49 jobs found

Senior Cyber Security Engineer Reading/Hybrid (one day per week in the office) Salary: £65,000-£75,000 We are working with a leading UK pensions and insurance consulting and administration business. A FTSE 250 company, our client works with over 1,400 pension schemes, administers over one million member accounts, and supports insurance companies in the life and bulk annuities sector. ABOUT THE ROLE You will join an expanding cyber security team working alongside internal engineers, security operations analysts, and an external 24/7 SOC. Reporting to the Cyber Security Engineering Manager, you will carry out daily security engineering tasks and lead security hardening projects to protect our client's IT infrastructure, networks, and data. RESPONSIBILITIES Provide expert technical security guidance covering IT assets, change control, security testing, secure systems design, and security controls Own and develop the vulnerability management programme, with a focus on application security testing, web application Firewalls, and securing development pipelines Mentor and provide security direction to other team members Carry out security engineering tasks to agreed SLAs/KPIs using ITIL best practice Develop understanding of threats, risks, and evolving attack vectors facing the business Represent the security team as subject matter expert in meetings and projects Support the operations team with security incident investigation in complex cross-technology environments Assist with security training and awareness campaigns, market reviews, supplier assessments, and client security questionnaires ESSENTIAL REQUIREMENTS Right to work in the UK Strong experience in web application security, vulnerability management, penetration testing, and hardening IT systems Experience with cloud hosting, cloud migration, application testing, and working with developers to improve security Solid knowledge of security products including WAFs, SIEM, AV, email/web gateways, Firewalls, load balancers, ACLs, TCP/IP, routing, and switching Familiarity with OWASP, SASE, zero-trust, and risk-based vulnerability management Background in infrastructure and networks Working towards or holding CISSP, SANS GCIA, CompTIA Security+, CCNA/CCNP or equivalent Excellent written and verbal communication skills, including network diagramming Willingness to travel to other sites as required DESIRABLE Computer Science degree or equivalent experience Knowledge of ISO27001, Cyber Essentials, and AAF control frameworks BENEFITS Competitive salary, discretionary annual bonus, 25 days holiday (with buy/sell option), flexible bank holidays, matched pension contributions, healthcare cash plan, flexible benefits scheme, life assurance (4x salary), retail discounts, Employee Assistance Programme, digital GP service, paid volunteering day, and staff referral scheme. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website

Role Title: Senior Unix Engineer Duration: contract to run until 30/11/2026 Location: Knutsford, hybrid 3 days per week onsite Rate: up to £506 p/d Umbrella inside IR35 Role purpose/summary The SI Unix Engineer is a senior Unix/Linux infrastructure specialist with a strong focus on platform security, compliance, and stability within highly regulated enterprise environments. The role supports critical Unix/Linux platforms, including Legacy and modern systems, and plays a key part in data centre optimisation, migration, and security hardening initiatives. This position requires deep hands-on Unix/Linux expertise combined with strong security awareness, operational discipline, and the ability to communicate effectively with global stakeholders. Key Responsibilities Provide L2/L3 support for Unix/Linux infrastructure platforms in production, including business critical and regulated systems Perform secure build, configuration, hardening, and ongoing maintenance of Unix/Linux Servers Support data centre optimisation, migration, and transformation programmes, including platform stabilisation and risk reduction activities Implement and maintain security controls, including access management, patching, vulnerability remediation, and configuration compliance Participate in incident, problem, and change management, ensuring adherence to ITIL and security governance standards Support audit, risk, and compliance activities, including evidence gathering and remediation of audit findings Work closely with security, platform, and architecture teams to ensure platforms meet enterprise security and operational standards Create and maintain technical documentation, runbooks, and operational procedures Contribute to continuous improvement initiatives to enhance platform reliability, security, and operational efficiency Technical Skills & Experience (Essential) Strong hands-on experience administering Unix/Linux platforms in large enterprise environments Linux (RHEL, Oracle Linux, SUSE or equivalent) Unix variants (eg AIX, Solaris, HP UX or equivalent Legacy platforms) Solid experience with system hardening and security best practices on Unix/Linux Strong understanding of: OS patching and life cycle management User and privilege management (sudo, PAM, RBAC) File system, storage, and performance management Process monitoring, troubleshooting, and root cause analysis Experience working in regulated or security sensitive environments (eg banking, financial services, critical infrastructure) Familiarity with vulnerability management, security scanning, and remediation processes Experience supporting data centre migration or transformation programmes is highly desirable Working knowledge of ITIL processes (incident, problem, change) Certifications (Preferred, not mandatory) Red Hat Certified Engineer (RHCE) or equivalent Linux certification Unix/Linux vendor certifications (AIX, Solaris, etc.) ITIL Foundation Security focused certifications (eg CompTIA Security+, CISSP - foundational exposure acceptable) Soft Skills & Behavioural Attributes Strong verbal and written communication skills in English Ability to explain technical issues clearly to both technical and non-technical stakeholders Proven ability to work effectively in global, distributed teams Strong analytical and problem solving mindset High attention to detail, particularly in security and compliance driven environments All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!

Job Title: Unix Engineer Location : Manchester - 2/3 days per week onsite Salary/Rate: £500 per day inside IR35 Start Date: 27/04/2026 Job Type: Contract - 6 months Company Introduction We are looking for a senior Unix/Linux infrastructure specialist with a strong focus on platform security, compliance, and stability within highly regulated enterprise environments. The role supports critical Unix/Linux platforms, including Legacy and modern systems, and plays a key part in data centre optimisation, migration, and security hardening initiatives. This position requires deep hands on Unix/Linux expertise combined with strong security awareness, operational discipline, and the ability to communicate effectively with global stakeholders. Job Responsibilities/Objectives Provide L2/L3 support for Unix/Linux infrastructure platforms in production, including business critical and regulated systems Perform secure build, configuration, hardening, and ongoing maintenance of Unix/Linux Servers Support data centre optimisation, migration, and transformation programmes, including platform stabilisation and risk reduction activities Implement and maintain security controls, including access management, patching, vulnerability remediation, and configuration compliance Participate in incident, problem, and change management, ensuring adherence to ITIL and security governance standards Support audit, risk, and compliance activities, including evidence gathering and remediation of audit findings Work closely with security, platform, and architecture teams to ensure platforms meet enterprise security and operational standards Create and maintain technical documentation, runbooks, and operational procedures Contribute to continuous improvement initiatives to enhance platform reliability, security, and operational efficiency Required Skills/Experience The ideal candidate will have the following: Strong hands on experience administering Unix/Linux platforms in large enterprise environments Linux (RHEL, Oracle Linux, SUSE or equivalent) Unix variants (eg AIX, Solaris, HP UX or equivalent Legacy platforms) Solid experience with system hardening and security best practices on Unix/Linux OS patching and life cycle management User and privilege management (sudo, PAM, RBAC) File system, storage, and performance management Process monitoring, troubleshooting, and root cause analysis Experience working in regulated or security sensitive environments (eg banking, financial services, critical infrastructure) Familiarity with vulnerability management, security scanning, and remediation processes Experience supporting data centre migration or transformation programmes is highly desirable Working knowledge of ITIL processes (incident, problem, change) Desirable Skills/Experience Although not essential, the following skills are desired by the client: Red Hat Certified Engineer (RHCE) or equivalent Linux certification Unix/Linux vendor certifications (AIX, Solaris, etc.) ITIL Foundation Security focused certifications (eg CompTIA Security+, CISSP - foundational exposure acceptable) If you are interested in this opportunity, please apply now with your updated CV in Microsoft Word/PDF format. Disclaimer Notwithstanding any guidelines given to level of experience sought, we will consider candidates from outside this range if they can demonstrate the necessary competencies. Square One is acting as both an employment agency and an employment business, and is an equal opportunities recruitment business. Square One embraces diversity and will treat everyone equally. Please see our website for our full diversity statement.

Senior IT Infrastructure Engineer Annual Salary: £45,000 Location: Abingdon We are seeking a Senior IT Infrastructure Engineer to work for our client based in Abingdon - This role involves the implementation and ongoing management of their IT infrastructure across both on-premises and Azure cloud environments. The ideal candidate will be a proactive professional capable of leading projects from concept to completion and ensuring the delivery of robust, secure, and scalable infrastructure solutions. Day-to-day of the role: Implement and maintain hybrid infrastructure solutions (Azure + on-prem) that meet performance, security, and compliance requirements. Manage and optimise Windows Server, SQL Server, and Azure environments including Virtual Machines, Networking, Storage, Backup, and Monitoring. Maintain and secure Active Directory, Group Policy, DNS, DHCP, and Azure AD (Entra ID) synchronisation. Ensure high availability and resilience across all servers, networks, and databases supporting business-critical applications. Deliver advanced troubleshooting and root cause analysis for complex infrastructure issues. Proactively identify opportunities for improvement, automation, and optimisation across all infrastructure areas. Maintain alignment with Cyber Essentials Plus & GDPR, implement and manage endpoint protection, patch management, and vulnerability remediation. Ensure data protection and system continuity through effective backup, disaster recovery, and business continuity planning. Automate deployment and maintenance tasks using PowerShell, Azure Automation, or equivalent tools. Maintain infrastructure observability through tools and optimise cost, performance, and utilisation of Azure and on-prem resources. Required Skills & Qualifications: 10+ years hands-on experience in IT infrastructure roles, with at least 5 years in a senior or lead capacity. Strong expertise in Microsoft Azure IaaS & PaaS, Active Directory, Group Policy, DNS, DHCP, Windows Server , and SQL Server administration. Deep understanding of LAN/WAN design, VLANs, VPNs, routing, switching, and firewall management. Experience with Microsoft 365, Intune, and Endpoint Manager. Advanced PowerShell scripting and automation skills. Proven experience managing secure environments aligned with Cyber Essentials Plus or ISO 27001. Ability to work independently, prioritise effectively, and deliver projects to completion with minimal supervision. Degree in Computer Science, Information Technology, or equivalent experience. Desirable certifications include Microsoft Certified: Azure Administrator Associate (AZ-104) or Azure Solutions Architect Expert (AZ-305), MCSE, CompTIA Network+, ITIL Foundation. If you are interested in this position please apply online or for more information please contact me on

Senior Security EngineerLondon (2x a week)Permanent About the Role We are exclusively partnered with a leading UK retail organisation that is currently undergoing a significant digital transformation. We are seeking a technical and hands-on Senior Security Engineer to design, implement, and operate robust security controls across a complex hybrid environment.In this role, you will bridge the gap between strategy and execution, serving as a technical authority for cloud platforms, identity systems, and endpoint security. You will collaborate closely with Network, Infrastructure, and Application teams to ensure that "secure-by-design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows Servers, and Azure IaaS workloads. Data Protection: Manage the certificate lifecycle (PKI/AD CS) and implement data classification and DLP strategies using Microsoft Purview. Cloud Security Posture: Manage Azure Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall and VPN configurations. Compliance & Risk: Support audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus, ensuring all remediation progress is tracked and documented. Essential Skills & Experience: Experience: 5-10 years in cloud or infrastructure security roles. Azure Expertise: Deep experience with Defender for Cloud, Sentinel, and Azure security configurations. Identity Mastery: Strong knowledge of Microsoft Entra ID, AD DS, RBAC, and hybrid identity security. Technical Proficiency: Hands-on experience with EDR (MDE), CSPM tools, and vulnerability management platforms. Security Principles: Practical understanding of Zero Trust architecture and secure-by-design methodologies. Compliance Knowledge: Familiarity with PCI DSS, NIST, and ISO 27001 frameworks. Desirable Skills: Awareness of AWS security fundamentals (Guard Duty, KMS, IAM Identity Center). Experience with Infrastructure as Code (IaC) security (Terraform, Bicep) and DevSecOps practices. Scripting for automation using PowerShell or Python. Qualifications & Soft Skills Education: Bachelor's degree in Computer Science, Information Security, or equivalent experience. Certifications: Preferred certifications include AZ-500, SC-300, SC-100, or CISSP/CCSP. Attributes: An analytical mindset with the ability to remain composed under pressure during security incidents. Collaboration: Excellent communication skills to engage with diverse stakeholders across the technology organization. Eligo Recruitment is acting as an Employment Business in relation to this vacancy. Eligo is proud to be an equal opportunity employer dedicated to fostering diversity and creating an inclusive and equitable environment for employees and applicants. We actively celebrate and embrace differences, including but not limited to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran status, and disability. We encourage applications from individuals of all backgrounds and experiences and all will be considered for employment without discrimination. At Eligo Recruitment diversity, equity and inclusion is integral to achieving our mission to ensure every workplace reflects the richness of human diversity.

Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. The Role: This role is part of our Public Safety Solutions Business Unit. The Information Security Manager is accountable for the organisation's information security strategy, governance, and compliance, ensuring the protection of systems and data that support UK public sector and emergency service operations. The role is critical in ensuring that services remain secure, resilient, and available, recognising the operational importance and potential impact on frontline emergency response. Key Responsibilities: Security Leadership & Assurance Own and be accountable for the organisation's overall security posture, ensuring alignment with business objectives and public sector expectations. Lead the implementation, maintenance, and continuous improvement of the ISMS in line with ISO/IEC 27001. Maintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls. Develop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity. Provide regular assurance reporting to senior leadership and stakeholders. Risk Management & Compliance Own and maintain the Security Risk Register, ensuring risks are identified, assessed, and managed in line with organisational risk appetite. Conduct and support risk assessments, internal audits, and external certification activities. Ensure compliance with relevant UK regulatory and security requirements, including GDPR and guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause analysis, and remediation. Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication. Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers). Service Resilience & Operational Security Ensure security is embedded in the design and operation of services supporting emergency response. Work closely with operational and technical teams to maintain high levels of system availability and resilience. Support business continuity and disaster recovery planning, testing, and continuous improvement. Security Awareness & Culture Develop and deliver targeted security awareness and training programmes. Promote a strong security culture, ensuring all staff understand their responsibilities in protecting critical services. Stakeholder Engagement Act as a trusted advisor to senior leadership, operational teams, and external stakeholders. Support engagement with public sector customers, providing assurance on security controls and practices. Collaborate with suppliers and partners to ensure security requirements are met across the supply chain. Qualifications & Skills: Proven experience in an information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials / Cyber Essentials Plus certification. Experience managing security risks, incidents, audits, and compliance activities in operational environments. Ability to balance strategic leadership with hands-on delivery in a small organisation. Strong understanding of service resilience, availability, and risk in mission-critical systems. Excellent communication skills, with the ability to engage both technical and non-technical stakeholders. By submitting an application to Saab UK, you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.

Job Title - Senior Data Manager Location - Manchester, UK Type - Contract Job Description: About the role The Trips Data Governance team manages data for all aspects of trips, excluding stays, enabling teams to understand and improve business performance and customer experience. They are currently seeking an experienced Data Manager to join their impactful Data Governance team to support the critical SAP Rise migration program. About the SAP Rise program: The programme is a key business modernisation initiative to migrate the current Booking Transport (BTL) SAP instance to a standardised cloud-based ERP system. The programme will introduce an interim architecture between the current platform and the SAP S/4 RISE ecosystem to test processes, data quality and governance, data contracts, and new capabilities, while supporting the transition to the North Star architecture where data flows directly from a modernised enterprise order platform. Role Overview: In this role, a Senior Data Manager combines technical knowledge, business insight, and expert communication to provide critical information about data systems. This position focuses on supporting business needs with high-quality data through monitoring, issue detection, impact quantification, end-to-end data corrections, standardization, and architectural optimization. A key aspect of the role is to advocate for a Data Quality mindset across the organization. You will report to a Senior Manager and collaborate with other Data Managers on strategic objectives for data quality, governance, metadata management and regulatory compliance. This is a hands-on role where you will work closely with Business Analysts, Data Engineers, Data Scientists, and Insights Analysts to build deliverables required for the SAP Rise program. Roles & Responsibilities As a Senior Data Manager I (Level G), your required competencies include: Independence in: AI & Ethics: Independent in ethical data handling, responsible AI, compliance, knowledge & prompt engineering, and AI application in Data Management. Change & Project Mgt.: Independent in change management, planning, monitoring & delivery, stakeholder management, and DQ implementation. Critical Thinking: Independent in decision making, and DQ - investigate & resolve. Data & Info. Management: Independent in MDM integrations, MDM policies, document & content lifecycle, document & content classification, data risk identification, data risk decision, data risk mitigation, metadata management, and data lifecycle management. Effective Communication: Independent in communication basics, cross-cultural relationships, and tailored messaging & motivational communication. Privacy & Security: Independent in high-pressure communication, regulatory knowledge, vulnerability & mitigation, and compliance-by-design. Software & Analytics: Independent in coding, visualisation, and Data Mgt. Adoption. Stewardship: Independent in identification & training. Strategy & Policy: Independent in data management strategy, policies, standards & playbooks, and maturity model & assessment. Solution Design: Independent in solution requirements. Expertise Critical Thinking: Expertise in root cause analysis. Data & Info. Management: Expertise in MDM requirements. Software & Analytics: Expertise in analysis (both listed entries), Data Mgt. Integration, and DQ Dimensions & Rules. Solution Design: Expertise in solution monitoring & iteration. Stewardship: Expertise in advocacy & support. Randstad Technologies is acting as an Employment Business in relation to this vacancy.

Role: Network & Security Engineer Location: Vale of Glamorgan, South Wales Salary: £45,000 per annum The Opportunity The Network & Security Engineer will take full ownership of a complex, multi-site network estate operating in a highly visible, operational environment. The Network Security Engineer will become the technical lead for networking, responsible for the improvement and long-term stability of the network across two major operational sites. While you'll own the network domain, you'll have the backing of both internal colleagues and external specialists when designing and implementing improvements. The organisation is investing heavily in modernising its infrastructure, and you will play a central role in that journey. A key early project will be leading the replacment tof the core network before end of support assessing the current environment, identifying risks, and designing the next generation network architecture. You'll work alongside an experienced Infrastructure Manager, a small internal IT team, external cyber security specialists and a SOC provider to bring the estate up to modern security and operational standards. The environment is collaborative rather than siloed. Job Responsibilities Take ownership of the full network estate across two operational sites Assess existing core and edge switching infrastructure and identify improvement opportunities Design and lead a core network refresh, including potential vendor changes Implement robust VLAN design, segmentation, routing and network access controls Strengthen network security through port security, segmentation and configuration hardening Work closely with external cyber security specialists to implement CIS and security best practices Support the implementation of controls aligned with Cyber Essentials PlusCollaborate with an external SOC provider on monitoring and security improvements Contribute to the wider IT team where needed within a small operational environment Essential Experience Proven experience as a Network Engineer or Senior Network Engineer Strong hands-on expertise with L2/L3 switching and routing Experience designing and supporting multi-site enterprise networks Strong understanding of VLANs Experience implementing network access controls, segmentation and port security Involvement in a refresh, core upgrade or infrastructure transition Comfortable working directly with switch configuration via CL Nice to Have's Experience with vendors such as Cisco, HPE, Juniper or Ruckus Exposure to Cyber Essentials, CIS benchmarks or security frameworks Experience working with SOC providers or vulnerability management processes Industry certifications such as CCNA or CCNP Experience within operational or regulated environments Why Join A rare opportunity to engineer neworks within one of Wales' most recognisable and operationally critical environments Genuine ownership of a network estate with your ownership Opportunity to join a major network transformation programme Broad exposure across networking, infrastructure and cyber security Varied operational environment with real-world impact A small technical team where your work will be highly visible Please send your CV in today

DevSecOps Consultant Sheffield (3 days per week onsite) Inside IR35 We're partnering with a leading financial services client to appoint a DevSecOps Consultant to drive secure engineering practices across large-scale, cloud-based platforms. This role is ideal for someone who has come from a hands-on DevSecOps Engineering background and has since transitioned into architecture/design and advisory, while still retaining strong technical depth. Key Responsibilities: Define and implement secure architecture patterns across engineering platforms (CI/CD, build systems, runtime environments) Conduct security assessments, threat modelling, and gap analysis across platforms and pipelines Develop and embed DevSecOps best practices, including secure pipeline design and automated controls Establish and enforce security baselines using policy-as-code Build and deliver security roadmaps, prioritising risk and regulatory requirements Partner with engineering and platform teams to remediate vulnerabilities and improve security posture Act as a trusted advisor to senior stakeholders, translating technical risks into business impact Key Requirements: Proven background in hands-on DevSecOps Engineering, now operating in a design/architecture-focused role Strong experience across both AWS and GCP (essential) Deep understanding of CI/CD pipelines, build tools, artifact repositories, and developer platforms Expertise in secure software delivery, vulnerability management, and platform security Experience with threat modelling, security frameworks, and maturity assessments Strong knowledge of application security, network security, and cloud security principles Excellent stakeholder management and communication skills Desirable: Experience in financial services or regulated environments Knowledge of Kubernetes and container security Familiarity with supply chain security, SBOM, and secure development practices Relevant certifications (eg CISSP, CISM, CCSP) This is a key role focused on shaping and embedding secure-by-design engineering practices across a complex, enterprise environment, with strong influence across both technology and security functions. More details available on successful application.

Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. The Role: This role is part of our Public Safety Solutions Business Unit. The Information Security Manager is accountable for the organisation's information security strategy, governance, and compliance, ensuring the protection of systems and data that support UK public sector and emergency service operations. The role is critical in ensuring that services remain secure, resilient, and available, recognising the operational importance and potential impact on frontline emergency response. Key Responsibilities: Security Leadership & Assurance Own and be accountable for the organisation's overall security posture, ensuring alignment with business objectives and public sector expectations. Lead the implementation, maintenance, and continuous improvement of the ISMS in line with ISO/IEC 27001. Maintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls. Develop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity. Provide regular assurance reporting to senior leadership and stakeholders. Risk Management & Compliance Own and maintain the Security Risk Register, ensuring risks are identified, assessed, and managed in line with organisational risk appetite. Conduct and support risk assessments, internal audits, and external certification activities. Ensure compliance with relevant UK regulatory and security requirements, including GDPR and guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause analysis, and remediation. Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication. Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers). Service Resilience & Operational Security Ensure security is embedded in the design and operation of services supporting emergency response. Work closely with operational and technical teams to maintain high levels of system availability and resilience. Support business continuity and disaster recovery planning, testing, and continuous improvement. Security Awareness & Culture Develop and deliver targeted security awareness and training programmes. Promote a strong security culture, ensuring all staff understand their responsibilities in protecting critical services. Stakeholder Engagement Act as a trusted advisor to senior leadership, operational teams, and external stakeholders. Support engagement with public sector customers, providing assurance on security controls and practices. Collaborate with suppliers and partners to ensure security requirements are met across the supply chain. Qualifications & Skills: Proven experience in an information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials / Cyber Essentials Plus certification. Experience managing security risks, incidents, audits, and compliance activities in operational environments. Ability to balance strategic leadership with hands-on delivery in a small organisation. Strong understanding of service resilience, availability, and risk in mission-critical systems. Excellent communication skills, with the ability to engage both technical and non-technical stakeholders. By submitting an application to Saab UK, you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.

Job Title - Senior Data Manager Location - Manchester, UK Type - Contract Job Description: About the role The Trips Data Governance team manages data for all aspects of trips, excluding stays, enabling teams to understand and improve business performance and customer experience. They are currently seeking an experienced Data Manager to join their impactful Data Governance team to support the critical SAP Rise migration program. About the SAP Rise program: The programme is a key business modernisation initiative to migrate the current Booking Transport (BTL) SAP instance to a standardised cloud-based ERP system. The programme will introduce an interim architecture between the current platform and the SAP S/4 RISE ecosystem to test processes, data quality and governance, data contracts, and new capabilities, while supporting the transition to the North Star architecture where data flows directly from a modernised enterprise order platform. Role Overview: In this role, a Senior Data Manager combines technical knowledge, business insight, and expert communication to provide critical information about data systems. This position focuses on supporting business needs with high-quality data through monitoring, issue detection, impact quantification, end-to-end data corrections, standardization, and architectural optimization. A key aspect of the role is to advocate for a Data Quality mindset across the organization. You will report to a Senior Manager and collaborate with other Data Managers on strategic objectives for data quality, governance, metadata management and regulatory compliance. This is a hands-on role where you will work closely with Business Analysts, Data Engineers, Data Scientists, and Insights Analysts to build deliverables required for the SAP Rise program. Roles & Responsibilities As a Senior Data Manager I (Level G), your required competencies include: Independence in: AI & Ethics: Independent in ethical data handling, responsible AI, compliance, knowledge & prompt engineering, and AI application in Data Management. Change & Project Mgt.: Independent in change management, planning, monitoring & delivery, stakeholder management, and DQ implementation. Critical Thinking: Independent in decision making, and DQ - investigate & resolve. Data & Info. Management: Independent in MDM integrations, MDM policies, document & content lifecycle, document & content classification, data risk identification, data risk decision, data risk mitigation, metadata management, and data lifecycle management. Effective Communication: Independent in communication basics, cross-cultural relationships, and tailored messaging & motivational communication. Privacy & Security: Independent in high-pressure communication, regulatory knowledge, vulnerability & mitigation, and compliance-by-design. Software & Analytics: Independent in coding, visualisation, and Data Mgt. Adoption. Stewardship: Independent in identification & training. Strategy & Policy: Independent in data management strategy, policies, standards & playbooks, and maturity model & assessment. Solution Design: Independent in solution requirements. Expertise Critical Thinking: Expertise in root cause analysis. Data & Info. Management: Expertise in MDM requirements. Software & Analytics: Expertise in analysis (both listed entries), Data Mgt. Integration, and DQ Dimensions & Rules. Solution Design: Expertise in solution monitoring & iteration. Stewardship: Expertise in advocacy & support. Randstad Technologies is acting as an Employment Business in relation to this vacancy.

Business Unit: COO, Technology Operations & Cyber Security Salary range: £40,800 - £51,000 per annum + Benefits Location: UK Remote Contract type : Permanent Our Team The Platform Engineering Team sits within Technology Operations & Cyber Security (TOCS) and is responsible for supporting, maintaining, and innovating the Bank's underpinning platforms and technologies. The core aspect of your role will be to support the management of the Operational Platform, with a focus on the Linux Server Estate. This will involve collaboration with internal customers, partners and external customers to deliver excellent service and ensure our systems are efficient, performant, resilient where emerging technology threats & risks are managed and change to our systems are managed effectively. What you'll be doing Innovate, build & maintain the Virgin Money Linux server estate for Operational Platform. Engineer, validate, implement and quality assure technical solutions. Lead on initiatives to improve Platform performance and stability. Support projects implementing new infrastructure into the datacentres. Support root cause analysis and remediation of complex technical issues. Work closely with others to estimate work, manage domain scope, risks and issues. Collaborate with internal and external parties to provide excellent customer service. Ensure that change within the environment is managed and controlled effectively. We need you to have Strong engineering experience with Red Hat Enterprise Linux (RHEL) Strong Redhat Satellite experience (install, Configure, manage) Strong experience of server implementation, upgrades, maintenance, monitoring and automation (Infrastructure as Code) with Ansible, AAP Strong experience of VMware (upgrade, manage) Solid understanding of Networking, security and system performance Strong problem-solving skills with the ability to own, diagnose and resolve platforms issues. Good understanding of cybersecurity principles & vulnerability management Python, Bash, API's and data structures in JSON/YAML or other Engineering mindset: able to challenge the status quo and automate manual processes to deliver additional value. Exceptional communication & teamwork skills Flexibility. The role may require occasional evening or weekend work It's a bonus if you have but not essential Experience of Arctera Infoscale, VCS Experience of Solaris Experience of Server Hardware Management and maintenance Experience of Containerisation, Red Hat OpenShift, ARO or AKS Experience of Continuous Integration and Continuous Delivery tooling Experience of working within an ITIL framework Working in Multi-disciplinary Agile teams Red Hot Rewards Generous holidays - 38.5 days annual leave (including bank holidays and prorated if part-time) plus the option to buy more. Up to five extra paid well-being days per year . 20 weeks paid, gender-neutral family leave (52 weeks in total) for expectant parents and those looking to adopt. Market-leading pension. Free private medical cover, income protection and life assurance. Flexible benefits include Cycle to Work, wellness and health assessments, and critical illness. And there's no waiting around, you'll enjoy these benefits from day one. If we're lucky to receive a lot of interest, we may close the advert early. Please ensure to submit your applications as soon as possible. Say hello to Virgin Money Virgin Money is so much more than just a bank. As part of the Nationwide group, together we're the UK's first full-service mutual bank serving millions of retail and business customers and all driven by our purpose ; Banking but fairer, more rewarding and for the good of society. With us, you'll be part of an organisation uniquely positioned to make a difference to the lives of customers, communities and broader society and embark on a collaborative, customer obsessed, and fun-filled career journey. Embrace the weekdays, enjoy fantastic perks, and make a meaningful positive difference. Time to discover what it means to be part of the first mutual full-service banking provider. Be yourself at Virgin Money At Virgin Money, we celebrate everyone. We have fun, think big, and relentlessly include each other, all in pursuit of our purpose: Banking - but fairer, more rewarding, and for the good of society. We're committed to creating an inclusive culture where colleagues feel safe and inspired to contribute, speak up and be heard. As a Disability Confident Leader, we're committed to removing any obstacles to inclusion. If you need any reasonable adjustments or support making your application, contact our Talent Acquisition team Please note: If we receive a high volume of eligible applications, we may need to prioritise candidates whose skills and experience most closely align with the role, while still ensuring fair and equitable consideration for all applicants. Now the legal bit Although some of our roles allow you to be based anywhere in the UK, we'll need you to confirm you have the right to work in the UK. If you're successful in securing a role with us, there are some checks you need to complete before starting. These include credit and criminal record checks and three years' worth of satisfactory references. If the role is part of the Senior Manager Regime and Certification Regime, it requires enhanced pre-employment checks - we'll ask for six years of regulatory references, and once in the role, you'll be subject to periodic employment checks.

Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.

Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.

Join us as a Senior Security Engineer for CIAM at Barclays, where you will bring to life a new digital platform capability, transforming and modernising our digital estate to build a market-leading digital offering with customer experience at its heart. This is an exciting and key role, partnering with business aligned engineering and product teams, to ensure a collaborative team culture is at the heart of what we do. To be successful in this role you should have: Experience across configuration and integration with Hardware Security Module (HSM) and AWS Secrets Manager (ASM) tooling, certificate lifecycle management, e.g. rotation, revocation, and in automating security workflows Experience using GitLab CI/CD pipelines, AWS CLI or Chef. Strong experience with Cloud Security expertise across the following areas: AWS security controls, policies and automation, CLI tools, role based and attribute-based access controls, cryptographic protocols and secure key lifecycle management, advanced threat modelling, SOC operations, securing microservices and APIs, DevSecOps best practices, vulnerability scanning, tools, approaches, vulnerability patching and vendor management for security Strong experience in penetration testing and hands-on coding in at least one of the following: JavaScript, Java, Python. Some other highly desirable skills include: Experience in hands-on configuration, deployment and operation of ForgeRock COTS based IAM solutions (PingGateway, PingAM, PingIDM, PingDS) with embedded security gates, HTTP header signing, access token and data at rest encryption, PKI based self-sovereign identity, or open source You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our London office. Purpose of the role To develop, implement and maintain solutions that support the safeguarding of the banks systems and sensitive information. Accountabilities Provision of subject matter expertise on security systems and engineering patterns. Development and implementation of protocols, algorithms, and software applications to protect sensitive data and systems. Management and protection of secrets, ensuring that they are securely generated, stored, and used. Execution of audits to monitor, identify and assess vulnerabilities in the banks infrastructure/software and support the response to potential security breaches. Identification of advancements in to support the innovation and adoption of new cryptographic technologies and techniques. Collaboration across the bank, including developers and security teams, to ensure that cryptographic solutions align with business objectives, security policies and regulatory requirements. Development/ Implementation and maintenance of Identity and Access Management solutions and systems. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalate breaches of policies/procedures If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others OR for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi-year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In-depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.

About the Role: At Holland & Barrett, cybersecurity is at the heart of our digital transformation. As we continue to grow and innovate, securing our applications and protecting customer data is a top priority. We are looking for a Senior Application Security Engineer to lead our efforts in strengthening application security, mitigating risks, and ensuring best-in-class security practices. If you are passionate about cybersecurity and eager to make a real impact, we want you on our team! Key Responsibilities: Security Strategy: Help define and execute the Holland & Barrett application security strategy. Collaborate with both tech and non-tech teams to integrate security principles into the early stages of product design and development. Secure SLDC: Establish a secure Software Development Lifecycle (SDLC) that enables development teams to deliver high-quality applications quickly while implementing essential controls for software integrity, authenticity, and third-party library management. Risk Assessments: Conduct risk assessments, threat modeling, and architecture reviews alongside development teams, producing artifacts to drive the implementation of effective security controls. Standards Development: Own the creation and maintenance of tailored security standards and guidelines, developing reusable resources for various development teams. Team Support: Provide guidance and support to development teams on secure software production practices and flaw mitigation strategies. Key Requirements: Essential: 5+ years of experience in application security, with at least 3+ years in software development. Strong understanding of application security concepts, including secure coding practices, threat modeling, vulnerability management, and access control mechanisms. Experience with AWS, Kubernetes, Service Mesh, and API Security (including authentication and authorization). Proficiency in programming languages such as Python, Java, JavaScript, GoLang, and Rust. Familiarity with Agile methodologies like SCRUM, along with proven project management skills to oversee multiple security projects simultaneously. Desired: Independent, proactive, and detail-oriented, with a commitment to maintaining high security standards. Strong communication and interpersonal skills, facilitating effective collaboration with both technical and non-technical teams. We support flexibility and productivity of our employees by hybrid working arrangements. Although your role will be based in London (or Nuneaton, or Amsterdam) you will be required to travel only occasionally to our Hubs in Nuneaton or London or to any other location of H&B. What we offer: Pension company contribution = 3% Incentive scheme up to 10% of annual salary , based on company performance. Your wellbeing is paramount so you can get away and take 33 Days Holiday per year . Private Medical Care (Self after 1 year) Learning and Development opportunity with Holland & Barrett is a great base for career development long term. Career progression. Refer and Earn Scheme - as we're growing you can earn money by referring people to join us from your network. Epic Extras gives you access to exclusive benefits, free advice and savings from a range of retailers and providers. Stay healthy with Discounted Products - from day one you'll get a 25% discount (on top of other promotions) when you shop at H&B on anything that you buy. We all need a little help sometimes, so weoffer Free 24/7 Confidential Advice & Colleague Welfare . Mental Health First Aiders - we have lots of qualified Mental Health First Aiders because its all about your health & wellbeing. Stay active in the Onsite Gym at our Nuneaton Hub! We have colleague Reward and Recognition Schemes , so your hard work and loyalty won't go unnoticed. And many more! We're passionate about helping every colleague thrive across all dimensions of wellbeing, and we're committed to having a diverse and inclusive workplace. In line with our EPIC values (Expertise, Pioneering, Inclusive, Caring), we embrace and actively celebrate all our colleagues' unique and varying experiences, backgrounds, identities and cultures - I am me, we are H&B. Holland & Barrett does not accept unsolicited resumes from search firms/recruiters. Please do not forward resumes to our job alias, employees, or any other company location. Holland & Barrett is not and will not be responsible for any fees if a candidate submitted by a search firm/recruiter unless otherwise agreed with respect to specific open position(s).

Why work for us? We aim to provide you with peace of mind in addition to an attractive salary and eligibility to participate in the discretionary annual bonus opportunities. You will also receive an excellent benefit package including: Company funded industry qualifications Workplace Pension Close to town centre / bus station / train station Free Car Parking Attendance Bonus Scheme Sick pay Scheme 22 days holiday Bank Holidays, increasing with length of service to a max of 30 days after a qualifying period. As a Cyber Security Engineer, you will join our growing team with its increased focus and business growth in Cyber Security, working closely with our Senior Cyber Security Manager ensuring the smooth and successful delivery of all security-based client requests, services, audits and certifications in a continually evolving role. You will be responsible for providing advice, assistance and take action on security matters to our clients and internal colleagues as well as working on Cyber Essentials, Cyber Essentials Plus assessments and all other services within our Security portfolio. Customer service is a priority, as such you will enjoy the interaction and building rapport with our existing, varied customer base. What you'll be doing: Liaising with customer to understand client requests and how best resolve issues Supporting project implementations from initial customer training through to ongoing support Working on Cyber Essentials & IASME Assured Level 1 assessments Working on Cyber Essentials Plus & IASME Assured Level 2 (Audited) audits Carrying out Internal Vulnerability Scanning (including customising reporting) Carrying out External Penetration Testing (including customising reporting) Using enterprise level tools to analyse and assess vulnerabilities Assist with the evolving product and services portfolio available to clients Assisting the sales and support teams with relevant information and advice, taking ownership where required Carrying out client consultations and security audits to best advise clients on security measures appropriate for their organisation Undertaking industry standard training and certifications About You: Qualifications: 5 GCSEs grades A -C/9-4 or equivalent (including English Language, Maths & IT) Minimum of 3 years' experience relevant to Cyber Security and/or IT Support At least 2 industry recognised certifications (Microsoft, CompTIA, Cyber Scheme etc) Essential Skills and Experience: Previous Technical Support or Cyber Security Engineer experience (or roles of similar nature) Good knowledge of networks and basic infrastructure (routing, IP's, topology etc) Good planning, time management, administrational and organisational skills Always maintaining client confidentiality and security Ability to follow strict process and procedures Desirable - knowledge of the Cyber Essentials scheme Personal qualities: Organised, Reliable and trustworthy Customer Service Driven Good problem-solving skills Good timekeeping Attention to detail Ability to work individually and as part of a team Strong interpersonal and communication skills key An interest in technology and troubleshooting Capable of thinking outside the box Desirable - driving licence Prospects: The role offers long term security and the opportunity to progress along within the team along with continued development through to becoming an IASME accredited assessor and further industry accreditations such as Cyber Scheme Team Member (CSTM).

Contract duration - 6 months Location - Waterside - UB7 0GB Hybrid - 1 day per week from office and rest days from homeOur client has a varied and complex digital landscape. The DevSecOps specialist will report to DevSecOps manager in the Cyber Architecture team. Working closely with the Cyber team as well as the digital team to ensure cybersecurity is embedded across all digital platforms. Key skills & Responsibility Lead the integration of security into the software development lifecycle (SDLC) using DevSecOps principles. Define and implement release strategies with a strong emphasis on application security. Identify and remediate security vulnerabilities through detailed code reviews and automated tooling. Collaborate with cross-functional teams to establish secure coding standards and quality benchmarks. Provide expert consultancy and guidance to engineering teams, enabling them to meet strategic security goals. Drive adoption of security best practices across CI/CD pipelines and cloud-native environments. Accountabilities Provide technical cyber leadership across all development teams, focusing on application security for our various digital platforms (web and mobile). Secure our CI/CD pipelines and provide improvement plans and requirements to those that use them, while overseeing the consistent adoption of secure practices across teams. Support the vulnerability management process, raising awareness and embedding secure development principles with development teams. Evaluate, implement, support and communicate new tools and features to improve our security posture whilst supporting, consulting, and measuring the progression of adoption across our platform and development teams. Establish security testing approaches and tools to support iterative agile delivery, ensuring alignment with organisational objectives and secure development practices. Lead cyber digital reviews to promote consistency, quality, and alignment to cyber principles and patterns. Effectively communicate, reason, and influence stakeholders across business tech to promote the understanding of cyber digital security and embed it throughout design and delivery. Actively participate in and contribute to the client's cybersecurity guilds, driving innovation and alignment in digital security approaches. Support the client's Cyber Delivery Assurance Team and the wider business Cyber Team by acting as a subject-matter expert on all things digital security. Support the client's Cyber Change Team by assisting in change reviews. Required Skills & Experience: Proven experience in application security within a DevSecOps framework. Strong background in software engineering, with the ability to bridge development and security. Experience identifying security issues through code review. Recognised cybersecurity certifications or qualifications desirable. Deep technical expertise in security tools and methodologies, including: Static Application Security Testing (SAST) Dynamic Application Security Testing (DAST) Software Composition Analysis (SCA) Threat Modelling Demonstrated success in leading or advising teams on secure development practices. Senior-level experience with a solid understanding of cloud migration challenges and solutions. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now.If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Talent Solutions is a trading division of Hays Specialist Recruitment Limited and acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk

Lead Security Engineer Luton 12-month contract Paying up to 90p/h (Inside IR35) ARM is assisting a large Aerospace client who is looking for an experienced Lead Security Engineer who will be responsible for all security aspects of product design, development, verification, and maintenance through all phases of the product lifecycle. Responsibilities : Production of Security Managements Plans, work package descriptions and cost estimates in support of product bids, services and proposals. Undertaking security risk assessments, risk mitigation plans, mitigation gap analysis and preparation of security management documentation for system Accreditation. Defining product security requirements, advising development teams on suitable implementation standards and techniques and overseeing product development activities. Liaison with Security Accreditors and Security Assurance Coordinators in support of security accreditation. Preparation of Protection Profiles, Security Targets and Evaluation Management Plans, and liaison with NCSC and commercial evaluation teams in support of evaluation activities. Preparation of TEMPEST Control Plans, advising development teams on appropriate implementation techniques, and liaising with TEMPEST test facilities. Advising development teams on suitable platform lockdown and configurations, and supporting Penetration test activities. Analysing penetration test results and preparation of remedial action plans. Prepare and implement through life support and maintenance for product security including vulnerability and patch management plans Lead security incident management teams during incident/crisis situations in conjunction with Head of Product Security for EW/FCA Review and maintain corporate product security policies. Deliver product security training to project engineering teams. Experience required: Experience in the development of security solutions for a military &/or commercial products and systems. Graduate degree in relevant engineering, computing or related scientific discipline, and/or evidence of further professional study. Registered NCSC certified professional at senior level or above, or NCSC recognised qualification, e.g. ISC2Certified Information System Security Professional. Knowledge of UK/NATO Information Assurance standards, procedures & systems, including Government Functional Standard GovS 007: Security, HMG IS1&2, ISO27000 series standards, NIST SP800 series standards, JSP440, JSP604, guidance material provided by NCSC, CPNI and NIST. Practical experience of producing Security Accreditation documentation Practical experience of NCSC and Common Criteria security evaluation techniques. Knowledge of current crypto technologies and key management systems Model Base System Engineering (MBSE) knowledge Understanding operating systems, firmware and software security controls and how to apply them. Understanding of existing, current and emerging technologies including cloud, virtualisation and web Excellent verbal & written communication skills. Good team worker with ability to influence and motivate. Positive attitude and drive to improve the business. Ability to obtain SC clearance with UK-eyes only caveat. Enterprise Security Architectures (SABSA, MODAF). Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.