A leading cybersecurity firm in the UK is looking for a Senior Security Engineer to join their Managed Security Service Provider team. The successful candidate will manage Microsoft Sentinel implementations, focusing on client onboarding and developing custom data connectors. Proficiency in Infrastructure as Code and scripting in Python or Go is necessary, along with a solid background in threat detection and security monitoring. This role offers a competitive salary and the flexibility of hybrid working arrangements.
12/05/2026
Full time
A leading cybersecurity firm in the UK is looking for a Senior Security Engineer to join their Managed Security Service Provider team. The successful candidate will manage Microsoft Sentinel implementations, focusing on client onboarding and developing custom data connectors. Proficiency in Infrastructure as Code and scripting in Python or Go is necessary, along with a solid background in threat detection and security monitoring. This role offers a competitive salary and the flexibility of hybrid working arrangements.
We are seeking a highly skilled and experienced Senior Security Engineer to join our Managed Security Service Provider (MSSP) team. You will be responsible for driving our adoption of Sentinel, client onboarding projects, managing multi-vendor SIEM proof of concepts with a specific focus on a Microsoft Sentinel, developing custom connectors to ingest log data into SIEM tooling. The ideal candidate will possess a deep understanding of infrastructure as code (IaC) and DevOps Pipelines with Bicep/Terraform and proficiency in scripting/programming languages such as Python/Go. Experience with Sentinel deployments, log management, and threat detection is required, including expertise in dashboard creation, query development, and alert configuration. Additional experience in Splunk deployments is beneficial. This role sits within our MSSP team, as a senior member of the security engineering team focused on growing our SIEM management capabilities and integrating those into our Managed SOC offering in a consistent and professional way. You will work on a variety of projects, the below should be considered key focus areas of the role: Responsibilities Client Onboarding Projects: Lead and execute comprehensive client onboarding processes, ensuring a seamless transition and integration into SOC. Sentinel Proof of Concepts (PoCs): Design, implement, and manage PoCs for Sentinel and Microsoft Sentinel demonstrating their capabilities and value to clients. Custom Data Connectors: Develop, test, and deploy custom data connectors to integrate various data sources into SIEM systems, including Splunk and Azure Sentinel. Infrastructure as Code (IaC): Utilize Bicep and Terraform for automating cloud infrastructure deployment and management, ensuring scalability and consistency. Scripting and Automation: Develop and maintain automation scripts using Python/Go and Function Apps to streamline security operations. SIEM Expertise: Deploy, configure, manage, and optimize Sentinel for security monitoring, log ingestion, query development, and threat detection. Technical Leadership: Provide technical guidance and mentorship to junior engineers, fostering a culture of continuous learning and improvement. Client Engagement: Work closely with clients to understand their security needs, provide expert advice, and ensure satisfaction with our services. Pre-Sales Support: Work closely with the sales team to accurately scope projects and their deliverables, ensuring proper resource allocation. Documentation and Reporting: Create and maintain comprehensive documentation for projects, processes, and configurations. Why Join Us? Our vision is to create a safe, inclusive digital world where people and organisations can thrive. Our values of Do the Right Thing, One Team and Above and Beyond emphasise the importance of the part we play in society, and our commitment to our people and clients. Our story to-date has been phenomenal, but success doesn't end here and as we continue to grow and scale, we want to keep the same culture, passion and commitment to high quality that has enabled us to get this far. Bridewell will provide a great career opportunity with continual development as well as the following: Competitive Salary 25 Days Holiday - Plus buy and sell options Flexible Working (around core office hours) Company Pension Employee Shareholder Scheme Dedicated Training Budget Life Assurance Cycle to Work Scheme Electric Vehicle Scheme Private Healthcare (incl. Gym discounts) Vision Care Birthday off (After 1 year) About Bridewell One of the most exciting prospects in the UK Cyber Security sector today, Bridewell is one of the fastest growing Cyber Security services businesses with a strong track record for delivering complex security projects and providing excellent customer service. Bridewell has an exciting and varied portfolio of clients across Financial Services, Manufacturing, Oil & Gas, Government, Critical National Infrastructure and more. Bridewell holds the Gold level Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly One Team. Along with our focus on our people, we also have a big focus on sustainability and recognise the role we play in the fight against climate change. Today, Bridewell is proud to be a carbon negative business. Location: Bridewell operates a hybrid and flexible working policy, however you will be required to travel to different sites on occasion. Bridewell values diversity in the workplace and is a fair and equal opportunity employer. We are committed to creating an equal and inclusive working environment, with the aim that our employees will be truly representative of all sections of society and each person feels respected and able to give their best.
12/05/2026
Full time
We are seeking a highly skilled and experienced Senior Security Engineer to join our Managed Security Service Provider (MSSP) team. You will be responsible for driving our adoption of Sentinel, client onboarding projects, managing multi-vendor SIEM proof of concepts with a specific focus on a Microsoft Sentinel, developing custom connectors to ingest log data into SIEM tooling. The ideal candidate will possess a deep understanding of infrastructure as code (IaC) and DevOps Pipelines with Bicep/Terraform and proficiency in scripting/programming languages such as Python/Go. Experience with Sentinel deployments, log management, and threat detection is required, including expertise in dashboard creation, query development, and alert configuration. Additional experience in Splunk deployments is beneficial. This role sits within our MSSP team, as a senior member of the security engineering team focused on growing our SIEM management capabilities and integrating those into our Managed SOC offering in a consistent and professional way. You will work on a variety of projects, the below should be considered key focus areas of the role: Responsibilities Client Onboarding Projects: Lead and execute comprehensive client onboarding processes, ensuring a seamless transition and integration into SOC. Sentinel Proof of Concepts (PoCs): Design, implement, and manage PoCs for Sentinel and Microsoft Sentinel demonstrating their capabilities and value to clients. Custom Data Connectors: Develop, test, and deploy custom data connectors to integrate various data sources into SIEM systems, including Splunk and Azure Sentinel. Infrastructure as Code (IaC): Utilize Bicep and Terraform for automating cloud infrastructure deployment and management, ensuring scalability and consistency. Scripting and Automation: Develop and maintain automation scripts using Python/Go and Function Apps to streamline security operations. SIEM Expertise: Deploy, configure, manage, and optimize Sentinel for security monitoring, log ingestion, query development, and threat detection. Technical Leadership: Provide technical guidance and mentorship to junior engineers, fostering a culture of continuous learning and improvement. Client Engagement: Work closely with clients to understand their security needs, provide expert advice, and ensure satisfaction with our services. Pre-Sales Support: Work closely with the sales team to accurately scope projects and their deliverables, ensuring proper resource allocation. Documentation and Reporting: Create and maintain comprehensive documentation for projects, processes, and configurations. Why Join Us? Our vision is to create a safe, inclusive digital world where people and organisations can thrive. Our values of Do the Right Thing, One Team and Above and Beyond emphasise the importance of the part we play in society, and our commitment to our people and clients. Our story to-date has been phenomenal, but success doesn't end here and as we continue to grow and scale, we want to keep the same culture, passion and commitment to high quality that has enabled us to get this far. Bridewell will provide a great career opportunity with continual development as well as the following: Competitive Salary 25 Days Holiday - Plus buy and sell options Flexible Working (around core office hours) Company Pension Employee Shareholder Scheme Dedicated Training Budget Life Assurance Cycle to Work Scheme Electric Vehicle Scheme Private Healthcare (incl. Gym discounts) Vision Care Birthday off (After 1 year) About Bridewell One of the most exciting prospects in the UK Cyber Security sector today, Bridewell is one of the fastest growing Cyber Security services businesses with a strong track record for delivering complex security projects and providing excellent customer service. Bridewell has an exciting and varied portfolio of clients across Financial Services, Manufacturing, Oil & Gas, Government, Critical National Infrastructure and more. Bridewell holds the Gold level Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly One Team. Along with our focus on our people, we also have a big focus on sustainability and recognise the role we play in the fight against climate change. Today, Bridewell is proud to be a carbon negative business. Location: Bridewell operates a hybrid and flexible working policy, however you will be required to travel to different sites on occasion. Bridewell values diversity in the workplace and is a fair and equal opportunity employer. We are committed to creating an equal and inclusive working environment, with the aim that our employees will be truly representative of all sections of society and each person feels respected and able to give their best.
Security Operations Engineer - London - 9 month Fixed Term Contract We are currently seeking a Security Operations Engineer to join one of our most prestigious clients on a 9 month fixed term contract. This role supports the monitoring, investigation and response to security threats across the firm's systems, networks and cloud environments.This is a hands-on role suited to someone who has operated within an established security operations environment and is comfortable independently investigating alerts, determining root cause and working with technical teams to resolve incidents. The role will also support improvements to detection capability and security monitoring. Key Responsibilities: Investigate and respond to security alerts across endpoint, network and cloud environments Analyse logs and telemetry to identify indicators of compromise and potential threats Support incident investigations and coordinate remediation with internal technical teams Develop or refine detection rules and monitoring capability Support vulnerability management activities and follow up on remediation actions Assist with penetration testing coordination and remediation tracking Contribute to security monitoring improvements and automation where appropriate Support security compliance activities aligned to ISO27001 and Cyber Essentials Plus Required Skills: Experience working within a security operations or cyber defence environment Experience investigating security alerts and conducting incident analysis Experience using SIEM platforms and endpoint detection and response tools Strong understanding of networking and system behaviour (TCP/IP, DNS, HTTP/S) Ability to analyse security data across endpoint, network and cloud environments Experience working with security monitoring and threat detection tooling Scripting capability in Python, PowerShell or Bash Understanding of threat frameworks such as MITRE ATT&CK Experience with tools such as Microsoft Sentinel, Splunk, Defender, CrowdStrike, Tenable or Qualys would be beneficial. If you are available and interested in this opportunity, please apply for further information. Please note that due to high volumes of applications we are unable to contact every applicant. If you do not hear back from us within 7 days of sending your application, please assume that you have not been successful on this occasion. At Lucid, we celebrate difference and value diverse perspectives, underpinned by our values 'Honesty, Integrity and Pragmatism'. We are proud to provide equal opportunities in line with our Diversity and Inclusion policy and welcome applications from all suitably qualified or experienced people, regardless of personal characteristics. If you have a disability or health condition and seek support throughout the recruitment process, please do not hesitate to contact us via the details below.
12/05/2026
Security Operations Engineer - London - 9 month Fixed Term Contract We are currently seeking a Security Operations Engineer to join one of our most prestigious clients on a 9 month fixed term contract. This role supports the monitoring, investigation and response to security threats across the firm's systems, networks and cloud environments.This is a hands-on role suited to someone who has operated within an established security operations environment and is comfortable independently investigating alerts, determining root cause and working with technical teams to resolve incidents. The role will also support improvements to detection capability and security monitoring. Key Responsibilities: Investigate and respond to security alerts across endpoint, network and cloud environments Analyse logs and telemetry to identify indicators of compromise and potential threats Support incident investigations and coordinate remediation with internal technical teams Develop or refine detection rules and monitoring capability Support vulnerability management activities and follow up on remediation actions Assist with penetration testing coordination and remediation tracking Contribute to security monitoring improvements and automation where appropriate Support security compliance activities aligned to ISO27001 and Cyber Essentials Plus Required Skills: Experience working within a security operations or cyber defence environment Experience investigating security alerts and conducting incident analysis Experience using SIEM platforms and endpoint detection and response tools Strong understanding of networking and system behaviour (TCP/IP, DNS, HTTP/S) Ability to analyse security data across endpoint, network and cloud environments Experience working with security monitoring and threat detection tooling Scripting capability in Python, PowerShell or Bash Understanding of threat frameworks such as MITRE ATT&CK Experience with tools such as Microsoft Sentinel, Splunk, Defender, CrowdStrike, Tenable or Qualys would be beneficial. If you are available and interested in this opportunity, please apply for further information. Please note that due to high volumes of applications we are unable to contact every applicant. If you do not hear back from us within 7 days of sending your application, please assume that you have not been successful on this occasion. At Lucid, we celebrate difference and value diverse perspectives, underpinned by our values 'Honesty, Integrity and Pragmatism'. We are proud to provide equal opportunities in line with our Diversity and Inclusion policy and welcome applications from all suitably qualified or experienced people, regardless of personal characteristics. If you have a disability or health condition and seek support throughout the recruitment process, please do not hesitate to contact us via the details below.
Detect Workstream Lead - 6 Month Contract - Inside IR35 - Fully Remote Contract Type: Initial 6 month contract (Inside IR35) Rate: £500 per day Inside IR35 Location: Hybrid in London Role Overview: We are looking for a Detect Workstream Lead to join on a 6-month hybrid contract based in Gloucester (2 days on-site). The role leads delivery across the Detect function within a major cybersecurity transformation programme, working across SOC, security engineering, platform, and business stakeholders to shape plans, manage dependencies, and drive detection-aligned outcomes. Note: Active SC clearance is desirable; eligibility to obtain clearance is essential. Key Responsibilities: Lead the Detect workstream across agreed scope, milestones, and delivery outcomes, defining and driving workstream plans, priorities, and implementation sequencing Coordinate stakeholders across SOC, security engineering, platform teams, and wider programme functions, driving delivery across detection, monitoring, tooling integration, and security operations uplift Manage governance, RAID, dependencies, decision points, and escalations, providing clear progress reporting and recommendations to programme leadership Lead use case prioritisation, integration planning, and third-party supplier management aligned to the Detect workstream roadmap Update and maintain associated risk mitigations, ensuring delivery decisions and actions are clearly tracked and communicated What You Will Ideally Bring: Senior-level programme or workstream leadership experience, with a proven track record of independently driving delivery in complex security transformation environments Strong security operations and detection delivery background, with good working knowledge of NIST CSF 2.0 Experience across SOC operations, detection engineering, and security monitoring including use case development and alerting Hands-on knowledge of SIEM platforms such as Microsoft Sentinel, including tooling integration, onboarding, and SOC transformation activities Strong governance and stakeholder management skills - RAID management, dependency tracking, and executive-level progress reporting - SC clearance required or eligibility to obtain
12/05/2026
Contractor
Detect Workstream Lead - 6 Month Contract - Inside IR35 - Fully Remote Contract Type: Initial 6 month contract (Inside IR35) Rate: £500 per day Inside IR35 Location: Hybrid in London Role Overview: We are looking for a Detect Workstream Lead to join on a 6-month hybrid contract based in Gloucester (2 days on-site). The role leads delivery across the Detect function within a major cybersecurity transformation programme, working across SOC, security engineering, platform, and business stakeholders to shape plans, manage dependencies, and drive detection-aligned outcomes. Note: Active SC clearance is desirable; eligibility to obtain clearance is essential. Key Responsibilities: Lead the Detect workstream across agreed scope, milestones, and delivery outcomes, defining and driving workstream plans, priorities, and implementation sequencing Coordinate stakeholders across SOC, security engineering, platform teams, and wider programme functions, driving delivery across detection, monitoring, tooling integration, and security operations uplift Manage governance, RAID, dependencies, decision points, and escalations, providing clear progress reporting and recommendations to programme leadership Lead use case prioritisation, integration planning, and third-party supplier management aligned to the Detect workstream roadmap Update and maintain associated risk mitigations, ensuring delivery decisions and actions are clearly tracked and communicated What You Will Ideally Bring: Senior-level programme or workstream leadership experience, with a proven track record of independently driving delivery in complex security transformation environments Strong security operations and detection delivery background, with good working knowledge of NIST CSF 2.0 Experience across SOC operations, detection engineering, and security monitoring including use case development and alerting Hands-on knowledge of SIEM platforms such as Microsoft Sentinel, including tooling integration, onboarding, and SOC transformation activities Strong governance and stakeholder management skills - RAID management, dependency tracking, and executive-level progress reporting - SC clearance required or eligibility to obtain
Cyber Security Analyst Salary: Up to £60,000 + £5,600 car allowance + benefits Location: UK (Remote with some travel to UK sites - must have UK Driver's licence) Join a growing organisation in the engineering sector in a newly created role that will play a key role as the company continues to grow. You will contribute to a dynamic, fast-paced environment, protecting critical systems and data, working on a mix of BAU security operations. The Role We're looking for a Cyber Security Analyst or Engineer with proficiency in a range of security skills including SentinelOne, Mimecast and MS Sentinel. You'll be working closely with the GISO while supporting a collection of subsidiaries with day-to-day live estate monitoring. This role is perfect for someone with experience of working as part of a small security team, taking responsibility for security initiatives across the organisation. Cyber Security Analyst/Engineer Responsibilities: With day-to-day reporting to the Group Information Security Officer (GISO), you will combine operational monitoring and incident response with hands-on project delivery. This is a role for a security professional who thrives in both technical and collaborative settings. Key duties include: Monitoring and analysing network traffic, systems, and logs for unusual or malicious activity. Conducting regular security assessments and audits to identify vulnerabilities and risks. Implementing and maintaining security tools and protocols, including Firewalls, intrusion detection systems, and endpoint protection solutions. Investigating security incidents, responding to potential breaches, and documenting findings. Reviewing and remediating vulnerabilities in collaboration with relevant teams. What We're Looking For: Technically minded security engineer. Experience with SentinelONE. Experience working with a third party to a managed SOC provision. Proficiency with Mimecast, antivirus, MS Sentinel. Experience with vulnerability assessment tools such as Tenable or Qualys. Excellent analytical skills for identifying and addressing security threats. Driver's License with consistent access to a vehicle. What's in it for me? This is an opportunity to work in a complex and engaging environment, where your contributions will directly impact organisational security. You'll gain exposure to cutting-edge technologies, take ownership of critical projects, and expand your expertise in a collaborative and supportive setting. Additional benefits include: Car Allowance - £5,600. Comprehensive healthcare package. Remote and hybrid work options. Professional development opportunities to enhance your certifications and skills. We're an equal opportunity employer and we value diversity at our company. We do not discriminate on the basis of race, religion, national origin, gender, sexual orientation, age, marital status, or disability status.
12/05/2026
Full time
Cyber Security Analyst Salary: Up to £60,000 + £5,600 car allowance + benefits Location: UK (Remote with some travel to UK sites - must have UK Driver's licence) Join a growing organisation in the engineering sector in a newly created role that will play a key role as the company continues to grow. You will contribute to a dynamic, fast-paced environment, protecting critical systems and data, working on a mix of BAU security operations. The Role We're looking for a Cyber Security Analyst or Engineer with proficiency in a range of security skills including SentinelOne, Mimecast and MS Sentinel. You'll be working closely with the GISO while supporting a collection of subsidiaries with day-to-day live estate monitoring. This role is perfect for someone with experience of working as part of a small security team, taking responsibility for security initiatives across the organisation. Cyber Security Analyst/Engineer Responsibilities: With day-to-day reporting to the Group Information Security Officer (GISO), you will combine operational monitoring and incident response with hands-on project delivery. This is a role for a security professional who thrives in both technical and collaborative settings. Key duties include: Monitoring and analysing network traffic, systems, and logs for unusual or malicious activity. Conducting regular security assessments and audits to identify vulnerabilities and risks. Implementing and maintaining security tools and protocols, including Firewalls, intrusion detection systems, and endpoint protection solutions. Investigating security incidents, responding to potential breaches, and documenting findings. Reviewing and remediating vulnerabilities in collaboration with relevant teams. What We're Looking For: Technically minded security engineer. Experience with SentinelONE. Experience working with a third party to a managed SOC provision. Proficiency with Mimecast, antivirus, MS Sentinel. Experience with vulnerability assessment tools such as Tenable or Qualys. Excellent analytical skills for identifying and addressing security threats. Driver's License with consistent access to a vehicle. What's in it for me? This is an opportunity to work in a complex and engaging environment, where your contributions will directly impact organisational security. You'll gain exposure to cutting-edge technologies, take ownership of critical projects, and expand your expertise in a collaborative and supportive setting. Additional benefits include: Car Allowance - £5,600. Comprehensive healthcare package. Remote and hybrid work options. Professional development opportunities to enhance your certifications and skills. We're an equal opportunity employer and we value diversity at our company. We do not discriminate on the basis of race, religion, national origin, gender, sexual orientation, age, marital status, or disability status.
Open to your next opportunity? Join a specialist AI and data security advisory partner helping private equity firms and their portfolio companies get more from their security investments. Through independent assessments and ongoing optimisation of security spend, the organisation uncovers hidden savings, validates existing protection, and helps maximise ROI from existing tools and platforms. Be part of an exciting growth journey. Responsibilities Deploy, configure and support Netskope cloud security solutions (CASB, SWG, ZTNA) Support implementation and management of Microsoft Security technologies (Defender, Sentinel, Entra ID) Monitor and respond to security alerts and incidents across client environments Work with clients to improve their overall security posture Support the design and delivery of security solutions Assist with vulnerability management and remediation Collaborate with internal engineering and SOC teams Skills/Must have Minimum 2 years' experience in a Cyber Security Engineer (or similar) role Hands on experience with Netskope or broader CASB/SSE technologies Strong understanding of networking fundamentals (DNS, TCP/IP, VPNs, proxies) Experience working in cloud environments (Azure preferred) Strong troubleshooting and communication skills Benefits Exposure to enterprise level security projects Clear progression into senior/architect roles Work within a growing, specialist security MSP Collaborative and technical engineering environment Salary Up to £60,000
11/05/2026
Full time
Open to your next opportunity? Join a specialist AI and data security advisory partner helping private equity firms and their portfolio companies get more from their security investments. Through independent assessments and ongoing optimisation of security spend, the organisation uncovers hidden savings, validates existing protection, and helps maximise ROI from existing tools and platforms. Be part of an exciting growth journey. Responsibilities Deploy, configure and support Netskope cloud security solutions (CASB, SWG, ZTNA) Support implementation and management of Microsoft Security technologies (Defender, Sentinel, Entra ID) Monitor and respond to security alerts and incidents across client environments Work with clients to improve their overall security posture Support the design and delivery of security solutions Assist with vulnerability management and remediation Collaborate with internal engineering and SOC teams Skills/Must have Minimum 2 years' experience in a Cyber Security Engineer (or similar) role Hands on experience with Netskope or broader CASB/SSE technologies Strong understanding of networking fundamentals (DNS, TCP/IP, VPNs, proxies) Experience working in cloud environments (Azure preferred) Strong troubleshooting and communication skills Benefits Exposure to enterprise level security projects Clear progression into senior/architect roles Work within a growing, specialist security MSP Collaborative and technical engineering environment Salary Up to £60,000
IT Helpdesk & Security Engineer (12-month FTC) - Sports Interactive (Stratford) - 5 days in-office Location: Here East, Queen Elizabeth Olympic Park, London, E15 2GW As an IT Helpdesk & Security Engineer at SEGA Europe Ltd, based in Sports Interactive (Stratford), you'll be the first line of technical assistance, keeping the studio shipping out great games. You'll also help act as the first line of defence when a phishing email, dodgy download, or compromised endpoint tries to crash the party. It's the best of both worlds: classic IT helpdesk meets hands on security engineering, rolled into one. If you're the kind of person who loves a well triaged ticket queue and gets a kick out of chasing down the story behind a suspicious process, this is your kind of side quest. You'll play a vital role in making sure everyone across the business has the tools to do their best work, and the confidence that their devices, accounts, and data have someone watching the perimeter. Your mission: deliver exceptional white glove support, work shoulder to shoulder with the Cyber Security team to triage and investigate incidents on endpoints, and keep SEGA's technology smooth, secure, and ready for whatever the next release throws at it. Key Responsibilities Monitor and respond to incoming incidents and service requests in a timely manner. Deliver technical support across multiple channels including email, Microsoft Teams, the service desk platform, and in person interactions. Assist with onboarding and offboarding processes for user accounts and hardware deployment or recovery. Proactively maintain user devices, ensuring compliance with company policies and standards. Create and maintain IT documentation in Atlassian Confluence, covering systems, solutions, and operational processes. Provide support for O365, Microsoft Entra, and other SaaS applications. Install and maintain a wide range of hardware and software to ensure optimal system performance. Act as a first responder for suspected security incidents on endpoints, working alongside the Cyber Security team to triage, contain, and elevate as appropriate. Capture forensic images from suspected compromised endpoints using industry standard tooling (e.g. FTK Imager), preserving chain of custody and collecting relevant volatile data, logs, and artefacts to support DFIR investigations. Support phishing triage and response, including reviewing user reported messages, pulling headers and indicators, and assisting with investigations in Microsoft 365 Defender. Occasional travel to HQ or other studios may be required. Knowledge, Skills and Experience Strong hands on experience with Windows operating systems, including troubleshooting and system maintenance. Capable of supporting in person users with both technical troubleshooting, and with hands on support (e.g. cable management, workstation setup, etc). Foundational understanding of Active Directory and Microsoft Entra ID. Bachelor's Degree in Cyber Security, or security focused certification. Experience working with the Microsoft 365 suite, including Teams, SharePoint, OneDrive, and Exchange. Practical ability to acquire a forensic image from a suspected compromised endpoint (Windows and/or macOS), preserving chain of custody and producing verifiable hashes, using tooling such as FTK Imager, KAPE, or equivalent. Working understanding of core security tooling, including EDR (e.g. Microsoft Defender for Endpoint), SIEM (e.g. Microsoft Sentinel, Sumo Logic, Chronicle), and enterprise email security, sufficient to support incident triage and evidence collection. Awareness of common attacker techniques (e.g. MITRE ATT&CK) and how they manifest on endpoints, plus basic log analysis skills (Windows Event Logs, Unified Audit Log, Sysmon). Proficiency with macOS environments and support practices. Familiarity with ManageEngine Endpoint Central for device and asset management. Hands on experience with Microsoft Intune for mobile device and application management. Knowledge of Jamf for macOS device administration and support. Experience in supporting Microsoft Teams Room Systems, including setup and troubleshooting. ITIL Foundation certified (v3 or v4), with the ability to demonstrate a clear understanding of IT service management principles. CompTIA A+ certified, with a solid grounding in hardware, software, and support fundamentals. Security focused certifications such as GCIH, GCFA or equivalent. Hands on familiarity with DFIR tooling such as KAPE, Velociraptor, Autopsy, EnCase, or Magnet AXIOM, and an understanding of how to collect volatile data (memory, running processes, network connections) from a live endpoint. Soft Skills Excellent communication skills, with a talent for translating technical concepts into clear, accessible language. Strong problem solving abilities and a proactive mindset for approaching technical challenges head on. Strong interpersonal skills and a collaborative spirit that thrives in team environments. Highly organised and adaptable, with the ability to manage competing priorities in a dynamic setting. Naturally inquisitive, with a continuous drive to learn, grow, and stay ahead in a fast evolving tech landscape. We want people of all backgrounds to see themselves represented and included in our work, so we actively seek to diversify our team and bring more voices to the table. All applicants are welcome! You'll have access to a comprehensive benefits package that includes life assurance, income protection, private healthcare & dental insurance schemes and an enhanced contributory pension scheme. We offer competitive salaries and a fantastic bonus scheme so that you can stay motivated and focused on making SEGA the best it can be.
11/05/2026
Full time
IT Helpdesk & Security Engineer (12-month FTC) - Sports Interactive (Stratford) - 5 days in-office Location: Here East, Queen Elizabeth Olympic Park, London, E15 2GW As an IT Helpdesk & Security Engineer at SEGA Europe Ltd, based in Sports Interactive (Stratford), you'll be the first line of technical assistance, keeping the studio shipping out great games. You'll also help act as the first line of defence when a phishing email, dodgy download, or compromised endpoint tries to crash the party. It's the best of both worlds: classic IT helpdesk meets hands on security engineering, rolled into one. If you're the kind of person who loves a well triaged ticket queue and gets a kick out of chasing down the story behind a suspicious process, this is your kind of side quest. You'll play a vital role in making sure everyone across the business has the tools to do their best work, and the confidence that their devices, accounts, and data have someone watching the perimeter. Your mission: deliver exceptional white glove support, work shoulder to shoulder with the Cyber Security team to triage and investigate incidents on endpoints, and keep SEGA's technology smooth, secure, and ready for whatever the next release throws at it. Key Responsibilities Monitor and respond to incoming incidents and service requests in a timely manner. Deliver technical support across multiple channels including email, Microsoft Teams, the service desk platform, and in person interactions. Assist with onboarding and offboarding processes for user accounts and hardware deployment or recovery. Proactively maintain user devices, ensuring compliance with company policies and standards. Create and maintain IT documentation in Atlassian Confluence, covering systems, solutions, and operational processes. Provide support for O365, Microsoft Entra, and other SaaS applications. Install and maintain a wide range of hardware and software to ensure optimal system performance. Act as a first responder for suspected security incidents on endpoints, working alongside the Cyber Security team to triage, contain, and elevate as appropriate. Capture forensic images from suspected compromised endpoints using industry standard tooling (e.g. FTK Imager), preserving chain of custody and collecting relevant volatile data, logs, and artefacts to support DFIR investigations. Support phishing triage and response, including reviewing user reported messages, pulling headers and indicators, and assisting with investigations in Microsoft 365 Defender. Occasional travel to HQ or other studios may be required. Knowledge, Skills and Experience Strong hands on experience with Windows operating systems, including troubleshooting and system maintenance. Capable of supporting in person users with both technical troubleshooting, and with hands on support (e.g. cable management, workstation setup, etc). Foundational understanding of Active Directory and Microsoft Entra ID. Bachelor's Degree in Cyber Security, or security focused certification. Experience working with the Microsoft 365 suite, including Teams, SharePoint, OneDrive, and Exchange. Practical ability to acquire a forensic image from a suspected compromised endpoint (Windows and/or macOS), preserving chain of custody and producing verifiable hashes, using tooling such as FTK Imager, KAPE, or equivalent. Working understanding of core security tooling, including EDR (e.g. Microsoft Defender for Endpoint), SIEM (e.g. Microsoft Sentinel, Sumo Logic, Chronicle), and enterprise email security, sufficient to support incident triage and evidence collection. Awareness of common attacker techniques (e.g. MITRE ATT&CK) and how they manifest on endpoints, plus basic log analysis skills (Windows Event Logs, Unified Audit Log, Sysmon). Proficiency with macOS environments and support practices. Familiarity with ManageEngine Endpoint Central for device and asset management. Hands on experience with Microsoft Intune for mobile device and application management. Knowledge of Jamf for macOS device administration and support. Experience in supporting Microsoft Teams Room Systems, including setup and troubleshooting. ITIL Foundation certified (v3 or v4), with the ability to demonstrate a clear understanding of IT service management principles. CompTIA A+ certified, with a solid grounding in hardware, software, and support fundamentals. Security focused certifications such as GCIH, GCFA or equivalent. Hands on familiarity with DFIR tooling such as KAPE, Velociraptor, Autopsy, EnCase, or Magnet AXIOM, and an understanding of how to collect volatile data (memory, running processes, network connections) from a live endpoint. Soft Skills Excellent communication skills, with a talent for translating technical concepts into clear, accessible language. Strong problem solving abilities and a proactive mindset for approaching technical challenges head on. Strong interpersonal skills and a collaborative spirit that thrives in team environments. Highly organised and adaptable, with the ability to manage competing priorities in a dynamic setting. Naturally inquisitive, with a continuous drive to learn, grow, and stay ahead in a fast evolving tech landscape. We want people of all backgrounds to see themselves represented and included in our work, so we actively seek to diversify our team and bring more voices to the table. All applicants are welcome! You'll have access to a comprehensive benefits package that includes life assurance, income protection, private healthcare & dental insurance schemes and an enhanced contributory pension scheme. We offer competitive salaries and a fantastic bonus scheme so that you can stay motivated and focused on making SEGA the best it can be.
IT Helpdesk & Security Engineer (12-month FTC) - Creative Assembly (Horsham) - 5 days in-office SEGA is one of the leading interactive entertainment companies in the world, with our European HQ based in West London and development studios spanning the UK and Bulgaria. Known for quality and creativity above all else, our studios include Sports Interactive, Two Point Studios, Hardlight and Creative Assembly. At the heart of SEGA is our publishing team based in London, where we help the studios bring their creative vision to life. Here we have a hardworking bunch of people spanning Tech, Sales, Marketing, Finance, QA and more. Together, we drive the continued success and evolution of our Western business through living our company values of being product focused, embracing true partnerships and always having fun so that we can strive to come together as One SEGA. Working Model: On-site (5-days a week) Location: Albion Way, West Sussex, RH12 1JW IT Helpdesk & Security Engineer at SEGA Europe Ltd, based in Creative Assembly (Horsham), you'll be the first line of technical assistance, keeping the studio shipping out great games. You'll also help act as the first line of defence when a phishing email, dodgy download, or compromised endpoint tries to crash the party. It's the best of both worlds: classic IT helpdesk meets hands on security engineering, rolled into one. If you're the kind of person who loves a well triaged ticket queue and gets a kick out of chasing down the story behind a suspicious process, this is your kind of side quest. You'll play a vital role in making sure everyone across the business has the tools to do their best work, and the confidence that their devices, accounts, and data have someone watching the perimeter. Your mission: deliver exceptional white glove support, work shoulder-to-shoulder with the Cyber Security team to triage and investigate incidents on endpoints, and keep SEGA's technology smooth, secure, and ready for whatever the next release throws at it. Key Responsibilities Monitor and respond to incoming incidents and service requests in a timely manner. Deliver technical support across multiple channels including email, Microsoft Teams, the service desk platform, and in-person interactions. Assist with onboarding and offboarding processes for user accounts and hardware deployment or recovery. Proactively maintain user devices, ensuring compliance with company policies and standards. Create and maintain IT documentation in Atlassian Confluence, covering systems, solutions, and operational processes. Provide support for O365, Microsoft Entra, and other SaaS applications. Install and maintain a wide range of hardware and software to ensure optimal system performance. Act as a first responder for suspected security incidents on endpoints, working alongside the Cyber Security team to triage, contain, and elevate as appropriate. Capture forensic images from suspected compromised endpoints using industry-standard tooling (e.g. FTK Imager), preserving chain of custody and collecting relevant volatile data, logs, and artifacts to support DFIR investigations. Support phishing triage and response, including reviewing user-reported messages, pulling headers and indicators, and assisting with investigations in Microsoft 365 Defender. Occasional travel to HQ or other studios may be required. Knowledge, Skills and Experience Strong hands on experience with Windows operating systems, including troubleshooting and system maintenance. Capable of supporting in person users with both technical troubleshooting, and with hands on support (e.g. cable management, workstation setup, etc). Foundational understanding of Active Directory and Microsoft Entra ID. Bachelor's Degree in Cyber Security, or security focused certification. Experience working with the Microsoft 365 suite, including Teams, SharePoint, OneDrive, and Exchange. Practical ability to acquire a forensic image from a suspected compromised endpoint (Windows and/or macOS), preserving chain of custody and producing verifiable hashes, using tooling such as FTK Imager, KAPE, or equivalent. Working understanding of core security tooling, including EDR (e.g. Microsoft Defender for Endpoint), SIEM (e.g. Microsoft Sentinel, Sumo Logic, Chronicle), and enterprise email security, sufficient to support incident triage and evidence collection. Awareness of common attacker techniques (e.g. MITRE ATT&CK) and how they manifest on endpoints, plus basic log analysis skills (Windows Event Logs, Unified Audit Log, Sysmon). Proficiency with macOS environments and support practices. Familiarity with ManageEngine Endpoint Central for device and asset management. Hands on experience with Microsoft Intune for mobile device and application management. Knowledge of Jamf for macOS device administration and support. Experience in supporting Microsoft Teams Room Systems, including setup and troubleshooting. ITIL Foundation certified (v3 or v4), with the ability to demonstrate a clear understanding of IT service management principles. CompTIA A+ certified, with a solid grounding in hardware, software, and support fundamentals. Security focused certifications such as GCIH, GCFA or equivalent. Hands on familiarity with DFIR tooling such as KAPE, Velociraptor, Autopsy, EnCase, or Magnet AXIOM, and an understanding of how to collect volatile data (memory, running processes, network connections) from a live endpoint. Soft Skills Excellent communication skills, with a talent for translating technical concepts into clear, accessible language. Strong problem solving abilities and a proactive mindset for approaching technical challenges head on. Strong interpersonal skills and a collaborative spirit that thrives in team environments. Highly organised and adaptable, with the ability to manage competing priorities in a dynamic setting. Naturally inquisitive, with a continuous drive to learn, grow, and stay ahead in a fast evolving tech landscape. Benefits You'll have access to a comprehensive benefits package that includes life assurance, income protection, private healthcare & dental insurance schemes and an enhanced contributory pension scheme. We offer competitive salaries and a fantastic bonus scheme. We want people of all backgrounds to see themselves represented and included in our work, so we actively seek to diversify our team and bring more voices to the table. All applicants are welcome!
11/05/2026
Full time
IT Helpdesk & Security Engineer (12-month FTC) - Creative Assembly (Horsham) - 5 days in-office SEGA is one of the leading interactive entertainment companies in the world, with our European HQ based in West London and development studios spanning the UK and Bulgaria. Known for quality and creativity above all else, our studios include Sports Interactive, Two Point Studios, Hardlight and Creative Assembly. At the heart of SEGA is our publishing team based in London, where we help the studios bring their creative vision to life. Here we have a hardworking bunch of people spanning Tech, Sales, Marketing, Finance, QA and more. Together, we drive the continued success and evolution of our Western business through living our company values of being product focused, embracing true partnerships and always having fun so that we can strive to come together as One SEGA. Working Model: On-site (5-days a week) Location: Albion Way, West Sussex, RH12 1JW IT Helpdesk & Security Engineer at SEGA Europe Ltd, based in Creative Assembly (Horsham), you'll be the first line of technical assistance, keeping the studio shipping out great games. You'll also help act as the first line of defence when a phishing email, dodgy download, or compromised endpoint tries to crash the party. It's the best of both worlds: classic IT helpdesk meets hands on security engineering, rolled into one. If you're the kind of person who loves a well triaged ticket queue and gets a kick out of chasing down the story behind a suspicious process, this is your kind of side quest. You'll play a vital role in making sure everyone across the business has the tools to do their best work, and the confidence that their devices, accounts, and data have someone watching the perimeter. Your mission: deliver exceptional white glove support, work shoulder-to-shoulder with the Cyber Security team to triage and investigate incidents on endpoints, and keep SEGA's technology smooth, secure, and ready for whatever the next release throws at it. Key Responsibilities Monitor and respond to incoming incidents and service requests in a timely manner. Deliver technical support across multiple channels including email, Microsoft Teams, the service desk platform, and in-person interactions. Assist with onboarding and offboarding processes for user accounts and hardware deployment or recovery. Proactively maintain user devices, ensuring compliance with company policies and standards. Create and maintain IT documentation in Atlassian Confluence, covering systems, solutions, and operational processes. Provide support for O365, Microsoft Entra, and other SaaS applications. Install and maintain a wide range of hardware and software to ensure optimal system performance. Act as a first responder for suspected security incidents on endpoints, working alongside the Cyber Security team to triage, contain, and elevate as appropriate. Capture forensic images from suspected compromised endpoints using industry-standard tooling (e.g. FTK Imager), preserving chain of custody and collecting relevant volatile data, logs, and artifacts to support DFIR investigations. Support phishing triage and response, including reviewing user-reported messages, pulling headers and indicators, and assisting with investigations in Microsoft 365 Defender. Occasional travel to HQ or other studios may be required. Knowledge, Skills and Experience Strong hands on experience with Windows operating systems, including troubleshooting and system maintenance. Capable of supporting in person users with both technical troubleshooting, and with hands on support (e.g. cable management, workstation setup, etc). Foundational understanding of Active Directory and Microsoft Entra ID. Bachelor's Degree in Cyber Security, or security focused certification. Experience working with the Microsoft 365 suite, including Teams, SharePoint, OneDrive, and Exchange. Practical ability to acquire a forensic image from a suspected compromised endpoint (Windows and/or macOS), preserving chain of custody and producing verifiable hashes, using tooling such as FTK Imager, KAPE, or equivalent. Working understanding of core security tooling, including EDR (e.g. Microsoft Defender for Endpoint), SIEM (e.g. Microsoft Sentinel, Sumo Logic, Chronicle), and enterprise email security, sufficient to support incident triage and evidence collection. Awareness of common attacker techniques (e.g. MITRE ATT&CK) and how they manifest on endpoints, plus basic log analysis skills (Windows Event Logs, Unified Audit Log, Sysmon). Proficiency with macOS environments and support practices. Familiarity with ManageEngine Endpoint Central for device and asset management. Hands on experience with Microsoft Intune for mobile device and application management. Knowledge of Jamf for macOS device administration and support. Experience in supporting Microsoft Teams Room Systems, including setup and troubleshooting. ITIL Foundation certified (v3 or v4), with the ability to demonstrate a clear understanding of IT service management principles. CompTIA A+ certified, with a solid grounding in hardware, software, and support fundamentals. Security focused certifications such as GCIH, GCFA or equivalent. Hands on familiarity with DFIR tooling such as KAPE, Velociraptor, Autopsy, EnCase, or Magnet AXIOM, and an understanding of how to collect volatile data (memory, running processes, network connections) from a live endpoint. Soft Skills Excellent communication skills, with a talent for translating technical concepts into clear, accessible language. Strong problem solving abilities and a proactive mindset for approaching technical challenges head on. Strong interpersonal skills and a collaborative spirit that thrives in team environments. Highly organised and adaptable, with the ability to manage competing priorities in a dynamic setting. Naturally inquisitive, with a continuous drive to learn, grow, and stay ahead in a fast evolving tech landscape. Benefits You'll have access to a comprehensive benefits package that includes life assurance, income protection, private healthcare & dental insurance schemes and an enhanced contributory pension scheme. We offer competitive salaries and a fantastic bonus scheme. We want people of all backgrounds to see themselves represented and included in our work, so we actively seek to diversify our team and bring more voices to the table. All applicants are welcome!
Come and join the Littlefish team! Work location: Nottingham or Sheffield (Hybrid) Salary: Up to £30,000 Must be eligible for SC Clearance (UK resident for the last 5 years) and NPPV2 clearance As we continue to grow and evolve, we know that our strength lies in the talent, creativity, and drive of our existing workforce. You are the giant slayers who have shaped Littlefish into the business it is today-and now, we're looking for the next wave of internal trailblazers to help us take things even further. We're seeking individuals who embrace change with optimism, who think beyond the obvious, and who bring energy, curiosity, and collaboration to everything they do. Whether you're looking to stretch your skills, take on a new challenge, or explore a fresh direction, this is your opportunity to make an impact from within. So, if this opportunity sparks your interest and you're excited by the idea of working alongside passionate, creative, and friendly colleagues apply today. The role and what you'll be getting up to on a day to day basis We're hiring for a Cyber Security Engineer to join our Cyber Services Division. If you enjoy taking ownership, solving complex challenges, and making a measurable impact on customer security, this could be the role for you. As our Cyber Security Engineer, you'll play a key part in supporting and evolving our security tooling, especially our SIEM platform. You'll work directly with both internal teams and customers to ensure strong security outcomes across the board. You will: Take ownership of SOC tooling, with a primary focus on our SIEM platform. Implement SIEM solutions into customer environments and tune data feeds effectively. Work closely with the SOC to maintain and continuously improve SIEM rulesets and use cases. Provide expert cyber guidance and technical leadership to customers. Support major security incidents and play a hands on role in investigation and response. Deliver cyber led project work, independently or as part of wider Professional Services engagements. Stay ahead of emerging technologies and contribute to future security tooling roadmaps. Who you are: You're confident, curious, collaborative, and passionate about improving security for customers and colleagues alike. You thrive in a role where you can influence decisions and deliver real value. You will bring: Strong understanding of SIEM tools and attacker behaviours. Handson experience with O365, M365 and Azure security administration. PowerShell scripting capability. Experience working with firewalls, IDS, WAF, network segmentation and wider security controls. Broad technical knowledge spanning Windows, networking, IAM, monitoring, antivirus and modern architectures. The ability to explain complex concepts clearly to both technical and nontechnical audiences. The ability to turn policy or regulatory requirements into meaningful technical solutions. Experience writing technical design documents. And it would be great (but not essential) if you also have experience with: Azure Sentinel, AlienVault, AWS or GCP security controls. Linux, data storage, or scripting in Python or Bash. What can we offer you? Through our one of a kind training programme, the Littlefish Academy, you can increase your earnings by £4,500 Referral bonus scheme of £1000 when you successfully refer a friend. Access to our LinkedIn Learning platform, with over 16000 expert-led online tutorials to enhance and achieve your personal and professional goals. Healthcare cash plan. This will give you access to online GP appointments, 24/7 access to qualified counsellors and cash back against a range of general healthcare Casual dress policy Company Pension Scheme Company social events 25 days annual leave plus public / bank holidays Purchase of annual leave scheme Life at Littlefish: Our company values shape who we are as a business, what we stand for and how we work. Hiring people with our values at heart, is very important as we see Littlefish grow. I am High Performing: I like to raise the bar, we look at creating opportunities to increase quality and improve efficiency, we strive for service excellence. I am Passionate: We build team success and celebrate them together, I am enthusiastic and energetic, I care about the people I work with and we support one another. I Have a Can-Do Attitude: I am not afraid to step outside my comfort zone, we are not afraid to challenge status quo, we get stuff done! So, if you feel like you can make a tangible difference, apply today, and join us on this journey. Here at Littlefish we aim to be somewhere everyone can be themselves. We are committed to encouraging a diverse and inclusive community where everyone irrespective of who they are, or their background, can feel equal and supported. We encourage applications from people of all backgrounds. Please get in touch if you are concerned about any difficulties you may face during your recruitment process, so we adjust accordingly. Part of our application process includes a set of ED&I (Equality, diversity and inclusion) questions. Please note, each question has a 'prefer not to say' option.
11/05/2026
Full time
Come and join the Littlefish team! Work location: Nottingham or Sheffield (Hybrid) Salary: Up to £30,000 Must be eligible for SC Clearance (UK resident for the last 5 years) and NPPV2 clearance As we continue to grow and evolve, we know that our strength lies in the talent, creativity, and drive of our existing workforce. You are the giant slayers who have shaped Littlefish into the business it is today-and now, we're looking for the next wave of internal trailblazers to help us take things even further. We're seeking individuals who embrace change with optimism, who think beyond the obvious, and who bring energy, curiosity, and collaboration to everything they do. Whether you're looking to stretch your skills, take on a new challenge, or explore a fresh direction, this is your opportunity to make an impact from within. So, if this opportunity sparks your interest and you're excited by the idea of working alongside passionate, creative, and friendly colleagues apply today. The role and what you'll be getting up to on a day to day basis We're hiring for a Cyber Security Engineer to join our Cyber Services Division. If you enjoy taking ownership, solving complex challenges, and making a measurable impact on customer security, this could be the role for you. As our Cyber Security Engineer, you'll play a key part in supporting and evolving our security tooling, especially our SIEM platform. You'll work directly with both internal teams and customers to ensure strong security outcomes across the board. You will: Take ownership of SOC tooling, with a primary focus on our SIEM platform. Implement SIEM solutions into customer environments and tune data feeds effectively. Work closely with the SOC to maintain and continuously improve SIEM rulesets and use cases. Provide expert cyber guidance and technical leadership to customers. Support major security incidents and play a hands on role in investigation and response. Deliver cyber led project work, independently or as part of wider Professional Services engagements. Stay ahead of emerging technologies and contribute to future security tooling roadmaps. Who you are: You're confident, curious, collaborative, and passionate about improving security for customers and colleagues alike. You thrive in a role where you can influence decisions and deliver real value. You will bring: Strong understanding of SIEM tools and attacker behaviours. Handson experience with O365, M365 and Azure security administration. PowerShell scripting capability. Experience working with firewalls, IDS, WAF, network segmentation and wider security controls. Broad technical knowledge spanning Windows, networking, IAM, monitoring, antivirus and modern architectures. The ability to explain complex concepts clearly to both technical and nontechnical audiences. The ability to turn policy or regulatory requirements into meaningful technical solutions. Experience writing technical design documents. And it would be great (but not essential) if you also have experience with: Azure Sentinel, AlienVault, AWS or GCP security controls. Linux, data storage, or scripting in Python or Bash. What can we offer you? Through our one of a kind training programme, the Littlefish Academy, you can increase your earnings by £4,500 Referral bonus scheme of £1000 when you successfully refer a friend. Access to our LinkedIn Learning platform, with over 16000 expert-led online tutorials to enhance and achieve your personal and professional goals. Healthcare cash plan. This will give you access to online GP appointments, 24/7 access to qualified counsellors and cash back against a range of general healthcare Casual dress policy Company Pension Scheme Company social events 25 days annual leave plus public / bank holidays Purchase of annual leave scheme Life at Littlefish: Our company values shape who we are as a business, what we stand for and how we work. Hiring people with our values at heart, is very important as we see Littlefish grow. I am High Performing: I like to raise the bar, we look at creating opportunities to increase quality and improve efficiency, we strive for service excellence. I am Passionate: We build team success and celebrate them together, I am enthusiastic and energetic, I care about the people I work with and we support one another. I Have a Can-Do Attitude: I am not afraid to step outside my comfort zone, we are not afraid to challenge status quo, we get stuff done! So, if you feel like you can make a tangible difference, apply today, and join us on this journey. Here at Littlefish we aim to be somewhere everyone can be themselves. We are committed to encouraging a diverse and inclusive community where everyone irrespective of who they are, or their background, can feel equal and supported. We encourage applications from people of all backgrounds. Please get in touch if you are concerned about any difficulties you may face during your recruitment process, so we adjust accordingly. Part of our application process includes a set of ED&I (Equality, diversity and inclusion) questions. Please note, each question has a 'prefer not to say' option.
Bridewell Consulting Limited
Cardiff, South Glamorgan
A leading cybersecurity firm in the UK is seeking a Senior Security Engineer to join their Managed Security Service Provider team. The role involves driving Sentinel adoption, leading client onboarding, and developing custom data connectors. Candidates should have solid experience with Infrastructure as Code, DevOps pipelines, and threat detection, as well as proficiency in scripting languages like Python and Go. This position offers a competitive salary, flexible working conditions, and a commitment to employee development.
10/05/2026
Full time
A leading cybersecurity firm in the UK is seeking a Senior Security Engineer to join their Managed Security Service Provider team. The role involves driving Sentinel adoption, leading client onboarding, and developing custom data connectors. Candidates should have solid experience with Infrastructure as Code, DevOps pipelines, and threat detection, as well as proficiency in scripting languages like Python and Go. This position offers a competitive salary, flexible working conditions, and a commitment to employee development.
Bridewell Consulting Limited
Cardiff, South Glamorgan
We are seeking a highly skilled and experienced Senior Security Engineer to join our Managed Security Service Provider (MSSP) team. You will be responsible for driving our adoption of Sentinel, client onboarding projects, managing multi-vendor SIEM proof of concepts with a specific focus on a Microsoft Sentinel, developing custom connectors to ingest log data into SIEM tooling. The ideal candidate will possess a deep understanding of infrastructure as code (IaC) and DevOps Pipelines with Bicep/Terraform and proficiency in scripting/programming languages such as Python/Go. Experience with Sentinel deployments, log management, and threat detection is required, including expertise in dashboard creation, query development, and alert configuration. Additional experience in Splunk deployments is beneficial. This role sits within our MSSP team, as a senior member of the security engineering team focused on growing our SIEM management capabilities and integrating those into our Managed SOC offering in a consistent and professional way. You will work on a variety of projects, the below should be considered key focus areas of the role: Responsibilities Client Onboarding Projects: Lead and execute comprehensive client onboarding processes, ensuring a seamless transition and integration into SOC. Sentinel Proof of Concepts (PoCs): Design, implement, and manage PoCs for Sentinel and Microsoft Sentinel demonstrating their capabilities and value to clients. Custom Data Connectors: Develop, test, and deploy custom data connectors to integrate various data sources into SIEM systems, including Splunk and Azure Sentinel. Infrastructure as Code (IaC): Utilize Bicep and Terraform for automating cloud infrastructure deployment and management, ensuring scalability and consistency. Scripting and Automation: Develop and maintain automation scripts using Python/Go and Function Apps to streamline security operations. SIEM Expertise: Deploy, configure, manage, and optimize Sentinel for security monitoring, log ingestion, query development, and threat detection. Technical Leadership: Provide technical guidance and mentorship to junior engineers, fostering a culture of continuous learning and improvement. Client Engagement: Work closely with clients to understand their security needs, provide expert advice, and ensure satisfaction with our services. Pre-Sales Support: Work closely with the sales team to accurately scope projects and their deliverables, ensuring proper resource allocation. Documentation and Reporting: Create and maintain comprehensive documentation for projects, processes, and configurations. Why Join Us? Our vision is to create a safe, inclusive digital world where people and organisations can thrive. Our values of Do the Right Thing, One Team and Above and Beyond emphasise the importance of the part we play in society, and our commitment to our people and clients. Our story to-date has been phenomenal, but success doesn't end here and as we continue to grow and scale, we want to keep the same culture, passion and commitment to high quality that has enabled us to get this far. Bridewell will provide a great career opportunity with continual development as well as the following: Competitive Salary 25 Days Holiday - Plus buy and sell options Flexible Working (around core office hours) Company Pension Employee Shareholder Scheme Dedicated Training Budget Life Assurance Cycle to Work Scheme Electric Vehicle Scheme Private Healthcare (incl. Gym discounts) Vision Care Birthday off (After 1 year) About Bridewell One of the most exciting prospects in the UK Cyber Security sector today, Bridewell is one of the fastest growing Cyber Security services businesses with a strong track record for delivering complex security projects and providing excellent customer service. Bridewell has an exciting and varied portfolio of clients across Financial Services, Manufacturing, Oil & Gas, Government, Critical National Infrastructure and more. Bridewell holds the Gold level Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly One Team. Along with our focus on our people, we also have a big focus on sustainability and recognise the role we play in the fight against climate change. Today, Bridewell is proud to be a carbon negative business. Location: Bridewell operates a hybrid and flexible working policy, however you will be required to travel to different sites on occasion. Bridewell values diversity in the workplace and is a fair and equal opportunity employer. We are committed to creating an equal and inclusive working environment, with the aim that our employees will be truly representative of all sections of society and each person feels respected and able to give their best.
10/05/2026
Full time
We are seeking a highly skilled and experienced Senior Security Engineer to join our Managed Security Service Provider (MSSP) team. You will be responsible for driving our adoption of Sentinel, client onboarding projects, managing multi-vendor SIEM proof of concepts with a specific focus on a Microsoft Sentinel, developing custom connectors to ingest log data into SIEM tooling. The ideal candidate will possess a deep understanding of infrastructure as code (IaC) and DevOps Pipelines with Bicep/Terraform and proficiency in scripting/programming languages such as Python/Go. Experience with Sentinel deployments, log management, and threat detection is required, including expertise in dashboard creation, query development, and alert configuration. Additional experience in Splunk deployments is beneficial. This role sits within our MSSP team, as a senior member of the security engineering team focused on growing our SIEM management capabilities and integrating those into our Managed SOC offering in a consistent and professional way. You will work on a variety of projects, the below should be considered key focus areas of the role: Responsibilities Client Onboarding Projects: Lead and execute comprehensive client onboarding processes, ensuring a seamless transition and integration into SOC. Sentinel Proof of Concepts (PoCs): Design, implement, and manage PoCs for Sentinel and Microsoft Sentinel demonstrating their capabilities and value to clients. Custom Data Connectors: Develop, test, and deploy custom data connectors to integrate various data sources into SIEM systems, including Splunk and Azure Sentinel. Infrastructure as Code (IaC): Utilize Bicep and Terraform for automating cloud infrastructure deployment and management, ensuring scalability and consistency. Scripting and Automation: Develop and maintain automation scripts using Python/Go and Function Apps to streamline security operations. SIEM Expertise: Deploy, configure, manage, and optimize Sentinel for security monitoring, log ingestion, query development, and threat detection. Technical Leadership: Provide technical guidance and mentorship to junior engineers, fostering a culture of continuous learning and improvement. Client Engagement: Work closely with clients to understand their security needs, provide expert advice, and ensure satisfaction with our services. Pre-Sales Support: Work closely with the sales team to accurately scope projects and their deliverables, ensuring proper resource allocation. Documentation and Reporting: Create and maintain comprehensive documentation for projects, processes, and configurations. Why Join Us? Our vision is to create a safe, inclusive digital world where people and organisations can thrive. Our values of Do the Right Thing, One Team and Above and Beyond emphasise the importance of the part we play in society, and our commitment to our people and clients. Our story to-date has been phenomenal, but success doesn't end here and as we continue to grow and scale, we want to keep the same culture, passion and commitment to high quality that has enabled us to get this far. Bridewell will provide a great career opportunity with continual development as well as the following: Competitive Salary 25 Days Holiday - Plus buy and sell options Flexible Working (around core office hours) Company Pension Employee Shareholder Scheme Dedicated Training Budget Life Assurance Cycle to Work Scheme Electric Vehicle Scheme Private Healthcare (incl. Gym discounts) Vision Care Birthday off (After 1 year) About Bridewell One of the most exciting prospects in the UK Cyber Security sector today, Bridewell is one of the fastest growing Cyber Security services businesses with a strong track record for delivering complex security projects and providing excellent customer service. Bridewell has an exciting and varied portfolio of clients across Financial Services, Manufacturing, Oil & Gas, Government, Critical National Infrastructure and more. Bridewell holds the Gold level Investors in People award which we feel solidifies and reflects on the outstanding calibre that makes us truly One Team. Along with our focus on our people, we also have a big focus on sustainability and recognise the role we play in the fight against climate change. Today, Bridewell is proud to be a carbon negative business. Location: Bridewell operates a hybrid and flexible working policy, however you will be required to travel to different sites on occasion. Bridewell values diversity in the workplace and is a fair and equal opportunity employer. We are committed to creating an equal and inclusive working environment, with the aim that our employees will be truly representative of all sections of society and each person feels respected and able to give their best.
Infrastructure & Security Engineer London / Hybrid (3 days per week) Oritain builds technology that proves trust and transparency in global supply chains. We apply data engineering and AI to problems with real human and environmental impact, helping protect people from exploitation and enabling brands to stand behind what they sell. As we scale, secure and reliable infrastructure is critical to everything we do. We're a global team across London, Auckland, Singapore and Washington D.C. The Role This is a hands on individual contributor role owning Oritain's core infrastructure and security capabilities. You'll design, build and operate secure cloud, identity and network services while strengthening our security posture and compliance maturity. This is not an advisory role - you'll be directly responsible for delivery, operations and outcomes. You're joining at an important point, with active ISO 27001 renewal, Cyber Essentials certification, and alignment to NIST and CMMC, supported by modern tooling (Vanta). You'll play a key role in keeping infrastructure practical, secure and scalable. You'll also help shape the secure adoption of AI tooling across the organisation, ensuring it's governed, compliant and genuinely useful. You'll report to the Head of IT & Security and work closely with Engineering, Service Desk and the wider business. What You'll Do Design, build and secure cloud and on prem infrastructure services Own identity and access management using Microsoft Entra ID, Conditional Access and RBAC Design and implement network segmentation, firewalls, VLANs and VPNs Build and support SD WAN and site connectivity Administer Azure networking (VNets, routing, NSGs, VPN/S2S gateways) Lead incident response alongside our external SOC Operate Microsoft security services including Defender and Sentinel Manage vulnerability identification and remediation Support security compliance activities using Vanta Help deliver ISO 27001, Cyber Essentials, NIST and CMMC alignment Secure and help govern AI tooling (e.g. Microsoft Copilot), including DLP and Purview controls Apply automation and AI to improve infrastructure and security operations Skills & Experience Essential Hands on infrastructure and security engineering experience Strong knowledge of Microsoft Entra ID, Azure and Microsoft 365 Solid networking fundamentals (VLANs, firewalls, routing, VPNs) Experience with Defender, Sentinel or similar security tooling Exposure to security frameworks such as ISO 27001 or NIST Comfortable owning delivery and working across technical and non technical teams Desirable Zero Trust or advanced security monitoring experience Infrastructure or security automation experience Exposure to enterprise AI tooling Relevant Microsoft, Azure or security certifications Company Benefits Paid Leave- 35 days (inclusive of public holidays) + your birthday off Volunteering Leave Allowance Enhanced Parental Leave Life Insurance Healthcare Cash Plan Employee Assistance Programme (EAP) Pension Monthly Wellbeing Allowance Breakfast, Snacks, Friday lunch & Barista Coffee Machine in the office Learning Portal with over 100,000 assets available to support professional development
10/05/2026
Full time
Infrastructure & Security Engineer London / Hybrid (3 days per week) Oritain builds technology that proves trust and transparency in global supply chains. We apply data engineering and AI to problems with real human and environmental impact, helping protect people from exploitation and enabling brands to stand behind what they sell. As we scale, secure and reliable infrastructure is critical to everything we do. We're a global team across London, Auckland, Singapore and Washington D.C. The Role This is a hands on individual contributor role owning Oritain's core infrastructure and security capabilities. You'll design, build and operate secure cloud, identity and network services while strengthening our security posture and compliance maturity. This is not an advisory role - you'll be directly responsible for delivery, operations and outcomes. You're joining at an important point, with active ISO 27001 renewal, Cyber Essentials certification, and alignment to NIST and CMMC, supported by modern tooling (Vanta). You'll play a key role in keeping infrastructure practical, secure and scalable. You'll also help shape the secure adoption of AI tooling across the organisation, ensuring it's governed, compliant and genuinely useful. You'll report to the Head of IT & Security and work closely with Engineering, Service Desk and the wider business. What You'll Do Design, build and secure cloud and on prem infrastructure services Own identity and access management using Microsoft Entra ID, Conditional Access and RBAC Design and implement network segmentation, firewalls, VLANs and VPNs Build and support SD WAN and site connectivity Administer Azure networking (VNets, routing, NSGs, VPN/S2S gateways) Lead incident response alongside our external SOC Operate Microsoft security services including Defender and Sentinel Manage vulnerability identification and remediation Support security compliance activities using Vanta Help deliver ISO 27001, Cyber Essentials, NIST and CMMC alignment Secure and help govern AI tooling (e.g. Microsoft Copilot), including DLP and Purview controls Apply automation and AI to improve infrastructure and security operations Skills & Experience Essential Hands on infrastructure and security engineering experience Strong knowledge of Microsoft Entra ID, Azure and Microsoft 365 Solid networking fundamentals (VLANs, firewalls, routing, VPNs) Experience with Defender, Sentinel or similar security tooling Exposure to security frameworks such as ISO 27001 or NIST Comfortable owning delivery and working across technical and non technical teams Desirable Zero Trust or advanced security monitoring experience Infrastructure or security automation experience Exposure to enterprise AI tooling Relevant Microsoft, Azure or security certifications Company Benefits Paid Leave- 35 days (inclusive of public holidays) + your birthday off Volunteering Leave Allowance Enhanced Parental Leave Life Insurance Healthcare Cash Plan Employee Assistance Programme (EAP) Pension Monthly Wellbeing Allowance Breakfast, Snacks, Friday lunch & Barista Coffee Machine in the office Learning Portal with over 100,000 assets available to support professional development
Senior Engineer - MXDR Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Description As a Senior MXDR Engineer, you are a true multitasker with both technical depth and strong communication skills. Deploying and maintaining MXDR solutions is your core responsibility - your "bread and butter." You assess customer needs, collaborate with stakeholders across organizational levels, and ensure their environments become safer and more resilient against threats. Your expertise is also a trusted resource within the team. Whether it's helping the SOC interpret the logging associated with a Splunk alert, troubleshooting CPU spikes of CrowdStrike agents during a DFIR engagement, or assisting SDM in interpreting technical questions - you're the go to person. This role requires a broad skill set. A major focus is on technical consultancy, meaning a strong technical foundation, professional communication skills, and a passion for continuous learning are essential. We're looking for someone with experience with SIEM & EDR tools. We see MXDR as Microsoft Sentinel, Splunk, CrowdStrike or Sentinel One. Familiarity with these platforms is a strong plus. Because this is a customer facing role, you should feel confident engaging with clients in both in person and digital environments. As part of a global organization, proficiency in written and spoken English is a must. Key Responsibilities Implement and support MXDR solutions for customers, ensuring effective deployment and configuration. Independently operate in multidisciplinary teams for projects, proactively contributing to client deliverables and addressing internal and external technical and organizational challenges. Serve as a Subject Matter Expert on specific MXDR tools, supporting and advising customers and colleagues across teams. Continuously improve the MXDR services through automation, process enhancements and knowledge sharing. Skills, Knowledge & Expertise Expert knowledge of cybersecurity and proficiency in one or multiple MXDR technologies. Demonstrated ability to analyze and interpret complex data. Strong leadership and communication skills. Exceptional client engagement and problem solving skills. Job Benefits We have a high-performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco-friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
10/05/2026
Full time
Senior Engineer - MXDR Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Description As a Senior MXDR Engineer, you are a true multitasker with both technical depth and strong communication skills. Deploying and maintaining MXDR solutions is your core responsibility - your "bread and butter." You assess customer needs, collaborate with stakeholders across organizational levels, and ensure their environments become safer and more resilient against threats. Your expertise is also a trusted resource within the team. Whether it's helping the SOC interpret the logging associated with a Splunk alert, troubleshooting CPU spikes of CrowdStrike agents during a DFIR engagement, or assisting SDM in interpreting technical questions - you're the go to person. This role requires a broad skill set. A major focus is on technical consultancy, meaning a strong technical foundation, professional communication skills, and a passion for continuous learning are essential. We're looking for someone with experience with SIEM & EDR tools. We see MXDR as Microsoft Sentinel, Splunk, CrowdStrike or Sentinel One. Familiarity with these platforms is a strong plus. Because this is a customer facing role, you should feel confident engaging with clients in both in person and digital environments. As part of a global organization, proficiency in written and spoken English is a must. Key Responsibilities Implement and support MXDR solutions for customers, ensuring effective deployment and configuration. Independently operate in multidisciplinary teams for projects, proactively contributing to client deliverables and addressing internal and external technical and organizational challenges. Serve as a Subject Matter Expert on specific MXDR tools, supporting and advising customers and colleagues across teams. Continuously improve the MXDR services through automation, process enhancements and knowledge sharing. Skills, Knowledge & Expertise Expert knowledge of cybersecurity and proficiency in one or multiple MXDR technologies. Demonstrated ability to analyze and interpret complex data. Strong leadership and communication skills. Exceptional client engagement and problem solving skills. Job Benefits We have a high-performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco-friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
About The Role We are seeking an Information Security & Compliance Officer to support and strengthen our organisation's security and compliance posture. This role is responsible for coordinating security activities across the business, supporting compliance initiatives, managing third party risk, and acting as the internal liaison with our outsourced Security Operations Centre (SOC) and Virtual CISO. The successful candidate will help implement security governance, risk management, and compliance frameworks while ensuring security best practices are embedded across the organisation. This role is ideal for someone with experience in security operations, governance, risk, and compliance (GRC) who enjoys working across teams to improve organisational security maturity. Key Responsibilities Security Operations Oversight Act as the primary internal liaison with the outsourced SOC provider Monitor and coordinate responses to alerts generated through Microsoft Sentinel and Microsoft Defender Support incident response coordination and internal communications Track remediation of security vulnerabilities and incidents Governance, Risk & Compliance Support the implementation and maintenance of security frameworks such as: ISO 27001 Cyber Essentials Plus NIST / CIS frameworks Maintain and develop security policies, standards, and procedures Conduct risk assessments and track remediation actions Coordinate internal and external security audits Coordinate with other governance teams to ensure alignment around key initiatives Third Party Risk Management (TPRM) Lead the rollout and ongoing management of a Third Party Risk Management programme Perform vendor security assessments and due diligence Maintain vendor risk registers and track remediation activities Work with procurement and legal teams to embed security requirements into supplier onboarding Security Governance & Awareness Support security awareness and training initiatives across the organisation Work with IT and engineering teams to ensure security best practices are followed Maintain risk registers and compliance documentation Provide reporting and metrics on security posture to leadership Security Projects & Initiatives Support compliance initiatives and security improvement programmes Work with the virtual CISO to implement strategic security improvements Assist with policy development and control implementation Help coordinate vulnerability management and remediation programmes Provide input into client security questionnaires and audits where appropriate About You Skills & Experience 3-5 years experience in information security, IT security, or compliance Understanding of security governance, risk, and compliance (GRC) Experience with Microsoft security tooling (Sentinel, Defender, or Microsoft Security stack) Familiarity with security frameworks (ISO 27001, NIST, CIS, Cyber Essentials) Experience working with third party vendors or supplier risk assessments Strong communication and stakeholder management skills Ability to translate security requirements into practical business processes Desirable Experience working with outsourced SOC providers Knowledge of Third Party Risk Management (TPRM) programmes Experience supporting ISO 27001 certification or audits Certifications such as: ISO 27001 Lead Implementer / Lead Auditor CISSP CISM Security+ Key Competencies Strong organisational and documentation skills Ability to manage multiple compliance initiatives simultaneously Analytical thinking and risk assessment capability Collaborative approach to working across technical and non technical teams Proactive mindset with a focus on continuous improvement What Success Looks Like Establish a structured Third Party Risk Management programme Improve visibility and reporting of security risks Strengthen security governance processes Develop ISO 27001 implementation roadmap and compliance processes to ensure group compliance can evolve to a recognised standard within the next months. Improve collaboration between internal teams, the SOC provider, and the virtual CISO Equal Opportunity We value diverse talent and welcome applications from everyone - regardless of background. We are an equal opportunity employer and our inclusive culture at PEI is reflected in every stage of the recruitment journey. Please inform us at initial stages of the recruitment process if you require any reasonable adjustments and we can accommodate this. PEI supports flexible working arrangements, and we welcome career returners.
09/05/2026
Full time
About The Role We are seeking an Information Security & Compliance Officer to support and strengthen our organisation's security and compliance posture. This role is responsible for coordinating security activities across the business, supporting compliance initiatives, managing third party risk, and acting as the internal liaison with our outsourced Security Operations Centre (SOC) and Virtual CISO. The successful candidate will help implement security governance, risk management, and compliance frameworks while ensuring security best practices are embedded across the organisation. This role is ideal for someone with experience in security operations, governance, risk, and compliance (GRC) who enjoys working across teams to improve organisational security maturity. Key Responsibilities Security Operations Oversight Act as the primary internal liaison with the outsourced SOC provider Monitor and coordinate responses to alerts generated through Microsoft Sentinel and Microsoft Defender Support incident response coordination and internal communications Track remediation of security vulnerabilities and incidents Governance, Risk & Compliance Support the implementation and maintenance of security frameworks such as: ISO 27001 Cyber Essentials Plus NIST / CIS frameworks Maintain and develop security policies, standards, and procedures Conduct risk assessments and track remediation actions Coordinate internal and external security audits Coordinate with other governance teams to ensure alignment around key initiatives Third Party Risk Management (TPRM) Lead the rollout and ongoing management of a Third Party Risk Management programme Perform vendor security assessments and due diligence Maintain vendor risk registers and track remediation activities Work with procurement and legal teams to embed security requirements into supplier onboarding Security Governance & Awareness Support security awareness and training initiatives across the organisation Work with IT and engineering teams to ensure security best practices are followed Maintain risk registers and compliance documentation Provide reporting and metrics on security posture to leadership Security Projects & Initiatives Support compliance initiatives and security improvement programmes Work with the virtual CISO to implement strategic security improvements Assist with policy development and control implementation Help coordinate vulnerability management and remediation programmes Provide input into client security questionnaires and audits where appropriate About You Skills & Experience 3-5 years experience in information security, IT security, or compliance Understanding of security governance, risk, and compliance (GRC) Experience with Microsoft security tooling (Sentinel, Defender, or Microsoft Security stack) Familiarity with security frameworks (ISO 27001, NIST, CIS, Cyber Essentials) Experience working with third party vendors or supplier risk assessments Strong communication and stakeholder management skills Ability to translate security requirements into practical business processes Desirable Experience working with outsourced SOC providers Knowledge of Third Party Risk Management (TPRM) programmes Experience supporting ISO 27001 certification or audits Certifications such as: ISO 27001 Lead Implementer / Lead Auditor CISSP CISM Security+ Key Competencies Strong organisational and documentation skills Ability to manage multiple compliance initiatives simultaneously Analytical thinking and risk assessment capability Collaborative approach to working across technical and non technical teams Proactive mindset with a focus on continuous improvement What Success Looks Like Establish a structured Third Party Risk Management programme Improve visibility and reporting of security risks Strengthen security governance processes Develop ISO 27001 implementation roadmap and compliance processes to ensure group compliance can evolve to a recognised standard within the next months. Improve collaboration between internal teams, the SOC provider, and the virtual CISO Equal Opportunity We value diverse talent and welcome applications from everyone - regardless of background. We are an equal opportunity employer and our inclusive culture at PEI is reflected in every stage of the recruitment journey. Please inform us at initial stages of the recruitment process if you require any reasonable adjustments and we can accommodate this. PEI supports flexible working arrangements, and we welcome career returners.
Security Architect - Manager Location: London Other locations: Anywhere in Country Date: 14 Jan 2026 Requisition ID: At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. About EY At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting-edge security transformation programs and services. The Opportunity As a Manager in Cybersecurity, you will leverage diverse ideas and perspectives to deliver technical excellence at global scale and provide relevant insights to our clients. You will play a pivotal role in managing cybersecurity engagements, building client relationships, and leading teams to develop innovative solutions that address complex security challenges. Key Locations London, Manchester or Scotland Key Responsibilities Build and maintain strong client relationships and shape clear security outcomes, milestones and measures aligned to regulatory obligations. Deliver security architecture work packages and produce HLD and LLD artefacts, data flows and threat models for enterprise and IT/OT converged environments. Create cloud security architecture for site to cloud connectivity, establishing secure landing zones, segmented network connectivity, identity and secrets management. Analyse systems and networks and propose segmentation, secure access methodology and reference designs that engineering teams can implement. Enhance governance and compliance by aligning solutions and controls to various frameworks and standards such as NIST 800, ISO27001 and NIS2. Foster a positive team environment by mentoring and coaching junior staff, conducting performance reviews, and contributing to their professional development. Support business development activities, including proposal writing and impactful presentations to potential clients. Contribute to recruiting, retaining, and training cybersecurity professionals, ensuring a high-performing team. Skills and Attributes for Success Ability to work and thrive in a fast paced, result driven environment with the ability to establish credibility and demonstrate expertise quickly. Communication skills, both oral and written, tailored to diverse audiences. Strong team player who values collaboration and encourages open communication among team members. Experience in coaching and developing colleagues. Qualifications Experience in cybersecurity with a strong track record in security architecture delivery, including IT/OT convergence. Advanced Visio skills and fluency with TOGAF or equivalent architecture methods. Working knowledge of NIST CSF, IEC 62443, NCSC CAF, EU NIS2, cloud and network fundamentals. Willingness to travel for client delivery (domestic and international as required). Preferred Qualifications Experience supporting security transformation programs and modernisation. Experience integrating SOC/MDR, SIEM/SOAR and familiarity with MITRE ATT&CK. Experience designing remote and local access models including PAM and ZTNA with identity integration. Familiarity with Microsoft cloud security stack including Microsoft Sentinel, Microsoft Entra ID, Microsoft Defender for Cloud and secure connectivity on Azure. Advanced certifications such as CISSP, TOGAF for SABSA, Cloud Security e.g. Microsoft SC 100/AZ 500, CCNA or equivalent. Ability to obtain and maintain UK Government security clearances. Join Us At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. Security Clearance The successful candidate must undergo and pass checks in line with SC (Security Check) clearance standards after joining EY. These checks may include, but are not limited to, verification of identity, right to work in the UK, employment history, proof of address and unspent criminal convictions. Candidates must be a UK national or have been a resident in the UK for a minimum of five years and ensure that they have not spent more than six months outside the UK. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. Apply Now If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now Job ID TCCyberUKI2026 Cyber2026 EY Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.
09/05/2026
Full time
Security Architect - Manager Location: London Other locations: Anywhere in Country Date: 14 Jan 2026 Requisition ID: At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. About EY At EY, we are committed to building a better working world. Our Cybersecurity Consulting Practice is rapidly expanding, and we are investing in our capabilities to meet the increasing demand for cybersecurity solutions. Join us and be part of a global team of over 13,000 professionals dedicated to delivering cutting-edge security transformation programs and services. The Opportunity As a Manager in Cybersecurity, you will leverage diverse ideas and perspectives to deliver technical excellence at global scale and provide relevant insights to our clients. You will play a pivotal role in managing cybersecurity engagements, building client relationships, and leading teams to develop innovative solutions that address complex security challenges. Key Locations London, Manchester or Scotland Key Responsibilities Build and maintain strong client relationships and shape clear security outcomes, milestones and measures aligned to regulatory obligations. Deliver security architecture work packages and produce HLD and LLD artefacts, data flows and threat models for enterprise and IT/OT converged environments. Create cloud security architecture for site to cloud connectivity, establishing secure landing zones, segmented network connectivity, identity and secrets management. Analyse systems and networks and propose segmentation, secure access methodology and reference designs that engineering teams can implement. Enhance governance and compliance by aligning solutions and controls to various frameworks and standards such as NIST 800, ISO27001 and NIS2. Foster a positive team environment by mentoring and coaching junior staff, conducting performance reviews, and contributing to their professional development. Support business development activities, including proposal writing and impactful presentations to potential clients. Contribute to recruiting, retaining, and training cybersecurity professionals, ensuring a high-performing team. Skills and Attributes for Success Ability to work and thrive in a fast paced, result driven environment with the ability to establish credibility and demonstrate expertise quickly. Communication skills, both oral and written, tailored to diverse audiences. Strong team player who values collaboration and encourages open communication among team members. Experience in coaching and developing colleagues. Qualifications Experience in cybersecurity with a strong track record in security architecture delivery, including IT/OT convergence. Advanced Visio skills and fluency with TOGAF or equivalent architecture methods. Working knowledge of NIST CSF, IEC 62443, NCSC CAF, EU NIS2, cloud and network fundamentals. Willingness to travel for client delivery (domestic and international as required). Preferred Qualifications Experience supporting security transformation programs and modernisation. Experience integrating SOC/MDR, SIEM/SOAR and familiarity with MITRE ATT&CK. Experience designing remote and local access models including PAM and ZTNA with identity integration. Familiarity with Microsoft cloud security stack including Microsoft Sentinel, Microsoft Entra ID, Microsoft Defender for Cloud and secure connectivity on Azure. Advanced certifications such as CISSP, TOGAF for SABSA, Cloud Security e.g. Microsoft SC 100/AZ 500, CCNA or equivalent. Ability to obtain and maintain UK Government security clearances. Join Us At EY, you'll have the chance to build a meaningful and fulfilling career, supported by an inclusive culture and cutting edge technology. Together, we can create a better working world for all. Security Clearance The successful candidate must undergo and pass checks in line with SC (Security Check) clearance standards after joining EY. These checks may include, but are not limited to, verification of identity, right to work in the UK, employment history, proof of address and unspent criminal convictions. Candidates must be a UK national or have been a resident in the UK for a minimum of five years and ensure that they have not spent more than six months outside the UK. What we look for We're interested in people with integrity who can collaborate with people from a diverse range of backgrounds and crucially a growth mindset. What we offer Continuous learning: You'll develop the mindset and skills to navigate whatever comes next. Success as defined by you: We'll provide the tools and flexibility, so you can make a meaningful impact, your way. Transformative leadership: We'll give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You'll be embraced for who you are and empowered to use your voice to help others find theirs. Apply Now If you can demonstrate that you meet the criteria above, please contact us as soon as possible. Apply Now Job ID TCCyberUKI2026 Cyber2026 EY Building a better working world EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories.
A platform you can believe in: Immersive One is the leading cyber resilience solution across the globe. Senior Cyber Engineer - Cloud Security Immersive is hiring! Could you be our next Senior Cloud Security Engineer? Due to customer demand and increasing maturity within our platform we have an exciting and challenging opportunity for an experienced cyber professional within the Cloud Security sector - with expertise in building secure environments within AWS, Azure and/or GCP - to join our Product team as Senior Cyber Engineer - Cloud Security. If successful you will join our Cyber team working closely with our Principal Cloud Security Engineer as we embark on this exciting new phase of product development within our market leading cyber resilience platform. This isn't an ordinary cloud role. We know everyone claims this and will tell you their role is super unique but this one really is. You are constantly researching, learning, totally geeking out on all things cloud security related, from Cloud SIEMS, to Kubernetes to Azure, and then taking that knowledge and creating labs. You will be a key player in our Cloud Security Content team, shaping and influencing the roll out of our AWS, Azure & GCP content roadmap and our vendor technology integration plans. You will be educating the world of cloud security professionals on how to make sure they are secure in what they do. Now that is a pretty cool legacy to leave behind. Your mission (if you choose to accept it) is to evolve and disrupt within the Cloud Security space by creating emulated environments within our platform that will simulate both hacking and defending in an engaging and intuitive way for our community. You will be applying your expertise to create practical and theory content to gamify Cloud Security and make it engaging and fun for the end user. You'll shake up traditional training and teach complex concepts in an innovative way. If you have an interest in and passion for cyber security, understand the area of Cloud Security (particularly AWS, Azure and GCP), and want to disrupt how employees learn about this technology we will appreciate your input and give you the space to innovate as we build an exciting new product within our market leading platform. No more 4am call outs. No more working over Christmas. Just upskilling yourself to be tremendously knowledgeable and sharing that knowledge of best practice with the world. Your main responsibilities (we're scaling fast, so these may change as we grow) Utilise knowledge of cloud technology to plan, write and improve cloud security labs, challenges and online learning content on the Immersive platform. Produce multi-format content utilising various teaching methods; practical exercises, questions & gamification. Test Cloud Security labs to ensure they function as expected. Work with the Engineering and Content teams on new projects/products and how best to deploy them. Sounds good? We'd love to hear from you if you have proven experience in the following areas Track record of working in production critical infrastructures and Cloud environments with a security focus. Extensive knowledge of a cloud platform or technology, such as Azure, AWS, GCP or Kubernetes - including expertise with security, identity & access. Experience with cloud SIEMs, such as Microsoft Sentinel or Google SecOps. Experience with CSPM or CNAAP tooling. Solid containerisation experience, specifically using Docker and Kubernetes. Familiar with serverless technologies. Knowledgeable in network, firewall and security best practices. Experience with infrastructure automation and deployment, specifically Terraform. Understanding of cloud monitoring and security tooling. Hands on experience cloud infrastructure, IT services, networking, and security. Software development experience, particularly Golang and Python. Experience working within a DevSecOps, Cloud security or SRE function, with a focus on availability, reliability and automation. Immersive's growth has been fuelled by our values that underpin everything we do - here's how they relate to this role Driven - We push the boundaries of innovation, acting swiftly to achieve ambitious outcomes. Our drive embodies a culture of ambition, where challenges are stepping stones to excellence. Inclusive - Our strength lies in diversity, fostering a culture where every individual contributes to our collective strength. We champion open dialogue and empathy, ensuring a collaborative, inclusive workplace. Customer Centric - We seek to develop deep relationships with our customers to help them achieve their business outcomes. We exceed our customers and partners' expectations by crafting products, services and experiences that surprise, delight and ensure they feel valued and supported every day. One Team - We are a talented global team working together to achieve our vision. Central to our ethos, resilience means adapting and thriving in adversity. It guides our innovation, ensuring we and our clients are prepared for the future. We encourage people of all different backgrounds and identities to apply. We are committed to maintaining an inclusive, supportive place for you to be you and do your very best work. As well as an inclusive, supportive place for you to be you. We offer an extensive range of benefits so you can do your very best work Time off, flexible and remote working so you can work when is best for you, includes 25 days annual leave + 2 volunteering days and your birthday off. The longer you are with Immersive, the more holiday days you get, up to a maximum of 30 days after five years of service. Look after your family and yourself with enhanced parental leave, mindfulness groups, critical illness cover, 7% matched pension, private healthcare plan and more. Career and learning development through the platform, a dedicated professional development fund and our 'Learn Anything' fund - which enables you to learn anything that's not work! Recognition & Rewards for doing great work and living our values and behaviours. Informal or formal flexible working options, e.g. flexible start and finish times, reduced hours. We have a vibrant team culture with team events throughout the year. Our socials have included everything from pottery painting and paper mask making, to dungeons and dragons! When you do visit the UK hub, getting there is easy: we're based in the centre of Bristol, just a 10 minute walk from the train station. We also offer railcard loan and cycle scheme to buy a new bike. Find out more about life at Immersive Labs: Cyber threats wait for no one and neither should you. Apply now! If you would like to read more about what you can expect from our recruitment process, you can visit our dedicated interview process page.
09/05/2026
Full time
A platform you can believe in: Immersive One is the leading cyber resilience solution across the globe. Senior Cyber Engineer - Cloud Security Immersive is hiring! Could you be our next Senior Cloud Security Engineer? Due to customer demand and increasing maturity within our platform we have an exciting and challenging opportunity for an experienced cyber professional within the Cloud Security sector - with expertise in building secure environments within AWS, Azure and/or GCP - to join our Product team as Senior Cyber Engineer - Cloud Security. If successful you will join our Cyber team working closely with our Principal Cloud Security Engineer as we embark on this exciting new phase of product development within our market leading cyber resilience platform. This isn't an ordinary cloud role. We know everyone claims this and will tell you their role is super unique but this one really is. You are constantly researching, learning, totally geeking out on all things cloud security related, from Cloud SIEMS, to Kubernetes to Azure, and then taking that knowledge and creating labs. You will be a key player in our Cloud Security Content team, shaping and influencing the roll out of our AWS, Azure & GCP content roadmap and our vendor technology integration plans. You will be educating the world of cloud security professionals on how to make sure they are secure in what they do. Now that is a pretty cool legacy to leave behind. Your mission (if you choose to accept it) is to evolve and disrupt within the Cloud Security space by creating emulated environments within our platform that will simulate both hacking and defending in an engaging and intuitive way for our community. You will be applying your expertise to create practical and theory content to gamify Cloud Security and make it engaging and fun for the end user. You'll shake up traditional training and teach complex concepts in an innovative way. If you have an interest in and passion for cyber security, understand the area of Cloud Security (particularly AWS, Azure and GCP), and want to disrupt how employees learn about this technology we will appreciate your input and give you the space to innovate as we build an exciting new product within our market leading platform. No more 4am call outs. No more working over Christmas. Just upskilling yourself to be tremendously knowledgeable and sharing that knowledge of best practice with the world. Your main responsibilities (we're scaling fast, so these may change as we grow) Utilise knowledge of cloud technology to plan, write and improve cloud security labs, challenges and online learning content on the Immersive platform. Produce multi-format content utilising various teaching methods; practical exercises, questions & gamification. Test Cloud Security labs to ensure they function as expected. Work with the Engineering and Content teams on new projects/products and how best to deploy them. Sounds good? We'd love to hear from you if you have proven experience in the following areas Track record of working in production critical infrastructures and Cloud environments with a security focus. Extensive knowledge of a cloud platform or technology, such as Azure, AWS, GCP or Kubernetes - including expertise with security, identity & access. Experience with cloud SIEMs, such as Microsoft Sentinel or Google SecOps. Experience with CSPM or CNAAP tooling. Solid containerisation experience, specifically using Docker and Kubernetes. Familiar with serverless technologies. Knowledgeable in network, firewall and security best practices. Experience with infrastructure automation and deployment, specifically Terraform. Understanding of cloud monitoring and security tooling. Hands on experience cloud infrastructure, IT services, networking, and security. Software development experience, particularly Golang and Python. Experience working within a DevSecOps, Cloud security or SRE function, with a focus on availability, reliability and automation. Immersive's growth has been fuelled by our values that underpin everything we do - here's how they relate to this role Driven - We push the boundaries of innovation, acting swiftly to achieve ambitious outcomes. Our drive embodies a culture of ambition, where challenges are stepping stones to excellence. Inclusive - Our strength lies in diversity, fostering a culture where every individual contributes to our collective strength. We champion open dialogue and empathy, ensuring a collaborative, inclusive workplace. Customer Centric - We seek to develop deep relationships with our customers to help them achieve their business outcomes. We exceed our customers and partners' expectations by crafting products, services and experiences that surprise, delight and ensure they feel valued and supported every day. One Team - We are a talented global team working together to achieve our vision. Central to our ethos, resilience means adapting and thriving in adversity. It guides our innovation, ensuring we and our clients are prepared for the future. We encourage people of all different backgrounds and identities to apply. We are committed to maintaining an inclusive, supportive place for you to be you and do your very best work. As well as an inclusive, supportive place for you to be you. We offer an extensive range of benefits so you can do your very best work Time off, flexible and remote working so you can work when is best for you, includes 25 days annual leave + 2 volunteering days and your birthday off. The longer you are with Immersive, the more holiday days you get, up to a maximum of 30 days after five years of service. Look after your family and yourself with enhanced parental leave, mindfulness groups, critical illness cover, 7% matched pension, private healthcare plan and more. Career and learning development through the platform, a dedicated professional development fund and our 'Learn Anything' fund - which enables you to learn anything that's not work! Recognition & Rewards for doing great work and living our values and behaviours. Informal or formal flexible working options, e.g. flexible start and finish times, reduced hours. We have a vibrant team culture with team events throughout the year. Our socials have included everything from pottery painting and paper mask making, to dungeons and dragons! When you do visit the UK hub, getting there is easy: we're based in the centre of Bristol, just a 10 minute walk from the train station. We also offer railcard loan and cycle scheme to buy a new bike. Find out more about life at Immersive Labs: Cyber threats wait for no one and neither should you. Apply now! If you would like to read more about what you can expect from our recruitment process, you can visit our dedicated interview process page.
Location United Kingdom Employment Type Full time Location Type Remote Department Cyber A platform you can believe in: Immersive One is the leading cyber resilience solution across the globe. Build and scale a best in class platform alongside a team of the brightest minds in cybersecurity! At Immersive, we're uniquely positioned to future-proof organizations against any cyber challenge. If that excites you, read on! Immersive helps prove and improve your cyber resilience, by simulating real-world threats, testing your skills, and measuring performance. We put your readiness to the ultimate test. From sharpening technical capabilities to making high-pressure decisions, our platform allows you to assess every angle, pinpoint areas for growth, and prove your ability to tackle evolving threats with unwavering confidence. Immersive was founded in 2017, from a cargo container in Bristol, UK we've grown to over 300 employees globally, announced funding of more than £150 million and been voted a Best place to work on multiple occasions! Senior Cyber Engineer - Cloud Security Immersive is hiring! Could you be our next Senior Cloud Security Engineer? Due to customer demand and increasing maturity within our platform we have an exciting and challenging opportunity for an experienced cyber professional within the Cloud Security sector - with expertise in building secure environments within AWS, Azure and/or GCP - to join our Product team as Senior Cyber Engineer - Cloud Security. If successful you will join our Cyber team working closely with our Principal Cloud Security Engineer as we embark on this exciting new phase of product development within our market leading cyber resilience platform. This isn't an ordinary cloud role, we know everyone claims this and will tell you their role is super unique but this one really is. You are constantly researching, learning, totally geeking out on all things cloud security related, from Cloud SIEMS, to Kubernetes to Azure, and then taking that knowledge and creating labs. You will be a key player in our Cloud Security Content team, shaping and influencing the roll out of our AWS, Azure & GCP content roadmap and our vendor technology integration plans. You will be educating the world of cloud security professionals on how to make sure they are secure in what they do. Now that is a pretty cool legacy to leave behind. Your mission (if you choose to accept it) is to evolve and disrupt within the Cloud Security space by creating emulated environments within our platform that will simulate both hacking and defending in an engaging and intuitive way for our community. You will be applying your expertise to create practical and theory content to gamify Cloud Security and make it engaging and fun for the end user. You'll shake up traditional training and teach complex concepts in an innovative way. If you have an interest in and passion for cyber security, understand the area of Cloud Security (particularly AWS, Azure and GCP), and want to disrupt how employees learn about this technology we will appreciate your input and give you the space to innovate as we build an exciting new product within our market leading platform. No more 4am call outs. No more working over Christmas. Just upskilling yourself to be tremendously knowledgeable and sharing that knowledge of best practice with the world. Your main responsibilities (we're scaling fast, so these may change as we grow): Utilising knowledge of cloud technology to plan, write and improve cloud security labs, challenges and online learning content on the Immersive platform. Produce multi-format content utilising various teaching methods; practical exercises, questions & gamification Test Cloud Security labs to ensure they function as expected Work with the Engineering and Content teams on new projects/products and how best to deploy them Sounds good? We'd love to hear from you if you have proven experience in the following areas: Track record of working in production-critical infrastructures and Cloud environments with a security focus Extensive knowledge of a cloud platform or technology, such as Azure, AWS, GCP or Kubernetes - including expertise with security, identity & access Experience with cloud SIEMs, such as Microsoft Sentinel or Google SecOps Experience with CSPM or CNAAP tooling Solid containerisation experience, specifically using Docker and Kubernetes Familiar with serverless technologies Knowledgeable in network, firewall and security best practices Experience with infrastructure automation and deployment, specifically Terraform Understanding of cloud monitoring and security tooling Hands on experience cloud infrastructure, IT services, networking, and security Software development experience, particularly Golang and Python Experience working within an DevSecOps, Cloud security or SRE function, with a focus on availability, reliability and automation Immersive's growth has been fuelled by our values that underpin everything we do, here's how they relate to this role: Driven - We push the boundaries of innovation, acting swiftly to achieve ambitious outcomes. Our drive embodies a culture of ambition, where challenges are stepping stones to excellence. Inclusive - Our strength lies in diversity, fostering a culture where every individual contributes to our collective strength. We champion open dialogue and empathy, ensuring a collaborative, inclusive workplace. Customer Centric - We seek to develop deep relationships with our customers to help them achieve their business outcomes. We exceed our customers and partners' expectations by crafting products, services and experiences that surprise, delight and ensure they feel valued and supported every day. One Team - We are a talented global team working together to achieve our vision. Central to our ethos, resilience means adapting and thriving in adversity. It guides our innovation, ensuring we and our clients are prepared for the future. We encourage people of all different backgrounds and identities to apply. We are committed to maintaining an inclusive, supportive place for you to be you and do your very best work. Excited by the above? We're ready to receive your application! As well as an inclusive, supportive place for you to be you. We offer an extensive range of benefits so you can do your very best work: Time off, flexible and remote working so you can work when is best for you, includes 25 days annual leave + 2 volunteering days and your birthday off The longer you are with Immersive, the more holiday days you get, up to a maximum of 30 days after five years of service Look after your family and yourself with enhanced parental leave, mindfulness groups, critical illness cover, 7% matched pension, private healthcare plan and more Career and learning development through the platform, a dedicated professional development fund and our 'Learn Anything' fund - which enables you to learn anything that's not work! Recognition & Rewards for doing great work and living our values and behaviours Informal or formal flexible working options, e.g. flexible start and finish times, reduced hours We have a vibrant team culture with team events throughout the year. Our socials have included everything from pottery painting and paper mask making, to dungeons and dragons! When you do visit the UK hub, getting there is easy: we're based in the centre of Bristol, just a 10 minute walk from the train station. We also offer railcard loan and cycle scheme to buy a new bike Find out more about life at Immersive Labs Cyber threats wait for no one and neither should you. Apply now! If you would like to read more about what you can expect from our recruitment process, you can visit our dedicated interview process page.
09/05/2026
Full time
Location United Kingdom Employment Type Full time Location Type Remote Department Cyber A platform you can believe in: Immersive One is the leading cyber resilience solution across the globe. Build and scale a best in class platform alongside a team of the brightest minds in cybersecurity! At Immersive, we're uniquely positioned to future-proof organizations against any cyber challenge. If that excites you, read on! Immersive helps prove and improve your cyber resilience, by simulating real-world threats, testing your skills, and measuring performance. We put your readiness to the ultimate test. From sharpening technical capabilities to making high-pressure decisions, our platform allows you to assess every angle, pinpoint areas for growth, and prove your ability to tackle evolving threats with unwavering confidence. Immersive was founded in 2017, from a cargo container in Bristol, UK we've grown to over 300 employees globally, announced funding of more than £150 million and been voted a Best place to work on multiple occasions! Senior Cyber Engineer - Cloud Security Immersive is hiring! Could you be our next Senior Cloud Security Engineer? Due to customer demand and increasing maturity within our platform we have an exciting and challenging opportunity for an experienced cyber professional within the Cloud Security sector - with expertise in building secure environments within AWS, Azure and/or GCP - to join our Product team as Senior Cyber Engineer - Cloud Security. If successful you will join our Cyber team working closely with our Principal Cloud Security Engineer as we embark on this exciting new phase of product development within our market leading cyber resilience platform. This isn't an ordinary cloud role, we know everyone claims this and will tell you their role is super unique but this one really is. You are constantly researching, learning, totally geeking out on all things cloud security related, from Cloud SIEMS, to Kubernetes to Azure, and then taking that knowledge and creating labs. You will be a key player in our Cloud Security Content team, shaping and influencing the roll out of our AWS, Azure & GCP content roadmap and our vendor technology integration plans. You will be educating the world of cloud security professionals on how to make sure they are secure in what they do. Now that is a pretty cool legacy to leave behind. Your mission (if you choose to accept it) is to evolve and disrupt within the Cloud Security space by creating emulated environments within our platform that will simulate both hacking and defending in an engaging and intuitive way for our community. You will be applying your expertise to create practical and theory content to gamify Cloud Security and make it engaging and fun for the end user. You'll shake up traditional training and teach complex concepts in an innovative way. If you have an interest in and passion for cyber security, understand the area of Cloud Security (particularly AWS, Azure and GCP), and want to disrupt how employees learn about this technology we will appreciate your input and give you the space to innovate as we build an exciting new product within our market leading platform. No more 4am call outs. No more working over Christmas. Just upskilling yourself to be tremendously knowledgeable and sharing that knowledge of best practice with the world. Your main responsibilities (we're scaling fast, so these may change as we grow): Utilising knowledge of cloud technology to plan, write and improve cloud security labs, challenges and online learning content on the Immersive platform. Produce multi-format content utilising various teaching methods; practical exercises, questions & gamification Test Cloud Security labs to ensure they function as expected Work with the Engineering and Content teams on new projects/products and how best to deploy them Sounds good? We'd love to hear from you if you have proven experience in the following areas: Track record of working in production-critical infrastructures and Cloud environments with a security focus Extensive knowledge of a cloud platform or technology, such as Azure, AWS, GCP or Kubernetes - including expertise with security, identity & access Experience with cloud SIEMs, such as Microsoft Sentinel or Google SecOps Experience with CSPM or CNAAP tooling Solid containerisation experience, specifically using Docker and Kubernetes Familiar with serverless technologies Knowledgeable in network, firewall and security best practices Experience with infrastructure automation and deployment, specifically Terraform Understanding of cloud monitoring and security tooling Hands on experience cloud infrastructure, IT services, networking, and security Software development experience, particularly Golang and Python Experience working within an DevSecOps, Cloud security or SRE function, with a focus on availability, reliability and automation Immersive's growth has been fuelled by our values that underpin everything we do, here's how they relate to this role: Driven - We push the boundaries of innovation, acting swiftly to achieve ambitious outcomes. Our drive embodies a culture of ambition, where challenges are stepping stones to excellence. Inclusive - Our strength lies in diversity, fostering a culture where every individual contributes to our collective strength. We champion open dialogue and empathy, ensuring a collaborative, inclusive workplace. Customer Centric - We seek to develop deep relationships with our customers to help them achieve their business outcomes. We exceed our customers and partners' expectations by crafting products, services and experiences that surprise, delight and ensure they feel valued and supported every day. One Team - We are a talented global team working together to achieve our vision. Central to our ethos, resilience means adapting and thriving in adversity. It guides our innovation, ensuring we and our clients are prepared for the future. We encourage people of all different backgrounds and identities to apply. We are committed to maintaining an inclusive, supportive place for you to be you and do your very best work. Excited by the above? We're ready to receive your application! As well as an inclusive, supportive place for you to be you. We offer an extensive range of benefits so you can do your very best work: Time off, flexible and remote working so you can work when is best for you, includes 25 days annual leave + 2 volunteering days and your birthday off The longer you are with Immersive, the more holiday days you get, up to a maximum of 30 days after five years of service Look after your family and yourself with enhanced parental leave, mindfulness groups, critical illness cover, 7% matched pension, private healthcare plan and more Career and learning development through the platform, a dedicated professional development fund and our 'Learn Anything' fund - which enables you to learn anything that's not work! Recognition & Rewards for doing great work and living our values and behaviours Informal or formal flexible working options, e.g. flexible start and finish times, reduced hours We have a vibrant team culture with team events throughout the year. Our socials have included everything from pottery painting and paper mask making, to dungeons and dragons! When you do visit the UK hub, getting there is easy: we're based in the centre of Bristol, just a 10 minute walk from the train station. We also offer railcard loan and cycle scheme to buy a new bike Find out more about life at Immersive Labs Cyber threats wait for no one and neither should you. Apply now! If you would like to read more about what you can expect from our recruitment process, you can visit our dedicated interview process page.
We are seeking an experienced Azure Security Engineer with deep expertise across Microsoft's cloud security stack-including Microsoft Defender, Microsoft Sentinel, Microsoft Purview, and Information Protection. The ideal candidate will combine strong technical engineering capabilities with proven technical leadership, playing a key role in shaping our cloud security posture, driving secure by design principles, and guiding both technical and non technical stakeholders. This role will be instrumental in designing, implementing, and maintaining enterprise grade security controls within Azure, ensuring compliance, visibility, and protection across our cloud workloads and data estate. Responsibilities Cloud Security Engineering Design, implement, and optimise security controls across Azure resources and services. Lead the deployment, configuration, and tuning of Microsoft Defender (Defender for Cloud, Endpoint, Identity, O365, Cloud Apps). Administer and enhance Microsoft Sentinel, including workbook creation, custom analytics rules, automation (SOAR), threat hunting, and incident workflows. Define and manage data classification, labelling, and lifecycle controls using Microsoft Purview and Information Protection capabilities. Integrate security tooling with CI/CD pipelines and DevOps workflows to ensure secure development and deployment practices. Security Operations & Incident Response Oversee advanced incident investigations, triage, and forensic analysis leveraging Sentinel and Defender signals. Develop and maintain playbooks, runbooks, and automated response workflows. Provide guidance to SOC teams on threat detection logic and response strategies. Ensure Azure environments align with internal security policies, industry standards, and regulatory obligations (e.g., ISO 27001, NIST, GDPR). Lead cloud security assessments, gap analyses, and remediation activities. Support audit, compliance, and data governance initiatives with Purview insights. Technical Leadership Serve as the subject matter expert for Azure security technologies and cloud protection strategies. Mentor junior engineers and influence cross functional teams with clear technical direction. Champion secure architecture principles and drive adoption of cloud security best practices. Collaborate with architects, infrastructure teams, DevOps, and business units to embed security at every stage of the technology lifecycle. Preferred Qualifications Microsoft certifications such as: SC-100: Cybersecurity Architect SC-200: Security Operations Analyst SC-300: Identity and Access Administrator AZ-500: Azure Security Engineer Associate Experience in enterprise scale environments. Background in threat intelligence, security architecture, or SOC leadership. Competitive salary, bonus and options scheme. Opportunities for further training and certification. Collaborative and low bureaucracy work environment. Flexible working arrangements. About Us CloudSecure specialise in developing software and cloud infrastructure for customers with critical security and performance needs. Our culture is high agency, low bureaucracy and encourages creative thinking. We are intensely meritocratic - if you add value you will be appropriately remunerated and given increased responsibility. By extension we reward intellectual curiosity; if there's a technology or role you're interested in, we'll help you get there. We're growing fast but are founder owned so aren't beholden to investor targets, financial hurdles or trend chasing. One of our directors sums CloudSecure up by saying "We build cool stuff, for cool customers." People are the lifeblood of our business so if what we've written resonates, we'd love to hear from you.
09/05/2026
Full time
We are seeking an experienced Azure Security Engineer with deep expertise across Microsoft's cloud security stack-including Microsoft Defender, Microsoft Sentinel, Microsoft Purview, and Information Protection. The ideal candidate will combine strong technical engineering capabilities with proven technical leadership, playing a key role in shaping our cloud security posture, driving secure by design principles, and guiding both technical and non technical stakeholders. This role will be instrumental in designing, implementing, and maintaining enterprise grade security controls within Azure, ensuring compliance, visibility, and protection across our cloud workloads and data estate. Responsibilities Cloud Security Engineering Design, implement, and optimise security controls across Azure resources and services. Lead the deployment, configuration, and tuning of Microsoft Defender (Defender for Cloud, Endpoint, Identity, O365, Cloud Apps). Administer and enhance Microsoft Sentinel, including workbook creation, custom analytics rules, automation (SOAR), threat hunting, and incident workflows. Define and manage data classification, labelling, and lifecycle controls using Microsoft Purview and Information Protection capabilities. Integrate security tooling with CI/CD pipelines and DevOps workflows to ensure secure development and deployment practices. Security Operations & Incident Response Oversee advanced incident investigations, triage, and forensic analysis leveraging Sentinel and Defender signals. Develop and maintain playbooks, runbooks, and automated response workflows. Provide guidance to SOC teams on threat detection logic and response strategies. Ensure Azure environments align with internal security policies, industry standards, and regulatory obligations (e.g., ISO 27001, NIST, GDPR). Lead cloud security assessments, gap analyses, and remediation activities. Support audit, compliance, and data governance initiatives with Purview insights. Technical Leadership Serve as the subject matter expert for Azure security technologies and cloud protection strategies. Mentor junior engineers and influence cross functional teams with clear technical direction. Champion secure architecture principles and drive adoption of cloud security best practices. Collaborate with architects, infrastructure teams, DevOps, and business units to embed security at every stage of the technology lifecycle. Preferred Qualifications Microsoft certifications such as: SC-100: Cybersecurity Architect SC-200: Security Operations Analyst SC-300: Identity and Access Administrator AZ-500: Azure Security Engineer Associate Experience in enterprise scale environments. Background in threat intelligence, security architecture, or SOC leadership. Competitive salary, bonus and options scheme. Opportunities for further training and certification. Collaborative and low bureaucracy work environment. Flexible working arrangements. About Us CloudSecure specialise in developing software and cloud infrastructure for customers with critical security and performance needs. Our culture is high agency, low bureaucracy and encourages creative thinking. We are intensely meritocratic - if you add value you will be appropriately remunerated and given increased responsibility. By extension we reward intellectual curiosity; if there's a technology or role you're interested in, we'll help you get there. We're growing fast but are founder owned so aren't beholden to investor targets, financial hurdles or trend chasing. One of our directors sums CloudSecure up by saying "We build cool stuff, for cool customers." People are the lifeblood of our business so if what we've written resonates, we'd love to hear from you.
At a glance: Location: Cambridge In-office expectation: 2 days per week initially Employment type: Permanent Salary: £60,000 - £70,000 Why this role exists: Security at Redgate is a hands on engineering discipline. This role exists to design, build, and operate security controls that protect our people, products, and customers. About Redgate Redgate brings together people who want to do their best work in an environment built on trust, accountability, and collaboration. We build solutions that help data professionals securely manage the data and databases that their organizations depend on - a space that's only becoming more critical as systems scale, data regulations increase, and AI adoption accelerates. Why join our security team? Broad, meaningful scope - Working across our cloud & physical infrastructure, alongside our development teams and ISO27001-aligned information security group, you'll be working to bring on new vendors, assess risk, and fix vulnerabilities. Genuinely modern challenges - From AI governance and shadow IT to supply chain risk and secure by design engineering, tackle relevant problems across a fast moving global software business. A team that grows you - Work in a hands on team tackling a diverse set of challenges, developing your career and investing in your future. About the role As a Cyber Security Engineer at Redgate, you'll: Design, build, and operate security controls across infrastructure and applications. Investigate issues hands on, sometimes outside office hours, when things genuinely matter. Work closely with engineers and business teams to enable secure delivery. Work alongside our commercial teams to give our customers the confidence to securely deploy our products. What makes you a great fit Hands on security engineering or security operations experience. Strong IAM knowledge at protocol level (OAuth 2.0, SAML, OIDC) - you've debugged implementations, not just read about it. Experience with Infrastructure as Code (ideally Terraform) and use of automation. Familiarity with secure SDLC practices, version control, and peer review. Experience conducting vendor security reviews and third party risk assessments. Practical vulnerability management experience - you're used to judging the real-world risks, not just looking at baseline CVSS scores. Incident response experience, including investigation, remediation, and root cause analysis. Working knowledge of Microsoft Sentinel, Defender, and KQL. A background in sys admin or engineering that gives you intuition for how systems actually fail. A mindset that security exists to enable the business. Comfortable using AI tools as part of your daily work. Strong communication skills with both technical and non technical audiences. What we offer Salary range: £60,000 - £70,000. Hybrid working: home and Cambridge office. Monthly wellbeing allowance and generous paid time off. Genuine investment in learning, development, and career progression. Private health insurance. Link to full benefits page. Equal Employment Opportunity We believe that people do their best work in an environment built on respect, fairness, and trust - and that diverse perspectives lead to better outcomes. Redgate is an equal opportunity employer, and we make hiring decisions based on skill, potential, and alignment with our values.
09/05/2026
Full time
At a glance: Location: Cambridge In-office expectation: 2 days per week initially Employment type: Permanent Salary: £60,000 - £70,000 Why this role exists: Security at Redgate is a hands on engineering discipline. This role exists to design, build, and operate security controls that protect our people, products, and customers. About Redgate Redgate brings together people who want to do their best work in an environment built on trust, accountability, and collaboration. We build solutions that help data professionals securely manage the data and databases that their organizations depend on - a space that's only becoming more critical as systems scale, data regulations increase, and AI adoption accelerates. Why join our security team? Broad, meaningful scope - Working across our cloud & physical infrastructure, alongside our development teams and ISO27001-aligned information security group, you'll be working to bring on new vendors, assess risk, and fix vulnerabilities. Genuinely modern challenges - From AI governance and shadow IT to supply chain risk and secure by design engineering, tackle relevant problems across a fast moving global software business. A team that grows you - Work in a hands on team tackling a diverse set of challenges, developing your career and investing in your future. About the role As a Cyber Security Engineer at Redgate, you'll: Design, build, and operate security controls across infrastructure and applications. Investigate issues hands on, sometimes outside office hours, when things genuinely matter. Work closely with engineers and business teams to enable secure delivery. Work alongside our commercial teams to give our customers the confidence to securely deploy our products. What makes you a great fit Hands on security engineering or security operations experience. Strong IAM knowledge at protocol level (OAuth 2.0, SAML, OIDC) - you've debugged implementations, not just read about it. Experience with Infrastructure as Code (ideally Terraform) and use of automation. Familiarity with secure SDLC practices, version control, and peer review. Experience conducting vendor security reviews and third party risk assessments. Practical vulnerability management experience - you're used to judging the real-world risks, not just looking at baseline CVSS scores. Incident response experience, including investigation, remediation, and root cause analysis. Working knowledge of Microsoft Sentinel, Defender, and KQL. A background in sys admin or engineering that gives you intuition for how systems actually fail. A mindset that security exists to enable the business. Comfortable using AI tools as part of your daily work. Strong communication skills with both technical and non technical audiences. What we offer Salary range: £60,000 - £70,000. Hybrid working: home and Cambridge office. Monthly wellbeing allowance and generous paid time off. Genuine investment in learning, development, and career progression. Private health insurance. Link to full benefits page. Equal Employment Opportunity We believe that people do their best work in an environment built on respect, fairness, and trust - and that diverse perspectives lead to better outcomes. Redgate is an equal opportunity employer, and we make hiring decisions based on skill, potential, and alignment with our values.
Senior Engineer - MXDR Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Description As a Senior MXDR Engineer, you are a true multitasker with both technical depth and strong communication skills. Deploying and maintaining MXDR solutions is your core responsibility - your "bread and butter." You assess customer needs, collaborate with stakeholders across organizational levels, and ensure their environments become safer and more resilient against threats. Your expertise is also a trusted resource within the team. Whether it's helping the SOC interpret the logging associated with a Splunk alert, troubleshooting CPU spikes of CrowdStrike agents during a DFIR engagement, or assisting SDM in interpreting technical questions - you're the go to person. This role requires a broad skill set. A major focus is on technical consultancy, meaning a strong technical foundation, professional communication skills, and a passion for continuous learning are essential. We're looking for someone with experience with SIEM & EDR tools. We see MXDR as Microsoft Sentinel, Splunk, CrowdStrike or Sentinel One. Familiarity with these platforms is a strong plus. Because this is a customer facing role, you should feel confident engaging with clients in both in person and digital environments. As part of a global organization, proficiency in written and spoken English is a must. Key Responsibilities Implement and support MXDR solutions for customers, ensuring effective deployment and configuration. Independently operate in multidisciplinary teams for projects, proactively contributing to client deliverables and addressing internal and external technical and organizational challenges. Serve as a Subject Matter Expert on specific MXDR tools, supporting and advising customers and colleagues across teams. Continuously improve the MXDR services through automation, process enhancements and knowledge sharing. Skills, Knowledge & Expertise Expert knowledge of cybersecurity and proficiency in one or multiple MXDR technologies. Demonstrated ability to analyze and interpret complex data. Strong leadership and communication skills. Exceptional client engagement and problem solving skills. Job Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
09/05/2026
Full time
Senior Engineer - MXDR Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR Manchester Hardman Boulevard Description As a Senior MXDR Engineer, you are a true multitasker with both technical depth and strong communication skills. Deploying and maintaining MXDR solutions is your core responsibility - your "bread and butter." You assess customer needs, collaborate with stakeholders across organizational levels, and ensure their environments become safer and more resilient against threats. Your expertise is also a trusted resource within the team. Whether it's helping the SOC interpret the logging associated with a Splunk alert, troubleshooting CPU spikes of CrowdStrike agents during a DFIR engagement, or assisting SDM in interpreting technical questions - you're the go to person. This role requires a broad skill set. A major focus is on technical consultancy, meaning a strong technical foundation, professional communication skills, and a passion for continuous learning are essential. We're looking for someone with experience with SIEM & EDR tools. We see MXDR as Microsoft Sentinel, Splunk, CrowdStrike or Sentinel One. Familiarity with these platforms is a strong plus. Because this is a customer facing role, you should feel confident engaging with clients in both in person and digital environments. As part of a global organization, proficiency in written and spoken English is a must. Key Responsibilities Implement and support MXDR solutions for customers, ensuring effective deployment and configuration. Independently operate in multidisciplinary teams for projects, proactively contributing to client deliverables and addressing internal and external technical and organizational challenges. Serve as a Subject Matter Expert on specific MXDR tools, supporting and advising customers and colleagues across teams. Continuously improve the MXDR services through automation, process enhancements and knowledge sharing. Skills, Knowledge & Expertise Expert knowledge of cybersecurity and proficiency in one or multiple MXDR technologies. Demonstrated ability to analyze and interpret complex data. Strong leadership and communication skills. Exceptional client engagement and problem solving skills. Job Benefits Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
