151 jobs found

Role Title: Cyber Risk Analyst Location: Knutsford 3 days on site Duration: 30/10/2026 Rate 404 MUST BE PAYE THROUGH UMBRELLA Role Description: "Role Overview: The Cyber Risk Analysts will work under the guidance of the Lead Consultant to execute the detailed risk assessments and analysis of End-of-Life technologies. In this role, you will collect and analyze data on EOL systems, evaluate cyber risks using the defined methodology, and support the implementation of remediation plans. Key Responsibilities: Perform Risk Assessments: Conduct in-depth cyber risk assessments for identified EOL systems and technologies, following the methodology and framework established by the project. Gather necessary information on assets (software, hardware, applications that are end-of-life or end-of-support) and assess the potential cyber threats, vulnerabilities, and business impacts associated with each5. Document findings meticulously, ensuring each risk item is well-described (likelihood, impact, severity) in the risk register. Required Skills & Competencies: Analytical Skills: Strong analytical and problem-solving skills are essential. The analyst must be able to assess complex IT systems and identify risk factors, interpret vulnerability data, and quantitatively rate risks. Attention to detail is critical for reviewing large lists of EOL assets and ensuring nothing is missed. Cybersecurity Knowledge: Good understanding of foundational cybersecurity principles (confidentiality, integrity, availability) and how outdated technologies can pose threats. Familiarity with common vulnerabilities and exploits affecting older systems (legacy OS, unsupported software) is beneficial. Knowledge of cyber risk frameworks and standards (such as NIST, ISO27001) and basic concepts of risk assessment is expectedxxiv. Qualifications & Certifications: Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. Equivalent experience in cyber risk or IT security roles can be considered in lieu of a formal degree. Certifications: Relevant industry certifications are not mandatory but highly valued. Certifications demonstrating knowledge of security and risk principles (e.g., CompTIA Security+, Certified Ethical Hacker (CEH), or GIAC/GSEC) would be a plus. Certifications specifically in risk management or governance (such as CRISC, Certified Information Systems Auditor (CISA), or ISO 27001 Lead Auditor/Implementer) are also advantageous for this role, as they indicate a grasp of risk and control assessment practices. Experience: Years of Experience: Approximately 3-5+ years of experience in cybersecurity or IT risk roles. This could include experience as a Cyber Risk Analyst, IT Risk Analyst, Security Analyst, Vulnerability Management Specialist, or GRC (Governance, Risk & Compliance) Analyst. Candidates with slightly more or less experience will be considered based on skill fit, but a baseline understanding from a few years in the field is expected. Risk Assessment Background: Hands-on experience conducting risk assessments or security assessments is required. For example, experience in identifying and assessing risks for IT systems, writing risk or control reports, or supporting risk treatment projects. Familiarity with creating or maintaining risk registers and tracking mitigation actions is important (e.g., experience ensuring "risks and remediation plans are regularly addressed" in previous rolesxxvii). Industry-Specific Experience (Desirable): Experience in the financial services sector or other highly-regulated industries is a plus.

Role: Security Consultant Location: London (Hybrid) Duration: 3 Months with extensions up to 12 months Day rate: 650 Inside IR35 Required skills & experience: Specialist (Consultant) Design and delivery of security solutions. Address identified threats and vulnerabilities Ensure cyber security controls across all programmes Work with security and technical specialists for solution quality Coach cyber security staff from a technical SME perspective Define security deliverables during early engagement Align solutions with approved architectural patterns Support and guide implementation Validate solution as part of certification prior to go-live 4. Nice to have Skills: Preferably a degree (or equivalent experience) in an Information Security-related discipline

Lead Cyber Security Consultant (Defence) UK Remote (travel required approx. 60%/3 days onsite per week) Full-time & Permanent | Consultancy Competitive salary + Excellent benefits About the Opportunity We're working with an established and growing UK cybersecurity consultancy expanding its Defence and Public Sector practice. This is a great opportunity for an experienced security professional to lead high-impact programmes, influence senior stakeholders, and shape security outcomes across MOD and wider Defence environments. The Role As a Lead Cyber Security Consultant, you'll take ownership of multiple client engagements, delivering expert advice across governance, risk, compliance, and Secure by Design practices. You'll work closely with senior stakeholders to assess risk, define security controls, deliver assurance activities, and support secure architecture across complex, high-profile systems. This is a hands-on, strategic role that combines leadership, client engagement, and technical depth. Key Responsibilities Lead Secure by Design and security assurance activities across MOD and Public Sector programmes Support and guide the application of risk management frameworks, ISMS, and Enterprise Security Risk Management Conduct and lead workshops with technical and business stakeholders Produce clear, actionable reporting on risk, vulnerabilities, and remediation Provide pragmatic, proportionate recommendations aligned to business goals Support secure design across cloud and on-premise platforms Contribute to internal knowledge sharing and thought leadership Experience & Expertise Strong background in Technical/Security Architecture or Governance, Risk & Compliance Experience working in Defence/MOD environments Strong analytical and communication skills, with the ability to influence senior stakeholders Passion for continuous learning and high-quality security outcomes Desirable Knowledge SAC (Security Assurance Coordinator) or Delivery Team Security Lead experience MOD/GDS Secure by Design Familiarity with: JSP440, JSP604/453, JSP490 Supplier Chain Assurance GDPR, PCI DSS, ICO ISO 27001, NIST CSF, CIS Controls v8 Skills in: Threat modelling (kill chain, attack trees, etc.) Cloud security (AWS, Azure), containerisation, Firewalls Secure SDLC HLD/LLD review ITHC scoping and remediation Certifications (Highly Desirable) CIISEC UK Cyber Security Council registration (Chartered or Principal) AWS/Azure Security (Professional) CCSP, CISSP, CISM ISO 27001 Lead Auditor Security Vetting/Clearance Active and transferable DV clearance is essential Must be a sole British National and UK-based Benefits Competitive salary and benefits package Private healthcare & wellbeing support Flexible working (remote with travel) Career pathways, mentoring and continuous learning Inclusive, supportive culture Interested? Submit your application to learn more about this exciting opportunity. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.

Forvis Mazars is a leading global professional services network providing audit & assurance, tax, and advisory services. Forvis Mazars in the UK spans 14 offices across the nation and has over 3,400 professionals, with 190 partners. We have a clear purpose and a shared commitment to shape a better future. You'll join a collaborative and inclusive team where you're supported to grow your skills, explore new opportunities, and contribute from day one. You'll work with a diverse client base, develop meaningful connections, and gain experience that extends beyond your local team. Together, we grow , belong and impact . About The Team The Cyber Advisory team provides cyber security assurance, advice and guidance to clients on all aspects to help them build and maintain a robust security environment. We identify cyber risks and work closely with clients to understand their unique set of digital opportunities and challenges, providing tailored and strategic advice and guidance. We support our clients in assessing, building and managing their cyber security capabilities, from ensuring compliance with industry regulations, and mitigating potential risks to moving them towards a more mature security posture. Within the national cyber security team you will be responsible for delivering cyber security assurance and advisory work to a range of clients nationally and internationally. Our broad range of clients, including those in FTSE 350, will allow you to gain experience across a range of sectors including: Financial Services, Banking, Insurance and Investment Corporates/Private Sector/Industry & Services Central and Local Government Retail and Consumer products organisations Job Purpose The role is to support the team in delivering internal audits but also larger scale advisory engagements. This means assisting in all aspects of the project lifecycle primary execution of fieldwork and preparation of deliverables including actively contributing to final recommendations. Your responsibilities will include: Being actively involved in the delivery of our Internal Audit/Consulting engagements. Act a subject matter expert in various security and risk management domains (e.g., IT risk management, cyber risk, security target operating model, governance, compliance, cyber security maturity assessment, metrics and C-level dashboards ) and leading industry-based practices (e.g. NIST CSF, ISO 2700x ) Managing the coordination and communication of key findings and results of engagements, producing written reports and supporting oral presentations to senior client management and key senior stakeholders Maintaining an expertise and currency in industry trends Managing and mentoring junior consultants assigned as members of engagements Contributing to the development of project management, quality assurance and professional consulting and auditing approaches/methodologies. The Candidate We're looking for someone who is seriously interested in the cyber security area and wants to get first-hand experience in working in multiple industries with companies who need our help. We will help support you in every step of the way with on the job training as well as support for attaining industry professional certifications which will enhance your career in this field. Skill, Knowledge & Experience The candidate will be expected to use their technical expertise to delivery projects and to ensure that our clients comply with their regulatory obligations including NIS2 or DORA. You will need to have a broad experience of security risk management and have evidence of experience in a number of the following fields of expertise: Full understanding of the DORA regulation & NIS2 Directive and experience in implementing the regulations Experience working with regulated financial services entities 3+ years' varied experience in information security, risk management Strong understanding of security governance, risk, and compliance frameworks such as ISO 27001, NIST 800-53 / CSF, NIS2 and DORA Hands-on experience building credibility with external stakeholders Proven ability to guide and collaborate with senior stakeholders in a similar GRC, security, or risk management role Excellent communication skills, with the ability to present complex information clearly and effectively to non-technical stakeholders The ability to explain complex topics to a diverse range of audiences Strong attention to detail and the ability to deliver high quality work CompTia Security +, CRISC, CISM or CISSP certification advantageous. Diversity, Equity & Inclusion At Forvis Mazars diversity, equity and inclusion are central to our values. We value our people's unique backgrounds, perspectives, and experience, and know this diversity create better outcomes for our clients. We seek to attract, develop, and retain the best talent, inclusive of sex, ethnicity, disability, socio-economic background, sexual orientation, gender identity, nationality, and faith. We select candidates based on skills, knowledge, qualifications, and experience and aim to support all our team members to reach their potential. At Forvis Mazars, we promote an environment in which you can grow your skills, belong to a team that values your ideas, and make an impact that matters.

Dedicated to sustainable development, Arup is a collective of designers, consultants and experts working globally. At Arup you will have the opportunity to collaborate on ambitious projects - delivering remarkable outcomes for clients and communities, and to do socially useful work that has meaning. Arup's purpose, shared values and collaborative approach has set it apart for over 75 years, and now is your opportunity to join. AMS is a global workforce solutions partner committed to creating inclusive, dynamic, and future-ready workplaces. We help organisations adapt, grow, and thrive in an ever-evolving world by building, shaping, and optimising diverse talent strategies. We partner with Arup to support their contingent recruitment processes. Acting as an extension of their recruitment teams, we connect them with skilled interim and temporary professionals, fostering workplaces where everyone can contribute and succeed. On Behalf of Arup, we are looking for an IT Support Specialist (Hardware/Software) for a 6 Month Part-Time contract based in Nottingham (3 days per week onsite). Purpose of the role: As IT Support Specialist you will act as primary liaison for Digital Technology related requests, addressing issues related to desktop and infrastructure, and escalating to other teams as needed. You will provide onsite technical support across hardware, software, and engineering applications. What you'll do: Act as client liaison for all Digital Technology related requests from staff, being first line of engagement to understand and address issues and needs around desktop (Windows, O365 etc.) and infrastructure (compute, storage, network, cloud services, enterprise systems, cyber security, etc.), engage and escalate to other Digital Technology teams as needed. Provide value added services to the business, working together with the leadership team to drive technology and help transform business activities. Configure, deploy, maintain, troubleshoot, and support workstations, laptops, printers, mobile devices, phones and other computer and telecoms equipment. Solve problems associated with hardware (PCs, Macs, mobile, etc.), software, and services (video conferencing, remote access, etc.), determining the source of problems and classifying their level, priority, and nature. When appropriate, escalating or routing them to the appropriate team. Respond to, document, and resolve service tickets in a timely manner according to an agreed service level. Document procedures, standards, best-practice configurations, settings, installation sequences, and back-out instructions. Follow ITIL/Service Management policies and procedures. Help the software asset management team to maintain applications (licence management and version control). The skills you'll need: Proven hands on experience in an office based IT support role. Familiarity with ServiceNow or similar ticketing systems. Knowledge of laptop builds, device provisioning, and infrastructure support. Comfortable working independently and managing varied support needs. About the client About the client Arup is an equal opportunity employer that actively promotes and nurtures a diverse and inclusive workforce. Guided by its values and alignment with the UN Sustainable Development Goals, Arup creates and contributes to equitable spaces and systems, while cultivating a sense of belonging for all. Arup's internal employee networks support their inclusive culture: from race, ethnicity and cross-cultural working to gender equity and LGBTQ+ and disability inclusion - creating a space for everyone to express themselves and make a positive difference. If you are interested in applying for this position and meet the criteria outlined above, please click the link to apply and speak to one of our Sourcing Specialists. AMS are committed to providing all our candidates with the opportunity to perform at their best throughout the recruitment process. Please let us know if you require any additional support or reasonable adjustments during the screening process and we will work with you and Arup to identify the best solution to meet your requirements. AMS, a Recruitment Process Outsourcing Company, may in the delivery of some of its services be deemed to operate as an Employment Agency or an Employment Business.

IAM Delivery Consultant Up to £81K | Hybrid (UK) - Must be comfortable to travel to client sites UK wide Must be eligible for SC clearance UK nationals only A leading cybersecurity consulting practice is looking for an experienced Identity & Access Management (IAM) Delivery Consultant to support large-scale digital identity transformation programmes across major organisations. You'll work with clients to modernise how they manage identity, access, and privileged accounts , delivering strategy, design, and implementation of IAM solutions. Location: UK-wide (Hybrid - office, client site & home) Travel: Occasional client site travel depending on project Eligibility: UK nationals only Key Areas: * Access Management * Identity Governance & Administration (IGA) * Privileged Access Management (PAM) Key Responsibilities: * Understand and define IAM business requirements * Design and implement IAM solutions and architecture * Deliver IAM technology and process improvements * Advise clients on IAM strategy and transformation * Develop IAM Target Operating Models and governance processes * Contribute to or lead IAM delivery projects Skills & Experience: Experience in IAM consulting or advisory roles Designing and delivering IAM solutions and architectures Developing IAM operating models and processes Experience in delivering IAM solutions using technologies like Microsoft Azure, Ping Identity, Okta, SailPoint, Saviynt, CyberArk, BeyondTrust - or other modern IAM tools Salary: Up to £81,000 + benefits Excellent opportunity to join a growing digital identity consulting team delivering impactful IAM programmes. Interested or know someone suitable? Feel free to get in touch. RSG Plc is acting as an Employment Agency in relation to this vacancy.

Cloud Security Pre-Sales Consultant - Cloud, Security, AWS, Azure Salary: £60,000 - £65,000 (Depending on Experience) Location: London/Hybrid (willingness to travel on-site required) Company Overview A forward-thinking and entrepreneurial cloud security company, partnering with major organisations and continuing to grow rapidly, is offering a brand-new opportunity for an ambitious Cloud Security Pre-Sales Consultant looking to take the next step in their career. The Ideal Candidate We don't expect candidates to meet every requirement - if you have a solid foundation in cloud security and pre-sales and the drive to learn, we'd love to hear from you. Experience 2-4 years' experience in cloud security, pre-sales engineering, technical consulting, or security operations. Exposure to at least one major cloud provider (Azure, AWS, or GCP), with a willingness to broaden your expertise. Understanding of hybrid and on-premise security concepts. Awareness of key frameworks such as ISO 27001, NIST, SOC 2, and CIS Controls. Cloud Security Technologies & Platforms Experience with some of the following is helpful (not all required): Microsoft Defender for Cloud, AWS Security Hub, GuardDuty, GCP Security Command Center. Microsoft Sentinel, AWS CloudTrail, Config, KMS, GCP Cloud Logging. CSPM: Prisma Cloud, Wiz, Orca, Lacework, CloudGuard. CIEM: SailPoint, Saviynt, Veza. Identity & Access Management Azure AD/Entra ID, AWS IAM, GCP IAM, MFA, SSO, Zero Trust principles. Network & Infrastructure Security Cloud-native Firewalls, WAFs, VPN, ZTNA, API security fundamentals. Container & DevSecOps Security Basic exposure to Kubernetes (AKS, EKS, GKE), container scanning, SAST/DAST, IaC security. SIEM & Endpoint Security Splunk, Microsoft Sentinel, Elastic Security, CrowdStrike, Defender XDR. Certifications (Nice to Have, Not Essential) Security+, CySA+, CEH, CCSP, CISM, CISSP (or working towards them). AWS/Azure/GCP security certifications. ISO 27001 certifications. GIAC (GCLD, GSEC, GDSA), CKS. What You'll Be Doing Supporting client engagements by shaping cloud security solution designs. Delivering demos, presentations, and workshops with support from senior team members. Communicating effectively with both technical and non-technical audiences. Assisting with post-sales technical delivery where required. Contributing to company growth by sharing ideas and collaborating across teams. About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer and are on the client's supplier list for this position. Useful Keywords Cloud Security, Cyber Security, Pre-Sales Consultant, Azure Security, AWS Security, GCP Security, CSPM, CIEM, IAM, Zero Trust, SIEM, XDR, Kubernetes Security, DevSecOps, ISO27001, SOC 2, Security Consultant.

The Opportunity Are you a proactive IT professional looking to move beyond basic support and into digital transformation ? We are representing a premier regional Professional Services firm (130+ users) seeking a versatile IT Assistant to join their established team. This is a newly developed role designed for someone who enjoys a hybrid of high-quality technical support and cutting-edge project work, including AI adoption, PowerBI, and API integrations. The Role Working across the firm s regional office network, you will be a visible, "hands-on" presence. You will support a high-performing user base of consultants and partners while working closely with the IT Director to modernize the firm s technological footprint. Key Responsibilities: Technical Support: Deliver rapid-response hardware and software troubleshooting for a demanding, deadline-driven environment. Digital Innovation: Assist in the roll-out of AI solutions and help build PowerBI reports to unlock the value of the firm's data sets. System Integration: Become an "Advanced Administrator" in industry-specific software and explore API usage to build seamless system integrations. Training & Education: Lead IT inductions for new joiners and conduct small-group workshops on maximizing Microsoft 365 functionality. Security & Compliance: Maintain the firm s Cyber Essentials accreditation and develop "How-To" resources for the company intranet. The Ideal Candidate This role requires a unique blend of technical curiosity and "people skills." You must be comfortable translating complex tech into sensible solutions for non-technical staff. Background: Experience in a structured IT Support environment (Accountancy, Insurance, or similar Professional Services experience is highly desirable). Tech Stack: Strong proficiency in Microsoft 365 and hardware setups. A proactive interest in data visualization (PowerBI) or automation is a significant advantage. Character: A "can-do" attitude with the resilience to maintain composure and a sense of humour in a face-paced, high-pressure environment. Mobility: Due to the multi-site nature of the firm, you must have a full driving licence and access to your own vehicle for regular travel between regional sites.

GC144: IT Project Manager Location: Fairford Salary: £55,000 pa Overview: First Military Recruitment are currently seeking an IT Project Manager on behalf of our client. We strongly encourage applications from ex-military personnel; however, all candidates will be considered. The successful candidate will help shape and deliver our client s vision and strategy through robust financial and technical planning. Strategic Contribution: Shape and deliver the Company s vision and strategy through robust financial and technological planning. Capability: Build and maintain first-class Finance and IT capabilities that support our client and their associated entities. Financial Leadership: Direct and manage the Company s finances, including budgeting, forecasting, and stewardship of assets. Reporting & Insight: Develop and sustain accurate and timely financial, operational and KPI reporting, supporting decision-making across the business. IT Systems & Software: Oversee the selection, implementation, and lifecycle management of core business systems and software, ensuring they are fit-for-purpose, secure, and deliver value. Cybersecurity & Data Integrity: Protect the organisation s digital assets and data through appropriate governance, controls, and compliance measures. Operational Environment: Create a business and IT environment that protects and optimises the Company s assets financial, physical, and digital. People & Culture: Support the development of a corporate culture and value set that empowers and protects employees and volunteers. Stakeholder Engagement: Foster effective communication and collaboration with internal and external customers, suppliers, and partners. Team Development: Recruit, support, develop, and manage the performance of a high-performing Finance & IT team. Continuous Improvement: Demonstrate, confirm, and review Finance and IT tasks, processes, and deliverables to drive efficiency and innovation. Responsibilities: Leading on the design and implementation of the Company IT and Comms planning, including for Business Continuity. Project Managing all Company and event IT projects including feasibility assessments, system updates, upgrades, risk management, laydown plans and contingency plans. Project manage the IT infrastructure installation of their events. Developing and implementing IT policy and best practice guides for the organisation. Overseeing the training for new and existing staff and, if required, volunteers on systems and software. Ensuring software licensing laws are followed and in place. Lead on GDPR Policy and Practices for the Group. Cybersecurity: Conducting regular system audits and checks on network and data security, ensuring backup procedures are adequate, organising regular penetration testing and following up on recommended actions. Identifying, proposing, and delivering on opportunities to improve and update software and systems. Designing and delivering, in conjunction with the HR Manager, training programs and workshops for staff and volunteers. Lead on appropriate usage of AI within the business. Manage the external stakeholder relationship with all IT providers including Allow Me. Management of IP Telephony. Lead a team including volunteers, employees and suppliers and consultants to plan and deliver the event infrastructure. Responsible for the Infrastructure Continual Improvement Process within IT&C. Competencies: Education: A Level or equivalent standard of education (desirable). Knowledge: Experience working in IT operations. Experience in Cisco configuration (or alternative). Excellent project management skills and strong ability to prioritize. Strong critical thinking and decision-making skills. Experience leading and managing event/greenfield site IT projects. Stakeholder management. IT infrastructure and operations best practices including security, network and systems administration, databases and data storage systems, and phone systems. Skills: Leadership and Management (essential) Verbal communication (essential) Organisation and time management (essential) Ability to work under pressure and to tight deadlines (essential) Numerate and literate with attention to detail (essential) Relationship management (essential) Negotiation skills (essential) Qualities: Trust Safety Innovation Excellence Team Spirit GC144: IT Project Manager Location: Fairford Salary: £55,000 pa

Chief Product & Technology Officer Salary: Competitive Location: Hybrid with 2 to 3 days in the London Office and Onsite with partners Contract: Permanent As the rail industry's independent safety, standards and research body the Rail Safety and Standards Board (RSSB) plays a unique role in shaping the future of Great Britain's railway. We sit at the heart of a complex national system, bringing together operators, infrastructure owners, suppliers and government using evidence, insight, digital products and standards to help the industry operate more safely, efficiently and sustainably. With a new Business Plan launching this April and the rail industry experiencing reform and rapid change in technology and data we are poised for our next exciting phase of evolution. We are now seeking a Chief Product & Technology Officer (CPTO) to join the Executive Committee and lead this next chapter shaping how RSSB uses data, technology and product innovation to deliver greater impact, deeper collaboration and lasting value for our members and across the whole rail ecosystem. About the role This is a rare and exciting role for a leader who can combine strategic vision, product thinking, technical depth and the ability to unite a complex ecosystem around shared benefit. The CPTO is a strategic leadership role at the heart of RSSB's mission. Reporting directly to the CEO and serving as a full member of the Executive Committee, you will shape how RSSB uses its data, insight and technology capabilities to deliver high value, widely adopted digital products and services for the rail industry. As CPTO, you will lead the evolution of RSSB's entire product and technology portfolio. You will set a clear strategy that integrates product development, data platforms and digital services into a coherent offer that provides practical, evidence based value across the network. You will ensure that our products are user centred, interoperable and underpinned by modern engineering practices and robust governance. Collaboration and influence are critical. You will co design solutions with members, navigate differing priorities, and build consensus around shared outcomes. You will guide product adoption and real world use, helping members integrate solutions into their operations to support better decision making, improved safety and enhanced performance. Internally, you will oversee RSSB's digital and technology operations, ensuring that platforms are secure, resilient and well governed, and that the organisation makes responsible use of emerging technologies, including AI, in the context of a safety critical sector. You will lead a multidisciplinary team of around 50 colleagues across digital and technology disciplines, fostering a modern, high performing and inclusive culture. As an Executive Committee member, you will also contribute to the broader corporate leadership of RSSB, shaping organisational strategy, culture and long term direction. What you will bring/Essential Criteria Successful candidates will be able to demonstrate: Strategic Vision and Outcomes : Proven experience of setting a clear digital or technology vision and translate it into measurable outcomes in complex, multi-stakeholder environments. Product, Platform and Integration : Experience leading the development of digital products or platforms, including co-design with users, integration across systems, and driving adoption at scale. Technology Operations and Assurance : Sufficient depth of technology leadership to take accountability for resilient, secure and well-governed digital operations, including cyber security, architecture and service continuity. Data-Informed Innovation : Strong understanding of how data, analytics and emerging technologies (including AI) can be used to improve insight, decision-making and risk management, working effectively with specialist teams. Commercial Judgement and Value : Demonstrated ability to balance innovation with affordability, manage budgets and ensure digital investment delivers clear, measurable value for members or users. Influence, Collaboration & Sector Engagement : Credibility and skill in engaging senior leaders, aligning diverse interests and delivering shared outcomes across complex organisational or sector ecosystems. RSSB is open to considering flexible working arrangements. As part of the disability confident scheme, RSSB guarantees to interview all disabled applicants who meet the minimum criteria. This campaign is being supported by our advising consultants, GatenbySanderson. To arrange an informal confidential discussion please contact: For further details and to apply, please click on Apply: Closing Date: Midday, 27th March 2026

Are you passionate about cybersecurity and want to help safeguard critical Operational Technology (OT) environments? We're looking for an experienced Operational Technology (OT) Security Consultant to join a dynamic and forward-thinking team dedicated to delivering cutting-edge OT security solutions. Operational Technology (OT) Security Consultant Salary: 80,000 - 100,000 base plus benefits, perks, healthcare options and bonus! Location: Hybrid (Office, Client Sites, and Home, UK-Wide) Client: Global IT Consultancy NOTE: Security Clearance Required - Active SC Clearance Are you passionate about cybersecurity and want to help safeguard critical Operational Technology (OT) environments? We're looking for an experienced Operational Technology (OT) Security Consultant to join a dynamic and forward-thinking team dedicated to delivering cutting-edge OT security solutions. This is a fantastic opportunity to work across industries like energy, manufacturing, pharmaceuticals, and more, making a tangible impact by helping clients reduce risks and enhance their security posture. Your Role: As an OT Security Consultant, you will play a key role in securing and optimizing OT environments for our clients. You will: Conduct site surveys (including offshore locations) to assess systems in OT environments. Lead assessments and risk evaluations to ensure systems comply with industry standards and best practices. Develop and implement OT security policies, procedures, and frameworks to protect critical assets. Perform audits and gap analyses to ensure ongoing security and compliance. Provide expert guidance to clients on OT security challenges, acting as a trusted advisor. Develop security artefacts and deliver OT security training to clients. Your Skills & Experience: We're seeking professionals with a strong background in OT security and a passion for improving systems and processes. Ideal candidates will have: Experience working in OT environments across industries such as energy, manufacturing, oil & gas, chemicals, or pharmaceuticals. Knowledge of OT-related network architecture, endpoint protection, and security governance. Experience supporting organisations with OT security roadmaps, policies, and best practices. Expertise in leading assessments and audits within OT environments. Understanding of OT security controls and their application in large organisations. If you're a cybersecurity enthusiast who thrives in a collaborative and supportive environment, we want to hear from you! Benefits of Joining Us: Hybrid Working - A flexible blend of office, client site, and remote work. Inclusive Culture - We are committed to building a diverse and welcoming environment where everyone can bring their whole self to work. Wellbeing Support - Access to wellness apps, Mental Health Champions, and a culture that values work-life balance. Professional Development - Opportunities to work with industry experts, develop new skills, and grow in your career. Security Clearance: To be successfully appointed to this role, you will need to obtain Security Check (SC) clearance . You must have resided continuously in the UK for the past 5 years and meet other criteria. If you're ready to take the next step in your career and make a real impact on the security of critical OT systems, apply now!

We have an immediate requirement for a CyberArk Subject Matter Expert to join our team within Cyber Security. The role is fully remote and there are currently 15 team members across the UK. The length of engagement is likely to be 6-12 months minimum and likely extended thereafter. You will need to have current valid SC clearance is also a minimum requirement within his team. The role will require the suitable applicant to be a SME or Principle level, but needs to be an expert in the field as well as being able to present well to the end client.

Senior GRC Consultant Up to £65,000 + Bonus & Benefits Hybrid 1 day per week in the office (Central London) A specialist cyber security consultancy is looking to hire a Senior GRC Consultant to join a growing Governance, Risk and Compliance team. This role offers the opportunity to work across a diverse portfolio of clients including commercial organisations, government, defence and critical infrastructure environments. You will play a key role in helping organisations improve their cyber security posture through advisory work, framework alignment and security maturity assessments. The Role You will work across multiple client engagements supporting organisations with governance, risk and compliance activities. This will involve advising on security frameworks, delivering maturity assessments and supporting organisations as they align to recognised cyber security standards. Key responsibilities include: Supporting client engagements focused on governance, risk and compliance Advising organisations on cyber security frameworks and standards Supporting and delivering ISO 27001 aligned engagements Conducting cyber security maturity assessments Supporting clients with security governance, resilience and business continuity initiatives Working closely with senior consultants and principals across multiple projects Skills & Experience Experience working in cyber security governance, risk and compliance Experience working with frameworks such as ISO 27001 and/or NIST CSF Experience working in a cyber security consultancy or advisory environment is highly desirable Experience supporting security maturity assessments or compliance programmes Strong stakeholder engagement and client-facing communication skills Desirable Certifications ISO 27001 Lead Auditor or Lead Implementer CISSP CISM What This Role Offers Exposure to a wide range of industries including commercial, defence, government and critical infrastructure The opportunity to develop consulting skills across multiple cyber security frameworks A collaborative consulting environment with experienced security professionals Clear opportunities for professional development and progression within the GRC consulting space This role is well suited to someone looking to take the next step in their cyber security consulting career and gain exposure to a broad range of governance, risk and compliance engagements.

Job title: Cyber Incident Response Consultant (Contractor) Contract: Six Months (possibility of extension) Location: Basingstoke (X3 days onsite; X2 working remote) Role Overview We are seeking an experienced Cyber Incident Response Consultant to support our cybersecurity function on a contract basis. The consultant will be responsible for collaborating with organisation stakeholders in developing, updating, and enhancing a comprehensive set of tactical and operational cyber incident response documents, including the Incident Response Plan, Communication Plan, Incident Response Playbooks, and Containment & Eradication procedures. This engagement is focused on delivering high-quality, actionable documentation and strengthening the organisation's overall incident response capability. The consultant will work closely with internal stakeholders to ensure alignment with business operations, technology, and regulatory requirements. IR Technical Capability Maturity Assessment Evaluate and report on the organisation's technical capabilities and maturity against IR Detection & Analysis, Containment, Eradication, & Recovery domains using industry maturity model. Develop & Maintain Incident Response Documentation Produce and refine the organisation's Incident Response Plan (IRP). Build clear and consistent internal and external incident communication workflows. Develop detailed incident response playbooks, such as ransomware, business email compromise (BEC), data breach, insider threat, malware outbreak, DDoS attack, cloud service compromise. (Final scenarios to be agreed during discovery.) Strengthen Organisational Incident Preparedness Conduct discovery sessions with technical and non-technical stakeholders. Review existing security processes, tools, and architecture to ensure documentation reflects current environments. Support tabletop exercise planning and incorporate lessons learned into documentation. Provide expert guidance and recommendations to improve cyber readiness. Build Containment & Eradication Frameworks Develop clear, structured containment strategies for different incident types. Create eradication and recovery guidance aligned with operational capabilities. Ensure all procedures support legal, compliance, and evidence-preservation requirements. Align with Standards & Regulatory Expectations Ensure all documentation aligns with CIS Controls. Ensure materials support relevant legal and regulatory expectations as appropriate for the organisation. Collaborate Across the Business Work closely with SOC staff, IT teams, legal, risk, compliance, communications, and senior leadership. Convert technical details and threat intelligence into clear, actionable steps appropriate for operational use. Required Experience & Skills Proven experience (typically 5+ years) in incident response, SOC operations, cybersecurity consulting, or GRC. Demonstrated ability to produce high-quality IR documentation and playbooks for medium-to-large organisations. Deep understanding of modern threat actors, attack methodologies, and incident response lifecycle. Experience across cloud (Azure, AWS) and on-premise enterprise environments. Exceptional written communication skills and ability to deliver polished, structured documentation. Ability to work independently, meet deadlines, and drive deliverables with minimal supervision. Preferred Qualifications and Experience GCIH, GCFA, CISSP, or equivalent security certifications. Experience working within regulated sectors (financial services, healthcare, government, critical infrastructure). Prior participation in or leadership of real-world cyber incident response activities. Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture. Why This Engagement Matters The Cyber Incident Response Preparation Consultant plays a crucial role in elevating the organisation's cyber maturity and readiness. Through the development of robust documentation and playbooks, the consultant will help ensure the organisation can respond rapidly, effectively, and consistently to modern cyber threats.

Senior Security & Technology Consultants Location: Warton, UK (On-Site - 5 Days per Week) Clearance Required: Valid MOD DV (Mandatory) Engagement Type: Contract (Inside IR35) Day Rate: 500 - 900 per day (dependent on role and experience) Overview We are seeking experienced Security & Technology Professionals to support critical programmes in a secure defence environment. These roles span architecture, assurance, operations, and technical delivery disciplines and require individuals who can operate effectively within highly regulated, mission-critical settings. All positions are based full-time on-site in Warton (5 days per week) and require candidates to hold a current and valid MOD DV clearance at the time of application. Scope of Opportunities We are hiring across multiple security and technology disciplines, including: Security Architects Security Assurers Information Security Consultants SOC Analysts OT Architects Cross Domain SMEs IT Administrators Service Managers Product Security Managers Penetration Testing Specialists Technical Project / Programme Managers Key Responsibilities (Role Dependent) Security Architecture & Design Define and review secure architectures across enterprise IT and OT environments. Act as technical authority for secure system design and implementation. Lead threat modelling, risk assessments, and security design reviews. Ensure compliance with defence security standards and secure-by-design principles. Security Assurance & Governance Deliver independent security assurance across programmes. Support accreditation activities and compliance reviews. Develop and maintain security documentation, standards, and risk registers. Security Operations & SOC Monitor, analyse, and respond to security events and incidents. Strengthen detection, response, and resilience capabilities. Support vulnerability management and remediation activities. OT & Cross Domain Security Provide expertise in Operational Technology environments. Design and assure secure cross-domain solutions and data transfer mechanisms. Evaluate network segregation and high-assurance controls. Penetration Testing & Vulnerability Management Conduct or oversee penetration testing engagements. Assess vulnerabilities and validate remediation strategies. Support red/blue team activities where required. Service & Product Security Embed security into live service management processes. Act as Product Security lead across development lifecycles. Integrate DevSecOps controls and secure SDLC practices. Technical Delivery & Programme Support Manage security-focused technical workstreams. Provide governance reporting to senior stakeholders. Translate technical risks into business impact and mitigation plans. Essential Requirements Valid and transferable MOD DV clearance (mandatory). Availability to work on-site in Warton, 5 days per week. Strong background in one or more of the listed security disciplines. Experience working in secure, defence, or highly regulated environments. Relevant certifications (e.g., CISSP, CISM, TOGAF, CREST, cloud certifications).

Job Description: Cybersecurity Consultant (Cloud, Data, AI & Microsoft Security) Department: Information Security - (Data & AI team) Duration: Duration 4 months Location : London (Hybrid) Role Overview We are looking for a highly skilled Cybersecurity Consultant with strong expertise across Microsoft Security , Cloud Security , Data Protection , and emerging AI/LLM security and governance . The role focuses on identifying security gaps, defining secure-by-design patterns, supporting product and platform teams, and strengthening enterprise security posture-particularly across Microsoft 365, Azure, data platforms, and AI-enabled solutions. You will play a key role in threat modelling, risk assessments, guardrail design & implementation, and delivering practical security guidance for engineering, data, and application/product teams. Rationale/deliverables: Contribute to the Operating Securely program by providing information security advice and support to product and engineering teams and validate that security controls are in place and issues / vulnerabilities remediated Perform technical risk assessments for proposed new and changing systems, including products that are designed and built by the client as well as the secure deployment and configuration of business applications that report on and analyse data, e.g. Power BI Perform technical risk assessments and advise product and engineering teams on the secure implementation of AI based solutions, e.g. autonomous AI agents, LLMs, LRMs, and AI-enhanced productivity systems Support the roll-out of the new AI information security control framework Support the Data governance team Key Responsibilities Perform threat modelling (STRIDE), guardrail definition, and security posture assessments across applications, data platforms, APIs, cloud services, and SaaS ecosystems. Identify security control gaps , especially around data pipelines, repositories, network security, API security, middleware, and cloud architectures. Conduct technical security risk assessments , produce risk statements/reports, and support teams with remediation and mitigation strategies. Develop security controls, standards, and documentation for product teams, platform engineering, and data services (e.g., pipelines, warehouses, data sources). Provide expert guidance on Microsoft Security Stack , including: Microsoft Defender (XDR, MDE, MDI) Microsoft Entra ID (SSO, MFA, Conditional Access, PIM) Microsoft Purview (DLP, Information Protection, Data Governance, DSPM) Microsoft 365 Copilot & GitHub Copilot security enablement Partner with data governance, platform engineering, DevOps, and architecture teams to embed secure-by-design Support secure adoption of cloud-native technologies (Azure), DevSecOps pipelines, GitOps practices, and GitHub Advanced Security (GHAS). Oversee security controls for cryptography, key management, secrets management, HSM/Key Vault configurations , and cloud network security (firewalls, proxies, segmentation). Drive secure integration of AI/LLM tools , including Copilot, Azure OpenAI, and agentic systems-ensuring proper guardrails, risk assessments, and data protection. Participate in cloud monitoring, detection & incident response , working with SIEM/XDR tooling and platform/application teams. Collaborate closely with data governance to ensure appropriate classification, labeling, access control, and lifecycle management of sensitive data. Essential Skills & Experience Strong understanding of security frameworks (CIS), MITRE ATT&CK, and AI/LLM security frameworks. Hands-on experience with Azure cloud security , DevSecOps, and cloud-native architectures. Expertise with Microsoft 365 Security and Azure Security Strong knowledge of IAM (SSO, MFA, Conditional Access, AAD/Entra, PIM). Experience delivering data security , DLP, DSPM, and governance controls using Microsoft Purview. Practically skilled in AI security , including risk identification, secure integration patterns, and AI governance models. Experience with cloud monitoring, incident response, SIEM/XDR operations. Ability to translate complex security risks into clear business language and actionable recommendations. Desirable Skills Experience with secure data platforms (Azure Data Factory, Data Lake, SQL, or similar). Knowledge of API, container security, Kubernetes, and infrastructure-as-code security. Familiarity with PCI, GDPR, data privacy requirements, and compliance frameworks. Exposure to adaptive protection, insider risk management, and automated DLP frameworks. Personal Attributes Strong communicator able to work across engineering, data, product, and business teams. Highly analytical with a structured approach to problem-solving. Comfortable in fast-paced environments undergoing modernization and AI adoption. Ability to influence teams and drive secure-by-design culture across the organization

Senior Design Engineer needed Are you looking for a new Design Challenge? Do you want to work on new cutting-edge aerospace technologies for Gas Turbines? If YES Belcan may just have the role for you! Belcan are looking for an experienced Senior Design Engineer, based at its Derby or Glasgow Office and with Hybrid working. The Senior Design Engineer will carry out a variety of tasks associated with the design of a sub-system or component within the Gas Turbine for new technologically in advanced Gas Turbine engines. This can range from concept design through to detail design and support of design release. It is expected that the Senior Design Engineer will follow a gates review process, dealing with all associated stakeholders to understand product requirements and producing a solution which meets these requirements. Required Qualifications and Experience: Qualification in an Aeronautical, Mechanical Engineering or related degree or substantial Gas Turbine Design experience related experience Strong technical capabilities in either one or more of the following capabilities: sub-system design, component design. Experience in a similar role. Comprehensive tool set knowledge, including but not limited to: Siemens NX, Teamcenter, Microsoft office applications etc. Experienced in working within flexible teams. Able to discuss and communicate on highly technical aspects, both internally and with Belcan clients. If you have done similar Gas Turbine Design work either the Aerospace or Power Generation industries and have Siemens NX experience, contact us now! Why Join Belcan? You will join a collaborative company that puts people at the heart of everything we do. As well as career development and a friendly and collaborative team, you will benefit from: Company Pension scheme Generous holiday allowance Private Medical Insurance Car scheme Hybrid and flexible working policies. Opportunity to be selected for Belcan's prestigious Eagle Award. and much more. Application Process: Ready to take the next step in your career as a Design Engineer? Apply now and become a part of Belcan's innovative and dynamic team! About UsBelcan, a Cognizant company, is a global force in technical services and engineering consultancy. Our legacy is built on delivering high-quality outputs and our unwavering commitment to developing the next generation of technical consultants and specialist engineers. Our expertise is vast, spanning across various engineering industries including aerospace, defence, marine, nuclear, automotive, and cyber security. This vacancy is being advertised by Belcan.

Role: Cyber Security Consultant Location: Remote/Hybrid (Mix of home working, Gloucestershire office and client site visits) Salary: £45,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance We are looking for an experienced Cyber Security Consultant to join a well-established and growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base including government and public sector organisations. This is a role for someone who can hit the ground running. You'll be joining a team of around 13-15 consultants and are expected to operate independently from day one. No two weeks look the same; work pattern is flexible and dictated by client demand, with a genuine mix of home working, office time in Gloucestershire, and client site visits as required. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST - must be willing to pursue DV Clearance Active CSTM or CCT certification is an ABSOLUTE MUST Proven hands-on penetration testing experience - must be able to hit the ground running Strong knowledge of testing frameworks including OWASP Knowledge of Cyber Security standards and policies such as ISO 27001, CIS, and PCI DSS. Experience across Linux and Windows environments Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Benefits: £45,000 + Expenses + Overnight Bonus 31 Days Annual Leave (20 + 8 BH + 3 Xmas Shutdown) Paid Charity Day Up to 5 unpaid annual leave days per year Company pension scheme Role: Cyber Security Consultant Location: Remote/Hybrid (Mix of home working, Gloucestershire office and client site visits) Salary: £45,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.

Senior Infrastructure & Cloud Consultant - 50,000/ 55,000 - Scunthorpe Principal IT are delighted to be partnering with a well-established and growing Managed Service Provider in the recruitment of a Senior Infrastructure & Cloud Consultant . This is a senior, client-facing consultancy position suited to an experienced Microsoft cloud and infrastructure specialist who thrives in complex project environments. The role will see you leading multi-site enterprise deployments, acting as a trusted technical advisor to senior stakeholders, and shaping long-term cloud strategy for key customers. Our client delivers high-quality Microsoft-led infrastructure solutions and is seeking someone who can operate at architectural level while maintaining hands-on technical capability. The Role As a Senior Infrastructure & Cloud Consultant, you will: Lead the technical delivery of complex, multi-phase Microsoft infrastructure and Azure cloud projects. Act as the primary technical advisor for enterprise clients. Design, architect, and implement secure, scalable solutions aligned to business objectives. Provide escalation support for high-level technical challenges. Work closely with Project Managers to ensure projects are delivered on time and within budget. Engage with C-suite stakeholders and translate technical solutions into business outcomes. Mentor junior consultants and contribute to continuous improvement initiatives. You will play a pivotal role in shaping the technical direction of projects and influencing strategic decisions across client environments. Key Responsibilities Technical Delivery & Architecture Design and deploy Microsoft-based solutions across Microsoft 365, Azure, Windows Server, networking, and security. Lead multi-site deployments supporting 100+ user environments. Conduct infrastructure assessments and site surveys. Own solution architecture and provide alternative design approaches where required. Ensure security, scalability, and best practice compliance. Stakeholder Engagement Engage with senior client stakeholders including C-suite. Provide strategic guidance and technical recommendations. Communicate risks, project milestones, and business impact clearly. Project Governance Collaborate with IT Project Managers on resource planning and delivery. Produce and maintain project documentation including: Work plans Risk assessments Dependencies Downtime planning Technical designs Push back where deliverables are not technically viable. Continuous Improvement Identify automation and tooling opportunities. Improve delivery efficiency within Professional Services. Contribute to product portfolio development. Support knowledge sharing and mentoring initiatives. Measurable Outcomes On-time project delivery Delivery within agreed budgets High client satisfaction scores Seamless, high-quality implementations Strong documentation standards Contribution to process improvement and revenue initiatives Required Experience 5+ years' experience in an MSP or IT consultancy environment Proven experience delivering complex Microsoft cloud and infrastructure projects Strong background in solution architecture and enterprise environments Experience working directly with senior stakeholders Commercial awareness and client-facing consultancy skills Technical Skills & Certifications Strong expertise across: Microsoft 365 Azure Infrastructure Windows Server Networking & Security best practices Enterprise cloud architecture Desirable / Expected Certifications (or equivalent experience): MD-102 (Endpoint Administrator) MS-102 (Microsoft 365 Administrator) SC-100 (Cybersecurity Architect) SC-300 (Identity & Access Administrator) AZ-104 (Azure Administrator) AZ-305 (Azure Infrastructure Solutions Architect) Essential Requirements Right to work in the UK Full UK Driving License Ability to travel to client sites when required Who This Role Would Suit This opportunity would suit a: Senior Infrastructure Engineer stepping into a strategic consultancy role Azure Architect within an MSP seeking greater ownership Technical Lead who enjoys stakeholder engagement and architectural design About the Client Our client is a respected and growing MSP with a strong reputation for delivering high-quality Microsoft-led solutions. They pride themselves on technical excellence, professional standards, and long-term client partnerships. They offer a collaborative environment, clear progression opportunities, and exposure to complex enterprise-level projects. If you would like a confidential discussion regarding this opportunity, please contact Principal IT. INDGH

Cyber Security Consultant / Security Assurance SME Summer-Browning Associates is currently supporting our central government client, who is seeking a Cyber Security Consultant for an initial 6 assignments with the option to extend. Location: London / Milton Keynes / Hybrid / Remote The ideal candidate will have an active Security clearance and a strong background in Cyber Security Assurance within a high-threat government environment. Skills and experience. Experience in producing GovAssure and Secure-By-Design assessments, including Risk Assessment Papers, Risk Treatment Plans, Risk Business Cases, and Security Management Plans. Knowledge and experience with security architecture and Security Information and Event Management (SIEM) tools, such as Splunk, Defender, Sentinel, ELK, and Tenable Threat Modelling System solutions. Extensive understanding of cybersecurity threats, attack vectors, vulnerabilities, and security controls. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework, ISO 27001, NIST, COBIT, as well as SABSA and TOGAF. Experience in risk and threat modelling within high-threat government environments. Preferred Qualifications: Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable.