Job Title: Cyber Security Operations Manager Location: Liverpool City Centre on a Hybrid working basis Salary: Up to 75,000 per annum Depending on experience Job Type: Permanent, Full Time Working Hours: 37.5 hours per week, Monday to Friday Acorn are looking to recruit a brand-new role as a Cyber Security Operations Manager. The Cyber Security Operations Manager will lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams, the manager ensures that security operations are proactive, resilient, and aligned with business needs. Responsibilities: Lead and manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication, recovery, and post-incident review. Coordinate major incident management with IT Infrastructure, Cloud, and Business teams. Ensure lessons learned are captured and drive meaningful improvement. Oversee the vulnerability management programme, ensuring timely identification, prioritisation, and remediation of risks. Partner with asset owners to ensure patches, configuration hardening, and remediation actions are completed. Support risk assessment processes and provide input to security governance and compliance teams. Ensure the design, tuning, and optimisation of detection rules, alerts, and correlation logic across security platforms. Drive automation initiatives using SOAR to improve response speed and reduce operational workload. Maintain robust coverage across cloud, on premise, network, and endpoint environments. Build capability through training, certifications, and knowledge-sharing programmes. Work with technology, business, and leadership teams to communicate risks, incidents, and security posture. Support audits, regulatory assessments, and customer assurance activities About you: Requirements: Experience managing a SOC or security operations function within a complex enterprise environment. Strong understanding of SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ATT&CK, ISO 27001, or CIS Controls. Demonstrated expertise in incident response and threat management. Experience working in hybrid cloud environments (Azure, AWS, or GCP). Grow with Acorn: We bring over 40 years of specialist insurance expertise to the table. From humble beginnings, we've grown into a national leader, now employing 1,700+ people across the UK. We're growing fast, with new opportunities emerging every week. That growth is largely due to the values we share: We run through walls for our customers and each other We challenge the status quo We succeed when we help those around us succeed We decide quickly when the smart thing to do is use our judgement Benefits: 35 days' holiday (including bank holidays) with additional buy/sell options 24/7 mental health support & free counselling available Grow with us: Through career fairs, leadership programs, and learning on the go! Flexible benefits, including early access to salary via our internal platform Hybrid working options to support work-life balance and individual needs Recognition awards, social events & more Our Commitment to our colleague's: Earn recognition and accreditation from leading organisations that share our commitment to people and growth: Mindful Employer Disability Confident Level 1 & 2 Menopause Friendly accredited Armed Forces Covenant signatory Great Places to Work 2024/25 Best Place to Work for Development Best Place to Work for Women Before applying, please know: If your application is successful, we will run relevant employment checks prior to your employment with us. These will include a standard criminal record check and an insolvency register check. Visa Requirements We can only consider applicants who have at least one year remaining on their Graduate or Post-Study Work visa. At the moment, we're not able to offer visa sponsorship. We're Here to Support You We're committed to creating an inclusive, supportive workplace where everyone can flourish. If you need any adjustments during the recruitment process-or once you're part of the team-we'll work with you to make sure you can do your best work. Please click the APPLY button to submit your CV for this role. Candidates with experience or relevant job titles of; Cyber Security Consultant, Head of Cyber Security, Cyber Security Operations Supervisor, IT Cloud Operations Manager may also be considered for this role.
02/04/2026
Full time
Job Title: Cyber Security Operations Manager Location: Liverpool City Centre on a Hybrid working basis Salary: Up to 75,000 per annum Depending on experience Job Type: Permanent, Full Time Working Hours: 37.5 hours per week, Monday to Friday Acorn are looking to recruit a brand-new role as a Cyber Security Operations Manager. The Cyber Security Operations Manager will lead the operational security function responsible for protecting the organisation's information assets, technology services, and users. This role oversees all security operation functions, incident response, threat detection, vulnerability management, and continuous improvement of the organisation's security posture. Working closely with Infrastructure, Cloud, Architecture, Governance, Compliance and Risk teams, the manager ensures that security operations are proactive, resilient, and aligned with business needs. Responsibilities: Lead and manage the daily operations of the internal Security Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage, containment, eradication, recovery, and post-incident review. Coordinate major incident management with IT Infrastructure, Cloud, and Business teams. Ensure lessons learned are captured and drive meaningful improvement. Oversee the vulnerability management programme, ensuring timely identification, prioritisation, and remediation of risks. Partner with asset owners to ensure patches, configuration hardening, and remediation actions are completed. Support risk assessment processes and provide input to security governance and compliance teams. Ensure the design, tuning, and optimisation of detection rules, alerts, and correlation logic across security platforms. Drive automation initiatives using SOAR to improve response speed and reduce operational workload. Maintain robust coverage across cloud, on premise, network, and endpoint environments. Build capability through training, certifications, and knowledge-sharing programmes. Work with technology, business, and leadership teams to communicate risks, incidents, and security posture. Support audits, regulatory assessments, and customer assurance activities About you: Requirements: Experience managing a SOC or security operations function within a complex enterprise environment. Strong understanding of SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ATT&CK, ISO 27001, or CIS Controls. Demonstrated expertise in incident response and threat management. Experience working in hybrid cloud environments (Azure, AWS, or GCP). Grow with Acorn: We bring over 40 years of specialist insurance expertise to the table. From humble beginnings, we've grown into a national leader, now employing 1,700+ people across the UK. We're growing fast, with new opportunities emerging every week. That growth is largely due to the values we share: We run through walls for our customers and each other We challenge the status quo We succeed when we help those around us succeed We decide quickly when the smart thing to do is use our judgement Benefits: 35 days' holiday (including bank holidays) with additional buy/sell options 24/7 mental health support & free counselling available Grow with us: Through career fairs, leadership programs, and learning on the go! Flexible benefits, including early access to salary via our internal platform Hybrid working options to support work-life balance and individual needs Recognition awards, social events & more Our Commitment to our colleague's: Earn recognition and accreditation from leading organisations that share our commitment to people and growth: Mindful Employer Disability Confident Level 1 & 2 Menopause Friendly accredited Armed Forces Covenant signatory Great Places to Work 2024/25 Best Place to Work for Development Best Place to Work for Women Before applying, please know: If your application is successful, we will run relevant employment checks prior to your employment with us. These will include a standard criminal record check and an insolvency register check. Visa Requirements We can only consider applicants who have at least one year remaining on their Graduate or Post-Study Work visa. At the moment, we're not able to offer visa sponsorship. We're Here to Support You We're committed to creating an inclusive, supportive workplace where everyone can flourish. If you need any adjustments during the recruitment process-or once you're part of the team-we'll work with you to make sure you can do your best work. Please click the APPLY button to submit your CV for this role. Candidates with experience or relevant job titles of; Cyber Security Consultant, Head of Cyber Security, Cyber Security Operations Supervisor, IT Cloud Operations Manager may also be considered for this role.
Senior Cyber Security Analyst - Central Gov (Contract) Incident Response | Threat Detection | Forensics | SIEM The Cyber Defence team is hiring a Senior Cyber Security Analyst to lead on incident response and protect critical citizen-facing services. You'll: Investigate and respond to cyber incidents at scale Lead forensic analysis (systems, files, network, cloud) Coordinate containment, eradication & recovery actions Mentor Junior Analysts and shape IR playbooks Must have strong Splunk skills. Requirements: Strong incident response & cyber investigation experience Skilled with EDR/SIEM tools - splunk Deep knowledge of attacker TTPs Excellent problem solving & communication London | Competitive Day Rate | SC Clearance required | On-call rota
03/10/2025
Contractor
Senior Cyber Security Analyst - Central Gov (Contract) Incident Response | Threat Detection | Forensics | SIEM The Cyber Defence team is hiring a Senior Cyber Security Analyst to lead on incident response and protect critical citizen-facing services. You'll: Investigate and respond to cyber incidents at scale Lead forensic analysis (systems, files, network, cloud) Coordinate containment, eradication & recovery actions Mentor Junior Analysts and shape IR playbooks Must have strong Splunk skills. Requirements: Strong incident response & cyber investigation experience Skilled with EDR/SIEM tools - splunk Deep knowledge of attacker TTPs Excellent problem solving & communication London | Competitive Day Rate | SC Clearance required | On-call rota
Cyber Security - Secure by Design Consultant (Contract) London 680 per day 6-month initial contract (with strong potential to go permanent) Deerfoot Recruitment is working with a leading financial services organisation to recruit a Secure by Design Consultant to join their IT Risk, Security & Control function in London. This is a 6-month contract paying 680 per day (Inside IR35) , with a high likelihood of converting to a permanent role. The successful candidate will play a key role in delivering secure-by-design assessments across technology projects, ensuring compliance with IT security policies and industry standards. You will work closely with senior stakeholders, providing assurance on cybersecurity controls, identifying risks, and recommending actions to strengthen the organisation's security posture. Key responsibilities include: Conducting IT security assessments across infrastructure, cloud, applications, and service operations projects. Reviewing and testing security controls to ensure operating effectiveness. Documenting risks, gaps, and recommendations for remediation. Supporting project teams to embed security requirements from the outset. Engaging with senior stakeholders and providing clear, actionable reporting. Skills & experience sought: Strong background in IT Security, Cyber Assurance, or IT Audit. Hands-on knowledge across areas such as governance, IAM, threat management, vulnerability management, and incident response. Good understanding of security frameworks (e.g. ISO27001, NIST, PCI-DSS, SOX). Experience engaging with senior stakeholders within complex environments. Relevant certifications (CISSP, CISM, CISA, CRISC) desirable. This is an exciting opportunity to join a high-performing cyber security team within a global financial services organisation, with genuine long-term career potential. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate 1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd acts as an Employment Business in relation to this vacancy.
02/10/2025
Contractor
Cyber Security - Secure by Design Consultant (Contract) London 680 per day 6-month initial contract (with strong potential to go permanent) Deerfoot Recruitment is working with a leading financial services organisation to recruit a Secure by Design Consultant to join their IT Risk, Security & Control function in London. This is a 6-month contract paying 680 per day (Inside IR35) , with a high likelihood of converting to a permanent role. The successful candidate will play a key role in delivering secure-by-design assessments across technology projects, ensuring compliance with IT security policies and industry standards. You will work closely with senior stakeholders, providing assurance on cybersecurity controls, identifying risks, and recommending actions to strengthen the organisation's security posture. Key responsibilities include: Conducting IT security assessments across infrastructure, cloud, applications, and service operations projects. Reviewing and testing security controls to ensure operating effectiveness. Documenting risks, gaps, and recommendations for remediation. Supporting project teams to embed security requirements from the outset. Engaging with senior stakeholders and providing clear, actionable reporting. Skills & experience sought: Strong background in IT Security, Cyber Assurance, or IT Audit. Hands-on knowledge across areas such as governance, IAM, threat management, vulnerability management, and incident response. Good understanding of security frameworks (e.g. ISO27001, NIST, PCI-DSS, SOX). Experience engaging with senior stakeholders within complex environments. Relevant certifications (CISSP, CISM, CISA, CRISC) desirable. This is an exciting opportunity to join a high-performing cyber security team within a global financial services organisation, with genuine long-term career potential. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate 1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd acts as an Employment Business in relation to this vacancy.
Incident Responder / IR Consultant Hybrid - ManchesterUp to £60k + Bonus + Good bens. I'm currently working with an established cyber security business that's looking for an Incident Responder (IR / DFIR Consultant) to join their team. As an Incident Responder, you'll take the lead on active engagements involving real-world attacks such as ransomware, data breaches, insider threats, and more. You'll conduct forensic investigations, advise clients on containment and recovery strategies, work on delivery and implementation, and produce detailed post-incident reports. This is a hands-on, client-facing role that requires a calm head, deep technical knowledge, and the ability to own high-impact situations from start to finish. You will be working on back-to-back incidents (occasionally concurrent) so this role would suit someone who enjoys the high-pressure environment of incident response and enjoys being busy. Responsibilities: Co-ordinate and manage cyber security incident response for a diverse client base, ensuring effective containment, investigation, and recovery. Conduct in-depth digital forensic analysis of relevant incident data Monitor and interpret the evolving cyber threat landscape, providing clients with timely, relevant insights into emerging threats, tactics, and vulnerabilities that may impact their organisation. Act as a key point of contact for clients, ensuring clear communication and smooth delivery across engagements, including implementation planning, progress tracking, and issue resolution. Role Requirements: Around 5 years' experience in cyber security, with a strong background in managing IR Cases / Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient, and able to work calmly under significant pressure. Relevant certifications are a big plus (e.g., CCIM or CIH) Fluency in German or Arabic would be a bonus This role is 1-2 days a week onsite in either their office or at a client site. If you are interested in discussing this great opportunity further, press 'Apply Now' or send your CV directly to faye com Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
01/09/2025
Full time
Incident Responder / IR Consultant Hybrid - ManchesterUp to £60k + Bonus + Good bens. I'm currently working with an established cyber security business that's looking for an Incident Responder (IR / DFIR Consultant) to join their team. As an Incident Responder, you'll take the lead on active engagements involving real-world attacks such as ransomware, data breaches, insider threats, and more. You'll conduct forensic investigations, advise clients on containment and recovery strategies, work on delivery and implementation, and produce detailed post-incident reports. This is a hands-on, client-facing role that requires a calm head, deep technical knowledge, and the ability to own high-impact situations from start to finish. You will be working on back-to-back incidents (occasionally concurrent) so this role would suit someone who enjoys the high-pressure environment of incident response and enjoys being busy. Responsibilities: Co-ordinate and manage cyber security incident response for a diverse client base, ensuring effective containment, investigation, and recovery. Conduct in-depth digital forensic analysis of relevant incident data Monitor and interpret the evolving cyber threat landscape, providing clients with timely, relevant insights into emerging threats, tactics, and vulnerabilities that may impact their organisation. Act as a key point of contact for clients, ensuring clear communication and smooth delivery across engagements, including implementation planning, progress tracking, and issue resolution. Role Requirements: Around 5 years' experience in cyber security, with a strong background in managing IR Cases / Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient, and able to work calmly under significant pressure. Relevant certifications are a big plus (e.g., CCIM or CIH) Fluency in German or Arabic would be a bonus This role is 1-2 days a week onsite in either their office or at a client site. If you are interested in discussing this great opportunity further, press 'Apply Now' or send your CV directly to faye com Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
Senior Incident Responder / IR Consultant Hybrid - ManchesterUp to £80k + Bonus + Good bens. I'm currently working with an established cyber security business that's looking for a Senior Incident Responder (IR / DFIR Consultant) to join their team. As a Senior Incident Responder, you'll take the lead on active engagements involving real-world attacks such as ransomware, data breaches, insider threats, and more. You'll conduct forensic investigations, advise clients on containment and recovery strategies, work on delivery and implementation, and produce detailed post-incident reports. This is a hands-on, client-facing role that requires a calm head, deep technical knowledge, and the ability to own high-impact situations from start to finish. You will be working on back-to-back incidents (occasionally concurrent) so this role would suit someone who enjoys the high-pressure environment of incident response and enjoys being busy. Responsibilities: Co-ordinate and manage cyber security incident response for a diverse client base, ensuring effective containment, investigation, and recovery. Conduct in-depth digital forensic analysis of relevant incident data Monitor and interpret the evolving cyber threat landscape, providing clients with timely, relevant insights into emerging threats, tactics, and vulnerabilities that may impact their organisation. Act as a key point of contact for clients, ensuring clear communication and smooth delivery across engagements, including implementation planning, progress tracking, and issue resolution. Role Requirements: Around 5 years' experience in cyber security, with a strong background in Leading and Managing IR Cases / Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient, and able to work calmly under significant pressure. Relevant certifications are a big plus (e.g., CCIM or CIH) Fluency in German or Arabic would be a bonus This role is 1-2 days a week onsite in either one of their offices or at a client site. If you are interested in discussing this great opportunity further, press 'Apply Now' or send your CV directly to faye com Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
01/09/2025
Full time
Senior Incident Responder / IR Consultant Hybrid - ManchesterUp to £80k + Bonus + Good bens. I'm currently working with an established cyber security business that's looking for a Senior Incident Responder (IR / DFIR Consultant) to join their team. As a Senior Incident Responder, you'll take the lead on active engagements involving real-world attacks such as ransomware, data breaches, insider threats, and more. You'll conduct forensic investigations, advise clients on containment and recovery strategies, work on delivery and implementation, and produce detailed post-incident reports. This is a hands-on, client-facing role that requires a calm head, deep technical knowledge, and the ability to own high-impact situations from start to finish. You will be working on back-to-back incidents (occasionally concurrent) so this role would suit someone who enjoys the high-pressure environment of incident response and enjoys being busy. Responsibilities: Co-ordinate and manage cyber security incident response for a diverse client base, ensuring effective containment, investigation, and recovery. Conduct in-depth digital forensic analysis of relevant incident data Monitor and interpret the evolving cyber threat landscape, providing clients with timely, relevant insights into emerging threats, tactics, and vulnerabilities that may impact their organisation. Act as a key point of contact for clients, ensuring clear communication and smooth delivery across engagements, including implementation planning, progress tracking, and issue resolution. Role Requirements: Around 5 years' experience in cyber security, with a strong background in Leading and Managing IR Cases / Projects Strong knowledge of cyber security threats, attack vectors, IOC, remediation. Hands-on experience with a range of different forensic tools, ELK, EDR, SIEM, and log analysis, Open Source Toolkits Comfortable communicating with both technical and non-technical stakeholders during high-stress situations. You must have excellent communication skills. You must be adaptable, resilient, and able to work calmly under significant pressure. Relevant certifications are a big plus (e.g., CCIM or CIH) Fluency in German or Arabic would be a bonus This role is 1-2 days a week onsite in either one of their offices or at a client site. If you are interested in discussing this great opportunity further, press 'Apply Now' or send your CV directly to faye com Circle Recruitment is acting as an Employment Agency in relation to this vacancy. Earn yourself a referral bonus if you refer somebody else who fills the role! We also offer an iPad if you refer a new client to us and we recruit for them. Follow us on Facebook - Circle Recruitment , Twitter and LinkedIn - Circle Recruitment.
Job Description: The Secure by Design (SBD) Consultant team members assist in the review, development, testing and implementation of security plans, products and control techniques, including enhancement of existing processes and service offerings. The role ensures that Bank of America continuously develops cyber secure technologies that adhere to internal policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products. Must be able to meet demands associated with managing multiple projects in a global environment. Assist with and contribute to overall SBD success. The Team The Information Security Officer will be a member of the Business Information Security Officer's (BISO) organization and work closely with the line of business Chief Information Officers (CIOs)/Chief Technology Officers (CTOs). Required Skills: • number of years' experience in cyber security or a technology-related field. • Experience in vulnerability assessment, security incident response, application security. • Evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc. • Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines. • Experience in analyzing and responding to advanced cyber threats, technology risk and the motivation/attack vectors of each threat. • Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. • Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. • Experience with basic SharePoint usage. • Ability to take ownership of an initiative/issue through completion. • Ability to work in a collaborative environment. • Strong project management skills. • Ability to work with minimal supervision. • Ability to own and deliver on complex initiatives in a high paced, evolving environment. Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). Desired Skills: • Bachelor's degree in Information Technology, information security or related field • Master's degree preferred • Knowledge in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls • Strong analytical skills/problem solving/conceptual thinking • Ability to work with technical and non-technical business owners • Assist with internal efficiencies projects and development E very day, across the globe, our employees bring a commitment to our purpose and to driving responsible growth by living our values: deliver together, act responsibly, realize the power of our people and trust the team. A key aspect of driving responsible growth is doing so in a sustainable manner, a critical pillar of which is being a great place to work for our teammates In line with these values, in EMEA we have 9 Employee Networks, a wide range of Sports & Social clubs, and other development and networking opportunities so that you can enjoy a range of experiences and connect with colleagues across the bank. We also offer exclusive discounts to some of the most iconic cultural experiences for you to enjoy in your spare time outside of work. Learn more about our benefits here. Good conduct and sound judgment is crucial to our long term success. It's important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind- set are the cornerstones of our Code of Conduct and are at the heart of managing risk well. We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio- economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience. We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements. As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment. Job Band: H5 Shift: Hours Per Week: 35 Weekly Schedule: Referral Bonus Amount: 0
24/09/2022
Full time
Job Description: The Secure by Design (SBD) Consultant team members assist in the review, development, testing and implementation of security plans, products and control techniques, including enhancement of existing processes and service offerings. The role ensures that Bank of America continuously develops cyber secure technologies that adhere to internal policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products. Must be able to meet demands associated with managing multiple projects in a global environment. Assist with and contribute to overall SBD success. The Team The Information Security Officer will be a member of the Business Information Security Officer's (BISO) organization and work closely with the line of business Chief Information Officers (CIOs)/Chief Technology Officers (CTOs). Required Skills: • number of years' experience in cyber security or a technology-related field. • Experience in vulnerability assessment, security incident response, application security. • Evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc. • Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines. • Experience in analyzing and responding to advanced cyber threats, technology risk and the motivation/attack vectors of each threat. • Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. • Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. • Experience with basic SharePoint usage. • Ability to take ownership of an initiative/issue through completion. • Ability to work in a collaborative environment. • Strong project management skills. • Ability to work with minimal supervision. • Ability to own and deliver on complex initiatives in a high paced, evolving environment. Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). Desired Skills: • Bachelor's degree in Information Technology, information security or related field • Master's degree preferred • Knowledge in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls • Strong analytical skills/problem solving/conceptual thinking • Ability to work with technical and non-technical business owners • Assist with internal efficiencies projects and development E very day, across the globe, our employees bring a commitment to our purpose and to driving responsible growth by living our values: deliver together, act responsibly, realize the power of our people and trust the team. A key aspect of driving responsible growth is doing so in a sustainable manner, a critical pillar of which is being a great place to work for our teammates In line with these values, in EMEA we have 9 Employee Networks, a wide range of Sports & Social clubs, and other development and networking opportunities so that you can enjoy a range of experiences and connect with colleagues across the bank. We also offer exclusive discounts to some of the most iconic cultural experiences for you to enjoy in your spare time outside of work. Learn more about our benefits here. Good conduct and sound judgment is crucial to our long term success. It's important that all employees in the organisation understand the expected standards of conduct and how we manage conduct risk. Individual accountability and an ownership mind- set are the cornerstones of our Code of Conduct and are at the heart of managing risk well. We are an equal opportunities employer, and ensure that no applicant is subject to less favourable treatment on the grounds of gender, gender identity, marital status, race, colour, nationality, ethnic or national origins, age, sexual orientation, socio- economic background, responsibilities for dependants, physical or mental disability. The Bank selects candidates for interview based on their skills, qualifications and experience. We strive to ensure that our recruitment processes are accessible for all candidates and encourage any candidates to tell us about any adjustment requirements. As part of our standard hiring process to manage risk, please note background screening checks will be conducted on all hires before commencing employment. Job Band: H5 Shift: Hours Per Week: 35 Weekly Schedule: Referral Bonus Amount: 0
Be part of a consultancy at the cutting edge of information security. Now a part of Accenture Security, our services include a comprehensive portfolio of advisory and advanced technical cyber security services. We pride ourselves on our unique and meticulous approach to helping our clients solve their most complex information security challenges. We believe in inclusion and diversity and supporting the whole person. Our core values comprise of Stewardship, Best People, Client Value Creation, One Global Network, Respect for the Individual and Integrity. As a team: You will work with some of the best in the industry, on prestigious projects with the worlds most high profile blue chip companies and enjoy the benefits of being part of Accenture Security. You will be using the latest technologies with clients to help them get to the next level. Do you want to work in an environment where...? You'll learn, grown and advance in an innovative culture that thrives on shared success, diverse ways of thinking and enables boundaryless opportunities that can drive your career in new and exciting ways. If you're looking for a challenging career working in a vibrant environment with access to training and global network of experts, this could be the role for you. In our team you will learn: The role encompasses both monitoring and responding to alerts raised by various toolsets as part of an ongoing managed security monitoring service, coupled with analysing data sets gathered from Incident Response investigations and assisting Investigative Consultants to deliver positive investigative outcomes to our breach investigation consultancy engagements. Show more Show less Qualifications As a Lead Security Analyst, you will: Respond to alerts escalated by shift analysts Perform detailed analysis and undertake an in-depth investigation into potential and confirmed security incidents Escalate incidents where necessary & acting as a point of contact throughout Conduct threat hunting across client environments Develop and refine threat hunting techniques Review and action alerts flagged as tuning candidates Conduct proactive threat research Develop and implement new signatures/rules Task and manage the delivery of junior analysts Development & mentor junior members of staff Manage the delivery of SOC projects Support client engagements and or service meetings, representing the business to external stakeholders Provide out-of-hours technical escalation support to shift analysts Development SOC playbooks We are looking for experience and skills in any of the following; A detailed understanding of the core discipline, including knowledge of computer networks, operating systems, software, hardware, and security An understanding of cyber security risks associated with various technologies and ways to manage them A good working knowledge of various security technologies such as network and application firewalls, host intrusion prevention and anti-virus Any relevant academic or industry specific training Set yourself apart: Ability to seek out new ways of working more efficiently Sustain a high level of focus, effort, and energy Share real stories and experiences to truly connect with others Create an open environment that encourages team members be to their authentic self Drive activities to ensure value is added and/or requirements are met Location: Minimum requirement to be on-site in the Cheltenham Offices 2 days per week Mandatory Pre-requisite SC clearance is mandatory. The criteria for SC clearance is all candidates that are considered must have been a UK resident for a minimum of 5 years with no long periods outside of the UK.
24/09/2022
Full time
Be part of a consultancy at the cutting edge of information security. Now a part of Accenture Security, our services include a comprehensive portfolio of advisory and advanced technical cyber security services. We pride ourselves on our unique and meticulous approach to helping our clients solve their most complex information security challenges. We believe in inclusion and diversity and supporting the whole person. Our core values comprise of Stewardship, Best People, Client Value Creation, One Global Network, Respect for the Individual and Integrity. As a team: You will work with some of the best in the industry, on prestigious projects with the worlds most high profile blue chip companies and enjoy the benefits of being part of Accenture Security. You will be using the latest technologies with clients to help them get to the next level. Do you want to work in an environment where...? You'll learn, grown and advance in an innovative culture that thrives on shared success, diverse ways of thinking and enables boundaryless opportunities that can drive your career in new and exciting ways. If you're looking for a challenging career working in a vibrant environment with access to training and global network of experts, this could be the role for you. In our team you will learn: The role encompasses both monitoring and responding to alerts raised by various toolsets as part of an ongoing managed security monitoring service, coupled with analysing data sets gathered from Incident Response investigations and assisting Investigative Consultants to deliver positive investigative outcomes to our breach investigation consultancy engagements. Show more Show less Qualifications As a Lead Security Analyst, you will: Respond to alerts escalated by shift analysts Perform detailed analysis and undertake an in-depth investigation into potential and confirmed security incidents Escalate incidents where necessary & acting as a point of contact throughout Conduct threat hunting across client environments Develop and refine threat hunting techniques Review and action alerts flagged as tuning candidates Conduct proactive threat research Develop and implement new signatures/rules Task and manage the delivery of junior analysts Development & mentor junior members of staff Manage the delivery of SOC projects Support client engagements and or service meetings, representing the business to external stakeholders Provide out-of-hours technical escalation support to shift analysts Development SOC playbooks We are looking for experience and skills in any of the following; A detailed understanding of the core discipline, including knowledge of computer networks, operating systems, software, hardware, and security An understanding of cyber security risks associated with various technologies and ways to manage them A good working knowledge of various security technologies such as network and application firewalls, host intrusion prevention and anti-virus Any relevant academic or industry specific training Set yourself apart: Ability to seek out new ways of working more efficiently Sustain a high level of focus, effort, and energy Share real stories and experiences to truly connect with others Create an open environment that encourages team members be to their authentic self Drive activities to ensure value is added and/or requirements are met Location: Minimum requirement to be on-site in the Cheltenham Offices 2 days per week Mandatory Pre-requisite SC clearance is mandatory. The criteria for SC clearance is all candidates that are considered must have been a UK resident for a minimum of 5 years with no long periods outside of the UK.
BAE Systems Digital Intelligence
Guildford, Surrey
Role description Our international clients include government and defence organisations focussed on their national cyber mission. We are looking for candidates with a strong understanding of cyber security operations which they can apply to helping customers improve their operations, gaining full value from their use of monitoring tools and threat intelligence. The role is to work onsite with international government clients, primarily in their security operations functions. This may involve working in classified environments. The role draws on technical skills to work with in-country teams to get the best use from their tooling, and is likely to have a significant coaching and upskilling element, as well as creating processes to help build effectiveness in the team. This role will involve international travel, so candidates need to be willing and able to travel for extended periods. Responsibilities Support customer with day-to-day security operations in a coaching capacity Understand Threat Intelligence and its use in an operational environment Use and support client teams in gaining value from their Security Operations technology Deliver security operations training to clients as required Support incident response to national scale incidents in a coaching capacity Establish and build relationships with stakeholders Formulate strategy for improvements to security operations, and communicate in business language to a range of stakeholders. Work with other teams within BAE to improve services on the basis of customer needs. Requirements Technical Basic Python and/or scripting skills Working with a range of security tooling/technology Strong understanding of security architecture, in particular networking Detailed understanding of threat intelligence and threat actors, TTPs and operationalising threat intelligence. Experience in investigating complex network intrusions (by state-sponsored groups or targeted ransomware attacks). Non-technical Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing) Coaching mindset: the longer term role is not to do the job for the customers, but to mentor them to do it themselves. Security process development Able to understand and adapt to different cultures and hierarchical structures. Self-starter and capable of independent working Desirable Software engineering experience Penetration testing skills Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance wellbeing. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. About BAE Systems Digital Intelligence We use our intelligence-led insights to help defend Governments, Nations and Societies from cyber-attacks and financial crime. Our customers depend on our evolving capabilities to help them safely grow their organisations. Our unprecedented access to threat intelligence, world-leading analysts and market-leading technology means we can help them to adapt, evolve and stay ahead of the criminals. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Our Government business unit houses four of our critical client groups: UK National Security, Global National Security, defence and central government. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours.
22/09/2022
Full time
Role description Our international clients include government and defence organisations focussed on their national cyber mission. We are looking for candidates with a strong understanding of cyber security operations which they can apply to helping customers improve their operations, gaining full value from their use of monitoring tools and threat intelligence. The role is to work onsite with international government clients, primarily in their security operations functions. This may involve working in classified environments. The role draws on technical skills to work with in-country teams to get the best use from their tooling, and is likely to have a significant coaching and upskilling element, as well as creating processes to help build effectiveness in the team. This role will involve international travel, so candidates need to be willing and able to travel for extended periods. Responsibilities Support customer with day-to-day security operations in a coaching capacity Understand Threat Intelligence and its use in an operational environment Use and support client teams in gaining value from their Security Operations technology Deliver security operations training to clients as required Support incident response to national scale incidents in a coaching capacity Establish and build relationships with stakeholders Formulate strategy for improvements to security operations, and communicate in business language to a range of stakeholders. Work with other teams within BAE to improve services on the basis of customer needs. Requirements Technical Basic Python and/or scripting skills Working with a range of security tooling/technology Strong understanding of security architecture, in particular networking Detailed understanding of threat intelligence and threat actors, TTPs and operationalising threat intelligence. Experience in investigating complex network intrusions (by state-sponsored groups or targeted ransomware attacks). Non-technical Client side consulting, including stakeholder engagement and the ability to communicate insights and concepts to others (including briefing skills and report writing) Coaching mindset: the longer term role is not to do the job for the customers, but to mentor them to do it themselves. Security process development Able to understand and adapt to different cultures and hierarchical structures. Self-starter and capable of independent working Desirable Software engineering experience Penetration testing skills Life at BAE Systems Digital Intelligence We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day. By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance wellbeing. Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential. About BAE Systems Digital Intelligence We use our intelligence-led insights to help defend Governments, Nations and Societies from cyber-attacks and financial crime. Our customers depend on our evolving capabilities to help them safely grow their organisations. Our unprecedented access to threat intelligence, world-leading analysts and market-leading technology means we can help them to adapt, evolve and stay ahead of the criminals. Division overview: Government At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Government contracts are an area we have many decades of experience in. Our Government business unit houses four of our critical client groups: UK National Security, Global National Security, defence and central government. Government and key infrastructure networks are critical targets to defend as the effects of these networks being breached can be devastating. As a member of the Government business unit, you will defend the connected world and ensure the protection of nations. We all have a role to play in defending our clients, and this is yours.
Introduction: Widely considered to be leading players in the Oracle HCM/ERP marketplace in the UK, including Manufacturing/SCM/Warehousing, we offer a warm, friendly atmosphere, interesting & challenging work with a professional & experienced Team, good career advancement opportunities and we are expanding, creating a myriad of new opportunities. With plenty of scope for up-skilling and gaining further accreditation, we are also considered good payers (see below for Package details and also how to make your application); we believe in fairly rewarding our staff for their hard work and loyalty. Lead Oracle Manufacturing & SCM Consultant (Home/Hybrid) Job Purpose: The Symatrix support team provides applications support to a broad range of external clients, covering the entire suite including Oracle Financials, Procurement, Projects and Supply Chain Management. Symatrix supports both Oracle eBusiness Suite and Oracle Cloud Applications The main purpose of this role is to provide professional, effective, and efficient support to Oracle Supply Chain Management (SCM) clients to ensure that the Symatrix team maintains a high level of service and meets each client's Service Level Agreements and expectations Main Duties and Responsibilities: Provide reactive support for Oracle SCM applications suite by telephone, online case portal and email. Functional problem investigation and resolution within defined SLAs. Performing root cause analysis and identify solutions that will prevent incidents from recurring. Management of change requests through the software development life cycle. Management of client Service Requests with Oracle, enhancing Oracle's ability to provide a fix with rapid response timescales, and intelligent problem investigation Management of testing and implementation life cycles, through to go live and client signoff. Prepare comprehensive documentation for changes (including defect fixes) - these include Functional Design Documents, Technical Design Documents, Configuration Documents, Test Scripts and Test Results. To remain abreast of the latest patches and product releases, to ensure that our clients are kept up to date with these patches and product releases, in order that they comply with latest legislation To be aware of latest functionality developments, identifying potential configuration opportunities that would benefit Symatrix' support customers To be responsible for identifying and undertaking training and personal development to meet business needs To be responsible for upskilling junior support analysts and help grow the knowledge base across the team To work as part of a wider team, supporting and training colleagues where necessary. To fulfil, on occasions, other reasonable duties which may be required to be undertaken in the consultancy arm of Symatrix, to meet business and customer needs Please Note: This is a Security Cleared Role (SC level of Clearance) and although you don't need to have active SC now, as a pre-requisite when making an application, you will need to be eligible to gain SC level of Clearance Your Knowledge: Strong implementation or support experience in Oracle Supply Chain Management. Experience is at least 4 of the following areas/modules is essential. Inventory Bill of Materials Work in Process MRP Project Manufacturing Warehouse Management Service, Order Management Quality Good knowledge of Oracle SQL and PLSQL, Workflow, Approvals Management (AME), Integrations and Customisations (forms development, forms, and OAF personalisations) Strong understanding of service management processes such as Incident Management, Problem Management and Change Management. Commitment to delivering the highest standards of customer care Proven ability to build and manage client customer relationships. Ability to communicate clearly and concisely at all levels of the business. Ability to prioritise and work on incidents in parallel to team lead responsibilities. Benefits Package: Competitive Salary, Company Pension, 25 days holiday, option to buy an additional 5 holiday days, your own birthday as an additional holiday after two years' service, flexible working, eye tests, private health care (with the leading health care provider), DIS benefit, cycle to work scheme, childcare vouchers, share option scheme, excellent training and learning opportunities. What to do next (how to apply): If you are a strong Oracle SCM/Manufacturing Consultant at a Lead level, or are looking to move into a Lead role and you are searching for a new opportunity, then you have come to the right place and at definitely the right time; please send your application to our Talent Acquisition Specialist (See below for details). Remember; all applications are treated in the strictest confidence, so there is no downside to you sending-in a CV. Why Symatrix? We were founded in 2000 with the specific focus of providing services and expertise to organisations looking to implement and leverage Oracle HCM. We have come a long way since then. Today we believe that all customers should be able to make their business applications work harder for them and provide the returns and the benefits they expected. Everything we do supports this belief. We provide Consulting as well as end-to-end managed services for HCM and ERP on premise or in the Cloud - from Applications Support and Testing as a Service through to Managed Payroll and Process Improvement services, not to mention our award-winning Oracle Practice! In fact, because we truly listen, our services have all developed from customer demand. After the introduction of Cloud, we added Environment Management and Testing as a Service to our kit bag to complement our application support and change services. Our Consulting services have evolved to support Cloud and we have retained our award-winning on-premise expertise. We also created an exciting suite of services to help our customers manage and improve their processes, which really help to move our customers from adopting Cloud to embracing Cloud . All of this we deliver on Oracle's ERP Cloud, HCM Cloud, E-business Suite and Peoplesoft applications. We are delighted to be able to say that we're an ISO27001, BACS and Cyber Essentials accredited business but there are many reasons that we're proud of what we've achieved over the years.
20/09/2022
Full time
Introduction: Widely considered to be leading players in the Oracle HCM/ERP marketplace in the UK, including Manufacturing/SCM/Warehousing, we offer a warm, friendly atmosphere, interesting & challenging work with a professional & experienced Team, good career advancement opportunities and we are expanding, creating a myriad of new opportunities. With plenty of scope for up-skilling and gaining further accreditation, we are also considered good payers (see below for Package details and also how to make your application); we believe in fairly rewarding our staff for their hard work and loyalty. Lead Oracle Manufacturing & SCM Consultant (Home/Hybrid) Job Purpose: The Symatrix support team provides applications support to a broad range of external clients, covering the entire suite including Oracle Financials, Procurement, Projects and Supply Chain Management. Symatrix supports both Oracle eBusiness Suite and Oracle Cloud Applications The main purpose of this role is to provide professional, effective, and efficient support to Oracle Supply Chain Management (SCM) clients to ensure that the Symatrix team maintains a high level of service and meets each client's Service Level Agreements and expectations Main Duties and Responsibilities: Provide reactive support for Oracle SCM applications suite by telephone, online case portal and email. Functional problem investigation and resolution within defined SLAs. Performing root cause analysis and identify solutions that will prevent incidents from recurring. Management of change requests through the software development life cycle. Management of client Service Requests with Oracle, enhancing Oracle's ability to provide a fix with rapid response timescales, and intelligent problem investigation Management of testing and implementation life cycles, through to go live and client signoff. Prepare comprehensive documentation for changes (including defect fixes) - these include Functional Design Documents, Technical Design Documents, Configuration Documents, Test Scripts and Test Results. To remain abreast of the latest patches and product releases, to ensure that our clients are kept up to date with these patches and product releases, in order that they comply with latest legislation To be aware of latest functionality developments, identifying potential configuration opportunities that would benefit Symatrix' support customers To be responsible for identifying and undertaking training and personal development to meet business needs To be responsible for upskilling junior support analysts and help grow the knowledge base across the team To work as part of a wider team, supporting and training colleagues where necessary. To fulfil, on occasions, other reasonable duties which may be required to be undertaken in the consultancy arm of Symatrix, to meet business and customer needs Please Note: This is a Security Cleared Role (SC level of Clearance) and although you don't need to have active SC now, as a pre-requisite when making an application, you will need to be eligible to gain SC level of Clearance Your Knowledge: Strong implementation or support experience in Oracle Supply Chain Management. Experience is at least 4 of the following areas/modules is essential. Inventory Bill of Materials Work in Process MRP Project Manufacturing Warehouse Management Service, Order Management Quality Good knowledge of Oracle SQL and PLSQL, Workflow, Approvals Management (AME), Integrations and Customisations (forms development, forms, and OAF personalisations) Strong understanding of service management processes such as Incident Management, Problem Management and Change Management. Commitment to delivering the highest standards of customer care Proven ability to build and manage client customer relationships. Ability to communicate clearly and concisely at all levels of the business. Ability to prioritise and work on incidents in parallel to team lead responsibilities. Benefits Package: Competitive Salary, Company Pension, 25 days holiday, option to buy an additional 5 holiday days, your own birthday as an additional holiday after two years' service, flexible working, eye tests, private health care (with the leading health care provider), DIS benefit, cycle to work scheme, childcare vouchers, share option scheme, excellent training and learning opportunities. What to do next (how to apply): If you are a strong Oracle SCM/Manufacturing Consultant at a Lead level, or are looking to move into a Lead role and you are searching for a new opportunity, then you have come to the right place and at definitely the right time; please send your application to our Talent Acquisition Specialist (See below for details). Remember; all applications are treated in the strictest confidence, so there is no downside to you sending-in a CV. Why Symatrix? We were founded in 2000 with the specific focus of providing services and expertise to organisations looking to implement and leverage Oracle HCM. We have come a long way since then. Today we believe that all customers should be able to make their business applications work harder for them and provide the returns and the benefits they expected. Everything we do supports this belief. We provide Consulting as well as end-to-end managed services for HCM and ERP on premise or in the Cloud - from Applications Support and Testing as a Service through to Managed Payroll and Process Improvement services, not to mention our award-winning Oracle Practice! In fact, because we truly listen, our services have all developed from customer demand. After the introduction of Cloud, we added Environment Management and Testing as a Service to our kit bag to complement our application support and change services. Our Consulting services have evolved to support Cloud and we have retained our award-winning on-premise expertise. We also created an exciting suite of services to help our customers manage and improve their processes, which really help to move our customers from adopting Cloud to embracing Cloud . All of this we deliver on Oracle's ERP Cloud, HCM Cloud, E-business Suite and Peoplesoft applications. We are delighted to be able to say that we're an ISO27001, BACS and Cyber Essentials accredited business but there are many reasons that we're proud of what we've achieved over the years.
Req ID: 43343 Location: London Other location(s):"I can be myself at work."You define yourself by more than just a job title, and we want you to feel comfortable bringing your true self to work. We value your talents, your traditions and your take on the world everything that makes you unique. We're working hard to advance diversity, equity and inclusion in our organization and our communities because we know that what makes us different makes us better.We want you to feel a strong sense of belonging. We value and welcome your experiences, ideas and identity. Over 40 employee resource groups unite our people and help to develop our collective empathy through unfiltered conversations about race, ethnicity, gender, gender identity, sexual orientation, faith, disabilities, mental health and so much more."I can influence my income."You want to feel recognized at work. Your performance will be reviewed annually, and your compensation will be designed to motivate and reward the value that you provide. You'll receive a competitive salary, bonuses and benefits. Your company-funded retirement contribution will be the equivalent of 15% of your annual pay (including bonuses)."I can lead a full life."You bring unique goals and interests to your job and your life. Whether you're raising a family, you're passionate about where you volunteer, or you want to explore different career paths, we'll give you the resources that can set you up for success. Enjoy generous time-away and health benefits from day one, with the opportunity for flexible work options Receive 2-for-1 matching gifts for your charitable contributions and the opportunity to secure annual grants for the organizations you love Access on-demand professional development resources that allow you to hone existing skills and learn new ones COVID-19 HIRING: Our recruiting and onboarding activities are virtual during the pandemic and we've transitioned to a work-from-home environment until further notice. We are offering generous work-from-home benefits to improve our associate's ability to work remotely. As a Cyber Security Engineer at Capital Group (London Office), you will part of be building out our European cybersecurity team and extend our global cyber-response capabilities. You will apply your forensic, investigative, and cyber-defensive skills to respond to alerts on our endpoints, cloud, and network infrastructure. You will contribute your industry insights and ability to think like an attacker to lead our team on continuous improvement of our incident response processes. You will use your collaboration and communication skills to forge effective partnerships and engage leadership on our response to cybersecurity incidents. You will join and participate actively on a diverse team committed to inclusion, equity, and encouragement of our professional development. Other responsibilities and activities include: You have a minimum of five years of incident response or SOC work, including significant experience with containment and eradication of incidents, (or minimum eight years of combined equivalent experience in incident response, with various IT administrative disciplines: help desk, network, cloud, client/server engineering). You have significant work experience with much of the following: network traffic analysis, network forensics, log analysis, cloud security, endpoint forensics, static and dynamic malware analysis, Windows security and Active Directory, Linux security, MacOS security. You have significant work experience leading and handling escalated security incidents, including coordinating work across contributing teams during and after the incident. You are skilled with either or both PowerShell or Python for automation and data analysis. You have strong English verbal and writing skills. You will coordinate transition to a global, 24x7 team with efficient response processes that pass actionable work and intelligence from team to team. You work independently using collaboration skills of inquiry and advocacy in the context of a larger global team. You support daily response work in case queue and serve as consultant or point of escalation for junior team members. You relentlessly strive to improve Capital Group's security posture by prioritizing risk and remediation activities, escalating risk issues and threats, and being accountable for protecting Capital's customers, associates, data, and assets. You are passionate about mentoring and training junior team members while keeping your own best-in-class skills sharp. You have experience collaborating on purple-team activities that anticipate attacks and build collective skill. You build and maintain the tools, automation, and documentation the team needs to perform at an optimal level. You are able to travel internationally up to 25% / year (when conditions permit). "I can apply in less than 4 minutes."You've reviewed this job posting and you're ready to start the candidate journey with us. Apply now to move to the next step in our recruiting process. If this role isn't what you're looking for, check out our other opportunities and join our talent community."I can learn more about Capital Group." At Capital Group, the success of the people who invest with us depends on the people in whom we invest. That's why we offer a culture, compensation and opportunities that empower our associates to build successful and prosperous careers. Through nine decades, our goal has been to improve people's lives through successful investing. We know that our history is a testament to the strength of the people we hire. More than 7,800 associates in 30+ offices around the world help our clients and each other grow and thrive every day. Find us on LinkedIn, Glassdoor, FairyGodBoss, DiversityJobs and Instagram.We are an equal opportunity employer, which means we comply with all federal, state and local laws that prohibit discrimination when making all decisions about employment. As equal opportunity employers, our policies prohibit unlawful discrimination on the basis of race, religion, color, national origin, ancestry, sex (including gender and gender identity), pregnancy, childbirth and related medical conditions, age, physical or mental disability, medical condition, genetic information, marital status, sexual orientation, citizenship status, AIDS/HIV status, political activities or affiliations, military or veteran status, status as a victim of domestic violence, assault or stalking or any other characteristic protected by federal, state or local law.Job Segment: Social Media, Linux, Data Analyst, Information Security, Information Technology, Marketing, Technology, Data
06/10/2021
Full time
Req ID: 43343 Location: London Other location(s):"I can be myself at work."You define yourself by more than just a job title, and we want you to feel comfortable bringing your true self to work. We value your talents, your traditions and your take on the world everything that makes you unique. We're working hard to advance diversity, equity and inclusion in our organization and our communities because we know that what makes us different makes us better.We want you to feel a strong sense of belonging. We value and welcome your experiences, ideas and identity. Over 40 employee resource groups unite our people and help to develop our collective empathy through unfiltered conversations about race, ethnicity, gender, gender identity, sexual orientation, faith, disabilities, mental health and so much more."I can influence my income."You want to feel recognized at work. Your performance will be reviewed annually, and your compensation will be designed to motivate and reward the value that you provide. You'll receive a competitive salary, bonuses and benefits. Your company-funded retirement contribution will be the equivalent of 15% of your annual pay (including bonuses)."I can lead a full life."You bring unique goals and interests to your job and your life. Whether you're raising a family, you're passionate about where you volunteer, or you want to explore different career paths, we'll give you the resources that can set you up for success. Enjoy generous time-away and health benefits from day one, with the opportunity for flexible work options Receive 2-for-1 matching gifts for your charitable contributions and the opportunity to secure annual grants for the organizations you love Access on-demand professional development resources that allow you to hone existing skills and learn new ones COVID-19 HIRING: Our recruiting and onboarding activities are virtual during the pandemic and we've transitioned to a work-from-home environment until further notice. We are offering generous work-from-home benefits to improve our associate's ability to work remotely. As a Cyber Security Engineer at Capital Group (London Office), you will part of be building out our European cybersecurity team and extend our global cyber-response capabilities. You will apply your forensic, investigative, and cyber-defensive skills to respond to alerts on our endpoints, cloud, and network infrastructure. You will contribute your industry insights and ability to think like an attacker to lead our team on continuous improvement of our incident response processes. You will use your collaboration and communication skills to forge effective partnerships and engage leadership on our response to cybersecurity incidents. You will join and participate actively on a diverse team committed to inclusion, equity, and encouragement of our professional development. Other responsibilities and activities include: You have a minimum of five years of incident response or SOC work, including significant experience with containment and eradication of incidents, (or minimum eight years of combined equivalent experience in incident response, with various IT administrative disciplines: help desk, network, cloud, client/server engineering). You have significant work experience with much of the following: network traffic analysis, network forensics, log analysis, cloud security, endpoint forensics, static and dynamic malware analysis, Windows security and Active Directory, Linux security, MacOS security. You have significant work experience leading and handling escalated security incidents, including coordinating work across contributing teams during and after the incident. You are skilled with either or both PowerShell or Python for automation and data analysis. You have strong English verbal and writing skills. You will coordinate transition to a global, 24x7 team with efficient response processes that pass actionable work and intelligence from team to team. You work independently using collaboration skills of inquiry and advocacy in the context of a larger global team. You support daily response work in case queue and serve as consultant or point of escalation for junior team members. You relentlessly strive to improve Capital Group's security posture by prioritizing risk and remediation activities, escalating risk issues and threats, and being accountable for protecting Capital's customers, associates, data, and assets. You are passionate about mentoring and training junior team members while keeping your own best-in-class skills sharp. You have experience collaborating on purple-team activities that anticipate attacks and build collective skill. You build and maintain the tools, automation, and documentation the team needs to perform at an optimal level. You are able to travel internationally up to 25% / year (when conditions permit). "I can apply in less than 4 minutes."You've reviewed this job posting and you're ready to start the candidate journey with us. Apply now to move to the next step in our recruiting process. If this role isn't what you're looking for, check out our other opportunities and join our talent community."I can learn more about Capital Group." At Capital Group, the success of the people who invest with us depends on the people in whom we invest. That's why we offer a culture, compensation and opportunities that empower our associates to build successful and prosperous careers. Through nine decades, our goal has been to improve people's lives through successful investing. We know that our history is a testament to the strength of the people we hire. More than 7,800 associates in 30+ offices around the world help our clients and each other grow and thrive every day. Find us on LinkedIn, Glassdoor, FairyGodBoss, DiversityJobs and Instagram.We are an equal opportunity employer, which means we comply with all federal, state and local laws that prohibit discrimination when making all decisions about employment. As equal opportunity employers, our policies prohibit unlawful discrimination on the basis of race, religion, color, national origin, ancestry, sex (including gender and gender identity), pregnancy, childbirth and related medical conditions, age, physical or mental disability, medical condition, genetic information, marital status, sexual orientation, citizenship status, AIDS/HIV status, political activities or affiliations, military or veteran status, status as a victim of domestic violence, assault or stalking or any other characteristic protected by federal, state or local law.Job Segment: Social Media, Linux, Data Analyst, Information Security, Information Technology, Marketing, Technology, Data
Information Security Consultant (Secure by Design) Banking Remote / can be based in either Chester or London when necessary 6 months+ £650 - £700 per day The Secure by Design (SBD) Consultant team members assist in the review, development, testing and implementation of security plans, products and control techniques, including enhancement of existing processes and service offerings. The role ensures that the client continuously develops cyber secure technologies that adhere to internal policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products. Must be able to meet demands associated with managing multiple projects in a global environment. Assist with and contribute to overall SBD success. Required Skills: * 4 to 8 years of experience in cyber security or a technology-related field. * Experience in vulnerability assessment, security incident response, application security. * Evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc. * Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines. * Experience in analysing and responding to advanced cyber threats, technology risk and the motivation/attack vectors of each threat. * Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. * Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. * Experience with basic SharePoint usage. * Ability to take ownership of an initiative/issue through completion. * Ability to work in a collaborative environment. * Strong project management skills. * Ability to work with minimal supervision. * Ability to own and deliver on complex initiatives in a high paced, evolving environment. * Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). Desired Skills: * Bachelor's degree in Information Technology, information security or related field * Master's degree preferred * Knowledge in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls * Strong analytical skills/problem solving/conceptual thinking * Ability to work with technical and non-technical business owners * Assist with internal efficiencies projects and development Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
14/09/2021
Contractor
Information Security Consultant (Secure by Design) Banking Remote / can be based in either Chester or London when necessary 6 months+ £650 - £700 per day The Secure by Design (SBD) Consultant team members assist in the review, development, testing and implementation of security plans, products and control techniques, including enhancement of existing processes and service offerings. The role ensures that the client continuously develops cyber secure technologies that adhere to internal policies as well as industry best practices. In addition, the team may be asked to provide technical support to the client, management, and lines of business in risk assessments and implementation of appropriate data security procedures and products. Must be able to meet demands associated with managing multiple projects in a global environment. Assist with and contribute to overall SBD success. Required Skills: * 4 to 8 years of experience in cyber security or a technology-related field. * Experience in vulnerability assessment, security incident response, application security. * Evaluating threats/risks posed by new technologies spanning networks, hardware, software, etc. * Ability to evaluate technology to ensure cyber-secure development that adheres to internal application policy, standards, and baselines. * Experience in analysing and responding to advanced cyber threats, technology risk and the motivation/attack vectors of each threat. * Experience in implementation of information security strategy, including compliance with industry best practices and regulatory requirements. * Excellent verbal and written communication skills. Ability to communicate with business leaders, users and tech-savvy stakeholders. * Experience with basic SharePoint usage. * Ability to take ownership of an initiative/issue through completion. * Ability to work in a collaborative environment. * Strong project management skills. * Ability to work with minimal supervision. * Ability to own and deliver on complex initiatives in a high paced, evolving environment. * Optional Certifications: CISSP (ISC2), CISA, CRISC, CISM (ISACA), CCIE (Cisco), TOGAF, CCTA (McAfee), CCFP (ISC2). Desired Skills: * Bachelor's degree in Information Technology, information security or related field * Master's degree preferred * Knowledge in Application security, Risk assessments, Cloud technologies, GRC (Governance, Risk, and Compliance) with emphasis on security processes and controls * Strong analytical skills/problem solving/conceptual thinking * Ability to work with technical and non-technical business owners * Assist with internal efficiencies projects and development Candidates will ideally show evidence of the above in their CV in order to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
GRC Consultant - Strategy & Governance, Financial Services Full time Permanent London Up to £80k basic + benefits Job Description The Team Our client is acknowledged by Forrester as a leader in providing cyber security consultancy. They are investing in building their Financial Services Cyber team to meet growing demand and provide a comprehensive range of services to many of the largest financial services companies. They help their clients protect, detect and respond to high end cyber threats; helping them understand the cyber threat landscape, make sensible decisions on investment priorities, and build the specialist capabilities they need to counter financial crime and other threats. They believe that cyber security is about helping their clients to harness business opportunities safely and securely. For them, cyber security isn't just a technical issue, it is one which engages the whole business and focusses on a holistic approach to understanding and mitigating the risk. The Financial Services Cyber team is an integral part of their rapidly growing UK Cyber practice. Their team works closely with the companies broader advisory practice to link cyber security to financial crime and risk management, operational resilience and IT transformation The Role You will be a Manager within the Financial Services Cyber team helping both grow our business and ensure our teams deliver high quality advice to clients. You should expect to be involved in a wide range of challenging engagements, ranging from major executive level cyber exercises and threat reviews, through optimisation of client security controls and cyber security programmes, to providing specialist support on issues such as cyber strategy, third party risk etc. Our clients are under increasing regulatory scrutiny, continually battling a rapidly changing cybercrime threat while harnessing the opportunities offered by digital services. As a Manager, we expect you to understand the business issues and to be able to translate complex cyber security issues into straightforward, credible, jargon free advice to our clients; and delivering the support they require. If you are able to help our clients seize the opportunity offered by the digital world, securely, then you are the type of person we are looking for. Responsibilities- Management and delivery of challenging, complex client engagements to ensure quality and value to our clients by: Understanding their business challenges and the threats they face Helping them navigate the increasingly complex cyber security regulatory environment Advising on cyber security governance, frameworks and operating models Helping them optimise their approach to cyber security controls and risk management Getting the balance right between protection, detection, reaction and response to cyber attack Linking cyber security to other consultancy offerings on risk management, resilience and IT transformation to provide holistic support to our clients Coaching and developing team members through sharing of experience and knowledge, as well as managing the performance and development of other team members Upholding company values by acting with integrity Building and managing multiple client relationships Project managing engagements to deliver high quality work in a timely manner to include: scoping/financial management (budgeting)/engagement and risk management/production and review of deliverables. Input into identifying and progressing business development opportunities, as well as supporting sales activities such as proposal development and client presentations. Contributing to practice management, eg knowledge sharing, training, proposition development, and knowledge management. Experience- We expect that you will have: Proven track record in cyber security environment within professional services or an in-house information security function, preferably in Financial Services. Track record within the financial services showing understanding of the business, threat and regulatory issues faced by clients. Proven experience of delivering one or more of the following areas: strategy, transformation, governance, cyber resilience, identity and access management. Proven experience of successfully managing complex cyber security services in a commercial environment, ensuring the delivery of high quality work on time and to budget. Proven ability to lead work at sustained levels of high intensity, and inspire drive and resilience in others. Proven ability to analyse problems, identify core issues and recommend appropriate solutions Proven ability in taking appropriate action after monitoring/reviewing the progress and performance of others. Understanding of a wide range of information security and IT methodologies, principles, technologies and techniques. Excellent communication skills (both written and oral), negotiation and project management skills Ability to develop excellent relationships both internally and with clients at a senior level. A genuine interest and desire to work in the cyber security field. Knowledge of a broad range of cyber security topics eg governance, identity and access management, supply chain risks, security operations, incident management etc. A good understanding of technology platforms. Qualifications- Degree level qualified preferred Recognised cyber security qualifications (eg CISSP, CISM, M.Inst ISP, etc.) Additional Information The role can be based in anyone of our major offices in the UK (Manchester, London, Leeds, Edinburgh or Glasgow) and will include travel; candidates must have a willingness to travel frequently, both domestically and internationally on occasions, with the potential to be away from home for set periods of time.
22/03/2021
Full time
GRC Consultant - Strategy & Governance, Financial Services Full time Permanent London Up to £80k basic + benefits Job Description The Team Our client is acknowledged by Forrester as a leader in providing cyber security consultancy. They are investing in building their Financial Services Cyber team to meet growing demand and provide a comprehensive range of services to many of the largest financial services companies. They help their clients protect, detect and respond to high end cyber threats; helping them understand the cyber threat landscape, make sensible decisions on investment priorities, and build the specialist capabilities they need to counter financial crime and other threats. They believe that cyber security is about helping their clients to harness business opportunities safely and securely. For them, cyber security isn't just a technical issue, it is one which engages the whole business and focusses on a holistic approach to understanding and mitigating the risk. The Financial Services Cyber team is an integral part of their rapidly growing UK Cyber practice. Their team works closely with the companies broader advisory practice to link cyber security to financial crime and risk management, operational resilience and IT transformation The Role You will be a Manager within the Financial Services Cyber team helping both grow our business and ensure our teams deliver high quality advice to clients. You should expect to be involved in a wide range of challenging engagements, ranging from major executive level cyber exercises and threat reviews, through optimisation of client security controls and cyber security programmes, to providing specialist support on issues such as cyber strategy, third party risk etc. Our clients are under increasing regulatory scrutiny, continually battling a rapidly changing cybercrime threat while harnessing the opportunities offered by digital services. As a Manager, we expect you to understand the business issues and to be able to translate complex cyber security issues into straightforward, credible, jargon free advice to our clients; and delivering the support they require. If you are able to help our clients seize the opportunity offered by the digital world, securely, then you are the type of person we are looking for. Responsibilities- Management and delivery of challenging, complex client engagements to ensure quality and value to our clients by: Understanding their business challenges and the threats they face Helping them navigate the increasingly complex cyber security regulatory environment Advising on cyber security governance, frameworks and operating models Helping them optimise their approach to cyber security controls and risk management Getting the balance right between protection, detection, reaction and response to cyber attack Linking cyber security to other consultancy offerings on risk management, resilience and IT transformation to provide holistic support to our clients Coaching and developing team members through sharing of experience and knowledge, as well as managing the performance and development of other team members Upholding company values by acting with integrity Building and managing multiple client relationships Project managing engagements to deliver high quality work in a timely manner to include: scoping/financial management (budgeting)/engagement and risk management/production and review of deliverables. Input into identifying and progressing business development opportunities, as well as supporting sales activities such as proposal development and client presentations. Contributing to practice management, eg knowledge sharing, training, proposition development, and knowledge management. Experience- We expect that you will have: Proven track record in cyber security environment within professional services or an in-house information security function, preferably in Financial Services. Track record within the financial services showing understanding of the business, threat and regulatory issues faced by clients. Proven experience of delivering one or more of the following areas: strategy, transformation, governance, cyber resilience, identity and access management. Proven experience of successfully managing complex cyber security services in a commercial environment, ensuring the delivery of high quality work on time and to budget. Proven ability to lead work at sustained levels of high intensity, and inspire drive and resilience in others. Proven ability to analyse problems, identify core issues and recommend appropriate solutions Proven ability in taking appropriate action after monitoring/reviewing the progress and performance of others. Understanding of a wide range of information security and IT methodologies, principles, technologies and techniques. Excellent communication skills (both written and oral), negotiation and project management skills Ability to develop excellent relationships both internally and with clients at a senior level. A genuine interest and desire to work in the cyber security field. Knowledge of a broad range of cyber security topics eg governance, identity and access management, supply chain risks, security operations, incident management etc. A good understanding of technology platforms. Qualifications- Degree level qualified preferred Recognised cyber security qualifications (eg CISSP, CISM, M.Inst ISP, etc.) Additional Information The role can be based in anyone of our major offices in the UK (Manchester, London, Leeds, Edinburgh or Glasgow) and will include travel; candidates must have a willingness to travel frequently, both domestically and internationally on occasions, with the potential to be away from home for set periods of time.
Client Server Ltd.
Junior Security Analyst (Network Protocols TCP/IP HTTP Malware). An exciting opportunity has arisen for a bright and highly driven individual to utilise and develop their Security Analyst skills within a hugely successful company that offers a fantastic working environment. You'll be able to continually enhance your knowledge through an individually tailored learning and development plan, access to various industry conferences and financial support for tuition and exam fees allowing you to reach your full potential as a Security Analyst. Cutting edge information security consultancy that helps a range of clients overcome their most complex information security challenges is seeking a Junior Security Analyst to join their Response Analyst team. Your core day to day responsibilities will include; responding to and investigating alerts raised by proprietary tools, performing analysis of the data captured by monitoring systems, assisting in the generation of new signatures / rules and supporting Investigative Consultants with incident response investigations. Based in Gloucester, you will be joining a supportive, social and friendly company that is passionate about developing their staff and helping them to progress their career. The company offers a comprehensive benefits package and 21 days holiday with the option to buy 5 additional days. Requirements: *Degree educated in Computer Science or similar (2:1 or above) *Strong interest in cyber security *Understanding of common network protocols such as TCP/IP, HTTP and DNS *Familiar with various types of malware, infection vectors and indicators of an infection *Awareness of current / past information security threats *Excellent communication skills *Keen to learn new skills and progress your career as a Security Analyst *Desirable: Reverse engineering As a Junior Security Analyst you can expect to earn a competitive salary (up to £25k) plus bonus and benefits. Apply today or call to have a confidential discussion about this Junior Security Analyst role.
15/02/2019
Client Server Ltd.
Junior Security Analyst (Network Protocols TCP/IP HTTP Malware). An exciting opportunity has arisen for a bright and highly driven individual to utilise and develop their Security Analyst skills within a hugely successful company that offers a fantastic working environment. You'll be able to continually enhance your knowledge through an individually tailored learning and development plan, access to various industry conferences and financial support for tuition and exam fees allowing you to reach your full potential as a Security Analyst. Cutting edge information security consultancy that helps a range of clients overcome their most complex information security challenges is seeking a Junior Security Analyst to join their Response Analyst team. Your core day to day responsibilities will include; responding to and investigating alerts raised by proprietary tools, performing analysis of the data captured by monitoring systems, assisting in the generation of new signatures / rules and supporting Investigative Consultants with incident response investigations. Based in Gloucester, you will be joining a supportive, social and friendly company that is passionate about developing their staff and helping them to progress their career. The company offers a comprehensive benefits package and 21 days holiday with the option to buy 5 additional days. Requirements: *Degree educated in Computer Science or similar (2:1 or above) *Strong interest in cyber security *Understanding of common network protocols such as TCP/IP, HTTP and DNS *Familiar with various types of malware, infection vectors and indicators of an infection *Awareness of current / past information security threats *Excellent communication skills *Keen to learn new skills and progress your career as a Security Analyst *Desirable: Reverse engineering As a Junior Security Analyst you can expect to earn a competitive salary (up to £25k) plus bonus and benefits. Apply today or call to have a confidential discussion about this Junior Security Analyst role.
