable Skills & Qualifications Experience with or knowledge of implementing Cyber Essentials and Cyber Essentials Plus schemes is highly desirable. Additional certifications such as: CREST Certified Simulated Attack Specialist (CCSAS) / Certified Simulated Attack Manager (CCSAM) Offensive Security Certified Professional (OSCP) Certified Information Systems Security Professional (CISSP) SANS GIAC Penetration Tester (GPEN) or Web Application Penetration Tester (GWAPT) Experience in mobile application (iOS/Android) testing, cloud security (AWS/Azure/GCP), or social engineering. Experience scripting in Python, PowerShell, or Bash to develop custom tools or exploits. What We Offer A competitive salary of £50,000 - £85,000 . Fully remote working - work from anywhere in the UK. A supportive and collaborative culture with a strong focus on professional development.
01/10/2025
Full time
Senior Penetration Tester Location: Fully Remote (UK-Based) Salary Range: £50,000 - £85,000 (dependent on experience) Position: Permanent, Full-Time My client is a dynamic and growing cybersecurity consultancy dedicated to providing top-tier security services to a diverse range of clients. They believe in empowering the team with the flexibility of remote work while tackling challenging and engaging projects that make a real difference to their clients' security posture. The Role We are seeking a highly skilled and motivated Senior Penetration Tester to join our remote team. You will be responsible for leading and executing complex penetration tests against a variety of systems, networks, and applications. The ideal candidate is not just a proficient tester but a critical thinker who can articulate risks clearly and provide pragmatic remediation advice to clients. Key Responsibilities Plan, lead, and execute sophisticated penetration tests across infrastructure, web applications, APIs, and internal networks. Conduct advanced Red Team exercises to simulate real-world adversary attacks and test organisational defences. Produce high-quality, clear, and concise reports for both technical and executive audiences, detailing findings, risks, and actionable remediation strategies. Mentor and provide guidance to junior members of the team, promoting best practices and knowledge sharing. Collaborate with clients to scope engagements, present findings, and provide expert advice on mitigating identified vulnerabilities. Stay abreast of the latest security vulnerabilities, attack vectors, tools, and methodologies. Contribute to the continuous improvement of our testing methodologies and service offerings. Essential Skills & Qualifications Must hold active CREST Certified Tester (CRT) certification. (Non-negotiable) Proven commercial experience in a penetration testing role. Deep technical knowledge of networking protocols, operating systems (Windows, Linux), and common infrastructure vulnerabilities. Strong experience in web application penetration testing (OWASP Top 10). Proficiency with common penetration testing tools (e.g., Burp Suite Pro, Metasploit, Nmap, Cobalt Strike, etc.). Excellent written and verbal communication skills, with a proven ability to write detailed technical reports. A proactive and self-motivated attitude, capable of working effectively in a fully remote environment. Desirable Skills & Qualifications Experience with or knowledge of implementing Cyber Essentials and Cyber Essentials Plus schemes is highly desirable. Additional certifications such as: CREST Certified Simulated Attack Specialist (CCSAS) / Certified Simulated Attack Manager (CCSAM) Offensive Security Certified Professional (OSCP) Certified Information Systems Security Professional (CISSP) SANS GIAC Penetration Tester (GPEN) or Web Application Penetration Tester (GWAPT) Experience in mobile application (iOS/Android) testing, cloud security (AWS/Azure/GCP), or social engineering. Experience scripting in Python, PowerShell, or Bash to develop custom tools or exploits. What We Offer A competitive salary of £50,000 - £85,000 . Fully remote working - work from anywhere in the UK. A supportive and collaborative culture with a strong focus on professional development.
Jobs - Frequently Asked Questions
Use the location filter to find IT jobs in cities like London, Manchester, Birmingham, and across the UK.
Entry-level roles include IT support technician, junior developer, QA tester, and helpdesk analyst.
New jobs are posted daily. Set up alerts to be notified as soon as new roles match your preferences.
Key skills include problem-solving, coding, cloud computing, networking, and familiarity with tools like AWS or SQL.
Yes, many employers offer training or junior roles. Focus on building a strong CV with relevant coursework or personal projects.
