Cybersecurity Consultant / CHECK Team Lead Pentester Specialism: OT & Hardware Security Testing This is a standout opportunity to join a rapidly scaling UK technology business operating at the sharp edge of cybersecurity innovation. I am looking for an experienced Cybersecurity Consultant to deliver high-impact security testing across complex environments, including OT and hardware. You ll be responsible for emulating real-world attack scenarios, identifying weaknesses, and clearly articulating risk and remediation to clients. The ideal candidate will bring several years of practical penetration testing experience and a genuine enthusiasm for the cybersecurity field. To be successful in this Cyber Security Consultant role, you should be able to demonstrate the following: Active SC Security Clearance Due to the sensitive nature of client engagements, current SC clearance is essential. CHECK / CREST Certifications You must hold CTL or CSTL status. CRT (CREST Registered Tester) or QTSM certification is highly desirable. OT & Hardware Testing Experience Practical exposure to operational technology and hardware security testing is strongly preferred. Proven Industry Experience At least five years experience within cybersecurity, with a solid grounding in penetration testing and security assessment methodologies. Security Tooling Expertise Comfortable using a broad range of industry-standard tools, including both commercial and open-source solutions. Linux & Virtualisation Knowledge Strong working knowledge of Linux environments and hands-on experience with virtualisation platforms. Strong Technical Analysis Skills Able to methodically diagnose, validate, and articulate security weaknesses across complex systems. High Standards & Attention to Detail A meticulous approach to testing and reporting, with a focus on accuracy, clarity, and quality. Clear Communication Confident in communicating technical findings to both technical and non-technical stakeholders, verbally and in written reports. To confirm, this is a fully remote position If interested, please do apply & reach out and I'll be in touch with you ASAP!
10/03/2026
Full time
Cybersecurity Consultant / CHECK Team Lead Pentester Specialism: OT & Hardware Security Testing This is a standout opportunity to join a rapidly scaling UK technology business operating at the sharp edge of cybersecurity innovation. I am looking for an experienced Cybersecurity Consultant to deliver high-impact security testing across complex environments, including OT and hardware. You ll be responsible for emulating real-world attack scenarios, identifying weaknesses, and clearly articulating risk and remediation to clients. The ideal candidate will bring several years of practical penetration testing experience and a genuine enthusiasm for the cybersecurity field. To be successful in this Cyber Security Consultant role, you should be able to demonstrate the following: Active SC Security Clearance Due to the sensitive nature of client engagements, current SC clearance is essential. CHECK / CREST Certifications You must hold CTL or CSTL status. CRT (CREST Registered Tester) or QTSM certification is highly desirable. OT & Hardware Testing Experience Practical exposure to operational technology and hardware security testing is strongly preferred. Proven Industry Experience At least five years experience within cybersecurity, with a solid grounding in penetration testing and security assessment methodologies. Security Tooling Expertise Comfortable using a broad range of industry-standard tools, including both commercial and open-source solutions. Linux & Virtualisation Knowledge Strong working knowledge of Linux environments and hands-on experience with virtualisation platforms. Strong Technical Analysis Skills Able to methodically diagnose, validate, and articulate security weaknesses across complex systems. High Standards & Attention to Detail A meticulous approach to testing and reporting, with a focus on accuracy, clarity, and quality. Clear Communication Confident in communicating technical findings to both technical and non-technical stakeholders, verbally and in written reports. To confirm, this is a fully remote position If interested, please do apply & reach out and I'll be in touch with you ASAP!
Role: Cyber Security Consultant Location: Remote w/UK Based Client Visits Salary: £50,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance We are looking for an experienced Cyber Security Consultant to join a well-established and growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base including government and public sector organisations. This is a role for someone who can hit the ground running. You'll be joining a team of around 13-15 consultants and are expected to operate independently from day one. No two weeks look the same; work pattern is flexible and dictated by client demand, with a genuine mix of remote working and UK client visits. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST - must be willing to pursue DV Clearance Industry certifications such as Check Team Member or Crest Team Member Proven hands-on penetration testing experience - must be able to hit the ground running Strong knowledge of testing frameworks including OWASP Knowledge of Cyber Security standards and policies such as ISO 27001, CIS, and PCI DSS. Experience across Linux and Windows environments Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Benefits: £45,000 - £50,000 + Expenses + Overnight Bonus 31 Days Annual Leave (20 + 8 BH + 3 Xmas Shutdown) Paid Charity Day Up to 5 unpaid annual leave days per year Company pension scheme Role: Cyber Security Consultant Location: Remote w/UK Based Client Visits Salary: £50,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
09/03/2026
Full time
Role: Cyber Security Consultant Location: Remote w/UK Based Client Visits Salary: £50,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance We are looking for an experienced Cyber Security Consultant to join a well-established and growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base including government and public sector organisations. This is a role for someone who can hit the ground running. You'll be joining a team of around 13-15 consultants and are expected to operate independently from day one. No two weeks look the same; work pattern is flexible and dictated by client demand, with a genuine mix of remote working and UK client visits. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST - must be willing to pursue DV Clearance Industry certifications such as Check Team Member or Crest Team Member Proven hands-on penetration testing experience - must be able to hit the ground running Strong knowledge of testing frameworks including OWASP Knowledge of Cyber Security standards and policies such as ISO 27001, CIS, and PCI DSS. Experience across Linux and Windows environments Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Benefits: £45,000 - £50,000 + Expenses + Overnight Bonus 31 Days Annual Leave (20 + 8 BH + 3 Xmas Shutdown) Paid Charity Day Up to 5 unpaid annual leave days per year Company pension scheme Role: Cyber Security Consultant Location: Remote w/UK Based Client Visits Salary: £50,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
IAM Delivery Consultant - Cyber Security London/Manchester/Woking (Hybrid) £80,000 - £90,000 + bonus + benefits A leading cyber security consultancy is looking for an Identity & Access Management (IAM) Delivery Consultant to join its growing Digital Identity team. You'll work with major UK organisations to design and deliver modern identity and access management solutions that support secure digital transformation. The Role Gather and define IAM business and technical requirements Design and deliver IAM solutions and architectures Support identity transformation programmes Advise clients on IAM strategy, governance and operating models Contribute to the delivery of enterprise IAM projects Experience in one or more of the following: IAM consulting or solution delivery IAM architecture or operating model design Hands-on experience with tools such as: Microsoft Entra/Azure AD, Okta, Ping Identity, SailPoint, Saviynt, CyberArk, and BeyondTrust. Key Areas Access Management (AM) Identity Governance & Administration (IGA) Privileged Access Management (PAM) Additional Info Hybrid working model (home, office, client site) SC clearance eligibility required (5 years UK residency) A great opportunity to join a growing cyber security consulting practice working on high-impact identity programmes.
09/03/2026
Full time
IAM Delivery Consultant - Cyber Security London/Manchester/Woking (Hybrid) £80,000 - £90,000 + bonus + benefits A leading cyber security consultancy is looking for an Identity & Access Management (IAM) Delivery Consultant to join its growing Digital Identity team. You'll work with major UK organisations to design and deliver modern identity and access management solutions that support secure digital transformation. The Role Gather and define IAM business and technical requirements Design and deliver IAM solutions and architectures Support identity transformation programmes Advise clients on IAM strategy, governance and operating models Contribute to the delivery of enterprise IAM projects Experience in one or more of the following: IAM consulting or solution delivery IAM architecture or operating model design Hands-on experience with tools such as: Microsoft Entra/Azure AD, Okta, Ping Identity, SailPoint, Saviynt, CyberArk, and BeyondTrust. Key Areas Access Management (AM) Identity Governance & Administration (IGA) Privileged Access Management (PAM) Additional Info Hybrid working model (home, office, client site) SC clearance eligibility required (5 years UK residency) A great opportunity to join a growing cyber security consulting practice working on high-impact identity programmes.
Are you passionate about cybersecurity and want to help safeguard critical Operational Technology (OT) environments? We're looking for an experienced Operational Technology (OT) Security Consultant to join a dynamic and forward-thinking team dedicated to delivering cutting-edge OT security solutions. Operational Technology (OT) Security Consultant Salary: 80,000 - 100,000 base plus benefits, perks, healthcare options and bonus! Location: Hybrid (Office, Client Sites, and Home, UK-Wide) Client: Global IT Consultancy NOTE: Security Clearance Required - Active SC Clearance Are you passionate about cybersecurity and want to help safeguard critical Operational Technology (OT) environments? We're looking for an experienced Operational Technology (OT) Security Consultant to join a dynamic and forward-thinking team dedicated to delivering cutting-edge OT security solutions. This is a fantastic opportunity to work across industries like energy, manufacturing, pharmaceuticals, and more, making a tangible impact by helping clients reduce risks and enhance their security posture. Your Role: As an OT Security Consultant, you will play a key role in securing and optimizing OT environments for our clients. You will: Conduct site surveys (including offshore locations) to assess systems in OT environments. Lead assessments and risk evaluations to ensure systems comply with industry standards and best practices. Develop and implement OT security policies, procedures, and frameworks to protect critical assets. Perform audits and gap analyses to ensure ongoing security and compliance. Provide expert guidance to clients on OT security challenges, acting as a trusted advisor. Develop security artefacts and deliver OT security training to clients. Your Skills & Experience: We're seeking professionals with a strong background in OT security and a passion for improving systems and processes. Ideal candidates will have: Experience working in OT environments across industries such as energy, manufacturing, oil & gas, chemicals, or pharmaceuticals. Knowledge of OT-related network architecture, endpoint protection, and security governance. Experience supporting organisations with OT security roadmaps, policies, and best practices. Expertise in leading assessments and audits within OT environments. Understanding of OT security controls and their application in large organisations. If you're a cybersecurity enthusiast who thrives in a collaborative and supportive environment, we want to hear from you! Benefits of Joining Us: Hybrid Working - A flexible blend of office, client site, and remote work. Inclusive Culture - We are committed to building a diverse and welcoming environment where everyone can bring their whole self to work. Wellbeing Support - Access to wellness apps, Mental Health Champions, and a culture that values work-life balance. Professional Development - Opportunities to work with industry experts, develop new skills, and grow in your career. Security Clearance: To be successfully appointed to this role, you will need to obtain Security Check (SC) clearance . You must have resided continuously in the UK for the past 5 years and meet other criteria. If you're ready to take the next step in your career and make a real impact on the security of critical OT systems, apply now!
07/03/2026
Full time
Are you passionate about cybersecurity and want to help safeguard critical Operational Technology (OT) environments? We're looking for an experienced Operational Technology (OT) Security Consultant to join a dynamic and forward-thinking team dedicated to delivering cutting-edge OT security solutions. Operational Technology (OT) Security Consultant Salary: 80,000 - 100,000 base plus benefits, perks, healthcare options and bonus! Location: Hybrid (Office, Client Sites, and Home, UK-Wide) Client: Global IT Consultancy NOTE: Security Clearance Required - Active SC Clearance Are you passionate about cybersecurity and want to help safeguard critical Operational Technology (OT) environments? We're looking for an experienced Operational Technology (OT) Security Consultant to join a dynamic and forward-thinking team dedicated to delivering cutting-edge OT security solutions. This is a fantastic opportunity to work across industries like energy, manufacturing, pharmaceuticals, and more, making a tangible impact by helping clients reduce risks and enhance their security posture. Your Role: As an OT Security Consultant, you will play a key role in securing and optimizing OT environments for our clients. You will: Conduct site surveys (including offshore locations) to assess systems in OT environments. Lead assessments and risk evaluations to ensure systems comply with industry standards and best practices. Develop and implement OT security policies, procedures, and frameworks to protect critical assets. Perform audits and gap analyses to ensure ongoing security and compliance. Provide expert guidance to clients on OT security challenges, acting as a trusted advisor. Develop security artefacts and deliver OT security training to clients. Your Skills & Experience: We're seeking professionals with a strong background in OT security and a passion for improving systems and processes. Ideal candidates will have: Experience working in OT environments across industries such as energy, manufacturing, oil & gas, chemicals, or pharmaceuticals. Knowledge of OT-related network architecture, endpoint protection, and security governance. Experience supporting organisations with OT security roadmaps, policies, and best practices. Expertise in leading assessments and audits within OT environments. Understanding of OT security controls and their application in large organisations. If you're a cybersecurity enthusiast who thrives in a collaborative and supportive environment, we want to hear from you! Benefits of Joining Us: Hybrid Working - A flexible blend of office, client site, and remote work. Inclusive Culture - We are committed to building a diverse and welcoming environment where everyone can bring their whole self to work. Wellbeing Support - Access to wellness apps, Mental Health Champions, and a culture that values work-life balance. Professional Development - Opportunities to work with industry experts, develop new skills, and grow in your career. Security Clearance: To be successfully appointed to this role, you will need to obtain Security Check (SC) clearance . You must have resided continuously in the UK for the past 5 years and meet other criteria. If you're ready to take the next step in your career and make a real impact on the security of critical OT systems, apply now!
We have an immediate requirement for a CyberArk Subject Matter Expert to join our team within Cyber Security. The role is fully remote and there are currently 15 team members across the UK. The length of engagement is likely to be 6-12 months minimum and likely extended thereafter. You will need to have current valid SC clearance is also a minimum requirement within his team. The role will require the suitable applicant to be a SME or Principle level, but needs to be an expert in the field as well as being able to present well to the end client.
06/03/2026
Contractor
We have an immediate requirement for a CyberArk Subject Matter Expert to join our team within Cyber Security. The role is fully remote and there are currently 15 team members across the UK. The length of engagement is likely to be 6-12 months minimum and likely extended thereafter. You will need to have current valid SC clearance is also a minimum requirement within his team. The role will require the suitable applicant to be a SME or Principle level, but needs to be an expert in the field as well as being able to present well to the end client.
Senior GRC Consultant Up to £65,000 + Bonus & Benefits Hybrid 1 day per week in the office (Central London) A specialist cyber security consultancy is looking to hire a Senior GRC Consultant to join a growing Governance, Risk and Compliance team. This role offers the opportunity to work across a diverse portfolio of clients including commercial organisations, government, defence and critical infrastructure environments. You will play a key role in helping organisations improve their cyber security posture through advisory work, framework alignment and security maturity assessments. The Role You will work across multiple client engagements supporting organisations with governance, risk and compliance activities. This will involve advising on security frameworks, delivering maturity assessments and supporting organisations as they align to recognised cyber security standards. Key responsibilities include: Supporting client engagements focused on governance, risk and compliance Advising organisations on cyber security frameworks and standards Supporting and delivering ISO 27001 aligned engagements Conducting cyber security maturity assessments Supporting clients with security governance, resilience and business continuity initiatives Working closely with senior consultants and principals across multiple projects Skills & Experience Experience working in cyber security governance, risk and compliance Experience working with frameworks such as ISO 27001 and/or NIST CSF Experience working in a cyber security consultancy or advisory environment is highly desirable Experience supporting security maturity assessments or compliance programmes Strong stakeholder engagement and client-facing communication skills Desirable Certifications ISO 27001 Lead Auditor or Lead Implementer CISSP CISM What This Role Offers Exposure to a wide range of industries including commercial, defence, government and critical infrastructure The opportunity to develop consulting skills across multiple cyber security frameworks A collaborative consulting environment with experienced security professionals Clear opportunities for professional development and progression within the GRC consulting space This role is well suited to someone looking to take the next step in their cyber security consulting career and gain exposure to a broad range of governance, risk and compliance engagements.
06/03/2026
Full time
Senior GRC Consultant Up to £65,000 + Bonus & Benefits Hybrid 1 day per week in the office (Central London) A specialist cyber security consultancy is looking to hire a Senior GRC Consultant to join a growing Governance, Risk and Compliance team. This role offers the opportunity to work across a diverse portfolio of clients including commercial organisations, government, defence and critical infrastructure environments. You will play a key role in helping organisations improve their cyber security posture through advisory work, framework alignment and security maturity assessments. The Role You will work across multiple client engagements supporting organisations with governance, risk and compliance activities. This will involve advising on security frameworks, delivering maturity assessments and supporting organisations as they align to recognised cyber security standards. Key responsibilities include: Supporting client engagements focused on governance, risk and compliance Advising organisations on cyber security frameworks and standards Supporting and delivering ISO 27001 aligned engagements Conducting cyber security maturity assessments Supporting clients with security governance, resilience and business continuity initiatives Working closely with senior consultants and principals across multiple projects Skills & Experience Experience working in cyber security governance, risk and compliance Experience working with frameworks such as ISO 27001 and/or NIST CSF Experience working in a cyber security consultancy or advisory environment is highly desirable Experience supporting security maturity assessments or compliance programmes Strong stakeholder engagement and client-facing communication skills Desirable Certifications ISO 27001 Lead Auditor or Lead Implementer CISSP CISM What This Role Offers Exposure to a wide range of industries including commercial, defence, government and critical infrastructure The opportunity to develop consulting skills across multiple cyber security frameworks A collaborative consulting environment with experienced security professionals Clear opportunities for professional development and progression within the GRC consulting space This role is well suited to someone looking to take the next step in their cyber security consulting career and gain exposure to a broad range of governance, risk and compliance engagements.
Job title: Cyber Incident Response Consultant (Contractor) Contract: Six Months (possibility of extension) Location: Basingstoke (X3 days onsite; X2 working remote) Role Overview We are seeking an experienced Cyber Incident Response Consultant to support our cybersecurity function on a contract basis. The consultant will be responsible for collaborating with organisation stakeholders in developing, updating, and enhancing a comprehensive set of tactical and operational cyber incident response documents, including the Incident Response Plan, Communication Plan, Incident Response Playbooks, and Containment & Eradication procedures. This engagement is focused on delivering high-quality, actionable documentation and strengthening the organisation's overall incident response capability. The consultant will work closely with internal stakeholders to ensure alignment with business operations, technology, and regulatory requirements. IR Technical Capability Maturity Assessment Evaluate and report on the organisation's technical capabilities and maturity against IR Detection & Analysis, Containment, Eradication, & Recovery domains using industry maturity model. Develop & Maintain Incident Response Documentation Produce and refine the organisation's Incident Response Plan (IRP). Build clear and consistent internal and external incident communication workflows. Develop detailed incident response playbooks, such as ransomware, business email compromise (BEC), data breach, insider threat, malware outbreak, DDoS attack, cloud service compromise. (Final scenarios to be agreed during discovery.) Strengthen Organisational Incident Preparedness Conduct discovery sessions with technical and non-technical stakeholders. Review existing security processes, tools, and architecture to ensure documentation reflects current environments. Support tabletop exercise planning and incorporate lessons learned into documentation. Provide expert guidance and recommendations to improve cyber readiness. Build Containment & Eradication Frameworks Develop clear, structured containment strategies for different incident types. Create eradication and recovery guidance aligned with operational capabilities. Ensure all procedures support legal, compliance, and evidence-preservation requirements. Align with Standards & Regulatory Expectations Ensure all documentation aligns with CIS Controls. Ensure materials support relevant legal and regulatory expectations as appropriate for the organisation. Collaborate Across the Business Work closely with SOC staff, IT teams, legal, risk, compliance, communications, and senior leadership. Convert technical details and threat intelligence into clear, actionable steps appropriate for operational use. Required Experience & Skills Proven experience (typically 5+ years) in incident response, SOC operations, cybersecurity consulting, or GRC. Demonstrated ability to produce high-quality IR documentation and playbooks for medium-to-large organisations. Deep understanding of modern threat actors, attack methodologies, and incident response lifecycle. Experience across cloud (Azure, AWS) and on-premise enterprise environments. Exceptional written communication skills and ability to deliver polished, structured documentation. Ability to work independently, meet deadlines, and drive deliverables with minimal supervision. Preferred Qualifications and Experience GCIH, GCFA, CISSP, or equivalent security certifications. Experience working within regulated sectors (financial services, healthcare, government, critical infrastructure). Prior participation in or leadership of real-world cyber incident response activities. Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture. Why This Engagement Matters The Cyber Incident Response Preparation Consultant plays a crucial role in elevating the organisation's cyber maturity and readiness. Through the development of robust documentation and playbooks, the consultant will help ensure the organisation can respond rapidly, effectively, and consistently to modern cyber threats.
05/03/2026
Contractor
Job title: Cyber Incident Response Consultant (Contractor) Contract: Six Months (possibility of extension) Location: Basingstoke (X3 days onsite; X2 working remote) Role Overview We are seeking an experienced Cyber Incident Response Consultant to support our cybersecurity function on a contract basis. The consultant will be responsible for collaborating with organisation stakeholders in developing, updating, and enhancing a comprehensive set of tactical and operational cyber incident response documents, including the Incident Response Plan, Communication Plan, Incident Response Playbooks, and Containment & Eradication procedures. This engagement is focused on delivering high-quality, actionable documentation and strengthening the organisation's overall incident response capability. The consultant will work closely with internal stakeholders to ensure alignment with business operations, technology, and regulatory requirements. IR Technical Capability Maturity Assessment Evaluate and report on the organisation's technical capabilities and maturity against IR Detection & Analysis, Containment, Eradication, & Recovery domains using industry maturity model. Develop & Maintain Incident Response Documentation Produce and refine the organisation's Incident Response Plan (IRP). Build clear and consistent internal and external incident communication workflows. Develop detailed incident response playbooks, such as ransomware, business email compromise (BEC), data breach, insider threat, malware outbreak, DDoS attack, cloud service compromise. (Final scenarios to be agreed during discovery.) Strengthen Organisational Incident Preparedness Conduct discovery sessions with technical and non-technical stakeholders. Review existing security processes, tools, and architecture to ensure documentation reflects current environments. Support tabletop exercise planning and incorporate lessons learned into documentation. Provide expert guidance and recommendations to improve cyber readiness. Build Containment & Eradication Frameworks Develop clear, structured containment strategies for different incident types. Create eradication and recovery guidance aligned with operational capabilities. Ensure all procedures support legal, compliance, and evidence-preservation requirements. Align with Standards & Regulatory Expectations Ensure all documentation aligns with CIS Controls. Ensure materials support relevant legal and regulatory expectations as appropriate for the organisation. Collaborate Across the Business Work closely with SOC staff, IT teams, legal, risk, compliance, communications, and senior leadership. Convert technical details and threat intelligence into clear, actionable steps appropriate for operational use. Required Experience & Skills Proven experience (typically 5+ years) in incident response, SOC operations, cybersecurity consulting, or GRC. Demonstrated ability to produce high-quality IR documentation and playbooks for medium-to-large organisations. Deep understanding of modern threat actors, attack methodologies, and incident response lifecycle. Experience across cloud (Azure, AWS) and on-premise enterprise environments. Exceptional written communication skills and ability to deliver polished, structured documentation. Ability to work independently, meet deadlines, and drive deliverables with minimal supervision. Preferred Qualifications and Experience GCIH, GCFA, CISSP, or equivalent security certifications. Experience working within regulated sectors (financial services, healthcare, government, critical infrastructure). Prior participation in or leadership of real-world cyber incident response activities. Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture. Why This Engagement Matters The Cyber Incident Response Preparation Consultant plays a crucial role in elevating the organisation's cyber maturity and readiness. Through the development of robust documentation and playbooks, the consultant will help ensure the organisation can respond rapidly, effectively, and consistently to modern cyber threats.
Senior Security & Technology Consultants Location: Warton, UK (On-Site - 5 Days per Week) Clearance Required: Valid MOD DV (Mandatory) Engagement Type: Contract (Inside IR35) Day Rate: 500 - 900 per day (dependent on role and experience) Overview We are seeking experienced Security & Technology Professionals to support critical programmes in a secure defence environment. These roles span architecture, assurance, operations, and technical delivery disciplines and require individuals who can operate effectively within highly regulated, mission-critical settings. All positions are based full-time on-site in Warton (5 days per week) and require candidates to hold a current and valid MOD DV clearance at the time of application. Scope of Opportunities We are hiring across multiple security and technology disciplines, including: Security Architects Security Assurers Information Security Consultants SOC Analysts OT Architects Cross Domain SMEs IT Administrators Service Managers Product Security Managers Penetration Testing Specialists Technical Project / Programme Managers Key Responsibilities (Role Dependent) Security Architecture & Design Define and review secure architectures across enterprise IT and OT environments. Act as technical authority for secure system design and implementation. Lead threat modelling, risk assessments, and security design reviews. Ensure compliance with defence security standards and secure-by-design principles. Security Assurance & Governance Deliver independent security assurance across programmes. Support accreditation activities and compliance reviews. Develop and maintain security documentation, standards, and risk registers. Security Operations & SOC Monitor, analyse, and respond to security events and incidents. Strengthen detection, response, and resilience capabilities. Support vulnerability management and remediation activities. OT & Cross Domain Security Provide expertise in Operational Technology environments. Design and assure secure cross-domain solutions and data transfer mechanisms. Evaluate network segregation and high-assurance controls. Penetration Testing & Vulnerability Management Conduct or oversee penetration testing engagements. Assess vulnerabilities and validate remediation strategies. Support red/blue team activities where required. Service & Product Security Embed security into live service management processes. Act as Product Security lead across development lifecycles. Integrate DevSecOps controls and secure SDLC practices. Technical Delivery & Programme Support Manage security-focused technical workstreams. Provide governance reporting to senior stakeholders. Translate technical risks into business impact and mitigation plans. Essential Requirements Valid and transferable MOD DV clearance (mandatory). Availability to work on-site in Warton, 5 days per week. Strong background in one or more of the listed security disciplines. Experience working in secure, defence, or highly regulated environments. Relevant certifications (e.g., CISSP, CISM, TOGAF, CREST, cloud certifications).
05/03/2026
Contractor
Senior Security & Technology Consultants Location: Warton, UK (On-Site - 5 Days per Week) Clearance Required: Valid MOD DV (Mandatory) Engagement Type: Contract (Inside IR35) Day Rate: 500 - 900 per day (dependent on role and experience) Overview We are seeking experienced Security & Technology Professionals to support critical programmes in a secure defence environment. These roles span architecture, assurance, operations, and technical delivery disciplines and require individuals who can operate effectively within highly regulated, mission-critical settings. All positions are based full-time on-site in Warton (5 days per week) and require candidates to hold a current and valid MOD DV clearance at the time of application. Scope of Opportunities We are hiring across multiple security and technology disciplines, including: Security Architects Security Assurers Information Security Consultants SOC Analysts OT Architects Cross Domain SMEs IT Administrators Service Managers Product Security Managers Penetration Testing Specialists Technical Project / Programme Managers Key Responsibilities (Role Dependent) Security Architecture & Design Define and review secure architectures across enterprise IT and OT environments. Act as technical authority for secure system design and implementation. Lead threat modelling, risk assessments, and security design reviews. Ensure compliance with defence security standards and secure-by-design principles. Security Assurance & Governance Deliver independent security assurance across programmes. Support accreditation activities and compliance reviews. Develop and maintain security documentation, standards, and risk registers. Security Operations & SOC Monitor, analyse, and respond to security events and incidents. Strengthen detection, response, and resilience capabilities. Support vulnerability management and remediation activities. OT & Cross Domain Security Provide expertise in Operational Technology environments. Design and assure secure cross-domain solutions and data transfer mechanisms. Evaluate network segregation and high-assurance controls. Penetration Testing & Vulnerability Management Conduct or oversee penetration testing engagements. Assess vulnerabilities and validate remediation strategies. Support red/blue team activities where required. Service & Product Security Embed security into live service management processes. Act as Product Security lead across development lifecycles. Integrate DevSecOps controls and secure SDLC practices. Technical Delivery & Programme Support Manage security-focused technical workstreams. Provide governance reporting to senior stakeholders. Translate technical risks into business impact and mitigation plans. Essential Requirements Valid and transferable MOD DV clearance (mandatory). Availability to work on-site in Warton, 5 days per week. Strong background in one or more of the listed security disciplines. Experience working in secure, defence, or highly regulated environments. Relevant certifications (e.g., CISSP, CISM, TOGAF, CREST, cloud certifications).
Job Description: Cybersecurity Consultant (Cloud, Data, AI & Microsoft Security) Department: Information Security - (Data & AI team) Duration: Duration 4 months Location : London (Hybrid) Role Overview We are looking for a highly skilled Cybersecurity Consultant with strong expertise across Microsoft Security , Cloud Security , Data Protection , and emerging AI/LLM security and governance . The role focuses on identifying security gaps, defining secure-by-design patterns, supporting product and platform teams, and strengthening enterprise security posture-particularly across Microsoft 365, Azure, data platforms, and AI-enabled solutions. You will play a key role in threat modelling, risk assessments, guardrail design & implementation, and delivering practical security guidance for engineering, data, and application/product teams. Rationale/deliverables: Contribute to the Operating Securely program by providing information security advice and support to product and engineering teams and validate that security controls are in place and issues / vulnerabilities remediated Perform technical risk assessments for proposed new and changing systems, including products that are designed and built by the client as well as the secure deployment and configuration of business applications that report on and analyse data, e.g. Power BI Perform technical risk assessments and advise product and engineering teams on the secure implementation of AI based solutions, e.g. autonomous AI agents, LLMs, LRMs, and AI-enhanced productivity systems Support the roll-out of the new AI information security control framework Support the Data governance team Key Responsibilities Perform threat modelling (STRIDE), guardrail definition, and security posture assessments across applications, data platforms, APIs, cloud services, and SaaS ecosystems. Identify security control gaps , especially around data pipelines, repositories, network security, API security, middleware, and cloud architectures. Conduct technical security risk assessments , produce risk statements/reports, and support teams with remediation and mitigation strategies. Develop security controls, standards, and documentation for product teams, platform engineering, and data services (e.g., pipelines, warehouses, data sources). Provide expert guidance on Microsoft Security Stack , including: Microsoft Defender (XDR, MDE, MDI) Microsoft Entra ID (SSO, MFA, Conditional Access, PIM) Microsoft Purview (DLP, Information Protection, Data Governance, DSPM) Microsoft 365 Copilot & GitHub Copilot security enablement Partner with data governance, platform engineering, DevOps, and architecture teams to embed secure-by-design Support secure adoption of cloud-native technologies (Azure), DevSecOps pipelines, GitOps practices, and GitHub Advanced Security (GHAS). Oversee security controls for cryptography, key management, secrets management, HSM/Key Vault configurations , and cloud network security (firewalls, proxies, segmentation). Drive secure integration of AI/LLM tools , including Copilot, Azure OpenAI, and agentic systems-ensuring proper guardrails, risk assessments, and data protection. Participate in cloud monitoring, detection & incident response , working with SIEM/XDR tooling and platform/application teams. Collaborate closely with data governance to ensure appropriate classification, labeling, access control, and lifecycle management of sensitive data. Essential Skills & Experience Strong understanding of security frameworks (CIS), MITRE ATT&CK, and AI/LLM security frameworks. Hands-on experience with Azure cloud security , DevSecOps, and cloud-native architectures. Expertise with Microsoft 365 Security and Azure Security Strong knowledge of IAM (SSO, MFA, Conditional Access, AAD/Entra, PIM). Experience delivering data security , DLP, DSPM, and governance controls using Microsoft Purview. Practically skilled in AI security , including risk identification, secure integration patterns, and AI governance models. Experience with cloud monitoring, incident response, SIEM/XDR operations. Ability to translate complex security risks into clear business language and actionable recommendations. Desirable Skills Experience with secure data platforms (Azure Data Factory, Data Lake, SQL, or similar). Knowledge of API, container security, Kubernetes, and infrastructure-as-code security. Familiarity with PCI, GDPR, data privacy requirements, and compliance frameworks. Exposure to adaptive protection, insider risk management, and automated DLP frameworks. Personal Attributes Strong communicator able to work across engineering, data, product, and business teams. Highly analytical with a structured approach to problem-solving. Comfortable in fast-paced environments undergoing modernization and AI adoption. Ability to influence teams and drive secure-by-design culture across the organization
04/03/2026
Contractor
Job Description: Cybersecurity Consultant (Cloud, Data, AI & Microsoft Security) Department: Information Security - (Data & AI team) Duration: Duration 4 months Location : London (Hybrid) Role Overview We are looking for a highly skilled Cybersecurity Consultant with strong expertise across Microsoft Security , Cloud Security , Data Protection , and emerging AI/LLM security and governance . The role focuses on identifying security gaps, defining secure-by-design patterns, supporting product and platform teams, and strengthening enterprise security posture-particularly across Microsoft 365, Azure, data platforms, and AI-enabled solutions. You will play a key role in threat modelling, risk assessments, guardrail design & implementation, and delivering practical security guidance for engineering, data, and application/product teams. Rationale/deliverables: Contribute to the Operating Securely program by providing information security advice and support to product and engineering teams and validate that security controls are in place and issues / vulnerabilities remediated Perform technical risk assessments for proposed new and changing systems, including products that are designed and built by the client as well as the secure deployment and configuration of business applications that report on and analyse data, e.g. Power BI Perform technical risk assessments and advise product and engineering teams on the secure implementation of AI based solutions, e.g. autonomous AI agents, LLMs, LRMs, and AI-enhanced productivity systems Support the roll-out of the new AI information security control framework Support the Data governance team Key Responsibilities Perform threat modelling (STRIDE), guardrail definition, and security posture assessments across applications, data platforms, APIs, cloud services, and SaaS ecosystems. Identify security control gaps , especially around data pipelines, repositories, network security, API security, middleware, and cloud architectures. Conduct technical security risk assessments , produce risk statements/reports, and support teams with remediation and mitigation strategies. Develop security controls, standards, and documentation for product teams, platform engineering, and data services (e.g., pipelines, warehouses, data sources). Provide expert guidance on Microsoft Security Stack , including: Microsoft Defender (XDR, MDE, MDI) Microsoft Entra ID (SSO, MFA, Conditional Access, PIM) Microsoft Purview (DLP, Information Protection, Data Governance, DSPM) Microsoft 365 Copilot & GitHub Copilot security enablement Partner with data governance, platform engineering, DevOps, and architecture teams to embed secure-by-design Support secure adoption of cloud-native technologies (Azure), DevSecOps pipelines, GitOps practices, and GitHub Advanced Security (GHAS). Oversee security controls for cryptography, key management, secrets management, HSM/Key Vault configurations , and cloud network security (firewalls, proxies, segmentation). Drive secure integration of AI/LLM tools , including Copilot, Azure OpenAI, and agentic systems-ensuring proper guardrails, risk assessments, and data protection. Participate in cloud monitoring, detection & incident response , working with SIEM/XDR tooling and platform/application teams. Collaborate closely with data governance to ensure appropriate classification, labeling, access control, and lifecycle management of sensitive data. Essential Skills & Experience Strong understanding of security frameworks (CIS), MITRE ATT&CK, and AI/LLM security frameworks. Hands-on experience with Azure cloud security , DevSecOps, and cloud-native architectures. Expertise with Microsoft 365 Security and Azure Security Strong knowledge of IAM (SSO, MFA, Conditional Access, AAD/Entra, PIM). Experience delivering data security , DLP, DSPM, and governance controls using Microsoft Purview. Practically skilled in AI security , including risk identification, secure integration patterns, and AI governance models. Experience with cloud monitoring, incident response, SIEM/XDR operations. Ability to translate complex security risks into clear business language and actionable recommendations. Desirable Skills Experience with secure data platforms (Azure Data Factory, Data Lake, SQL, or similar). Knowledge of API, container security, Kubernetes, and infrastructure-as-code security. Familiarity with PCI, GDPR, data privacy requirements, and compliance frameworks. Exposure to adaptive protection, insider risk management, and automated DLP frameworks. Personal Attributes Strong communicator able to work across engineering, data, product, and business teams. Highly analytical with a structured approach to problem-solving. Comfortable in fast-paced environments undergoing modernization and AI adoption. Ability to influence teams and drive secure-by-design culture across the organization
Senior Design Engineer needed Are you looking for a new Design Challenge? Do you want to work on new cutting-edge aerospace technologies for Gas Turbines? If YES Belcan may just have the role for you! Belcan are looking for an experienced Senior Design Engineer, based at its Derby or Glasgow Office and with Hybrid working. The Senior Design Engineer will carry out a variety of tasks associated with the design of a sub-system or component within the Gas Turbine for new technologically in advanced Gas Turbine engines. This can range from concept design through to detail design and support of design release. It is expected that the Senior Design Engineer will follow a gates review process, dealing with all associated stakeholders to understand product requirements and producing a solution which meets these requirements. Required Qualifications and Experience: Qualification in an Aeronautical, Mechanical Engineering or related degree or substantial Gas Turbine Design experience related experience Strong technical capabilities in either one or more of the following capabilities: sub-system design, component design. Experience in a similar role. Comprehensive tool set knowledge, including but not limited to: Siemens NX, Teamcenter, Microsoft office applications etc. Experienced in working within flexible teams. Able to discuss and communicate on highly technical aspects, both internally and with Belcan clients. If you have done similar Gas Turbine Design work either the Aerospace or Power Generation industries and have Siemens NX experience, contact us now! Why Join Belcan? You will join a collaborative company that puts people at the heart of everything we do. As well as career development and a friendly and collaborative team, you will benefit from: Company Pension scheme Generous holiday allowance Private Medical Insurance Car scheme Hybrid and flexible working policies. Opportunity to be selected for Belcan's prestigious Eagle Award. and much more. Application Process: Ready to take the next step in your career as a Design Engineer? Apply now and become a part of Belcan's innovative and dynamic team! About UsBelcan, a Cognizant company, is a global force in technical services and engineering consultancy. Our legacy is built on delivering high-quality outputs and our unwavering commitment to developing the next generation of technical consultants and specialist engineers. Our expertise is vast, spanning across various engineering industries including aerospace, defence, marine, nuclear, automotive, and cyber security. This vacancy is being advertised by Belcan.
04/03/2026
Full time
Senior Design Engineer needed Are you looking for a new Design Challenge? Do you want to work on new cutting-edge aerospace technologies for Gas Turbines? If YES Belcan may just have the role for you! Belcan are looking for an experienced Senior Design Engineer, based at its Derby or Glasgow Office and with Hybrid working. The Senior Design Engineer will carry out a variety of tasks associated with the design of a sub-system or component within the Gas Turbine for new technologically in advanced Gas Turbine engines. This can range from concept design through to detail design and support of design release. It is expected that the Senior Design Engineer will follow a gates review process, dealing with all associated stakeholders to understand product requirements and producing a solution which meets these requirements. Required Qualifications and Experience: Qualification in an Aeronautical, Mechanical Engineering or related degree or substantial Gas Turbine Design experience related experience Strong technical capabilities in either one or more of the following capabilities: sub-system design, component design. Experience in a similar role. Comprehensive tool set knowledge, including but not limited to: Siemens NX, Teamcenter, Microsoft office applications etc. Experienced in working within flexible teams. Able to discuss and communicate on highly technical aspects, both internally and with Belcan clients. If you have done similar Gas Turbine Design work either the Aerospace or Power Generation industries and have Siemens NX experience, contact us now! Why Join Belcan? You will join a collaborative company that puts people at the heart of everything we do. As well as career development and a friendly and collaborative team, you will benefit from: Company Pension scheme Generous holiday allowance Private Medical Insurance Car scheme Hybrid and flexible working policies. Opportunity to be selected for Belcan's prestigious Eagle Award. and much more. Application Process: Ready to take the next step in your career as a Design Engineer? Apply now and become a part of Belcan's innovative and dynamic team! About UsBelcan, a Cognizant company, is a global force in technical services and engineering consultancy. Our legacy is built on delivering high-quality outputs and our unwavering commitment to developing the next generation of technical consultants and specialist engineers. Our expertise is vast, spanning across various engineering industries including aerospace, defence, marine, nuclear, automotive, and cyber security. This vacancy is being advertised by Belcan.
Role: Cyber Security Consultant Location: Remote/Hybrid (Mix of home working, Gloucestershire office and client site visits) Salary: £45,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance We are looking for an experienced Cyber Security Consultant to join a well-established and growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base including government and public sector organisations. This is a role for someone who can hit the ground running. You'll be joining a team of around 13-15 consultants and are expected to operate independently from day one. No two weeks look the same; work pattern is flexible and dictated by client demand, with a genuine mix of home working, office time in Gloucestershire, and client site visits as required. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST - must be willing to pursue DV Clearance Active CSTM or CCT certification is an ABSOLUTE MUST Proven hands-on penetration testing experience - must be able to hit the ground running Strong knowledge of testing frameworks including OWASP Knowledge of Cyber Security standards and policies such as ISO 27001, CIS, and PCI DSS. Experience across Linux and Windows environments Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Benefits: £45,000 + Expenses + Overnight Bonus 31 Days Annual Leave (20 + 8 BH + 3 Xmas Shutdown) Paid Charity Day Up to 5 unpaid annual leave days per year Company pension scheme Role: Cyber Security Consultant Location: Remote/Hybrid (Mix of home working, Gloucestershire office and client site visits) Salary: £45,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
03/03/2026
Full time
Role: Cyber Security Consultant Location: Remote/Hybrid (Mix of home working, Gloucestershire office and client site visits) Salary: £45,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance We are looking for an experienced Cyber Security Consultant to join a well-established and growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base including government and public sector organisations. This is a role for someone who can hit the ground running. You'll be joining a team of around 13-15 consultants and are expected to operate independently from day one. No two weeks look the same; work pattern is flexible and dictated by client demand, with a genuine mix of home working, office time in Gloucestershire, and client site visits as required. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST - must be willing to pursue DV Clearance Active CSTM or CCT certification is an ABSOLUTE MUST Proven hands-on penetration testing experience - must be able to hit the ground running Strong knowledge of testing frameworks including OWASP Knowledge of Cyber Security standards and policies such as ISO 27001, CIS, and PCI DSS. Experience across Linux and Windows environments Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Benefits: £45,000 + Expenses + Overnight Bonus 31 Days Annual Leave (20 + 8 BH + 3 Xmas Shutdown) Paid Charity Day Up to 5 unpaid annual leave days per year Company pension scheme Role: Cyber Security Consultant Location: Remote/Hybrid (Mix of home working, Gloucestershire office and client site visits) Salary: £45,000 + Expenses + Overnight Allowance (TBC) Active SC Clearance is a requirement - must be willing to pursue DV Clearance Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Connect to your Industry Cyber Risk & Security. Everybody's talking about it. Every major corporation is concerned by it. The Government is investing £1.9 billion in tackling it. We're shaping strategies and transforming technology to minimise it and we need you to join us. You'll build strong relationships within a Cyber practice with over 200 extremely talented individuals. Our team brings together people who graduated in everything from Philosophy to Law, Maths and Computer Science. Join them and you will operate at the cutting edge, enjoying the kind of professional development that will set your potential free. At Deloitte, the Cyber Identity team help our clients assess, design, and implement Identity solutions to support digital change and reduce the risk of high impact cyber-attacks. Quite simply, the Identity team help ensure our client's business can expand and adapt to the changing digital and regulatory needs in a secure and complaint manner. Connect to your career at Deloitte Deloitte drives progress. Using our vast range of expertise, we help our clients' become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more. What brings us all together at Deloitte? It's how we approach the thousands of decisions we make every day. How we behave, our beliefs and our attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact how and where it matters most. Connect to your opportunity You will have a passion and curiosity, for cyber and technology, comfortable with operating in a fastpaced environment where you will define and lead the implementation of various identity solutions that enable our clients explore new business opportunities, while reducing the risk of these changes. As an IAM technical specialist/lead, you will be responsible for: Engagement Delivery: Leading large and complex IAM engagements, you will be well versed in the Identity lifecycle and concepts as well as alignment of requirements to security frameworks like NIST. Supporting clients to define and develop their identity projects and programmes, from current state review through to CIAM strategies, roadmap development, and execution of activities to mobilise projects and programmes. Project and programme delivery, covering solution requirements definition, solution architecture, high and low-level design development, solution build / configuration / deployment / integration, supported by testing and hand-over to business as usual operational teams. Form part of digital transformation and enterprise recovery engagements delivering IAM solutions and remediation activity. Deliver broader cyber engagements where needed (across related disciplines like architecture, data security and application security) Market Development: Distilling complex technical matters into simple narratives to drive and lead conversations with senior client stakeholders. Ongoing client engagement / relationship management - building and maintaining client relationships in support of account targeting. Opportunity pursuit - engaging with clients to capture problem statements / solution requirements, developing client propositions / solutions, defining detailed delivery timelines, resource requirements and cost estimates, and supporting client pitch activity. Working with FS sector leadership to shape and refine both existing and new IAM market propositions / offerings. Connect to your skills and professional experience Whilst a bachelor's degree (or equivalent) in Computer Science or Engineering is desirable, we are more interested in your real-world professional experience and your ability to turn this into impactful client outcomes. Technical Skills: The skills we want you to ultimately have will cover: Broad enterprise identity experience across Enterprise and Customer Authentication, with demonstrable ability to build identity strategies which integrate into client enterprise architectures and beyond. Experience working in a digital transformation environment supporting the definition of Identity architecture leveraging cloud native and/or other IAM solutions. Advanced, practical experience of a variety of CIAM solutions such as ForgeRock, Ping, Microsoft Azure B2C, Okta, and Auth0 or equivalent. Advanced, practical experience of cloud hosting services including, Amazon Web Services, Microsoft Azure, Google Cloud Platform. Hands-on experience of Microsoft Active Directory/Azure AD Domain Services, Federation Services, Certificate Services, DNS and DHCP or equivalent. Hands-on experience of implementation of OAuth, OIDC and JWTs. Understanding of decentralised identity, verifiable credentials, microservices and Trust over IP architecture stack. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and presentations. Consulting Skills: Project management - Experience with waterfall and agile type methodologies, often working within client specified frameworks. Delivery team management: Managing teams across a mix of locations, cultures, and experience levels. Client stakeholder management - Strong communication and relationship skills to manage a variety of client stakeholders from CISO to Developer. In addition to the above the following are desirable: Consulting or equivalent background. Understanding of malware and the modern threat landscape. Relevant certifications (e.g. CISSP, certifications from Microsoft, ISC2, ISACA, SANS, GIAC, ECCouncil etc. or equivalent). Exposure to/Understanding of DevOps tools and repositories (e.g. Git, Azure Dev Ops, Kubernetes, Docker, Jenkins, Ansible etc.). Role based access control (RBAC) design. Practical experience with Linux operating systems. Experience with Modern Authentication concepts e.g. Self-Service Identity, Bring your own Identity, SCIM, SAML, WS-Federation, OAuth, Open ID Connect or equivalent. Ability to hold Security Clearance. Connect to your business - Technology and Transformation Distinctive thinking, deep expertise, innovation and collaborative working. That's what connects us. That's what makes us Deloitte. If you want to help solve some of the biggest tech and transformational challenges around, join us. Together, we'll make an impact that matters. Cyber The modern world is more complex than ever before, and we are navigating an ever-changing landscape. We help clients to operate with resilience and grow with confidence to secure success and minimise risk. Personal independence Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints (e.g., in relation to any financial interests and employment relationships). This can mean that you and your "Immediate Family Members" are not permitted to hold certain financial interests (shares, funds, bonds etc.) with audit clients of the firm, and also prohibitions on certain employment relationships (e.g., you are not permitted to hold a secondary employment role with SEC audit clients of the firm whilst being employed by the firm). The recruitment team will provide further detail as you progress through the recruitment process or you can contact the Independence team upon request. Connect with your colleagues "Join Deloitte and you'll be guiding major clients to their best technology and process decisions. You'll work at the cutting edge, with some of the finest minds in this field, and be able to take your career in any direction." - Deloitte employee "At Deloitte, is collaboration that sets us apart. Our scale and structure mean you can draw on all kinds of expertise from across our entire global business and behave as a true business partner for your clients." - Deloitte employee Our hybrid working policy You'll be based in London with hybrid working. At Deloitte we understand the importance of balancing your career alongside your home life. That's why we'll support you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you'll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely. You'll get the chance to meet face to face when needed, while you collaborate and learn from colleagues, share your experiences, and build the relationships that will fuel your career and prioritise your wellbeing. Please check with your recruiter for the specific working requirements that may apply for your role. Connect to your return to work opportunity Are you looking to return to the workplace after an extended career break? For this role we can offer coaching and support designed for returners to refresh your knowledge and skills . click apply for full job details
03/03/2026
Full time
Connect to your Industry Cyber Risk & Security. Everybody's talking about it. Every major corporation is concerned by it. The Government is investing £1.9 billion in tackling it. We're shaping strategies and transforming technology to minimise it and we need you to join us. You'll build strong relationships within a Cyber practice with over 200 extremely talented individuals. Our team brings together people who graduated in everything from Philosophy to Law, Maths and Computer Science. Join them and you will operate at the cutting edge, enjoying the kind of professional development that will set your potential free. At Deloitte, the Cyber Identity team help our clients assess, design, and implement Identity solutions to support digital change and reduce the risk of high impact cyber-attacks. Quite simply, the Identity team help ensure our client's business can expand and adapt to the changing digital and regulatory needs in a secure and complaint manner. Connect to your career at Deloitte Deloitte drives progress. Using our vast range of expertise, we help our clients' become leaders wherever they choose to compete. To do this, we invest in outstanding people. We build teams of future thinkers, with diverse talents and backgrounds, and empower them all to reach for and achieve more. What brings us all together at Deloitte? It's how we approach the thousands of decisions we make every day. How we behave, our beliefs and our attitudes. In other words: our values. Whatever we do, wherever we are in the world, we lead the way, serve with integrity, take care of each other, foster inclusion, and collaborate for measurable impact. These five shared values lead every decision we make and action we take, guiding us to deliver impact how and where it matters most. Connect to your opportunity You will have a passion and curiosity, for cyber and technology, comfortable with operating in a fastpaced environment where you will define and lead the implementation of various identity solutions that enable our clients explore new business opportunities, while reducing the risk of these changes. As an IAM technical specialist/lead, you will be responsible for: Engagement Delivery: Leading large and complex IAM engagements, you will be well versed in the Identity lifecycle and concepts as well as alignment of requirements to security frameworks like NIST. Supporting clients to define and develop their identity projects and programmes, from current state review through to CIAM strategies, roadmap development, and execution of activities to mobilise projects and programmes. Project and programme delivery, covering solution requirements definition, solution architecture, high and low-level design development, solution build / configuration / deployment / integration, supported by testing and hand-over to business as usual operational teams. Form part of digital transformation and enterprise recovery engagements delivering IAM solutions and remediation activity. Deliver broader cyber engagements where needed (across related disciplines like architecture, data security and application security) Market Development: Distilling complex technical matters into simple narratives to drive and lead conversations with senior client stakeholders. Ongoing client engagement / relationship management - building and maintaining client relationships in support of account targeting. Opportunity pursuit - engaging with clients to capture problem statements / solution requirements, developing client propositions / solutions, defining detailed delivery timelines, resource requirements and cost estimates, and supporting client pitch activity. Working with FS sector leadership to shape and refine both existing and new IAM market propositions / offerings. Connect to your skills and professional experience Whilst a bachelor's degree (or equivalent) in Computer Science or Engineering is desirable, we are more interested in your real-world professional experience and your ability to turn this into impactful client outcomes. Technical Skills: The skills we want you to ultimately have will cover: Broad enterprise identity experience across Enterprise and Customer Authentication, with demonstrable ability to build identity strategies which integrate into client enterprise architectures and beyond. Experience working in a digital transformation environment supporting the definition of Identity architecture leveraging cloud native and/or other IAM solutions. Advanced, practical experience of a variety of CIAM solutions such as ForgeRock, Ping, Microsoft Azure B2C, Okta, and Auth0 or equivalent. Advanced, practical experience of cloud hosting services including, Amazon Web Services, Microsoft Azure, Google Cloud Platform. Hands-on experience of Microsoft Active Directory/Azure AD Domain Services, Federation Services, Certificate Services, DNS and DHCP or equivalent. Hands-on experience of implementation of OAuth, OIDC and JWTs. Understanding of decentralised identity, verifiable credentials, microservices and Trust over IP architecture stack. Detail oriented and strong problem-solving skills. Excellent oral and written communication skills including concisely communicating status and creating customer reports and presentations. Consulting Skills: Project management - Experience with waterfall and agile type methodologies, often working within client specified frameworks. Delivery team management: Managing teams across a mix of locations, cultures, and experience levels. Client stakeholder management - Strong communication and relationship skills to manage a variety of client stakeholders from CISO to Developer. In addition to the above the following are desirable: Consulting or equivalent background. Understanding of malware and the modern threat landscape. Relevant certifications (e.g. CISSP, certifications from Microsoft, ISC2, ISACA, SANS, GIAC, ECCouncil etc. or equivalent). Exposure to/Understanding of DevOps tools and repositories (e.g. Git, Azure Dev Ops, Kubernetes, Docker, Jenkins, Ansible etc.). Role based access control (RBAC) design. Practical experience with Linux operating systems. Experience with Modern Authentication concepts e.g. Self-Service Identity, Bring your own Identity, SCIM, SAML, WS-Federation, OAuth, Open ID Connect or equivalent. Ability to hold Security Clearance. Connect to your business - Technology and Transformation Distinctive thinking, deep expertise, innovation and collaborative working. That's what connects us. That's what makes us Deloitte. If you want to help solve some of the biggest tech and transformational challenges around, join us. Together, we'll make an impact that matters. Cyber The modern world is more complex than ever before, and we are navigating an ever-changing landscape. We help clients to operate with resilience and grow with confidence to secure success and minimise risk. Personal independence Regulation and controls are standard practice in our industry and Deloitte is no exception. These controls provide important legal protection for both you and the firm. We are subject to a number of audit regulations, one of which requires that certain colleagues abide by specific personal independence constraints (e.g., in relation to any financial interests and employment relationships). This can mean that you and your "Immediate Family Members" are not permitted to hold certain financial interests (shares, funds, bonds etc.) with audit clients of the firm, and also prohibitions on certain employment relationships (e.g., you are not permitted to hold a secondary employment role with SEC audit clients of the firm whilst being employed by the firm). The recruitment team will provide further detail as you progress through the recruitment process or you can contact the Independence team upon request. Connect with your colleagues "Join Deloitte and you'll be guiding major clients to their best technology and process decisions. You'll work at the cutting edge, with some of the finest minds in this field, and be able to take your career in any direction." - Deloitte employee "At Deloitte, is collaboration that sets us apart. Our scale and structure mean you can draw on all kinds of expertise from across our entire global business and behave as a true business partner for your clients." - Deloitte employee Our hybrid working policy You'll be based in London with hybrid working. At Deloitte we understand the importance of balancing your career alongside your home life. That's why we'll support you to work flexibly through our hybrid working policy. Depending on the requirements of your role, you'll have the opportunity to work in your local office, virtual collaboration spaces, client sites and remotely. You'll get the chance to meet face to face when needed, while you collaborate and learn from colleagues, share your experiences, and build the relationships that will fuel your career and prioritise your wellbeing. Please check with your recruiter for the specific working requirements that may apply for your role. Connect to your return to work opportunity Are you looking to return to the workplace after an extended career break? For this role we can offer coaching and support designed for returners to refresh your knowledge and skills . click apply for full job details
Chief Product & Technology Officer Salary: Competitive Location: Hybrid with 2 to 3 days in the London Office and Onsite with partners Contract: Permanent As the rail industry's independent safety, standards and research body the Rail Safety and Standards Board (RSSB) plays a unique role in shaping the future of Great Britain's railway. We sit at the heart of a complex national system, bringing together operators, infrastructure owners, suppliers and government using evidence, insight, digital products and standards to help the industry operate more safely, efficiently and sustainably. With a new Business Plan launching this April and the rail industry experiencing reform and rapid change in technology and data we are poised for our next exciting phase of evolution. We are now seeking a Chief Product & Technology Officer (CPTO) to join the Executive Committee and lead this next chapter shaping how RSSB uses data, technology and product innovation to deliver greater impact, deeper collaboration and lasting value for our members and across the whole rail ecosystem. About the role This is a rare and exciting role for a leader who can combine strategic vision, product thinking, technical depth and the ability to unite a complex ecosystem around shared benefit. The CPTO is a strategic leadership role at the heart of RSSB's mission. Reporting directly to the CEO and serving as a full member of the Executive Committee, you will shape how RSSB uses its data, insight and technology capabilities to deliver high value, widely adopted digital products and services for the rail industry. As CPTO, you will lead the evolution of RSSB's entire product and technology portfolio. You will set a clear strategy that integrates product development, data platforms and digital services into a coherent offer that provides practical, evidence based value across the network. You will ensure that our products are user centred, interoperable and underpinned by modern engineering practices and robust governance. Collaboration and influence are critical. You will co design solutions with members, navigate differing priorities, and build consensus around shared outcomes. You will guide product adoption and real world use, helping members integrate solutions into their operations to support better decision making, improved safety and enhanced performance. Internally, you will oversee RSSB's digital and technology operations, ensuring that platforms are secure, resilient and well governed, and that the organisation makes responsible use of emerging technologies, including AI, in the context of a safety critical sector. You will lead a multidisciplinary team of around 50 colleagues across digital and technology disciplines, fostering a modern, high performing and inclusive culture. As an Executive Committee member, you will also contribute to the broader corporate leadership of RSSB, shaping organisational strategy, culture and long term direction. What you will bring/Essential Criteria Successful candidates will be able to demonstrate: Strategic Vision and Outcomes : Proven experience of setting a clear digital or technology vision and translate it into measurable outcomes in complex, multi-stakeholder environments. Product, Platform and Integration : Experience leading the development of digital products or platforms, including co-design with users, integration across systems, and driving adoption at scale. Technology Operations and Assurance : Sufficient depth of technology leadership to take accountability for resilient, secure and well-governed digital operations, including cyber security, architecture and service continuity. Data-Informed Innovation : Strong understanding of how data, analytics and emerging technologies (including AI) can be used to improve insight, decision-making and risk management, working effectively with specialist teams. Commercial Judgement and Value : Demonstrated ability to balance innovation with affordability, manage budgets and ensure digital investment delivers clear, measurable value for members or users. Influence, Collaboration & Sector Engagement : Credibility and skill in engaging senior leaders, aligning diverse interests and delivering shared outcomes across complex organisational or sector ecosystems. RSSB is open to considering flexible working arrangements. As part of the disability confident scheme, RSSB guarantees to interview all disabled applicants who meet the minimum criteria. This campaign is being supported by our advising consultants, GatenbySanderson. To arrange an informal confidential discussion please contact: For further details and to apply, please click on Apply: Closing Date: Midday, 27th March 2026
03/03/2026
Full time
Chief Product & Technology Officer Salary: Competitive Location: Hybrid with 2 to 3 days in the London Office and Onsite with partners Contract: Permanent As the rail industry's independent safety, standards and research body the Rail Safety and Standards Board (RSSB) plays a unique role in shaping the future of Great Britain's railway. We sit at the heart of a complex national system, bringing together operators, infrastructure owners, suppliers and government using evidence, insight, digital products and standards to help the industry operate more safely, efficiently and sustainably. With a new Business Plan launching this April and the rail industry experiencing reform and rapid change in technology and data we are poised for our next exciting phase of evolution. We are now seeking a Chief Product & Technology Officer (CPTO) to join the Executive Committee and lead this next chapter shaping how RSSB uses data, technology and product innovation to deliver greater impact, deeper collaboration and lasting value for our members and across the whole rail ecosystem. About the role This is a rare and exciting role for a leader who can combine strategic vision, product thinking, technical depth and the ability to unite a complex ecosystem around shared benefit. The CPTO is a strategic leadership role at the heart of RSSB's mission. Reporting directly to the CEO and serving as a full member of the Executive Committee, you will shape how RSSB uses its data, insight and technology capabilities to deliver high value, widely adopted digital products and services for the rail industry. As CPTO, you will lead the evolution of RSSB's entire product and technology portfolio. You will set a clear strategy that integrates product development, data platforms and digital services into a coherent offer that provides practical, evidence based value across the network. You will ensure that our products are user centred, interoperable and underpinned by modern engineering practices and robust governance. Collaboration and influence are critical. You will co design solutions with members, navigate differing priorities, and build consensus around shared outcomes. You will guide product adoption and real world use, helping members integrate solutions into their operations to support better decision making, improved safety and enhanced performance. Internally, you will oversee RSSB's digital and technology operations, ensuring that platforms are secure, resilient and well governed, and that the organisation makes responsible use of emerging technologies, including AI, in the context of a safety critical sector. You will lead a multidisciplinary team of around 50 colleagues across digital and technology disciplines, fostering a modern, high performing and inclusive culture. As an Executive Committee member, you will also contribute to the broader corporate leadership of RSSB, shaping organisational strategy, culture and long term direction. What you will bring/Essential Criteria Successful candidates will be able to demonstrate: Strategic Vision and Outcomes : Proven experience of setting a clear digital or technology vision and translate it into measurable outcomes in complex, multi-stakeholder environments. Product, Platform and Integration : Experience leading the development of digital products or platforms, including co-design with users, integration across systems, and driving adoption at scale. Technology Operations and Assurance : Sufficient depth of technology leadership to take accountability for resilient, secure and well-governed digital operations, including cyber security, architecture and service continuity. Data-Informed Innovation : Strong understanding of how data, analytics and emerging technologies (including AI) can be used to improve insight, decision-making and risk management, working effectively with specialist teams. Commercial Judgement and Value : Demonstrated ability to balance innovation with affordability, manage budgets and ensure digital investment delivers clear, measurable value for members or users. Influence, Collaboration & Sector Engagement : Credibility and skill in engaging senior leaders, aligning diverse interests and delivering shared outcomes across complex organisational or sector ecosystems. RSSB is open to considering flexible working arrangements. As part of the disability confident scheme, RSSB guarantees to interview all disabled applicants who meet the minimum criteria. This campaign is being supported by our advising consultants, GatenbySanderson. To arrange an informal confidential discussion please contact: For further details and to apply, please click on Apply: Closing Date: Midday, 27th March 2026
Role: Penetration Testing Consultant Location: Remote (Occasional client site visits required) Salary: £55,000 - £65,000 Active SC Clearance is a requirement We are looking for an experienced Penetration Testing Consultant to join a growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base. You'll work independently across a range of testing disciplines, engaging directly with clients from scoping through to final reporting. This is a fantastic opportunity for a technically strong, client-facing penetration tester looking to work in a collaborative and forward-thinking environment. This is an urgent requirement, interviews will be undertaken ASAP. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST Active CSTM or CCT certification is an ABSOLUTE MUST 3+ years of hands-on penetration testing experience Strong knowledge of testing frameworks including OWASP Proficiency with industry standard tooling such as Burp Suite, Metasploit, and Nmap Experience across Linux and Windows environments Scripting ability in Python, Bash, or similar Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Role: Penetration Testing Consultant Location: Remote (Occasional client site visits required) Salary: £55,000 - £65,000 Active SC Clearance is a requirement Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
03/03/2026
Full time
Role: Penetration Testing Consultant Location: Remote (Occasional client site visits required) Salary: £55,000 - £65,000 Active SC Clearance is a requirement We are looking for an experienced Penetration Testing Consultant to join a growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base. You'll work independently across a range of testing disciplines, engaging directly with clients from scoping through to final reporting. This is a fantastic opportunity for a technically strong, client-facing penetration tester looking to work in a collaborative and forward-thinking environment. This is an urgent requirement, interviews will be undertaken ASAP. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST Active CSTM or CCT certification is an ABSOLUTE MUST 3+ years of hands-on penetration testing experience Strong knowledge of testing frameworks including OWASP Proficiency with industry standard tooling such as Burp Suite, Metasploit, and Nmap Experience across Linux and Windows environments Scripting ability in Python, Bash, or similar Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Role: Penetration Testing Consultant Location: Remote (Occasional client site visits required) Salary: £55,000 - £65,000 Active SC Clearance is a requirement Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Role: Penetration Testing Consultant Location: Remote (Occasional client site visits required) Salary: £55,000 - £65,000 Active SC Clearance is a requirement We are looking for an experienced Penetration Testing Consultant to join a growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base. You'll work independently across a range of testing disciplines, engaging directly with clients from scoping through to final reporting. This is a fantastic opportunity for a technically strong, client-facing penetration tester looking to work in a collaborative and forward-thinking environment. This is an urgent requirement, interviews will be undertaken ASAP. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST Active CSTM or CCT certification is an ABSOLUTE MUST 3+ years of hands-on penetration testing experience Strong knowledge of testing frameworks including OWASP Proficiency with industry standard tooling such as Burp Suite, Metasploit, and Nmap Experience across Linux and Windows environments Scripting ability in Python, Bash, or similar Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Role: Penetration Testing Consultant Location: Remote (Occasional client site visits required) Salary: £55,000 - £65,000 Active SC Clearance is a requirement Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
03/03/2026
Full time
Role: Penetration Testing Consultant Location: Remote (Occasional client site visits required) Salary: £55,000 - £65,000 Active SC Clearance is a requirement We are looking for an experienced Penetration Testing Consultant to join a growing UK-based cybersecurity consultancy, delivering high quality penetration testing services across a varied and interesting client base. You'll work independently across a range of testing disciplines, engaging directly with clients from scoping through to final reporting. This is a fantastic opportunity for a technically strong, client-facing penetration tester looking to work in a collaborative and forward-thinking environment. This is an urgent requirement, interviews will be undertaken ASAP. Key Responsibilities: Deliver CHECK and non-CHECK penetration testing engagements across infrastructure, web applications, mobile, cloud, and Active Directory environments Support pre-sales activity through scoping and client engagement Produce clear, high quality technical reports and present findings to clients Maintain up to date knowledge of current threat trends, tools, and industry frameworks Contribute to internal training materials and technical blog content Provide guidance and support to junior team members when required Requirements: Active SC Clearance is an ABSOLUTE MUST Active CSTM or CCT certification is an ABSOLUTE MUST 3+ years of hands-on penetration testing experience Strong knowledge of testing frameworks including OWASP Proficiency with industry standard tooling such as Burp Suite, Metasploit, and Nmap Experience across Linux and Windows environments Scripting ability in Python, Bash, or similar Knowledge of cloud environments (Azure, AWS) Strong written and verbal communication skills with experience presenting to clients Role: Penetration Testing Consultant Location: Remote (Occasional client site visits required) Salary: £55,000 - £65,000 Active SC Clearance is a requirement Oscar Associates (UK) Limited is acting as an Employment Agency in relation to this vacancy. To understand more about what we do with your data please review our privacy policy in the privacy section of the Oscar website.
Senior Infrastructure & Cloud Consultant - 50,000/ 55,000 - Scunthorpe Principal IT are delighted to be partnering with a well-established and growing Managed Service Provider in the recruitment of a Senior Infrastructure & Cloud Consultant . This is a senior, client-facing consultancy position suited to an experienced Microsoft cloud and infrastructure specialist who thrives in complex project environments. The role will see you leading multi-site enterprise deployments, acting as a trusted technical advisor to senior stakeholders, and shaping long-term cloud strategy for key customers. Our client delivers high-quality Microsoft-led infrastructure solutions and is seeking someone who can operate at architectural level while maintaining hands-on technical capability. The Role As a Senior Infrastructure & Cloud Consultant, you will: Lead the technical delivery of complex, multi-phase Microsoft infrastructure and Azure cloud projects. Act as the primary technical advisor for enterprise clients. Design, architect, and implement secure, scalable solutions aligned to business objectives. Provide escalation support for high-level technical challenges. Work closely with Project Managers to ensure projects are delivered on time and within budget. Engage with C-suite stakeholders and translate technical solutions into business outcomes. Mentor junior consultants and contribute to continuous improvement initiatives. You will play a pivotal role in shaping the technical direction of projects and influencing strategic decisions across client environments. Key Responsibilities Technical Delivery & Architecture Design and deploy Microsoft-based solutions across Microsoft 365, Azure, Windows Server, networking, and security. Lead multi-site deployments supporting 100+ user environments. Conduct infrastructure assessments and site surveys. Own solution architecture and provide alternative design approaches where required. Ensure security, scalability, and best practice compliance. Stakeholder Engagement Engage with senior client stakeholders including C-suite. Provide strategic guidance and technical recommendations. Communicate risks, project milestones, and business impact clearly. Project Governance Collaborate with IT Project Managers on resource planning and delivery. Produce and maintain project documentation including: Work plans Risk assessments Dependencies Downtime planning Technical designs Push back where deliverables are not technically viable. Continuous Improvement Identify automation and tooling opportunities. Improve delivery efficiency within Professional Services. Contribute to product portfolio development. Support knowledge sharing and mentoring initiatives. Measurable Outcomes On-time project delivery Delivery within agreed budgets High client satisfaction scores Seamless, high-quality implementations Strong documentation standards Contribution to process improvement and revenue initiatives Required Experience 5+ years' experience in an MSP or IT consultancy environment Proven experience delivering complex Microsoft cloud and infrastructure projects Strong background in solution architecture and enterprise environments Experience working directly with senior stakeholders Commercial awareness and client-facing consultancy skills Technical Skills & Certifications Strong expertise across: Microsoft 365 Azure Infrastructure Windows Server Networking & Security best practices Enterprise cloud architecture Desirable / Expected Certifications (or equivalent experience): MD-102 (Endpoint Administrator) MS-102 (Microsoft 365 Administrator) SC-100 (Cybersecurity Architect) SC-300 (Identity & Access Administrator) AZ-104 (Azure Administrator) AZ-305 (Azure Infrastructure Solutions Architect) Essential Requirements Right to work in the UK Full UK Driving License Ability to travel to client sites when required Who This Role Would Suit This opportunity would suit a: Senior Infrastructure Engineer stepping into a strategic consultancy role Azure Architect within an MSP seeking greater ownership Technical Lead who enjoys stakeholder engagement and architectural design About the Client Our client is a respected and growing MSP with a strong reputation for delivering high-quality Microsoft-led solutions. They pride themselves on technical excellence, professional standards, and long-term client partnerships. They offer a collaborative environment, clear progression opportunities, and exposure to complex enterprise-level projects. If you would like a confidential discussion regarding this opportunity, please contact Principal IT. INDGH
02/03/2026
Full time
Senior Infrastructure & Cloud Consultant - 50,000/ 55,000 - Scunthorpe Principal IT are delighted to be partnering with a well-established and growing Managed Service Provider in the recruitment of a Senior Infrastructure & Cloud Consultant . This is a senior, client-facing consultancy position suited to an experienced Microsoft cloud and infrastructure specialist who thrives in complex project environments. The role will see you leading multi-site enterprise deployments, acting as a trusted technical advisor to senior stakeholders, and shaping long-term cloud strategy for key customers. Our client delivers high-quality Microsoft-led infrastructure solutions and is seeking someone who can operate at architectural level while maintaining hands-on technical capability. The Role As a Senior Infrastructure & Cloud Consultant, you will: Lead the technical delivery of complex, multi-phase Microsoft infrastructure and Azure cloud projects. Act as the primary technical advisor for enterprise clients. Design, architect, and implement secure, scalable solutions aligned to business objectives. Provide escalation support for high-level technical challenges. Work closely with Project Managers to ensure projects are delivered on time and within budget. Engage with C-suite stakeholders and translate technical solutions into business outcomes. Mentor junior consultants and contribute to continuous improvement initiatives. You will play a pivotal role in shaping the technical direction of projects and influencing strategic decisions across client environments. Key Responsibilities Technical Delivery & Architecture Design and deploy Microsoft-based solutions across Microsoft 365, Azure, Windows Server, networking, and security. Lead multi-site deployments supporting 100+ user environments. Conduct infrastructure assessments and site surveys. Own solution architecture and provide alternative design approaches where required. Ensure security, scalability, and best practice compliance. Stakeholder Engagement Engage with senior client stakeholders including C-suite. Provide strategic guidance and technical recommendations. Communicate risks, project milestones, and business impact clearly. Project Governance Collaborate with IT Project Managers on resource planning and delivery. Produce and maintain project documentation including: Work plans Risk assessments Dependencies Downtime planning Technical designs Push back where deliverables are not technically viable. Continuous Improvement Identify automation and tooling opportunities. Improve delivery efficiency within Professional Services. Contribute to product portfolio development. Support knowledge sharing and mentoring initiatives. Measurable Outcomes On-time project delivery Delivery within agreed budgets High client satisfaction scores Seamless, high-quality implementations Strong documentation standards Contribution to process improvement and revenue initiatives Required Experience 5+ years' experience in an MSP or IT consultancy environment Proven experience delivering complex Microsoft cloud and infrastructure projects Strong background in solution architecture and enterprise environments Experience working directly with senior stakeholders Commercial awareness and client-facing consultancy skills Technical Skills & Certifications Strong expertise across: Microsoft 365 Azure Infrastructure Windows Server Networking & Security best practices Enterprise cloud architecture Desirable / Expected Certifications (or equivalent experience): MD-102 (Endpoint Administrator) MS-102 (Microsoft 365 Administrator) SC-100 (Cybersecurity Architect) SC-300 (Identity & Access Administrator) AZ-104 (Azure Administrator) AZ-305 (Azure Infrastructure Solutions Architect) Essential Requirements Right to work in the UK Full UK Driving License Ability to travel to client sites when required Who This Role Would Suit This opportunity would suit a: Senior Infrastructure Engineer stepping into a strategic consultancy role Azure Architect within an MSP seeking greater ownership Technical Lead who enjoys stakeholder engagement and architectural design About the Client Our client is a respected and growing MSP with a strong reputation for delivering high-quality Microsoft-led solutions. They pride themselves on technical excellence, professional standards, and long-term client partnerships. They offer a collaborative environment, clear progression opportunities, and exposure to complex enterprise-level projects. If you would like a confidential discussion regarding this opportunity, please contact Principal IT. INDGH
Cyber Security Consultant / Security Assurance SME Summer-Browning Associates is currently supporting our central government client, who is seeking a Cyber Security Consultant for an initial 6 assignments with the option to extend. Location: London / Milton Keynes / Hybrid / Remote The ideal candidate will have an active Security clearance and a strong background in Cyber Security Assurance within a high-threat government environment. Skills and experience. Experience in producing GovAssure and Secure-By-Design assessments, including Risk Assessment Papers, Risk Treatment Plans, Risk Business Cases, and Security Management Plans. Knowledge and experience with security architecture and Security Information and Event Management (SIEM) tools, such as Splunk, Defender, Sentinel, ELK, and Tenable Threat Modelling System solutions. Extensive understanding of cybersecurity threats, attack vectors, vulnerabilities, and security controls. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework, ISO 27001, NIST, COBIT, as well as SABSA and TOGAF. Experience in risk and threat modelling within high-threat government environments. Preferred Qualifications: Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable.
27/02/2026
Contractor
Cyber Security Consultant / Security Assurance SME Summer-Browning Associates is currently supporting our central government client, who is seeking a Cyber Security Consultant for an initial 6 assignments with the option to extend. Location: London / Milton Keynes / Hybrid / Remote The ideal candidate will have an active Security clearance and a strong background in Cyber Security Assurance within a high-threat government environment. Skills and experience. Experience in producing GovAssure and Secure-By-Design assessments, including Risk Assessment Papers, Risk Treatment Plans, Risk Business Cases, and Security Management Plans. Knowledge and experience with security architecture and Security Information and Event Management (SIEM) tools, such as Splunk, Defender, Sentinel, ELK, and Tenable Threat Modelling System solutions. Extensive understanding of cybersecurity threats, attack vectors, vulnerabilities, and security controls. Demonstrable knowledge of cybersecurity frameworks and standards, including the NCSC Cyber Assessment Framework, ISO 27001, NIST, COBIT, as well as SABSA and TOGAF. Experience in risk and threat modelling within high-threat government environments. Preferred Qualifications: Industry certifications such as CompTIA Security+, CISSP, CISM, CEH, or GIAC are highly desirable.
Info Sec and Cyber Security Consultant Up to 800pd DOE (Inside IR35) Milton Keynes - Hybrid 3 days in office 9 month initial contract Ideally SC/DV Cleared (Need to be eligible if not) My central Government client is looking for an experienced Information Security & Cyber Consultant to aid the business in making informed decisions about the Cyber and Information Security org structure and function, strategy. You will act as a subject matter expert to review the current setup with a view to providing advice, guidance and a draft strategy for information security and cyber functions (including the SOC). This is a fantastic role for any Information Security & Cyber Security Consultant with experience of working in an enterprise/Gov. environment to join on a potential long term contract basis. Roles & Responsibilities: Taking into account the status and work of the organisation, you will review the current organisation structure and function of the teams in relation to information security and cyber, create an options paper with clear recommendations using best practice to aid recruitment activity. Make recommendations and draft collateral for inclusion in cyber and information security strategy from (Apply online only) Creation of an information security and cyber work programme, taking into account the various initiatives, projects and recommendations from internal and external audits. Experience Required: Extensive experience in working in a cyber and information security environment, ideally within the Public Sector Experience of undertaking activities regarding creation of cyber and information security strategies, programmes and organisational structure reviews Working knowledge of the UK Government profession frameworks relating to Security and DDaT which apply to information security and cyber Understanding of ISO 27001 Rise Technical Recruitment Ltd acts an employment agency for permanent roles and an employment business for temporary roles. The salary advertised is the bracket available for this position. The actual salary paid will be dependent on your level of experience, qualifications and skill set and will be decided by our client, the employer. Rise are not responsible or liable for any hiring decisions made by the end client. We are an equal opportunities company and welcome applications from all suitable candidates.
27/02/2026
Contractor
Info Sec and Cyber Security Consultant Up to 800pd DOE (Inside IR35) Milton Keynes - Hybrid 3 days in office 9 month initial contract Ideally SC/DV Cleared (Need to be eligible if not) My central Government client is looking for an experienced Information Security & Cyber Consultant to aid the business in making informed decisions about the Cyber and Information Security org structure and function, strategy. You will act as a subject matter expert to review the current setup with a view to providing advice, guidance and a draft strategy for information security and cyber functions (including the SOC). This is a fantastic role for any Information Security & Cyber Security Consultant with experience of working in an enterprise/Gov. environment to join on a potential long term contract basis. Roles & Responsibilities: Taking into account the status and work of the organisation, you will review the current organisation structure and function of the teams in relation to information security and cyber, create an options paper with clear recommendations using best practice to aid recruitment activity. Make recommendations and draft collateral for inclusion in cyber and information security strategy from (Apply online only) Creation of an information security and cyber work programme, taking into account the various initiatives, projects and recommendations from internal and external audits. Experience Required: Extensive experience in working in a cyber and information security environment, ideally within the Public Sector Experience of undertaking activities regarding creation of cyber and information security strategies, programmes and organisational structure reviews Working knowledge of the UK Government profession frameworks relating to Security and DDaT which apply to information security and cyber Understanding of ISO 27001 Rise Technical Recruitment Ltd acts an employment agency for permanent roles and an employment business for temporary roles. The salary advertised is the bracket available for this position. The actual salary paid will be dependent on your level of experience, qualifications and skill set and will be decided by our client, the employer. Rise are not responsible or liable for any hiring decisions made by the end client. We are an equal opportunities company and welcome applications from all suitable candidates.
OT Cyber Consultant/Engineer Infrastructure Hybrid: 1-2 days per week in Warwick and some site travel 6 months+ 640 per day In short: We require a strong, hands-on OT Cyber Engineer to join a global provider in infrastructure services. In full: Position Main Responsibilities: Report to the OT Security Operations Lead Contribute to the Digital Products and Solutions team in achieving goals and setting cyber security strategy. Assist in the delivery of cyber security projects by validating existing technical documentation. Lead deployment activities in OT environments, including configuring networks, remote access solutions, anti-malware, backup solutions and virtualization platforms. Provide customer cyber support and act as a point of contact for execution projects. Answer technical questions from Product Lines, including troubleshooting and solution listing. Write and perform training sessions for internal teams and customers. Support key business stakeholders in adopting new technologies. Develop and maintain technical partnerships with internal and external stakeholders or suppliers. Liaise with the internal ICS (Industrial Cyber Security) group on compliance and best practices. Support Cyber execution training and troubleshooting for Product Competence Centers. Maintain the cyber security lab in Warwickshire with monthly visits. Travel to customer sites globally (approx. 10% of the time). Typical Day Overview: A typical day may involve: Responding to cyber technical queries from sales teams or engineering teams Configuring network devices or security solutions Creating user guides for engineering teams to deploy cyber security solutions Preparing or delivering training sessions. Collaborating with stakeholders to review technical documentation Supporting engineers during project execution. Must have Relevant Skills and Experience: Hands-on competence as a control systems engineer or network engineer role, with knowledge of industrial applications preferably in energy or oil & gas. Hands-on competence with cyber security implementation in OT environments. Actual engineering hands-on competence of configuring & deploying security solutions. Hands-on competence with Backup Solutions and Anti-Malware solutions Good practical knowledge of industrial cyber regulations, especially IEC 62443. Strong attention to detail and high-quality deliverables. Hands-on competence of remote connection solutions used in industry. Hands-on competence configuring network switches and firewalls. Proven ability to write and manage technical documentation. Preferred certifications: GICSP or similar. Hands-on competence with virtualization platforms (e.g., VMware, Proxmox). Excellent interpersonal, verbal, and written communication skills for client-facing interactions. Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer. We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention.
25/02/2026
Contractor
OT Cyber Consultant/Engineer Infrastructure Hybrid: 1-2 days per week in Warwick and some site travel 6 months+ 640 per day In short: We require a strong, hands-on OT Cyber Engineer to join a global provider in infrastructure services. In full: Position Main Responsibilities: Report to the OT Security Operations Lead Contribute to the Digital Products and Solutions team in achieving goals and setting cyber security strategy. Assist in the delivery of cyber security projects by validating existing technical documentation. Lead deployment activities in OT environments, including configuring networks, remote access solutions, anti-malware, backup solutions and virtualization platforms. Provide customer cyber support and act as a point of contact for execution projects. Answer technical questions from Product Lines, including troubleshooting and solution listing. Write and perform training sessions for internal teams and customers. Support key business stakeholders in adopting new technologies. Develop and maintain technical partnerships with internal and external stakeholders or suppliers. Liaise with the internal ICS (Industrial Cyber Security) group on compliance and best practices. Support Cyber execution training and troubleshooting for Product Competence Centers. Maintain the cyber security lab in Warwickshire with monthly visits. Travel to customer sites globally (approx. 10% of the time). Typical Day Overview: A typical day may involve: Responding to cyber technical queries from sales teams or engineering teams Configuring network devices or security solutions Creating user guides for engineering teams to deploy cyber security solutions Preparing or delivering training sessions. Collaborating with stakeholders to review technical documentation Supporting engineers during project execution. Must have Relevant Skills and Experience: Hands-on competence as a control systems engineer or network engineer role, with knowledge of industrial applications preferably in energy or oil & gas. Hands-on competence with cyber security implementation in OT environments. Actual engineering hands-on competence of configuring & deploying security solutions. Hands-on competence with Backup Solutions and Anti-Malware solutions Good practical knowledge of industrial cyber regulations, especially IEC 62443. Strong attention to detail and high-quality deliverables. Hands-on competence of remote connection solutions used in industry. Hands-on competence configuring network switches and firewalls. Proven ability to write and manage technical documentation. Preferred certifications: GICSP or similar. Hands-on competence with virtualization platforms (e.g., VMware, Proxmox). Excellent interpersonal, verbal, and written communication skills for client-facing interactions. Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer. We use generative AI tools to support our candidate screening process. This helps us ensure a fair, consistent, and efficient experience for all applicants. Rest assured, all final decisions are made by our hiring team, and your application will be reviewed with care and attention.
Role Title - Security Consultant Our Security Consultancy and Design team are continuing their search for Cyber Security Consultants who have a broad knowledge of Cyber Security domains and controls working across a wide range of computing platforms. Join our Chief Security Office here at Lloyds Banking Group as we build the bank of the future. Location(s): Manchester, Leeds, Bristol, Halifax, Edinburgh. Contract: 3/6 months Hours: Full time. Working Pattern: Hybrid, 40% (or two days) in an office site. About this opportunity Are you someone who wants to be in the heart of Cyber Security delivering change and working in an agile way, ensuring we execute our strategy and transformation agenda safely? Then we have the perfect opportunity for you. We are actively welcoming enthusiastic Cyber Security Professionals from all industries and backgrounds to join our expanding team as we embark on an exciting journey where you will have the opportunity to ensure security by design is embedded across our change portfolio. Cyber Security sits at the heart of our business providing the Group with a secure operating environment, safe from malicious attacks. It is a dynamic and constantly evolving world where your experience and efforts can deliver tangible results to the safety of a huge company and over 30m customers. We're on the mission to build the bank of the future, and we need your help to do it! What you'll do: • Applying Agile methodologies to support engineers and deliver on multiple challenging product initiatives simultaneously, driving engineering excellence. • Threat model by deconstructing technical solutions, identifying threats and vulnerabilities and assessing risks. • Use experience to analyse the risks and benefits of design options to support making safe architectural decisions. • Design secure solutions documenting the key security controls and adhering to security standards. • Define security testing requirements and assess findings. • Effectively communicate technical concepts to both technical and nontechnical audiences, providing security direction, governance, assurance and guidance. What we're looking for: • Dynamic solution-oriented individual bringing energy to a rapidly evolving environment with an ability to work well under pressure. • Broad knowledge of modern Enterprise technologies including Cloud and AI • Exposure to contemporary architectures eg. RESTful APIs and containerised microservices. • Up-to date on emerging threats and experienced with threat modelling frameworks eg. STRIDE / MITRE ATT&CK. • Significant knowledge of cyber security domains and how they apply to Enterprise business environments eg. endpoint, network, cryptography and IAM. The nice to haves: • Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. • Certifications in security management eg. CISSP / CISM / CCSP or equivalent. • Certifications in technical security domains eg. CEH / OSCP or equivalent. • Experience of Public and or Private cloud environments. ?Mandatory Skills: Security Architecting .
24/02/2026
Contractor
Role Title - Security Consultant Our Security Consultancy and Design team are continuing their search for Cyber Security Consultants who have a broad knowledge of Cyber Security domains and controls working across a wide range of computing platforms. Join our Chief Security Office here at Lloyds Banking Group as we build the bank of the future. Location(s): Manchester, Leeds, Bristol, Halifax, Edinburgh. Contract: 3/6 months Hours: Full time. Working Pattern: Hybrid, 40% (or two days) in an office site. About this opportunity Are you someone who wants to be in the heart of Cyber Security delivering change and working in an agile way, ensuring we execute our strategy and transformation agenda safely? Then we have the perfect opportunity for you. We are actively welcoming enthusiastic Cyber Security Professionals from all industries and backgrounds to join our expanding team as we embark on an exciting journey where you will have the opportunity to ensure security by design is embedded across our change portfolio. Cyber Security sits at the heart of our business providing the Group with a secure operating environment, safe from malicious attacks. It is a dynamic and constantly evolving world where your experience and efforts can deliver tangible results to the safety of a huge company and over 30m customers. We're on the mission to build the bank of the future, and we need your help to do it! What you'll do: • Applying Agile methodologies to support engineers and deliver on multiple challenging product initiatives simultaneously, driving engineering excellence. • Threat model by deconstructing technical solutions, identifying threats and vulnerabilities and assessing risks. • Use experience to analyse the risks and benefits of design options to support making safe architectural decisions. • Design secure solutions documenting the key security controls and adhering to security standards. • Define security testing requirements and assess findings. • Effectively communicate technical concepts to both technical and nontechnical audiences, providing security direction, governance, assurance and guidance. What we're looking for: • Dynamic solution-oriented individual bringing energy to a rapidly evolving environment with an ability to work well under pressure. • Broad knowledge of modern Enterprise technologies including Cloud and AI • Exposure to contemporary architectures eg. RESTful APIs and containerised microservices. • Up-to date on emerging threats and experienced with threat modelling frameworks eg. STRIDE / MITRE ATT&CK. • Significant knowledge of cyber security domains and how they apply to Enterprise business environments eg. endpoint, network, cryptography and IAM. The nice to haves: • Awareness of industry related security standards such as ISO 27000 series, PCI DSS, COBIT, NIST, OWASP. • Certifications in security management eg. CISSP / CISM / CCSP or equivalent. • Certifications in technical security domains eg. CEH / OSCP or equivalent. • Experience of Public and or Private cloud environments. ?Mandatory Skills: Security Architecting .
