20 jobs found

Infrastructure Support Analyst Tiverton, EX16. Hours: Monday to Friday, 9:00am 5:00pm (35 hours per week) Salary: £30,000 - £32,000 Overview An experienced Infrastructure Analyst is required to join a collaborative IT team supporting a business-wide technology transformation. The organisation is focused on modernising its IT estate, adopting cloud-first and modern workplace technologies, and continuously improving its infrastructure and service delivery. This is an excellent opportunity for a hands-on infrastructure professional to contribute to both BAU support and strategic IT improvement initiatives within a forward-thinking environment. Key Responsibilities Support the modernisation and ongoing improvement of all IT systems and infrastructure Monitor, maintain, and ensure the stability and performance of infrastructure environments Assist the IT Service Desk with escalations and infrastructure-related queries Analyse existing systems and recommend improvements aligned with modern best practices Carry out regular patching, upgrades, and preventive maintenance activities Support end-user device configuration, including new hardware setup and policy/compliance management Provide clear, business-focused technical input and guidance where required Produce and maintain technical documentation for both end users and support teams Contribute to the organisation s wider IT strategy and transformation initiatives Key Skills & Experience Required Strong knowledge of networking principles, including: DNS, DHCP, TCP/IP Subnetting and VLANs Experience with Windows Server () Proficiency in Microsoft 365, including enterprise licensing (F through E suites) Understanding of modern identity and security concepts (e.g. MFA, conditional access) Experience with Microsoft Azure (IaaS & PaaS), including security and governance Familiarity with firewall configuration and network security best practices Experience with threat hunting, vulnerability management, and security tooling Strong experience producing technical documentation Experience in a support or infrastructure-focused IT role Benefits 25 days annual leave plus bank holidays Company pension scheme (with employer contribution) Healthcare cashback scheme Discounts with local shops and services Retail discounts with major brands including Argos, Currys, Halfords, Tesco, Sainsbury s, and Morrisons Free on-site parking Career progression opportunities Ongoing training and professional development Recommend-a-friend scheme If you would like to apply then please email your CV to (url removed) or call Jade on (phone number removed) Closing date is 19.04.2026 - Please note this could change subject to suitable applications Hawk 3 Talent Solutions are acting as an employment agency on behalf of its client. By applying for the above position and providing your personal data to us you understand that your data will be processed in line with our Privacy Policy. To view our full Privacy Policy please visit our website. Hawk 3 Talent Solutions are committed to the selection, recruitment and development of the best people, basing judgements solely on suitability for the job. Whilst we endeavour to respond to all applications individually, due to high volumes, this is not always possible. Thank you for your interest in this role and we look forward to working with you in the future

Head of Application Support - International Bank Excellent opportunity has arisen for a Head of Application Support to join a growing International Bank, playing a key role in shaping and supporting its application and technology landscape. This role offers the opportunity to lead both development and application support within a dynamic, regulated environment, delivering secure and resilient systems that underpin core banking operations, digital channels, and internal business functions. Operating in a smaller, agile setting, the position provides real ownership across change delivery, vendor management, and day-to-day operational stability, with the ability to directly influence technology strategy and service quality. Main Responsibilities: Lead, mentor and develop a team of application developers and support analysts Foster a collaborative, high-performance culture focused on innovation and service quality Conduct performance reviews and support ongoing professional development Oversee the design, development, testing and implementation of new applications and enhancements Transition newly delivered solutions into structured BAU support models Deliver small-scale change initiatives and continuous improvements Plan delivery timelines, allocate resources and ensure milestones are achieved Partner with change and project teams to manage demand, capacity and prioritisation Ensure timely resolution of incidents, defects and performance issues Define and monitor SLAs, managing escalations with a focus on root cause analysis Oversee application monitoring, optimisation and performance tuning Maintain a consistent and integrated support model across all systems Manage third-party vendor relationships to ensure ongoing system support Coordinate upgrades, patches and maintenance with minimal business disruption Oversee remediation of security vulnerabilities and address audit or configuration findings Maintain up-to-date documentation, configurations and support procedures Promote best practices across the software development life cycle, including code reviews and automated testing Ensure adherence to regulatory, audit, security and data protection standards Maintain effective business continuity and disaster recovery processes Act as the primary liaison between IT, business stakeholders and external technology partners Provide regular reporting to governance, change and PMO forums on delivery and support performance Manage budgets related to application support and enhancement activity Make resourcing and hiring recommendations based on operational and project demand Contribute to annual budget planning and technology investment decisions Recommend tools, technologies and methodologies to enhance efficiency and service delivery Key Requirements: Proficiency in various programming languages and development frameworks Experience in application and development lifestyle management Experience in analysis and design, testing and documentation of software Bachelor's degree in Computer Science, Information Technology, or a related field. 3+ years of experience in software development, with at least 1 year in a managerial role. Strong understanding of application life cycle management, agile methodologies, and DevOps practices. Proven experience with application support and incident management in complex technical environments. Excellent problem-solving skills with the ability to handle complex technical issues. Strong project management skills, with the ability to prioritize and manage multiple projects simultaneously. Exceptional communication, collaboration, and interpersonal skills. Experience with cloud platforms (Microsoft Azure) Familiarity with ITIL or other service management frameworks. Certifications such as PMP, Scrum Master, or relevant technical certifications. Interested? Please Apply! Application Development Application Support Software Development Lifecycle SDLC Agile Scrum DevOps Microsoft Azure Cloud Platforms ITIL Incident Management Problem Management Change Management Release Management BAU Support Production Support Root Cause Analysis Stakeholder Management System Integration Application Lifecycle Management ALM Performance Tuning Application Monitoring Security Remediation Vulnerability Management Regulatory Compliance Audit Business Continuity Disaster

Application Support Manager - International Bank Excellent opportunity has arisen for a Application Support Manager to join a growing International Bank, playing a key role in shaping and supporting its application and technology landscape. This role offers the opportunity to lead both development and application support within a dynamic, regulated environment, delivering secure and resilient systems that underpin core banking operations, digital channels, and internal business functions. Operating in a smaller, agile setting, the position provides real ownership across change delivery, vendor management, and day-to-day operational stability, with the ability to directly influence technology strategy and service quality. Main Responsibilities: Lead, mentor and develop a team of application developers and support analysts Foster a collaborative, high-performance culture focused on innovation and service quality Conduct performance reviews and support ongoing professional development Oversee the design, development, testing and implementation of new applications and enhancements Transition newly delivered solutions into structured BAU support models Deliver small-scale change initiatives and continuous improvements Plan delivery timelines, allocate resources and ensure milestones are achieved Partner with change and project teams to manage demand, capacity and prioritisation Ensure timely resolution of incidents, defects and performance issues Define and monitor SLAs, managing escalations with a focus on root cause analysis Oversee application monitoring, optimisation and performance tuning Maintain a consistent and integrated support model across all systems Manage third-party vendor relationships to ensure ongoing system support Coordinate upgrades, patches and maintenance with minimal business disruption Oversee remediation of security vulnerabilities and address audit or configuration findings Maintain up-to-date documentation, configurations and support procedures Promote best practices across the software development life cycle, including code reviews and automated testing Ensure adherence to regulatory, audit, security and data protection standards Maintain effective business continuity and disaster recovery processes Act as the primary liaison between IT, business stakeholders and external technology partners Provide regular reporting to governance, change and PMO forums on delivery and support performance Manage budgets related to application support and enhancement activity Make resourcing and hiring recommendations based on operational and project demand Contribute to annual budget planning and technology investment decisions Recommend tools, technologies and methodologies to enhance efficiency and service delivery Key Requirements: Proficiency in various programming languages and development frameworks Experience in application and development lifestyle management Experience in analysis and design, testing and documentation of software Bachelor's degree in Computer Science, Information Technology, or a related field. 3+ years of experience in software development, with at least 1 year in a managerial role. Strong understanding of application life cycle management, agile methodologies, and DevOps practices. Proven experience with application support and incident management in complex technical environments. Excellent problem-solving skills with the ability to handle complex technical issues. Strong project management skills, with the ability to prioritize and manage multiple projects simultaneously. Exceptional communication, collaboration, and interpersonal skills. Experience with cloud platforms (Microsoft Azure) Familiarity with ITIL or other service management frameworks. Certifications such as PMP, Scrum Master, or relevant technical certifications. Interested? Please Apply! Application Development Application Support Software Development Lifecycle SDLC Agile Scrum DevOps Microsoft Azure Cloud Platforms ITIL Incident Management Problem Management Change Management Release Management BAU Support Production Support Root Cause Analysis Stakeholder Management System Integration Application Lifecycle Management ALM Performance Tuning Application Monitoring Security Remediation Vulnerability Management Regulatory Compliance Audit Business Continuity Disaster

The Just Recruitment Group Ltd is currently recruiting for an Infrastructure Support Analyst for an engineering manufacturer, based in Tiverton, Devon. An experienced Infrastructure engineer is required to join a small team that are transitioning the IT systems of the organisation, embracing modern workplace technologies, and adopting new methods and practices. This role would suit an all-rounder seeking to move into a 3rd line support and engineering position, offering extensive experience in IT. This is a great opportunity to take the next step in your career as the company embrace modern workplace technologies and see to invest across the IT estate. Ideally coming from a support background, the postholder will be well versed in providing customer focused IT and have an appreciation of end-user requirements. The postholder will be supporting modernising every aspect of the IT estate. You will be supporting a Wintel based on premises infrastructure with an overall strategy of 'serverless computing'. Analysing this existing infrastructure and suggesting / researching improvements that align with the overall strategy. Cyber Security will be a core part of the role and experience in this area is essential. You will be required to assist the support desk team with end user support escalations and be a key player in redefining how IT services are delivered and supported. You will be monitoring and maintaining all aspects of the infrastructure, so experience of preventive maintenance and predictive failure analysis will be required. Key requirements / Skills Windows Server (Apply online only Active directory, Hyper-V Office / Microsoft 365 (F through E suites) Microsoft Cloud technologies. Intune, Defender, Entra Etc. Modern identities and security (2FA etc.) Azure (PaaS, IaaS). Security and Governance. Deep Knowledge of Networking (DNS, DHCP, TCP, IP/ Subnetting, Vlans, 802.1X, Routing and SD-WAN) with exposure to multiple switch vendors, with HP / Aruba & Unifi in use across the organisation. Enterprise WiFi deployments (802.1x / Certificate based) as well as guest and BYOD access requirements. Familiar with firewall configuration fundamentals and advanced threat hunting. Experience with security tools and general vulnerability management, both at the perimeter and client. Experience of backup methodologies and management Produce documentation for end users and the support desk. IT Helpdesk Experience Desirable skills Cyber Essential Certification Experience with ISO 27001 Traditional and Cloud delivered Phone Systems SQL Server Veeam Rubrik Daily duties will include the monitoring and maintenance of the infrastructure and undertaking regular patch / upgrade activities Assist the IT support team with end-user queries (infrastructure related) and assist in configuring end user devices (new hardware / policy / compliance management) Working hours are 9.00am to 5.00pm Monday to Friday with some flexibility for occasional work outside of core hours for upgrades / maintenance. Some travel to branch sites may be required from time to time. Benefits In return we offer a competitive salary, an attractive benefits package including pension and healthcare cashback schemes; a personal holiday allocation of 25-days per year (full-time) plus Bank Holidays and free on-site parking. For more information on this position, please contact Just Recruitment Group Ltd on telephone (phone number removed) quoting job reference TB46. Please note that if you have not been contacted within 7 days, your application for this position has been unsuccessful.

Network Security Analyst Wigton, Cumbria Up to £35,500 per year Adecco Workington are delighted to be recruiting for our fantastic client, a well established international manufacturing organisation, to join their IT team as a Network Security Analyst. The role will involve: Monitoring network and user activity and managing security incidents Supporting security impact assessments and change management Maintaining IT controls and supporting audit activity Ensuring compliance with global cybersecurity standards Contributing to security policies and governance frameworks We are looking for: Experience in IT operations with exposure to cybersecurity or governance Knowledge of ISO 27001, GDPR and risk management frameworks Familiarity with vulnerability management, SIEM or EDR tools Strong understanding of Windows Server, Active Directory and Microsoft 365 security Strong analytical and communication skills What is on offer: Salary up to £35,500 depending on experience Performance related pay and annual bonus 25 days holiday plus bank holidays Flexible working options Competitive pension and healthcare benefits This is an excellent opportunity to develop your career within a global organisation committed to security and continuous improvement. Adecco acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Adecco Group UK & Ireland is an Equal Opportunities Employer. By applying for this role your details will be submitted to Adecco. Our Candidate Privacy Information Statement explaining how we will use your information is available on our website.

Information Security Analyst Hybrid Nottingham (1 day per week onsite) Full-time, 40 hours per week (Mon Fri, 9am 5pm) Salary: £35,000 - £40,000 depending upon experience Are you a pragmatic, detail driven security professional who enjoys turning standards into practical security controls and helping teams understand and manage risk? If you re confident collaborating across departments, producing clear reports, and strengthening an organisation s security posture through measurable improvements, this role could be a great fit. We re looking for an Information Security Analyst who can balance governance, risk, compliance, and hands-on operational security activities. What you ll be doing In this varied and impactful role, you ll help operate and continuously improve our Information Security Management System (ISMS) while supporting risk management, compliance, and audit readiness across the business. Your work will span policies, controls, assessments, awareness, and metrics. You will: Maintain and update ISMS policies, standards, and procedures Coordinate internal and external audits (including Gambling Commission security audits) from planning to closure. Run the risk management process, keeping registers and treatment plans accurate Support PCI DSS compliance activities and associated evidence collection Manage and track vulnerability scanning and remediation across systems Assist with incident response, triage, evidence collection, and post-incident reviews Work with IT and MSPs to improve security controls, alert quality, logging, and SIEM coverage Conduct supplier due diligence and review third-party security documentation Deliver targeted security awareness training and publish practical guidance Produce monthly and quarterly reports on risk, vulnerabilities, audits, and incidents This is a collaborative, business-wide role where you ll help embed security into everyday operations and ensure controls remain effective and well-documented. What You ll Get in Return 24/7 access to GPs, mental health support, and more for you and your family Thrive App NHS-approved mental wellbeing support Buzz Brights Apprenticeships & Buzz Learning access to 100s of online courses Buzz Brilliance Awards employee recognition scheme Annual Bonus, depending on company performance 5 weeks annual leave plus public holidays (pro-rated for part-time roles) Holiday Buy Scheme purchase an extra week of holiday (eligibility applies) 50% staff discount on bingo tickets, food, and soft drinks Refer a Friend Scheme Life Assurance & Pension Scheme Access to trained Mental Health Advocates What you ll bring We d love to hear from you if you have: Working knowledge of ISO/IEC 27001 (risk, audit cycles, controls, evidence) Understanding of PCI DSS requirements and SAQ/attestation processes Awareness of NCSC best-practice guidance (cloud, phishing, access control, incident management, etc.) Experience producing clear, concise reports and presenting to stakeholders Ability to translate technical findings into practical remediation actions Strong communication skills and confidence working with IT, suppliers, and business teams An organised, methodical approach with great attention to detail

About The Role Team - Vitality Technology Working Pattern - Hybrid - 2 days per week in the Vitality Bournemouth Office. Full time, 35 hours per week. We are happy to discuss flexible working! Top 3 skills needed for this role: Security Operations Leadership & Incident Response Risk, Governance & Regulatory Compliance Technical Depth in Monitoring & Security Engineering What this role is all about: Join our dynamic, values-led organisation to help strengthen Vitality's cyber security. You'll support the CISO in delivering our security strategy, lead a team of analysts, and oversee key controls that protect member data. The role includes security monitoring, incident response, developing playbooks, and managing the CSIRT function. Key Actions Leadership and management of the Cyber Security Operations team Conducting cyber security maturity assessments; continuous improvement of existing security controls and assessing new tools/capabilities for recommendation to management Perform cyber risk assessments; develop reporting metrics to articulate risk posture to Senior Management Be the key contact for, and lead on the management of Cyber Security incidents, performing and co-ordinating forensic investigations; mature the Cyber Incident detection and response capabilities Engagement with internal stakeholder and external bodies as required, Vendors, forensic partners, regulatory bodies Threat hunting; monitoring for emerging security threats Ensure compliance with Vitality's ISMS, Regulatory requirements and Information Security best practice frameworks (e.g. ISO27001, GDPR, NIST, Cyber Essentials, ITIL) to ensure the Confidentiality, Integrity and Availability of Vitality Information Systems Penetration testing and vulnerability management governance and remediation Deliver key Information Security initiatives/projects, in line with InfoSec and Cyber Security strategy and Enterprise Risk Management Framework Responsible for ensuring that Vitality IT assets are adequately protected from Cyber-attacks and malicious insiders Provide expert professional advice across Vitality on Information and Cyber Security best practice, training, and awareness sessions What do you need to thrive? Degree or professional security qualifications and certifications such as MSc, CISSP, CISM, CISA or equivalent Minimum 5 years' experience working in Cyber Security Excellent verbal and written communication skills; ability to articulate technical knowledge to non-technical audience; production of policy/standards/project documentation Appropriate level of technical knowledge, hands-on experience of configuring security tools Demonstrable experience of designing, implementing and managing information security initiatives Sound understanding of security frameworks (e.g. ISO27001/2, PCI DSS, NIST), Data Protection and regulatory compliance (e.g. FCA, ICO, PRA, GDPR) So, what's in it for you? Bonus Schemes - A bonus that regularly rewards you for your performance A pension of up to 12%- We will match your contributions up to 6% of your salary Our award-winning Vitality health insurance - With its own set of rewards and benefits Life Assurance - Four times annual salary These are just some of the many perks that we offer! To view the extensive range of benefits we offer, please visit our careers page. Fantastic Benefits. Exciting rewards. Great career opportunities! If you are successful in your application and join us at Vitality, this is our promise to you, w e will: Help you to be the healthiest you've ever been. Create an environment that embraces you as you are and enables you to be your best self. Give you flexibility on how, where and when you work. Help you advance your career by playing you to your strengths. Give you a voice to help our business grow and make Vitality a great place to be. Give you the space to try, fail and learn. Provide a healthy balance of challenge and support. Recognise and reward you with a competitive salary and amazing benefits. Be there for you when you need us. Provide opportunities for you to be a force for good in society. We commit to all these things because we want you to feel that you belong, and are supported to be happy and healthy. About The Company We're incredibly proud to be recognised for the culture we've created - recently being named one of Glassdoor's Best Places to Work 2026 , and in 2024 we were delighted to be awarded Top 10 Places to Work in the Sunday Times Awards. We've been a purpose and values-driven business from day 1- long before it became fashionable. Our core purpose is to make people healthier and enhance protect their lives. We're successful because we attract, develop, and retain the best people - and because we care. Diversity & Inclusion At Vitality, we're committed to diversity and inclusion because it's good for our employees, for our business, and for society. We welcome applications from individuals of all backgrounds, experiences, and perspectives. Vitality's approach to sustainability Vitality is a business that drives positive change. We reward people for making and sustaining healthier choices. But healthy people also need a healthy environment. To learn more please visit our Careers page. If we are fortunate in receiving a high volume of quality applications we may need to close this vacancy early.

Role Title: Cyber Risk Analyst Location: Knutsford 3 days on site Duration: 30/10/2026 Rate 404 MUST BE PAYE THROUGH UMBRELLA Role Description: "Role Overview: The Cyber Risk Analysts will work under the guidance of the Lead Consultant to execute the detailed risk assessments and analysis of End-of-Life technologies. In this role, you will collect and analyze data on EOL systems, evaluate cyber risks using the defined methodology, and support the implementation of remediation plans. Key Responsibilities: Perform Risk Assessments: Conduct in-depth cyber risk assessments for identified EOL systems and technologies, following the methodology and framework established by the project. Gather necessary information on assets (software, hardware, applications that are end-of-life or end-of-support) and assess the potential cyber threats, vulnerabilities, and business impacts associated with each5. Document findings meticulously, ensuring each risk item is well-described (likelihood, impact, severity) in the risk register. Required Skills & Competencies: Analytical Skills: Strong analytical and problem-solving skills are essential. The analyst must be able to assess complex IT systems and identify risk factors, interpret vulnerability data, and quantitatively rate risks. Attention to detail is critical for reviewing large lists of EOL assets and ensuring nothing is missed. Cybersecurity Knowledge: Good understanding of foundational cybersecurity principles (confidentiality, integrity, availability) and how outdated technologies can pose threats. Familiarity with common vulnerabilities and exploits affecting older systems (legacy OS, unsupported software) is beneficial. Knowledge of cyber risk frameworks and standards (such as NIST, ISO27001) and basic concepts of risk assessment is expectedxxiv. Qualifications & Certifications: Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. Equivalent experience in cyber risk or IT security roles can be considered in lieu of a formal degree. Certifications: Relevant industry certifications are not mandatory but highly valued. Certifications demonstrating knowledge of security and risk principles (e.g., CompTIA Security+, Certified Ethical Hacker (CEH), or GIAC/GSEC) would be a plus. Certifications specifically in risk management or governance (such as CRISC, Certified Information Systems Auditor (CISA), or ISO 27001 Lead Auditor/Implementer) are also advantageous for this role, as they indicate a grasp of risk and control assessment practices. Experience: Years of Experience: Approximately 3-5+ years of experience in cybersecurity or IT risk roles. This could include experience as a Cyber Risk Analyst, IT Risk Analyst, Security Analyst, Vulnerability Management Specialist, or GRC (Governance, Risk & Compliance) Analyst. Candidates with slightly more or less experience will be considered based on skill fit, but a baseline understanding from a few years in the field is expected. Risk Assessment Background: Hands-on experience conducting risk assessments or security assessments is required. For example, experience in identifying and assessing risks for IT systems, writing risk or control reports, or supporting risk treatment projects. Familiarity with creating or maintaining risk registers and tracking mitigation actions is important (e.g., experience ensuring "risks and remediation plans are regularly addressed" in previous rolesxxvii). Industry-Specific Experience (Desirable): Experience in the financial services sector or other highly-regulated industries is a plus.

Cyber Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require a Cyber Security Analyst to join the firm in Newcastle. The scope of the Information Security function includes all strategic security planning and control oversight to ensure effective risk mitigation takes place within the firm. The team operates a number of security solutions directly, such as anti-malware solutions, Internet security proxy servers, and the vulnerability scanning platforms. Key Responsibilities: Review, action, and escalate, any unusual event behaviour identified. Assist with development and maintenance of the Firm-wide security infrastructure configuration, policies and procedures, identifying improvements to procedures, and reporting on incidents. Actively promote security governance in support of the Information Security policies, to ensure appropriate measures are taken to secure the Firm's confidentiality and integrity. Encourage cooperative working with all business functions to achieve shared goals, ensuring skills transfer and technical security awareness within the teams. This includes writing process documents and conducting training. Key Skills and Experience: At least 5 years' experience working within Information Security infrastructure or vocation to move from another technical discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption. Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly desirable. Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM) Technical bachelor's degree or equivalent IT / Information Security experience (required) Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred). Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred) Cyber Security Analyst In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. DGH Recruitment Limited acts as both an Employment Agency and Employment Business

Senior Security & Technology Consultants Location: Warton, UK (On-Site - 5 Days per Week) Clearance Required: Valid MOD DV (Mandatory) Engagement Type: Contract (Inside IR35) Day Rate: 500 - 900 per day (dependent on role and experience) Overview We are seeking experienced Security & Technology Professionals to support critical programmes in a secure defence environment. These roles span architecture, assurance, operations, and technical delivery disciplines and require individuals who can operate effectively within highly regulated, mission-critical settings. All positions are based full-time on-site in Warton (5 days per week) and require candidates to hold a current and valid MOD DV clearance at the time of application. Scope of Opportunities We are hiring across multiple security and technology disciplines, including: Security Architects Security Assurers Information Security Consultants SOC Analysts OT Architects Cross Domain SMEs IT Administrators Service Managers Product Security Managers Penetration Testing Specialists Technical Project / Programme Managers Key Responsibilities (Role Dependent) Security Architecture & Design Define and review secure architectures across enterprise IT and OT environments. Act as technical authority for secure system design and implementation. Lead threat modelling, risk assessments, and security design reviews. Ensure compliance with defence security standards and secure-by-design principles. Security Assurance & Governance Deliver independent security assurance across programmes. Support accreditation activities and compliance reviews. Develop and maintain security documentation, standards, and risk registers. Security Operations & SOC Monitor, analyse, and respond to security events and incidents. Strengthen detection, response, and resilience capabilities. Support vulnerability management and remediation activities. OT & Cross Domain Security Provide expertise in Operational Technology environments. Design and assure secure cross-domain solutions and data transfer mechanisms. Evaluate network segregation and high-assurance controls. Penetration Testing & Vulnerability Management Conduct or oversee penetration testing engagements. Assess vulnerabilities and validate remediation strategies. Support red/blue team activities where required. Service & Product Security Embed security into live service management processes. Act as Product Security lead across development lifecycles. Integrate DevSecOps controls and secure SDLC practices. Technical Delivery & Programme Support Manage security-focused technical workstreams. Provide governance reporting to senior stakeholders. Translate technical risks into business impact and mitigation plans. Essential Requirements Valid and transferable MOD DV clearance (mandatory). Availability to work on-site in Warton, 5 days per week. Strong background in one or more of the listed security disciplines. Experience working in secure, defence, or highly regulated environments. Relevant certifications (e.g., CISSP, CISM, TOGAF, CREST, cloud certifications).

Cyber Security Manager Permanent Tameside, Greater Manchester (Hybrid) Salary: £56,000 per annum + car allowance A leading housing association is seeking an experienced Cyber Security Manager to lead their network and security functions. This is a fantastic opportunity to shape cybersecurity strategy and governance in a purpose-driven organisation that manages over 37,000 homes and prioritises resident wellbeing, community sustainability, and innovation. About the role Reporting to the Assistant Director of Technology Services, you will provide tactical and operational leadership to a small, capable team (including Senior/Junior Security Analysts, Senior Security Engineer, and network engineers). The focus is approximately 80% cyber security and 20% network-related responsibilities. You will take a proactive, strategic approach to safeguarding information assets, managing cyber risks, leading incident response, and driving continual improvement in our security and network posture. Key responsibilities include: Developing and maintaining security strategies, policies, standards, and procedures in alignment with frameworks such as ISO27001 , NIST CSF , CIS Controls , and Cyber Essentials Plus . Providing senior leadership with insightful reports, dashboards, and actionable recommendations on security posture, risks, and incidents. Leading cyber risk assessments, third-party risk management, vulnerability remediation, patch management (soon transitioning to a third-party provider-opportunity to put your stamp on processes), and supplier compliance. Overseeing incident management, coordinating audits, penetration testing (third-party delivered, but you will shape scoping and remediation), and contributing to disaster recovery/business continuity. Mentoring and developing the team to high performance, aligned with SFIA framework. Building strong relationships with stakeholders, executive leaders, SOC partners, vendors, and auditors. Championing security awareness across the organisation. This is a leadership role where you can influence IT strategy, investment decisions, and compliance maturity. We are looking for someone ready to take ownership. About you We are particularly interested in candidates with proven managerial experience in cybersecurity (line managing teams, even small ones), strong compliance and governance expertise, and the ability to operate strategically. Essential : 5+ years hands-on technical experience in network/security, plus 2+ years in a senior/lead cybersecurity role. Leadership of teams and delivery of security strategies/policies. Deep knowledge of key frameworks (ISO27001, NIST CSF, CIS Controls, Cyber Essentials Plus). Experience in risk management, incident response, vulnerability management/remediation, third-party security, and stakeholder engagement. Relevant certifications (e.g., CISSP, CISM, CCNP Security, CEH, ISO27001 Lead Implementer/Auditor-or equivalent experience). Degree in Cyber Security, IT, Computer Science (or equivalent experience). Desirable : Background in housing, public sector, or regulated environments. Hands-on experience with firewalls, hybrid infrastructure security, SOC collaboration, and pen testing oversight. Experience and leadership ability outweigh formal qualifications-we value a strategic mindset and the drive to build robust governance. Benefits: Excellent work-life balance: 24 days annual leave + 3 days Christmas closure + bank holidays (rising with service). Flexible working: Compressed hours/4-day week possible, hybrid (50% home working after probation). Strong benefits: Competitive pension (Social Housing Pension Scheme), occupational sick pay, BHSF health membership, enhanced parental leave, training/development opportunities, on-site gyms. Progression: Clear opportunities for advancement (including into higher management over 5-10 years) in a pro-promotion culture. Purpose: Contribute to a respected organisation tackling housing challenges, building sustainable communities, and innovating digitally. If you're a hands-on leader with a track record in cybersecurity governance, compliance, and team management, and you're ready to lead in a supportive, outcome-focused environment, we'd love to hear from you.

Network Security Analyst Wigton, Cumbria Up to 35,500 per year Adecco Workington are delighted to be recruiting for our fantastic client, a well established international manufacturing organisation, to join their IT team as a Network Security Analyst. The role will involve: Monitoring network and user activity and managing security incidents Supporting security impact assessments and change management Maintaining IT controls and supporting audit activity Ensuring compliance with global cybersecurity standards Contributing to security policies and governance frameworks We are looking for: Experience in IT operations with exposure to cybersecurity or governance Knowledge of ISO 27001, GDPR and risk management frameworks Familiarity with vulnerability management, SIEM or EDR tools Strong understanding of Windows Server, Active Directory and Microsoft 365 security Strong analytical and communication skills What is on offer: Salary up to 35,500 depending on experience Performance related pay and annual bonus 25 days holiday plus bank holidays Flexible working options Competitive pension and healthcare benefits This is an excellent opportunity to develop your career within a global organisation committed to security and continuous improvement. Adecco acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Adecco Group UK & Ireland is an Equal Opportunities Employer. By applying for this role your details will be submitted to Adecco. Our Candidate Privacy Information Statement explaining how we will use your information is available on our website.

Cybersecurity Vulnerability Lead - £700 per day - Inside IR35 - Remote - 6 Months initial contract. Our client, the UKs leading producer of Zero Carbon energy, is looking for a Cybersecurity Vulnerability Lead to join them on a contract basis. This is a senior role with responsibility for the organisation s vulnerability management programme across multiple business units, technologies, and regulatory environments. The organisation has made significant investment in Tenable as its core vulnerability management platform. You ll be expected to lead its strategic and day-to-day usage, ensuring vulnerabilities are accurately identified, prioritised, and remediated while driving continuous improvement in how the platform is integrated and utilised. Candidates with strong Tenable expertise, particularly those who have embedded it at scale in large or regulated environments such as financial services, will be especially attractive for this role. Security Clearance - Due to the sensitive nature of the work, candidates must be eligible for SC clearance. Candidates with active or recently lapsed SC clearance will be prioritised. Applicants without clearance must be willing and eligible to undergo vetting. The Role - As Cybersecurity Vulnerability Lead, you will: Own the end-to-end vulnerability management programme, with Tenable One at the core. Define and deliver the strategy, policies, SLAs, and operating rhythm. Lead on risk-based prioritisation using exploit intelligence, asset criticality, and business impact. Translate scan data into clear, actionable remediation plans for technical teams. Build dashboards and executive reports (ServiceNow, Power BI). Provide rapid risk assessments and emergency patch governance during incidents. Support audits and regulatory compliance (ISO27001, CE+, GDPR, NIS2, ONR). Drive automation, integrating tools and workflows to improve efficiency. Act as subject matter expert for Tenable and related tooling, ensuring platforms are fully leveraged. Mentor analysts and security champions, building maturity across the team. About You - You will bring experience leading vulnerability management at enterprise scale, ideally in financial services or similarly regulated industries. You should also have hands-on knowledge of the following: Core Vulnerability Management - Tenable One (Exposure Management, Attack Surface Management, Attack Paths, Identity) AWS Inspector Agent-based and network-based scanning Cloud integrations (AWS, Azure, GCP) Dashboards and risk-based prioritisation Patch & Endpoint Management - Microsoft Intune / SCCM / WSUS Jamf Workflow & ITSM Integration - ServiceNow (dashboards, SOAR) Jira Cloud & Application Security - AWS Security Hub Azure Defender for Cloud Veracode Threat Intelligence & Exploit Context - Tenable Threat Intelligence Exploit DB Metasploit SIEM, SOAR & Monitoring - Microsoft Sentinel SOAR platforms (ServiceNow SOAR) Automation & Scripting - Python, PowerShell, Bash, Ansible Reporting & Metrics - Power BI ServiceNow dashboards Excel (advanced analysis) Frameworks & Standards - NIST CSF, ISO 27001, OWASP, CE / CE+, GDPR, NIS2, ONR Security Domains / Capabilities - Identity and Access Management (IAM) Network Security Data Protection Cloud Security Controls Application Security Security Monitoring Processes & Practices - Vulnerability Management Programmes Incident Response and Threat Assessment Emergency Patch Governance Risk-based Prioritisation (CVEs, exploit intelligence, asset criticality, business impact) Audit Support (internal assurance, penetration test follow-ups, external audits) Exception and exemption management Automation of manual tasks Dashboarding for risk and SLA metrics What's on Offer - A leadership role with significant influence across a major UK organisation. Opportunity to work with a forward-thinking Cyber Services function pushing boundaries in vulnerability management.

Security Analyst UK Financial Services Compliance & Technical Security North West England 35k- 45k + Benefits/Progression Zachary Daniels are delighted to be working with a well-established UK business during an exciting period of growth, to recruit a Security Analyst . This is a company investing heavily in technology, compliance, and security. In this role, you'll be part of a collaborative team, working across compliance, risk, and technical security to protect the business, strengthen frameworks, and support transformation projects. It's a varied position offering real scope to grow both your governance and technical skills. Benefits You'll Enjoy: Competitive salary up to (DOE) Generous annual leave entitlement, rising with service Enhanced maternity, paternity, and parental leave Life assurance Regular social events Role Responsibilities: Identify and assess security risks, ensuring mitigation plans are in place. Support the development and maintenance of security policies and standards. Assist with third-party security reviews and supplier risk management. Provide oversight of vulnerability assessments. Conduct architecture reviews for new systems and services. Evaluate technical controls and recommend improvements. Support the rollout of new security tools and technologies. Provide input into incident management and security metrics reporting. About You: 2+ years' experience in an security role. Strong understanding of risk assessment methodologies. Knowledge of frameworks such as ISO 27001. Experience with vulnerability management and technical controls. Excellent problem-solving skills with strong attention to detail. Confident communicator with the ability to explain security concepts to non-technical stakeholders. This is more than just a security role, it's a chance to join a forward-thinking business, develop your expertise across both compliance and technical domains, and make a real impact in protecting and enabling the organisation. Apply today with your most up-to-date CV! BBBH34361

Security Analyst UK Financial Services Compliance & Technical Security North West England £35k-£45k + Benefits/Progression Zachary Daniels are delighted to be working with a well-established UK business during an exciting period of growth, to recruit a Security Analyst . This is a company investing heavily in technology, compliance, and security. In this role, you'll be part of a collaborative team, working across compliance, risk, and technical security to protect the business, strengthen frameworks, and support transformation projects. It's a varied position offering real scope to grow both your governance and technical skills. Benefits You'll Enjoy: Competitive salary up to £45 000 (DOE) Generous annual leave entitlement, rising with service Enhanced maternity, paternity, and parental leave Life assurance Regular social events Role Responsibilities: Identify and assess security risks, ensuring mitigation plans are in place. Support the development and maintenance of security policies and standards. Assist with third-party security reviews and supplier risk management. Provide oversight of vulnerability assessments. Conduct architecture reviews for new systems and services. Evaluate technical controls and recommend improvements. Support the rollout of new security tools and technologies. Provide input into incident management and security metrics reporting. About You: 2+ years' experience in an security role. Strong understanding of risk assessment methodologies. Knowledge of frameworks such as ISO 27001. Experience with vulnerability management and technical controls. Excellent problem-solving skills with strong attention to detail. Confident communicator with the ability to explain security concepts to non-technical stakeholders. This is more than just a security role, it's a chance to join a forward-thinking business, develop your expertise across both compliance and technical domains, and make a real impact in protecting and enabling the organisation. Apply today with your most up-to-date CV! BBBH34361

Cyber Security Lead Oxfordshire - Hybrid - 2 days per week (Flexible) 50k - 60k plus Benefits Our Client are an award-winning leading IT company offering complete outsourced IT solutions to organisations across the UK and Europe. Based in Oxfordshire they provide a comprehensive range of support services, software and hardware solutions to major blue-chip clients and their technicians are highly skilled in planning, implementing and trouble shooting. They strive to become one of the top places to work in the UK - in fact, they believe that they already are! Most of the team have been here for years, have built a terrific career, and as corny as it may sound, they really do call themselves the Planet Family. They welcome new people to the team all the time, from all backgrounds and all levels of experience. They are able to attract talent to our business by investing in staff training and staff rewards, which has become a bedrock of our success. This initiative has resulted in staff becoming even better at what they do, great staff retention and greater company buy-in from the team. As part of this strategy, the more staff learn via official courses, the better the service and the more we reward them. Primary Purpose The Security Lead is both the client-facing strategist and the internal accountable owner of security within the MSP. They lead Quarterly Security Reviews (QSRs), own the client risk register and exception process, and ensure services are delivered in line with frameworks such as Cyber Essentials, ISO27001, and NIST. Internally, the Security Lead is accountable for the MSP's own security posture ensuring tools, processes, and teams meet the same standards we deliver to clients. They monitor measurable posture metrics (e.g., Microsoft Secure Score, Vulnerability etc.), ensure continuous improvement, and keep the MSP's security practice relevant through ongoing training, certifications, and emerging threat awareness. While day-to-day execution is delegated to Security Analysts and service teams, the Security Lead owns security end-to-end: identifying risks, embedding controls, and ensuring compliance is demonstrable. Key Responsibilities Client-Facing Lead Quarterly Security Reviews (QSRs), presenting patch/vulnerability posture, incidents, compliance status, and risk register updates. Translate technical security risks into clear business impact and outcomes. Own the client exception process, ensuring risks are documented, communicated, and signed off. Support Account Managers and Strategic Partnership Managers in roadmap and IT strategy sessions. Act as the strategic security escalation point for clients when risks require senior involvement. Internal MSP Security Own the MSP's internal security frameworks and certifications (e.g., CE+, ISO, SOC 2). Oversee patching, vulnerability, and risk management of MSP-owned infrastructure and tools. Ensure MSP's technology stack (RMM, XDR, PSA, backup, etc.) is securely deployed and monitored. Drive staff security awareness, training, and compliance with secure processes. Delegate operational tasks to Security Analysts while retaining accountability for end-to-end outcomes. Governance & Standards Maintain the client and internal risk registers. Define and evolve gold-standard security "whitepapers" for projects and BAU. Sign off security requirements for project scope/designs that impact compliance or frameworks. Collaborate with Service Delivery Manager and Project Delivery Manager to ensure security is embedded in BAU, change control, and project execution. Monitor and report on client posture metrics (e.g., Microsoft Secure Score, M365 compliance dashboards). Drive continuous posture improvement across client environments. Team Leadership & Growth Mentor and develop Security Analysts. Ensure team certifications remain up to date (minimum 2 per year per Analyst). Lead internal knowledge-sharing sessions to keep the team and wider MSP relevant against new threats and frameworks. Champion automation (RPA/AI) in evidence gathering, reporting, and triage. Identify scale points for growing the Security Practice (e.g., Security Architect, more Analysts). Behaviors Required Strategic Thinking - able to translate technical risks into business outcomes and align security initiatives with client goals and budgets. Strong Governance Mindset - experienced in managing frameworks (Cyber Essentials, ISO27001, NIST) and embedding them into MSP operations and client environments. Risk Communication - skilled at presenting complex security issues clearly to non-technical stakeholders, both internally and at client leadership level. Technical Depth - hands-on understanding of vulnerability management, patch governance, endpoint security (EDR/XDR), and cloud (M365/Azure security). Analytical Skills - capable of interpreting scan results, posture metrics (e.g., Microsoft Secure Score), and incident trends into actionable insights. Delegation & Leadership - experienced in mentoring Analysts and delegating effectively while retaining accountability for outcomes. Collaboration - able to work cross-functionally with Service Delivery, Projects, Account Managers, and vendors to embed security consistently. Continuous Learning - committed to staying current with evolving threats, frameworks, and technologies, and ensuring the team is trained and certified. Client-Facing Confidence - comfortable leading Quarterly Security Reviews (QSRs), participating in roadmap sessions, and engaging with C-level stakeholders. Change Agent - able to influence internal teams and clients to adopt best practice, even when it means shifting established ways of working. Person Specification: Minimum 5+ years in IT security or MSP environment. Strong knowledge of Cyber Essentials, ISO27001, or NIST frameworks. Experience with patch/vulnerability management governance. Ability to communicate technical risks in business language. Proven ability to run client-facing reviews or presentations. Desirable CISSP, CISM, or equivalent certifications. Experience delivering or auditing compliance frameworks. Familiarity with RMM/XDR/EDR, SIEM, and vulnerability scanning platforms. Experience leading small teams (mentoring, guiding). Exposure to incident response and tabletop exercises. What Success Looks Like: Success means the Security Lead is recognised by clients as a trusted advisor who simplifies security into business language. All client and internal risks are captured, visible, and acted upon with no blind spots. QSRs consistently deliver actionable improvements that feed into roadmaps and IT strategy, while client security posture measurably improves quarter-on-quarter (demonstrated in metrics such as Microsoft Secure Score, CE+ readiness, and vulnerability closure rates). Internally, the MSP leads by example: our own systems, tools, and processes are secure, audit-ready, and improving over time. The Security Lead ensures their team is certified, trained, and ahead of industry changes, delegating operational execution while embedding governance across service, INDIT Planet Recruitment acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. Planet Recruitment is an Equal Opportunities Employer. By applying for this role your details will be submitted to Planet Recruitment. Our Candidate Privacy Information Statement explains how we will use your information. Only candidates with the relevant skills and experience will be contacted after application, if you do not hear back from us within 7 days you have unfortunately been unsuccessful in your application. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and abilities to perform the duties of the position.

Due to a period of exciting growth Acorn are looking for a highly skilled and experienced Senior Information Security Analyst to join our Information Security Team. Within this role you get the opportunity to join a collaborative team and have a chance to blend GRC responsibilities with technical security experience, all whilst working for a market leading insurance company, supporting and maintaining robust security controls and regulatory compliance.   Job Title:  Senior Information Security Analyst (12 month FTC) Location:  Liverpool City Centre, Hybrid working available Working Hours:  Monday to Friday, 37.5 hours per week , 9:00 AM – 5:30 PM Salary:  £50,000 - £60,000 pa (DOE).   What you will be doing: Work with all parties across the business to identify and assess risk and ensure mitigations are tracked to completion. Lead the development and maintenance of information security policies, standards and procedures in line with regulatory frameworks and industry standards. Lead third party risk management processes. Collaborate across all areas of the business to align security policies and processes with business objectives and regulatory obligations. Work with Security Operations and IT teams to provide oversight of vulnerability assessments and remediation activities. Lead on security architecture reviews for new systems and services. Evaluate technical security controls and recommending improvements. Support the implementation of security tools and technologies. Provide oversight of the security incident management process. Provide security metrics for interested parties at all levels. Lead the security awareness programme to promote a culture of security within all levels of the Group. Provide support for internal and external security audits. Lead security governance meetings representing the Information Security team and standing in for the Head of Information Security when required. Provide subject matter expertise liaising across all business functions.   What we look for: Minimum 5 years' experience in information security roles. Strong leadership and mentorship abilities with a strategic mindset. Experience with risk assessment methodologies. Excellent analytical and problem-solving skills with attention to detail. Strong communication skills with the ability to explain complex security concepts to non-technical stakeholders. Ability to manage risk and compliance projects and drive security initiatives. Knowledge of information security frameworks such as ISO 27001 or NIST. Knowledge of vulnerability management processes.   About Acorn Insurance With over 40 years of experience, Acorn Insurance is a specialist provider dedicated to helping individuals secure motor insurance across the UK. We proudly serve more than 50,000 customers, ensuring they find policies that meet their needs and provide the peace of mind that comes with high-quality cover. At Acorn Insurance, we offer comprehensive training and continuous in-house coaching. You'll receive in-depth, FCA-regulated industry knowledge and all the tools necessary to grow your career with us. We celebrate diversity and are committed to fostering a culture where everyone feels respected and valued. As a Disability Confident Level 1 and Level 2 employer, we ensure our workplace is accessible and inclusive, encouraging our people to bring their best selves to work every day. The Acorn Group has been recognised as a Great Place to Work for 2024/5. A record number of employees participated in our survey, overwhelmingly highlighting our welcoming and supportive atmosphere as an excellent place to build a career. We are committed to continuous improvement and have ambitious plans for 2025.  Why Acorn Insurance? Acorn Insurance want to give you more than a job, we want to give you a purpose and a career. So, what can we offer you as an employer? Some of the "your tomorrow" benefits you will receive include: Wellbeing:  Enhanced Annual Leave entitlement starting at 31 days and potentially increasing to 35 days per year depending on grade & length of service (including bank holidays) Enhanced paternity pay and 16 weeks full maternity pay. Colleague Assistance programme offers a suite of wellbeing services such as: 6 Free Counselling sessions per year Unlimited access to a telephone councillor 24/7 Access to a free 4-week programme of cognitive behavioural therapy (CBT) with a trained therapist mentor.  Network of internal qualified mental health first aiders are available to provide support to colleagues. Financial: A core level of life assurance with the option to increase cover via salary sacrifice and add your spouse/partner  Ability to access your earnings before payday via Dayforce Wallet. Company pension scheme Refer a friend scheme with a £250 bonus for every colleague recommended on passing their probation period. Access to a flexible benefits platform including an annual flex pot allowance to spend on over 15 benefits of your choice. Ability to give back. You can opt into donating money to charity to climate positive organisations directly from your salary.   Reward, Recognition and Culture :  Long Service Award paid on 5,10- and 15-years’ service A reward and recognition hub to celebrate and reward colleagues and peers. Consistent and engaging company events including company awards, competitions and charity fundraisers. Budgets for department leaders to use for social and engagement events. Please visit out website to view more of our excellent work benefits!    All roles are subject to DBS and Financial checks, any offer made will be conditional until checks are completed to a satisfactory standard. Unfortunately, due to the length of training and complexity of the role, we can only accept applications from candidates who have at least one year remaining on their (Graduate/ Post study work) visa. Unfortunately, we are unable to provide visa sponsorships. At Acorn, we are committed to creating an inclusive and supportive work environment. We recognise that candidates may have specific needs and are happy to consider reasonable adjustments to the recruitment process and working environment to accommodate individual requirements. Whether it’s modifying equipment, adjusting working hours, or providing additional support, we aim to ensure all employees can perform at their best. If you require any reasonable adjustments, please let us know during the application or interview process, and we will work with you to ensure your needs are met.

Peninsula Business Services is the leading UK's Employment Law and Health & Safety Specialists, providing an integral service to our 28,000 Client's daily business operations An exciting opportunity has arisen to join the growing ICT Department and become a member of the InfoSec team working in a dynamic and fast-paced environment with new challenges every day. Based in our Manchester Head Office. It is an exciting time to join the business as we rationalise our current infrastructure and embark on our journey to Cloud based services. You will work collaboratively with the business and wider IT team (Infrastructure, Network, Development, DevOps and Service Desk) to provide governance and security for existing and new services A broad technical knowledge is required, alongside ITIL experience in Incident, Request, Change, Problem, Release, Event and Knowledge management. You will be forward thinking, customer focussed and self-motivated with the drive to improve all IT services and the user experience Must aspire to a culture of service excellence, always putting the customer, our people and our business at the centre of everything you do Demonstrate strong organisational skills and be accountable for your daily workload Demonstrate a systematic, disciplined and analytical approach Be customer focussed and ardent in ensuring that colleagues receive a high quality of service The purpose of this role is to provide technical leadership to the Information Cyber Security Team and to support the InfoSec Manager to ensure that the business is protected against cyber security threats and that data is kept secure at all times. This will mean proactive planning, rapid responses to all security threats and incidents and serving as an escalation point for the other members of the team. The team currently has responsibility for all sites in the UK and Ireland with advisory responsibility for international sites in Canada, Australia and New Zealand The key objectives of your role are: To ensure that the InfoSec Manager and Group Head of IT Service Delivery UKI are kept informed of progress and in particular are told of major problems and / or issues in a timely manner You will be analysing security events, identifying issues, and recommending solutions Keeping up-to-date with current threats, technologies and solutions You will also be working with our Infrastructure, Network, Service Desk and Development teams to provide leadership and expertise in the field of information and cyber security best practices. You will understand the concept of layered security and bring experience in regard to vulnerability scanning and threat hunting. You will have proven experience with security investigations, including responding to incidents involving malware, data loss, or network intrusion. Work closely with the information security manager and wider business to develop and improve the current security strategies and processes Provide technical leadership for all security systems and tools, especially SIEM, DLP and Endpoint Protection technologies Lead security investigations and improve monitoring/reporting processes and security incident alerting Research security solutions and develop new and existing SOC processes for this rapidly changing landscape Assist with projects involving penetration testing and vulnerability assessments Develop and maintain our security procedures and update standards and documentation Assist the InfoSec manager to ensure adherence to ISO27001 and Cyber Essentials Plus accreditation. Lead Security investigations, including responding to incidents involving malware, data loss, or network intrusion Have a thorough knowledge of all key infrastructure including ADS, DNS, email security, endpoint security and virtualization technologies. Innovation and Continual Service Improvements. Identify opportunities for automation and on-going improvements to existing services. Work collaboratively with team members and support functions to resolve issues in a timely manner Proactively monitor IT services Take ownership, investigate and resolve escalated tickets The successful Senior Cyber Security Analyst should have solid experience in most of the following: SIEM solutions such as LogRhythm Endpoint Protection services such as SentinelOne Mimecast and Office 365 Data Loss Prevention tools such as Digital Guardian CASB Nessus Have a strong knowledge in public and private cloud environments such as AWS and Microsoft Azure. Understanding of GDPR, data protection and information governance. Currently be working with one of the following standards: ISO27001 or PCI-DSS Have earned a degree in a computer related subject or equivalent experience in Cyber Security ITIL experience. Third Line Support experience. What you bring to the Team Driven and results orientated Positive outlook and a focus on high quality delivery Strong communicator Must have the ability to communicate complex concepts and ideas easily to the team Must be reliable Able to work under pressure in all situations The ideal candidate will ensure that correct decisions are made and issues acted on in a timely manner. Be passionate about data and cyber security What's on offer? Generous basic salary up to £40k DOE The role is a permanent position with a 6-month probationary period. The working week is based on 37.5 hours 25 Days Holiday + Bank Holidays Profit Share Scheme Breakfast provided each Monday morning & monthly drinks Contributory company pension scheme Childcare voucher scheme Access to the Employee Assistance Programme (EAP) Utilising cutting edge software along with the latest technologies backed by huge investment and infrastructure, where else would you want to develop your career as an IT professional? INDPENO/ P967124LCR

Governance Risk and Control Analyst/Tester Inside IR35 Leading banking client requires an experienced Governance Risk and Control Analyst/Tester to join on an initial 6 month contract to conduct controls testing of cybersecurity controls against industry security frameworks (e.g., SOX ISO27001. NIST Cybersecurity Improvement framework, FFIEC). Experience of working as an IT auditor, security auditor or governance, risk and compliance analyst Good understanding of cybersecurity/IT control frameworks including but not limited to frameworks from SOX, FFIEC, ISO27001, NIST, Cloud Security Alliance, and PCI-DSS Proven understanding of current best practice approach to security assurance and the application of security frameworks Experience in project management Planning and prioritizing multiple project work streams in response to rapidly developing and changing portfolios. Experience of security risk management Broad knowledge of computer, networking and IT security systems including operating systems, databases, firewalls, SIEM, DLP etc Ability to handle ambiguity and make decisions and recommendations with limited data Solid analytical/problem-solving skills with capability to identify solutions to unusual and complex problems Good presentation, documentation and reporting skills Essential skills: Experience in managing multiple tasks with broad scope, ambiguity, and high degree of difficulty Experience in providing assurance for cybersecurity technologies, policies, standards and procedures Demonstrable proficiency in a wide range of information IT security domains such as Security Governance, Identity and Access Management, Access Controls, Threat Intelligence, Asset Management, Risk Management, Security Assessment/Testing, Security Incident Management and Vulnerability and Patch Management Possessing high level of analytical ability where problems are typically unusual and difficult Ability to maintain a working knowledge of cybersecurity principles and elements Understand global IT risk management structure Demonstrable experience of senior stakeholder management and relevant management reporting. Ability to coach team members through knowledge transfer and constructive feedback Governance Risk and Control Analyst/Tester Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website