Requisition ID11281-Posted - Years of Experience (2) -Technology- Where (1) Spike Reply is the company within the Reply Group focusing on cybersecurity and personal data protection. Its mission is to safeguard the values and privacy of people,companiesand processesin order tosupport the growth of a global, sustainable digital world through innovation.Confidentiality,integrityand availability of systems are top priorities. Together with its partners, the company provides vendor-independent consulting services to help enterprises achieve a group-wide, security-oriented culture. Role Overview As a Cloud Security Architect, you will join Reply's growing cybersecurity practice in a senior consulting role embedded within financial services and public sector organisations. You will take ownership of cloud security architecture, governance, and strategy across multi cloud environments, working at the intersection of technology, risk, and business. You will engage with executive stakeholders, drive compliance programmes, and enable clients to adopt cloud securely and at scale. This is a high impact role suited to a security professional who combines deep technical expertise with the strategic ability to translate complex threats into clear, actionable guidance. Responsibilities Design and own cloud security architecture across AWS, Azure, and/or GCP environments, including the development of reference architectures and reusable solution patterns Define and author enterprise level security policies, controls frameworks, and governance documentation aligned to industry standards Lead risk assessments, threat modelling exercises, and security posture evaluations for cloud platforms and SaaS products, utilising methodologies such as FAIR Drive compliance programmes covering ISO 27001, Cyber Essentials Plus, PCI DSS, and other relevant regulatory frameworks Support DevSecOps adoption and integrate security tooling and controls into CI/CD pipelines across client delivery teams Engage senior stakeholders and executive teams with clear security risk reporting, remediation guidance, and strategic security roadmaps Lead or contribute to Security Champions communities of practice, fostering a security aware engineering culture within client organisations Provide security assurance for software development and third party supplier onboarding, including SSPM tooling and SaaS security reviews Architect secure identity solutions, including centralised and federated authentication models across complex, cross domain environments Support incident response planning and business continuity activities, ensuring cloud hosted services meet resilience and recovery objectives Contribute to FinOps activities from a cybersecurity cost and sustainability perspective, ensuring security investments are well justified and efficiently allocated About the Candidate Bachelor's or Master's degree in Cyber Security, Computer Science, Physics with Computing, or a related discipline; MSc or equivalent postgraduate qualification is advantageous Proven experience in a Cloud Security Architect or Senior Security Consultant role AWS Certified Security - Specialty (required), with CISSP, CRISC, or CCSP strongly preferred; additional certifications such as ISO 27001 Lead Implementer/Auditor, Azure Security Engineer, or GCP Security Engineer are advantageous Hands on experience securing workloads on AWS and/or Microsoft Azure (GCP experience beneficial) Track record of delivering security architecture within financial services and/or public sector environments Experience supporting or achieving ISO 27001 and/or Cyber Essentials Plus accreditation Practical experience with Infrastructure as Code (e.g. Terraform) and secure CI/CD pipeline design, alongside a background in application security, DevSecOps, or secure software engineering Strong knowledge of network protocols including TCP/IP, DNS, VPN, and IPSEC, with experience working in scaled agile environments Excellent stakeholder engagement skills, with the ability to communicate security risks clearly to senior and executive audiences and build trusted client relationships Analytical and pragmatic mindset, with experience mentoring teams, contributing to security communities, and enabling secure innovation while balancing commercial and operational priorities Eligibility: Must be eligible for UK Security Check clearance Reply is an Equal Opportunities Employer and committed to embracing diversity in the workplace. We provide equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type regardless of age, sexual orientation, gender, identity, pregnancy, religion, nationality, ethnic origin, disability, medical history, skincolour, marital status or parental status or any other characteristic protected by the Law. Reply is committed to making sure that our selection methods are fair to everyone. To help you during the recruitment process, please let us know of any Reasonable Adjustments you may need.
03/06/2026
Full time
Requisition ID11281-Posted - Years of Experience (2) -Technology- Where (1) Spike Reply is the company within the Reply Group focusing on cybersecurity and personal data protection. Its mission is to safeguard the values and privacy of people,companiesand processesin order tosupport the growth of a global, sustainable digital world through innovation.Confidentiality,integrityand availability of systems are top priorities. Together with its partners, the company provides vendor-independent consulting services to help enterprises achieve a group-wide, security-oriented culture. Role Overview As a Cloud Security Architect, you will join Reply's growing cybersecurity practice in a senior consulting role embedded within financial services and public sector organisations. You will take ownership of cloud security architecture, governance, and strategy across multi cloud environments, working at the intersection of technology, risk, and business. You will engage with executive stakeholders, drive compliance programmes, and enable clients to adopt cloud securely and at scale. This is a high impact role suited to a security professional who combines deep technical expertise with the strategic ability to translate complex threats into clear, actionable guidance. Responsibilities Design and own cloud security architecture across AWS, Azure, and/or GCP environments, including the development of reference architectures and reusable solution patterns Define and author enterprise level security policies, controls frameworks, and governance documentation aligned to industry standards Lead risk assessments, threat modelling exercises, and security posture evaluations for cloud platforms and SaaS products, utilising methodologies such as FAIR Drive compliance programmes covering ISO 27001, Cyber Essentials Plus, PCI DSS, and other relevant regulatory frameworks Support DevSecOps adoption and integrate security tooling and controls into CI/CD pipelines across client delivery teams Engage senior stakeholders and executive teams with clear security risk reporting, remediation guidance, and strategic security roadmaps Lead or contribute to Security Champions communities of practice, fostering a security aware engineering culture within client organisations Provide security assurance for software development and third party supplier onboarding, including SSPM tooling and SaaS security reviews Architect secure identity solutions, including centralised and federated authentication models across complex, cross domain environments Support incident response planning and business continuity activities, ensuring cloud hosted services meet resilience and recovery objectives Contribute to FinOps activities from a cybersecurity cost and sustainability perspective, ensuring security investments are well justified and efficiently allocated About the Candidate Bachelor's or Master's degree in Cyber Security, Computer Science, Physics with Computing, or a related discipline; MSc or equivalent postgraduate qualification is advantageous Proven experience in a Cloud Security Architect or Senior Security Consultant role AWS Certified Security - Specialty (required), with CISSP, CRISC, or CCSP strongly preferred; additional certifications such as ISO 27001 Lead Implementer/Auditor, Azure Security Engineer, or GCP Security Engineer are advantageous Hands on experience securing workloads on AWS and/or Microsoft Azure (GCP experience beneficial) Track record of delivering security architecture within financial services and/or public sector environments Experience supporting or achieving ISO 27001 and/or Cyber Essentials Plus accreditation Practical experience with Infrastructure as Code (e.g. Terraform) and secure CI/CD pipeline design, alongside a background in application security, DevSecOps, or secure software engineering Strong knowledge of network protocols including TCP/IP, DNS, VPN, and IPSEC, with experience working in scaled agile environments Excellent stakeholder engagement skills, with the ability to communicate security risks clearly to senior and executive audiences and build trusted client relationships Analytical and pragmatic mindset, with experience mentoring teams, contributing to security communities, and enabling secure innovation while balancing commercial and operational priorities Eligibility: Must be eligible for UK Security Check clearance Reply is an Equal Opportunities Employer and committed to embracing diversity in the workplace. We provide equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type regardless of age, sexual orientation, gender, identity, pregnancy, religion, nationality, ethnic origin, disability, medical history, skincolour, marital status or parental status or any other characteristic protected by the Law. Reply is committed to making sure that our selection methods are fair to everyone. To help you during the recruitment process, please let us know of any Reasonable Adjustments you may need.
Associate Consultant - Secure Cloud / GCP / GDC DevSecOps Join RT Consulting's Associate Consulting workforce Who we are RT Consulting are a trusted management consultancy and service provider. We are proud to hold the Gold Award under the Armed Forces Employer Recognition Scheme. RT are a member of the Government Digital Sustainability Alliance, bringing government, industry, and academia together to improve digital sustainability outcomes for the UK government and its supply chain We deliver highly capable and effective value for money solutions to our clients as the 'customer friend' and trusted partner across Defence, Policing, Central and Local Government. We deploy consultants who ensure alignment with Government policy, stakeholder expectations, and long-term impact goals. We specialise in the delivery of Cloud & Digital Infrastructure services , including multi-cloud engineering (AWS, Azure, GCP), secure cloud platforms, DevSecOps and automation, Site Reliability Engineering, digital workplace technologies, and resilient, scalable infrastructure operations across complex and regulated environments. Your Invitation: We invite you to join our Cloud & Digital Infrastructure consulting team , where we can align you to current and upcoming demand across cloud engineering, secure platform engineering, DevSecOps/SRE, and modern infrastructure transformation. We are particularly building capability in: Google Cloud Platform (GCP) Google Distributed Cloud (GDC) / air-gapped deployments Secure-by-design cloud engineering for Defence and high-assurance environments Kubernetes, containerisation, and Infrastructure-as-Code (Terraform) This includes supporting surge activity for our defence partners delivering secure cloud services into secure environments. Engagement expectations Vetting: Due to the regulated nature of our work and our significant defence portfolio, a minimum of active SC clearance is required. DV-cleared professionals are also in high demand for secure, air-gapped GDC programmes. Working pattern: Projects typically require 2-3 days per week on-site at Southwest client locations including, Corsham & Bristol, with hybrid flexibility where permitted. Fees: Rates are aligned to engagement scope and seniority. What you'll get You join a community of specialists across Defence, Government, Policing and wider Public Sector programmes, where knowledge sharing, peer support and professional connection are part of the culture. Priority access to new consultancy opportunities, including secure GCP/GDC, DevSecOps and platform engineering workstreams. Dedicated relationship support, Ongoing contact with a Relationship Manager who provides guidance, check-ins and forward planning to help minimise gaps between assignments. An invitation to Society events, meetups and community touchpoints, we aim to ensure you feel supported, valued and engaged throughout your consultancy journey. A consultancy environment that reflects our Group Values - Integrity & Respect, Accountability, Collaboration, High Performance, Innovation, Agility, Client Centricity & People Focused. Who you are An experienced Cloud / Platform Engineering professional with capability in one or more of the following: Google Cloud Platform (GCP) or Google Distributed Cloud (GDC) DevOps, DevSecOps or Site Reliability Engineering (SRE) Platform Engineering and secure cloud design Kubernetes and container platforms (GKE / secure clusters) Infrastructure-as-Code (Terraform) Secure cloud operations (IAM, RBAC, networking, secrets management) You are comfortable working within secure, regulated environments and collaborating directly with users and stakeholders to deliver cloud capability at pace. You will need to be well versed in the direction of travel from Government, focused on digital transformation to enhance public services, improve efficiency, and meet the evolving expectations of its citizens. This shift involves modernising outdated systems, leveraging data effectively, and adopting new technologies like Artificial Intelligence (AI). The goal is a more agile, responsive, and citizen-centric government. You are comfortable operating in high-assurance, regulated environments, capable of working independently within secure delivery teams, and adept at designing, deploying and maintaining secure, modern cloud platforms. How to express interest Contact us to arrange a confidential conversation.
01/06/2026
Contractor
Associate Consultant - Secure Cloud / GCP / GDC DevSecOps Join RT Consulting's Associate Consulting workforce Who we are RT Consulting are a trusted management consultancy and service provider. We are proud to hold the Gold Award under the Armed Forces Employer Recognition Scheme. RT are a member of the Government Digital Sustainability Alliance, bringing government, industry, and academia together to improve digital sustainability outcomes for the UK government and its supply chain We deliver highly capable and effective value for money solutions to our clients as the 'customer friend' and trusted partner across Defence, Policing, Central and Local Government. We deploy consultants who ensure alignment with Government policy, stakeholder expectations, and long-term impact goals. We specialise in the delivery of Cloud & Digital Infrastructure services , including multi-cloud engineering (AWS, Azure, GCP), secure cloud platforms, DevSecOps and automation, Site Reliability Engineering, digital workplace technologies, and resilient, scalable infrastructure operations across complex and regulated environments. Your Invitation: We invite you to join our Cloud & Digital Infrastructure consulting team , where we can align you to current and upcoming demand across cloud engineering, secure platform engineering, DevSecOps/SRE, and modern infrastructure transformation. We are particularly building capability in: Google Cloud Platform (GCP) Google Distributed Cloud (GDC) / air-gapped deployments Secure-by-design cloud engineering for Defence and high-assurance environments Kubernetes, containerisation, and Infrastructure-as-Code (Terraform) This includes supporting surge activity for our defence partners delivering secure cloud services into secure environments. Engagement expectations Vetting: Due to the regulated nature of our work and our significant defence portfolio, a minimum of active SC clearance is required. DV-cleared professionals are also in high demand for secure, air-gapped GDC programmes. Working pattern: Projects typically require 2-3 days per week on-site at Southwest client locations including, Corsham & Bristol, with hybrid flexibility where permitted. Fees: Rates are aligned to engagement scope and seniority. What you'll get You join a community of specialists across Defence, Government, Policing and wider Public Sector programmes, where knowledge sharing, peer support and professional connection are part of the culture. Priority access to new consultancy opportunities, including secure GCP/GDC, DevSecOps and platform engineering workstreams. Dedicated relationship support, Ongoing contact with a Relationship Manager who provides guidance, check-ins and forward planning to help minimise gaps between assignments. An invitation to Society events, meetups and community touchpoints, we aim to ensure you feel supported, valued and engaged throughout your consultancy journey. A consultancy environment that reflects our Group Values - Integrity & Respect, Accountability, Collaboration, High Performance, Innovation, Agility, Client Centricity & People Focused. Who you are An experienced Cloud / Platform Engineering professional with capability in one or more of the following: Google Cloud Platform (GCP) or Google Distributed Cloud (GDC) DevOps, DevSecOps or Site Reliability Engineering (SRE) Platform Engineering and secure cloud design Kubernetes and container platforms (GKE / secure clusters) Infrastructure-as-Code (Terraform) Secure cloud operations (IAM, RBAC, networking, secrets management) You are comfortable working within secure, regulated environments and collaborating directly with users and stakeholders to deliver cloud capability at pace. You will need to be well versed in the direction of travel from Government, focused on digital transformation to enhance public services, improve efficiency, and meet the evolving expectations of its citizens. This shift involves modernising outdated systems, leveraging data effectively, and adopting new technologies like Artificial Intelligence (AI). The goal is a more agile, responsive, and citizen-centric government. You are comfortable operating in high-assurance, regulated environments, capable of working independently within secure delivery teams, and adept at designing, deploying and maintaining secure, modern cloud platforms. How to express interest Contact us to arrange a confidential conversation.
Role Principal Consultant - Technology: Harness platform transformation Location: London, UK Business Unit: ENG Compensation: Competitive (including bonus) Role Description Are you passionate about driving modern DevOps transformations and enabling next generation software delivery? We're looking for a Harness SME to join our team. We're seeking a seasoned Harness Platform Specialist with deep expertise across the Harness Software Delivery Platform, including Continuous Integration, Continuous Delivery, Security Testing Orchestration (STO), Chaos Engineering, Cloud Cost Management (CCM), and Harness AI Agents. The ideal candidate will bring hands on experience in designing scalable CI/CD architectures, migrating from legacy tool chains, implementing DevSecOps governance, and enabling teams in enterprise environments. Proven experience in end to end CI/CD delivery, cloud platforms, Kubernetes, OPA based governance, and AI driven pipeline automation using Harness AI Agents is essential. Responsibilities Lead the design, implementation, and optimization of CI/CD pipelines using the Harness platform, aligned with enterprise delivery, security, and compliance standards. Architect and maintain end-to-end delivery workflows across Harness modules, including CI, CD, STO, Chaos Engineering, CCM, and emerging AI-driven capabilities. Implement and manage Harness Delegate installations, upgrades, image customizations, and integrations across cloud and on-prem environments. Collaborate with cross-functional teams (DevOps, Platform, Security, AppDev) to define scalable CI/CD patterns and develop reusable pipeline templates. Drive application onboarding to Harness, including assessments, pipeline configuration, troubleshooting, and modernization support (containerization, IaC adoption). Integrate security scanners (SAST, SCA, DAST, container scanning) through Harness STO and enforce governance and compliance using OPA policies. Leverage Harness AI Agents to automate pipeline triaging, self-healing tasks, intelligent remediation, and policy-driven decision-making across delivery workflows. Develop and operationalize AI-powered automation patterns-such as automated issue remediation, impact analysis, and workflow optimization-using Harness AI Agents. Drive adoption and implementation of additional Harness modules, including the Internal Developer Portal (IDP), Feature Management & Experimentation, Chaos Engineering, and Software Engineering Insights to enhance developer experience, resilience, and engineering productivity. Conduct capability assessments, recommend architecture enhancements, develop solution approaches, and contribute to CI/CD transformation roadmaps. Establish standards for progressive delivery, including blue-green, canary, rolling deployments, and automated rollback mechanisms. Support pre-sales and solutioning initiatives, including PoCs, demos, estimations, presentation and proposals. Develop and enhance reusable automation assets, pipeline components, accelerators, templates, and technical documentation for consistent execution across teams. Configure and manage infrastructure required for pipeline execution, including Kubernetes clusters, virtual machines, artifact repositories, Git platforms, and cloud services. Ensure adherence to security, performance, scalability, and quality best practices across all CI/CD and DevSecOps implementations. Mentor engineering teams, conduct enablement sessions, and foster continuous learning around Harness capabilities and modern DevOps practices. Stay current with emerging Harness features and platform updates, continuously improving delivery blueprints and engineering standards. Essential Qualifications Over 12 years of experience in DevOps, CI/CD engineering, or platform engineering roles. 3+ years of hands on expertise specifically with the Harness Software Delivery Platform (CI, CD, STO, Chaos, CCM). Strong practical experience in designing enterprise CI/CD pipelines. Strong practical experience in Kubernetes & container orchestration. Strong practical experience in Git workflows (GitHub, GitLab, ADO). Strong practical experience in YAML, Shell scripting, Python or equivalent scripting languages. Strong practical experience in Cloud platforms (AWS, Azure, or GCP). Strong practical experience in Terraform, Helm, or other IaC tools. Strong practical understanding of DevSecOps, security integration, OPA policy creation, and compliance frameworks. Hands on experience with Harness AI Agents, including implementing AI driven policy enforcement, insights generation, and automated decision workflows. Preferred Qualifications Prior experience in large scale CI/CD modernization or migration projects (e.g., Jenkins to Harness, ADO to Harness, XLR to Harness). Exposure to enterprise AppSec workflows and integrating scanners via STO. Experience implementing Chaos Engineering practices using Harness Chaos. Good understanding of FinOps / cloud cost governance using CCM. Experience in pre sales, solutioning, customer workshops, and technical proposal creation. Relevant certifications: Kubernetes, Cloud (AWS/Azure/GCP), Harness certifications (good to have). Strong architectural thinking and the ability to translate business needs into technical solutions. Personal Attributes High analytical skills A high degree of initiative and flexibility High customer orientation High quality awareness Excellent verbal and written communication skills All aspects of employment at Infosys are based on merit, competence, and performance. We are committed to embracing diversity and creating an inclusive environment for all employees. Infosys is proud to be an equal opportunity employer.
01/06/2026
Full time
Role Principal Consultant - Technology: Harness platform transformation Location: London, UK Business Unit: ENG Compensation: Competitive (including bonus) Role Description Are you passionate about driving modern DevOps transformations and enabling next generation software delivery? We're looking for a Harness SME to join our team. We're seeking a seasoned Harness Platform Specialist with deep expertise across the Harness Software Delivery Platform, including Continuous Integration, Continuous Delivery, Security Testing Orchestration (STO), Chaos Engineering, Cloud Cost Management (CCM), and Harness AI Agents. The ideal candidate will bring hands on experience in designing scalable CI/CD architectures, migrating from legacy tool chains, implementing DevSecOps governance, and enabling teams in enterprise environments. Proven experience in end to end CI/CD delivery, cloud platforms, Kubernetes, OPA based governance, and AI driven pipeline automation using Harness AI Agents is essential. Responsibilities Lead the design, implementation, and optimization of CI/CD pipelines using the Harness platform, aligned with enterprise delivery, security, and compliance standards. Architect and maintain end-to-end delivery workflows across Harness modules, including CI, CD, STO, Chaos Engineering, CCM, and emerging AI-driven capabilities. Implement and manage Harness Delegate installations, upgrades, image customizations, and integrations across cloud and on-prem environments. Collaborate with cross-functional teams (DevOps, Platform, Security, AppDev) to define scalable CI/CD patterns and develop reusable pipeline templates. Drive application onboarding to Harness, including assessments, pipeline configuration, troubleshooting, and modernization support (containerization, IaC adoption). Integrate security scanners (SAST, SCA, DAST, container scanning) through Harness STO and enforce governance and compliance using OPA policies. Leverage Harness AI Agents to automate pipeline triaging, self-healing tasks, intelligent remediation, and policy-driven decision-making across delivery workflows. Develop and operationalize AI-powered automation patterns-such as automated issue remediation, impact analysis, and workflow optimization-using Harness AI Agents. Drive adoption and implementation of additional Harness modules, including the Internal Developer Portal (IDP), Feature Management & Experimentation, Chaos Engineering, and Software Engineering Insights to enhance developer experience, resilience, and engineering productivity. Conduct capability assessments, recommend architecture enhancements, develop solution approaches, and contribute to CI/CD transformation roadmaps. Establish standards for progressive delivery, including blue-green, canary, rolling deployments, and automated rollback mechanisms. Support pre-sales and solutioning initiatives, including PoCs, demos, estimations, presentation and proposals. Develop and enhance reusable automation assets, pipeline components, accelerators, templates, and technical documentation for consistent execution across teams. Configure and manage infrastructure required for pipeline execution, including Kubernetes clusters, virtual machines, artifact repositories, Git platforms, and cloud services. Ensure adherence to security, performance, scalability, and quality best practices across all CI/CD and DevSecOps implementations. Mentor engineering teams, conduct enablement sessions, and foster continuous learning around Harness capabilities and modern DevOps practices. Stay current with emerging Harness features and platform updates, continuously improving delivery blueprints and engineering standards. Essential Qualifications Over 12 years of experience in DevOps, CI/CD engineering, or platform engineering roles. 3+ years of hands on expertise specifically with the Harness Software Delivery Platform (CI, CD, STO, Chaos, CCM). Strong practical experience in designing enterprise CI/CD pipelines. Strong practical experience in Kubernetes & container orchestration. Strong practical experience in Git workflows (GitHub, GitLab, ADO). Strong practical experience in YAML, Shell scripting, Python or equivalent scripting languages. Strong practical experience in Cloud platforms (AWS, Azure, or GCP). Strong practical experience in Terraform, Helm, or other IaC tools. Strong practical understanding of DevSecOps, security integration, OPA policy creation, and compliance frameworks. Hands on experience with Harness AI Agents, including implementing AI driven policy enforcement, insights generation, and automated decision workflows. Preferred Qualifications Prior experience in large scale CI/CD modernization or migration projects (e.g., Jenkins to Harness, ADO to Harness, XLR to Harness). Exposure to enterprise AppSec workflows and integrating scanners via STO. Experience implementing Chaos Engineering practices using Harness Chaos. Good understanding of FinOps / cloud cost governance using CCM. Experience in pre sales, solutioning, customer workshops, and technical proposal creation. Relevant certifications: Kubernetes, Cloud (AWS/Azure/GCP), Harness certifications (good to have). Strong architectural thinking and the ability to translate business needs into technical solutions. Personal Attributes High analytical skills A high degree of initiative and flexibility High customer orientation High quality awareness Excellent verbal and written communication skills All aspects of employment at Infosys are based on merit, competence, and performance. We are committed to embracing diversity and creating an inclusive environment for all employees. Infosys is proud to be an equal opportunity employer.
Senior Cyber Security Analyst - Application Security / DevSecOps / Secure Design/SAST, DAST - London Contract (12 Months, Hybrid 8 Days onsite per month, remote rest). Inside of IR35 - must use umbrella. £600 per day. We are supporting a leading international organisation in the search for a Senior Cyber Security Analyst to join a high performing security engineering and assurance team. This role is ideal for a consultant with a strong background in Application Security, DevSecOps, Secure SDLC, Threat Modelling, and Cloud Security, who can work closely with engineering teams to embed security into modern software delivery environments. The successful consultant will operate across cloud native platforms, CI/CD pipelines, APIs, containers, and microservices architectures, helping drive secure by design principles across enterprise scale platforms. Key Responsibilities Perform security risk assessments, secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms Define and implement secure by design principles across software engineering and DevOps teams Embed security controls into CI/CD pipelines using modern DevSecOps practices Lead and support SAST, DAST, SCA, and container security integration activities Conduct application and infrastructure security assessments aligned to OWASP, NIST, and industry best practices Work closely with development teams to triage vulnerabilities and support remediation activities Define security requirements for modern application architectures including APIs, Microservices, Kubernetes/Containers, Cloud native platforms Support secure architecture reviews across AWS and/or Azure environments Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams Support vulnerability management, security governance, and secure delivery processes Required Skills & Experience Application Security & Secure SDLC OWASP Top 10 / ASVS Secure coding practices Threat modelling (STRIDE / MITRE ATT&CK) Security architecture and design reviews Vulnerability management and remediation Secure Software Development Lifecycle (SSDLC) DevSecOps & CI/CD Security integration of security tooling into CI/CD pipelines Experience with: GitHub, GitLab, Jenkins, Azure DevOps Hands on experience with: SAST, DAST, SCA, Secrets scanning, Container security, Cloud & Platform Security, AWS and/or Azure security, Kubernetes / Docker / container security, API security, IAM / Identity Federation / SSO, WAF and cloud native security tooling, Infrastructure as Code security (Terraform / Checkov / tfsec) Security tooling experience with: SonarQube, Checkmarx, Veracode, Fortify, OWASP ZAP, Burp Suite, Snyk, Aqua, Wiz, Prisma Cloud, Defender for Cloud, Sentinel Ideal Background 8-15+ years in Cyber Security Strong focus on Application Security and DevSecOps Experience working closely with engineering and platform teams Strong stakeholder engagement and communication skills Experience within regulated or enterprise environments (Financial services, government, or large scale enterprise) highly desirable Certifications desirable: CISSP, SABSA, GIAC, ISO 27001, Cloud security certifications (AWS / Azure) Rates depend on experience and client requirements.
01/06/2026
Full time
Senior Cyber Security Analyst - Application Security / DevSecOps / Secure Design/SAST, DAST - London Contract (12 Months, Hybrid 8 Days onsite per month, remote rest). Inside of IR35 - must use umbrella. £600 per day. We are supporting a leading international organisation in the search for a Senior Cyber Security Analyst to join a high performing security engineering and assurance team. This role is ideal for a consultant with a strong background in Application Security, DevSecOps, Secure SDLC, Threat Modelling, and Cloud Security, who can work closely with engineering teams to embed security into modern software delivery environments. The successful consultant will operate across cloud native platforms, CI/CD pipelines, APIs, containers, and microservices architectures, helping drive secure by design principles across enterprise scale platforms. Key Responsibilities Perform security risk assessments, secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms Define and implement secure by design principles across software engineering and DevOps teams Embed security controls into CI/CD pipelines using modern DevSecOps practices Lead and support SAST, DAST, SCA, and container security integration activities Conduct application and infrastructure security assessments aligned to OWASP, NIST, and industry best practices Work closely with development teams to triage vulnerabilities and support remediation activities Define security requirements for modern application architectures including APIs, Microservices, Kubernetes/Containers, Cloud native platforms Support secure architecture reviews across AWS and/or Azure environments Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams Support vulnerability management, security governance, and secure delivery processes Required Skills & Experience Application Security & Secure SDLC OWASP Top 10 / ASVS Secure coding practices Threat modelling (STRIDE / MITRE ATT&CK) Security architecture and design reviews Vulnerability management and remediation Secure Software Development Lifecycle (SSDLC) DevSecOps & CI/CD Security integration of security tooling into CI/CD pipelines Experience with: GitHub, GitLab, Jenkins, Azure DevOps Hands on experience with: SAST, DAST, SCA, Secrets scanning, Container security, Cloud & Platform Security, AWS and/or Azure security, Kubernetes / Docker / container security, API security, IAM / Identity Federation / SSO, WAF and cloud native security tooling, Infrastructure as Code security (Terraform / Checkov / tfsec) Security tooling experience with: SonarQube, Checkmarx, Veracode, Fortify, OWASP ZAP, Burp Suite, Snyk, Aqua, Wiz, Prisma Cloud, Defender for Cloud, Sentinel Ideal Background 8-15+ years in Cyber Security Strong focus on Application Security and DevSecOps Experience working closely with engineering and platform teams Strong stakeholder engagement and communication skills Experience within regulated or enterprise environments (Financial services, government, or large scale enterprise) highly desirable Certifications desirable: CISSP, SABSA, GIAC, ISO 27001, Cloud security certifications (AWS / Azure) Rates depend on experience and client requirements.
Senior Cyber Security Analyst - Application Security / DevSecOps / Secure Design/ SAST, DAST - London Contract 12 Months Hybrid 8 Days onsite per month - the rest is remote working Inside of IR35 must use umbrella £600 per day We are supporting a leading international organisation in the search for a Senior Cyber Security Analyst to join a high-performing security engineering and assurance team. This role is ideal for a consultant with a strong background in Application Security, DevSecOps, Secure SDLC, Threat Modelling, and Cloud Security , who can work closely with engineering teams to embed security into modern software delivery environments. The successful consultant will operate across cloud-native platforms, CI/CD pipelines, APIs, containers, and microservices architectures, helping drive secure-by-design principles across enterprise-scale platforms. Key Responsibilities Perform security risk assessments , secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms Define and implement secure-by-design principles across software engineering and DevOps teams Embed security controls into CI/CD pipelines using modern DevSecOps practices Lead and support SAST, DAST, SCA , and container security integration activities Conduct application and infrastructure security assessments aligned to OWASP , NIST , and industry best practices Work closely with development teams to triage vulnerabilities and support remediation activities Define security requirements for modern application architectures including: APIs Microservices Kubernetes / Containers Cloud-native platforms Support secure architecture reviews across AWS and/or Azure environments Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams Support vulnerability management, security governance, and secure delivery processes Required Skills & Experience We are looking for consultants with strong experience across several of the following areas: Application Security & Secure SDLC OWASP Top 10 / ASVS Secure coding practices Threat modelling (STRIDE / MITRE ATT&CK) Security architecture and design reviews Vulnerability management and remediation Secure Software Development Lifecycle (SSDLC) DevSecOps & CI/CD Security Integration of security tooling into CI/CD pipelines Experience with: GitHub GitLab Jenkins Azure DevOps Hands-on experience with: SAST DAST SCA Secrets scanning Container security Cloud & Platform Security AWS and/or Azure security Kubernetes / Docker / container security API security IAM / Identity Federation / SSO WAF and cloud-native security tooling Infrastructure-as-Code security (Terraform / Checkov / tfsec) Security Tooling Experience with tools such as: SonarQube Checkmarx Veracode Fortify OWASP ZAP Burp Suite Snyk Aqua Wiz Prisma Cloud Defender for Cloud Sentinel Ideal Background 8-15+ years in Cyber Security Strong focus on Application Security and DevSecOps Experience working closely with engineering and platform teams Strong stakeholder engagement and communication skills Experience within regulated or enterprise environments preferred Financial services, government, or large-scale enterprise experience highly desirable Certifications (desirable) CISSP SABSA GIAC ISO 27001 Cloud security certifications (AWS / Azure) Rates depend on experience and client requirements
01/06/2026
Seasonal
Senior Cyber Security Analyst - Application Security / DevSecOps / Secure Design/ SAST, DAST - London Contract 12 Months Hybrid 8 Days onsite per month - the rest is remote working Inside of IR35 must use umbrella £600 per day We are supporting a leading international organisation in the search for a Senior Cyber Security Analyst to join a high-performing security engineering and assurance team. This role is ideal for a consultant with a strong background in Application Security, DevSecOps, Secure SDLC, Threat Modelling, and Cloud Security , who can work closely with engineering teams to embed security into modern software delivery environments. The successful consultant will operate across cloud-native platforms, CI/CD pipelines, APIs, containers, and microservices architectures, helping drive secure-by-design principles across enterprise-scale platforms. Key Responsibilities Perform security risk assessments , secure design reviews, and threat modelling exercises for applications, APIs, and cloud platforms Define and implement secure-by-design principles across software engineering and DevOps teams Embed security controls into CI/CD pipelines using modern DevSecOps practices Lead and support SAST, DAST, SCA , and container security integration activities Conduct application and infrastructure security assessments aligned to OWASP , NIST , and industry best practices Work closely with development teams to triage vulnerabilities and support remediation activities Define security requirements for modern application architectures including: APIs Microservices Kubernetes / Containers Cloud-native platforms Support secure architecture reviews across AWS and/or Azure environments Collaborate with stakeholders across Security, Engineering, DevOps, Risk, and Architecture teams Support vulnerability management, security governance, and secure delivery processes Required Skills & Experience We are looking for consultants with strong experience across several of the following areas: Application Security & Secure SDLC OWASP Top 10 / ASVS Secure coding practices Threat modelling (STRIDE / MITRE ATT&CK) Security architecture and design reviews Vulnerability management and remediation Secure Software Development Lifecycle (SSDLC) DevSecOps & CI/CD Security Integration of security tooling into CI/CD pipelines Experience with: GitHub GitLab Jenkins Azure DevOps Hands-on experience with: SAST DAST SCA Secrets scanning Container security Cloud & Platform Security AWS and/or Azure security Kubernetes / Docker / container security API security IAM / Identity Federation / SSO WAF and cloud-native security tooling Infrastructure-as-Code security (Terraform / Checkov / tfsec) Security Tooling Experience with tools such as: SonarQube Checkmarx Veracode Fortify OWASP ZAP Burp Suite Snyk Aqua Wiz Prisma Cloud Defender for Cloud Sentinel Ideal Background 8-15+ years in Cyber Security Strong focus on Application Security and DevSecOps Experience working closely with engineering and platform teams Strong stakeholder engagement and communication skills Experience within regulated or enterprise environments preferred Financial services, government, or large-scale enterprise experience highly desirable Certifications (desirable) CISSP SABSA GIAC ISO 27001 Cloud security certifications (AWS / Azure) Rates depend on experience and client requirements
Senior Cloud Security Engineer (London or Bristol) We are HealthHero, Europe's largest digital clinic. Join us at a pivotal moment as we scale our digital healthcare platform across Europe - giving you the chance to shape security at the heart of a fast-growing, AI-driven business. We are recruiting an exciting Senior Cloud Security Engineer on an initial 12 month fixed term contract, with a view to becoming permanent - based in either our London or Bristol office two days per week. About the role This role will form a fundamental part of a growing PlatformSecurity function, where the team covers application security, cloud security, security operations, culture and risk management. As a tech-centric organisation the Information Security team will play a critical part in embedding a security-first mindset into application development and continuous application monitoring. This role will co-own the cloud security posture and tooling across HealthHero's AWS and Azure estates and have the opportunity to tackle cloud security with an international scope. The role will be supported by a multidisciplinary force of Infrastructure, Data Governance and Engineering team leads with a security focus as part of their remit. The role has a focus on infrastructure and cloud networking when it comes to security posture. As an experienced Cloud Security Engineer, your working day will include but not be limited to: DevSecOps & SDLC Champion integration of security testing into CI/CD pipelines across all development teams and usage of automated security gates: SAST, DAST, dependency scanning, secrets detection Enable self-serve security tooling for development teams Ability to set up development environment Cloud Security Own cloud security posture management using Wiz (or similar CSPM) Define and enforce cloud security baselines, guardrails, and policies in AWS Implement and maintain IaC security scanning for Terraform Manage IAM policies, network segmentation, and secrets management Configure and tune SIEM (or similar) for cloud-focused detection Establish logging, monitoring, and alerting requirements based on threat modelling Investigate and respond to cloud security events Risk & Compliance Identify, articulate, and escalate security risks to senior leadership with mitigation plans Track and remediate vulnerabilities across infrastructure Manage customer initiatives related to due diligence when required to Support and develop annual programme of Penetration Testing and associated remediations Stakeholder Engagement Partner with internal and stakeholder management to support any requirements from the security function - particularly governance and accreditation requirements across different countries Provide expertise on emerging threats and vulnerabilities Support response to customer/client due diligence requests with timely and accurate information regarding vulnerability exposure Key Skills and Experience Essential Proven experience in application security, DevSecOps, or cloud security Strong understanding of cloud networking Experience securing cloud environments (AWS, Azure) Ability to read and write IAC (Terraform) code, comfortable with IAC lifecycles Familiarity with container security and Kubernetes Understanding of secure coding, penetration testing techniques, SIEM, and vulnerability management Strong technical skills relevant to Information Security such as secure coding standards, ethical hacking techniques, network security and risk analysis Understanding of managing Secure Development Lifecycle and Vulnerability Management. Understanding and practical experience of ISO27001:2022 controls and audit processes Desirable AWS Security Specialty or similar certification Experience in regulated environments (healthcare, financial services) Familiarity with NHS DSPT Technical knowledge of GDPR and data protection requirements Hands-on with CI/CD security tooling and pipeline integration Interest in learning other countries health and security regulations (France / UK / IR / DE) About us We exist to simplify healthcare and improve lives by making care feel instant, intelligent and human. HealthHero is Europe's largest digital health provider , delivering 4 million consultations per year. But we're just getting started. We've built a seamless digital clinic that brings body and mind together - from GP appointments and mental health support to long-term condition management. By sitting behind the world's leading insurers and employers and supporting public health systems, we make it easier for millions of people to get the care they need, exactly when they need it. We are a high-growth, capital-backed business with a sophisticated scale strategy. Our team is a unique blend of those with strong digital experience, management consultants, creatives and industry-leading clinical experts. We aren't just digitising appointments; we're building the next generation of healthcare. We're creating an AI-powered, always-on ecosystem that learns from every interaction to shift the needle from reactive treatment to proactive, sustainable health. At HealthHero, we are digital when it should be and human where it counts. Join us, and help build a next generation health system the world is waiting for. We're proud to be recognised as a which reflects our commitment to creating a supportive and engaging culture. We have also been featured as the fastest growing digital healthcare company of scale in the first Sunday Times 100 Tech list. This recognition shows our impact in the digital health sector and our dedication to innovation and excellence. Committed to achieving excellence in the delivery of person-centred care, we invest in people, resources and technology to continuously improve the quality of its services and organisational culture.
01/06/2026
Full time
Senior Cloud Security Engineer (London or Bristol) We are HealthHero, Europe's largest digital clinic. Join us at a pivotal moment as we scale our digital healthcare platform across Europe - giving you the chance to shape security at the heart of a fast-growing, AI-driven business. We are recruiting an exciting Senior Cloud Security Engineer on an initial 12 month fixed term contract, with a view to becoming permanent - based in either our London or Bristol office two days per week. About the role This role will form a fundamental part of a growing PlatformSecurity function, where the team covers application security, cloud security, security operations, culture and risk management. As a tech-centric organisation the Information Security team will play a critical part in embedding a security-first mindset into application development and continuous application monitoring. This role will co-own the cloud security posture and tooling across HealthHero's AWS and Azure estates and have the opportunity to tackle cloud security with an international scope. The role will be supported by a multidisciplinary force of Infrastructure, Data Governance and Engineering team leads with a security focus as part of their remit. The role has a focus on infrastructure and cloud networking when it comes to security posture. As an experienced Cloud Security Engineer, your working day will include but not be limited to: DevSecOps & SDLC Champion integration of security testing into CI/CD pipelines across all development teams and usage of automated security gates: SAST, DAST, dependency scanning, secrets detection Enable self-serve security tooling for development teams Ability to set up development environment Cloud Security Own cloud security posture management using Wiz (or similar CSPM) Define and enforce cloud security baselines, guardrails, and policies in AWS Implement and maintain IaC security scanning for Terraform Manage IAM policies, network segmentation, and secrets management Configure and tune SIEM (or similar) for cloud-focused detection Establish logging, monitoring, and alerting requirements based on threat modelling Investigate and respond to cloud security events Risk & Compliance Identify, articulate, and escalate security risks to senior leadership with mitigation plans Track and remediate vulnerabilities across infrastructure Manage customer initiatives related to due diligence when required to Support and develop annual programme of Penetration Testing and associated remediations Stakeholder Engagement Partner with internal and stakeholder management to support any requirements from the security function - particularly governance and accreditation requirements across different countries Provide expertise on emerging threats and vulnerabilities Support response to customer/client due diligence requests with timely and accurate information regarding vulnerability exposure Key Skills and Experience Essential Proven experience in application security, DevSecOps, or cloud security Strong understanding of cloud networking Experience securing cloud environments (AWS, Azure) Ability to read and write IAC (Terraform) code, comfortable with IAC lifecycles Familiarity with container security and Kubernetes Understanding of secure coding, penetration testing techniques, SIEM, and vulnerability management Strong technical skills relevant to Information Security such as secure coding standards, ethical hacking techniques, network security and risk analysis Understanding of managing Secure Development Lifecycle and Vulnerability Management. Understanding and practical experience of ISO27001:2022 controls and audit processes Desirable AWS Security Specialty or similar certification Experience in regulated environments (healthcare, financial services) Familiarity with NHS DSPT Technical knowledge of GDPR and data protection requirements Hands-on with CI/CD security tooling and pipeline integration Interest in learning other countries health and security regulations (France / UK / IR / DE) About us We exist to simplify healthcare and improve lives by making care feel instant, intelligent and human. HealthHero is Europe's largest digital health provider , delivering 4 million consultations per year. But we're just getting started. We've built a seamless digital clinic that brings body and mind together - from GP appointments and mental health support to long-term condition management. By sitting behind the world's leading insurers and employers and supporting public health systems, we make it easier for millions of people to get the care they need, exactly when they need it. We are a high-growth, capital-backed business with a sophisticated scale strategy. Our team is a unique blend of those with strong digital experience, management consultants, creatives and industry-leading clinical experts. We aren't just digitising appointments; we're building the next generation of healthcare. We're creating an AI-powered, always-on ecosystem that learns from every interaction to shift the needle from reactive treatment to proactive, sustainable health. At HealthHero, we are digital when it should be and human where it counts. Join us, and help build a next generation health system the world is waiting for. We're proud to be recognised as a which reflects our commitment to creating a supportive and engaging culture. We have also been featured as the fastest growing digital healthcare company of scale in the first Sunday Times 100 Tech list. This recognition shows our impact in the digital health sector and our dedication to innovation and excellence. Committed to achieving excellence in the delivery of person-centred care, we invest in people, resources and technology to continuously improve the quality of its services and organisational culture.
Cloud Architect Senior Consultant / Principal level Technology Transformation (Enterprise Technology) practice About Your Role As a Cloud Architect within our Cloud & Infrastructure capability, you will lead and govern the migration, transformation and design of secure, scalable, and cost efficient cloud platforms across AWS, Azure, and Google Cloud. You will set architectural direction and act as design authority for cloud first, hybrid, and multi cloud strategies aligned to business outcomes, regulatory requirements, and digital sovereignty considerations. You will define enterprise scale, cloud native and AI ready architectures supporting application platforms, data and AI workloads, and GenAI enabled use cases. Working across strategy, target architectures, and delivery programmes, you will ensure solutions are resilient, secure, and operationally robust from design through implementation. You will lead and assure architecture design across cloud landing zones, platform engineering, observability, cloud security, and cloud economics, working closely with senior client stakeholders, delivery leadership, hyperscaler partners, and Infosys Consulting specialists. Key Responsibilities & Capabilities Lead cloud transformation initiatives, including migration assessments, discovery activities, and definition of target cloud architectures Define and govern enterprise cloud architecture standards and reference architecture across AWS, Azure, and/or Google Cloud Act as design authority for complex cloud, hybrid, and multi cloud initiatives Lead the design of AI ready and GenAI enabled cloud architectures, including secure data platforms and scalable inference patterns Own cloud transformation assessments, defining target architectures, migration strategies, and phased roadmaps Apply and enforce Well Architected, security by design, and cost optimisation principles Engage confidently with senior client stakeholders, clearly articulating architectural options and trade offs Contribute to proposals, offerings, and thought leadership within the Cloud & Infrastructure capability Requirements Bachelor's degree from an accredited university Extensive experience designing and governing cloud architecture across AWS, Azure, or GCP Hands on experience with enterprise cloud platforms, application architectures, and hybrid environments Professional level cloud certification (AWS, Azure, or GCP) Exposure to platform engineering, DevSecOps, and Infrastructure as Code tooling Strong knowledge of cloud security, networking, identity, and governance Excellent communication skills with technical and non technical senior stakeholders Preferred / Desirable Experience Experience leading large scale cloud migration and modernization programmes Strong understanding of AI enabled and GenAI cloud architectures Multi cloud and hybrid architecture leadership experience General Information Willingness and ability to travel across client sites within the EMEA region Fluent spoken and written English (additional languages advantageous depending on location) Personal Attributes Highly structured and strategic thinker Able to translate complex cloud architecture into clear, actionable guidance Strong collaborator and architectural leader Comfortable operating in fast moving and ambiguous transformation contexts Committed to high standards of quality, integrity, and professionalism
28/05/2026
Full time
Cloud Architect Senior Consultant / Principal level Technology Transformation (Enterprise Technology) practice About Your Role As a Cloud Architect within our Cloud & Infrastructure capability, you will lead and govern the migration, transformation and design of secure, scalable, and cost efficient cloud platforms across AWS, Azure, and Google Cloud. You will set architectural direction and act as design authority for cloud first, hybrid, and multi cloud strategies aligned to business outcomes, regulatory requirements, and digital sovereignty considerations. You will define enterprise scale, cloud native and AI ready architectures supporting application platforms, data and AI workloads, and GenAI enabled use cases. Working across strategy, target architectures, and delivery programmes, you will ensure solutions are resilient, secure, and operationally robust from design through implementation. You will lead and assure architecture design across cloud landing zones, platform engineering, observability, cloud security, and cloud economics, working closely with senior client stakeholders, delivery leadership, hyperscaler partners, and Infosys Consulting specialists. Key Responsibilities & Capabilities Lead cloud transformation initiatives, including migration assessments, discovery activities, and definition of target cloud architectures Define and govern enterprise cloud architecture standards and reference architecture across AWS, Azure, and/or Google Cloud Act as design authority for complex cloud, hybrid, and multi cloud initiatives Lead the design of AI ready and GenAI enabled cloud architectures, including secure data platforms and scalable inference patterns Own cloud transformation assessments, defining target architectures, migration strategies, and phased roadmaps Apply and enforce Well Architected, security by design, and cost optimisation principles Engage confidently with senior client stakeholders, clearly articulating architectural options and trade offs Contribute to proposals, offerings, and thought leadership within the Cloud & Infrastructure capability Requirements Bachelor's degree from an accredited university Extensive experience designing and governing cloud architecture across AWS, Azure, or GCP Hands on experience with enterprise cloud platforms, application architectures, and hybrid environments Professional level cloud certification (AWS, Azure, or GCP) Exposure to platform engineering, DevSecOps, and Infrastructure as Code tooling Strong knowledge of cloud security, networking, identity, and governance Excellent communication skills with technical and non technical senior stakeholders Preferred / Desirable Experience Experience leading large scale cloud migration and modernization programmes Strong understanding of AI enabled and GenAI cloud architectures Multi cloud and hybrid architecture leadership experience General Information Willingness and ability to travel across client sites within the EMEA region Fluent spoken and written English (additional languages advantageous depending on location) Personal Attributes Highly structured and strategic thinker Able to translate complex cloud architecture into clear, actionable guidance Strong collaborator and architectural leader Comfortable operating in fast moving and ambiguous transformation contexts Committed to high standards of quality, integrity, and professionalism
The Principal Security Consultant (Online) is a senior, hands on security specialist supporting the secure design and delivery of online and digital platforms. The role provides expert security assurance, design review, and DevSecOps guidance across web, mobile, API, and cloud native services hosted primarily on Microsoft Azure. The role works closely with the Business Information Security Officer (BISO) for the online domain to ensure security risks are identified early, assessed pragmatically, and managed in line with business priorities and enterprise risk appetite. What you'll do Review and assess solution designs and architectures for online and digital services Identify security risks across identity, APIs, cloud services, data flows, and third party integrations Provide clear, proportionate security recommendations aligned to enterprise standards Advise on embedding security controls into CI/CD pipelines (e.g. SAST, SCA, secrets scanning, IaC scanning) Support secure engineering practices across build, deploy, and operate phases Who you are Senior experience in security consulting, product security, or application security Strong background in online and digital platforms (web, mobile, APIs, e commerce) Proven ability to review and challenge technical designs and architectures Strong understanding of DevSecOps and modern CI/CD practices Hands on knowledge of Azure cloud security What's in it for you Being a part of M&S is exactly that - playing your part to bring the magic of M&S to our customers every day. We're an inclusive, dynamic, exciting, and ever evolving business built on doing the right thing and bringing exceptional quality, value, service to every customer, whenever, wherever and however they want to shop with us. After completing your probationary period, you'll receive 20% colleague discount across all M&S products and many of our third party brands for you and a member of your household. Competitive holiday entitlement with the potential to buy extra holiday days! Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business. A generous Defined Contribution Pension Scheme and Life Assurance. A dedicated welcome to our teams with a tailored induction and a wide range of training programmes to develop your skills. Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing. Industry leading parental, adoption and neonatal policies, providing support and flexibility for your family. Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family. A charity volunteer day to support a charity or cause you're passionate about through a dedicated day away from work. Everyone's welcome We're ambitious about the future of retail. We're innovating, disrupting, and leading the way into a more inspiring, digital era. It's an exciting time to be part of M&S. To support us on our journey, we're building inclusive, diverse teams where everyone can be themselves, do their best work, and make change happen. We support each other and succeed together. Don't worry if you don't meet every single requirement of the job description. It's more of a guide to what's possible within the role. If you're passionate, ready to work hard, and think the role feels right for you, we'd love to hear from you.
27/05/2026
Full time
The Principal Security Consultant (Online) is a senior, hands on security specialist supporting the secure design and delivery of online and digital platforms. The role provides expert security assurance, design review, and DevSecOps guidance across web, mobile, API, and cloud native services hosted primarily on Microsoft Azure. The role works closely with the Business Information Security Officer (BISO) for the online domain to ensure security risks are identified early, assessed pragmatically, and managed in line with business priorities and enterprise risk appetite. What you'll do Review and assess solution designs and architectures for online and digital services Identify security risks across identity, APIs, cloud services, data flows, and third party integrations Provide clear, proportionate security recommendations aligned to enterprise standards Advise on embedding security controls into CI/CD pipelines (e.g. SAST, SCA, secrets scanning, IaC scanning) Support secure engineering practices across build, deploy, and operate phases Who you are Senior experience in security consulting, product security, or application security Strong background in online and digital platforms (web, mobile, APIs, e commerce) Proven ability to review and challenge technical designs and architectures Strong understanding of DevSecOps and modern CI/CD practices Hands on knowledge of Azure cloud security What's in it for you Being a part of M&S is exactly that - playing your part to bring the magic of M&S to our customers every day. We're an inclusive, dynamic, exciting, and ever evolving business built on doing the right thing and bringing exceptional quality, value, service to every customer, whenever, wherever and however they want to shop with us. After completing your probationary period, you'll receive 20% colleague discount across all M&S products and many of our third party brands for you and a member of your household. Competitive holiday entitlement with the potential to buy extra holiday days! Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business. A generous Defined Contribution Pension Scheme and Life Assurance. A dedicated welcome to our teams with a tailored induction and a wide range of training programmes to develop your skills. Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing. Industry leading parental, adoption and neonatal policies, providing support and flexibility for your family. Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family. A charity volunteer day to support a charity or cause you're passionate about through a dedicated day away from work. Everyone's welcome We're ambitious about the future of retail. We're innovating, disrupting, and leading the way into a more inspiring, digital era. It's an exciting time to be part of M&S. To support us on our journey, we're building inclusive, diverse teams where everyone can be themselves, do their best work, and make change happen. We support each other and succeed together. Don't worry if you don't meet every single requirement of the job description. It's more of a guide to what's possible within the role. If you're passionate, ready to work hard, and think the role feels right for you, we'd love to hear from you.
We are seeking a highly experienced Principal, Enterprise Integration Architect & Application Development to lead the definition, governance, and evolution of enterprise integration and application architecture across global source to pay technology platforms. This is a senior role responsible for shaping client's enterprise integration strategy, driving modern application development practices, and ensuring scalable, secure, and future-ready technology ecosystems across SAP and non-SAP environments. The successful candidate will operate as a principal technical authority, combining deep architectural expertise with delivery leadership to enable client's business transformation, digital innovation, and operational excellence. The role spans integration architecture, application engineering strategy, and cross-programme governance, with particular focus on complex Source-to-Pay and enterprise business processes. Key Responsibilities Enterprise Architecture & Strategy Define client's enterprise integration and application architecture vision aligned to business and digital strategy. Establish integration and application development standards, reference architectures, and governance frameworks. Lead enterprise integration strategy across cloud, hybrid, and on-premise ecosystems. Drive adoption of modern architecture patterns including API-led, event-driven, and microservices architectures. Develop integration and application roadmaps supporting organisational transformation initiatives. Integration Architecture Leadership Serve as the principal authority for enterprise integration architecture across programmes and platforms. Design scalable, secure, and reusable integration frameworks across SAP, SaaS, and third-party systems. Lead architecture decisions spanning APIs, middleware, messaging, B2B/EDI, and data integration. Govern architectural compliance across delivery teams and strategic initiatives. Define enterprise integration patterns, accelerators, and reusable assets. Application Development Leadership Establish engineering best practices for application development. Promote modern software development approaches including DevSecOps, CI/CD, automation, and cloud-native engineering. Guide development team in designing resilient, maintainable, and high-performance applications. Drive application modernisation, rationalisation, and technical debt reduction initiatives. Enable alignment between integration architecture and application engineering models. Programme & Delivery Leadership Provide architectural leadership across multiple client programmes and transformation initiatives. Translate complex business capabilities into scalable technical solutions. Lead cross-functional collaboration between architects, developers, functional consultants, and business stakeholders. Support planning, sequencing, dependency management, and risk mitigation across enterprise initiatives. Provide oversight across design reviews, solution assurance, and quality governance. Technology Governance & Innovation Establish enterprise governance for integration platforms and application development. Evaluate emerging technologies, tools, and platforms to support innovation and optimisation. Champion automation, AI, and platform engineering capabilities. Drive continuous improvement in delivery methodologies, tooling, and engineering maturity. Stakeholder & Leadership Engagement Act as trusted advisor to senior technology and business leadership. Communicate architectural strategy and complex technical concepts to executive audiences. Influence enterprise technology decisions and investment priorities. Required Skills & Experience 12+ years of experience in enterprise integration, architecture, or application engineering roles. Proven experience operating at enterprise or principal architect level focused on Source to Pay technologies. Extensive experience designing integration solutions across complex enterprise landscapes. Strong background across integration technologies such as: SAP Integration Suite / Cloud Integration (CPI) Middleware platforms (MuleSoft, Dell Boomi, webMethods, Azure Integration Services, or similar) SAP BTP Deep understanding of: API-led architecture Event-driven architecture Microservices and cloud-native design Distributed systems architecture Strong application development and engineering leadership experience. Experience integrating enterprise platforms including SAP ECC, S/4HANA, Ariba, Oracle, and SaaS applications. Expertise in API technologies (REST, SOAP), messaging frameworks, and integration security (OAuth, SAML, JWT). Strong knowledge of B2B and EDI standards (ANSI X12, EDIFACT, cXML, IDoc). Demonstrated leadership across large transformation programmes. Excellent stakeholder engagement and executive communication skills. Preferred Qualifications Experience with SAP Ariba, Cloud Integration Gateway (CIG), and SAP BTP Experience defining enterprise architecture or technology strategies. Exposure to multi-cloud environments (Azure, AWS, GCP). Experience with DevSecOps, platform engineering, and automation frameworks. TOGAF, SAP, cloud, or integration platform certifications. Leadership & Personal Attributes Strategic thinker with strong enterprise vision. Influential leader capable of driving organisational change. Strong mentoring and capability-building mindset. Commercially aware with strong business alignment. Collaborative, pragmatic, and outcome-focused. Comfortable operating in complex global transformation environments.
26/05/2026
Full time
We are seeking a highly experienced Principal, Enterprise Integration Architect & Application Development to lead the definition, governance, and evolution of enterprise integration and application architecture across global source to pay technology platforms. This is a senior role responsible for shaping client's enterprise integration strategy, driving modern application development practices, and ensuring scalable, secure, and future-ready technology ecosystems across SAP and non-SAP environments. The successful candidate will operate as a principal technical authority, combining deep architectural expertise with delivery leadership to enable client's business transformation, digital innovation, and operational excellence. The role spans integration architecture, application engineering strategy, and cross-programme governance, with particular focus on complex Source-to-Pay and enterprise business processes. Key Responsibilities Enterprise Architecture & Strategy Define client's enterprise integration and application architecture vision aligned to business and digital strategy. Establish integration and application development standards, reference architectures, and governance frameworks. Lead enterprise integration strategy across cloud, hybrid, and on-premise ecosystems. Drive adoption of modern architecture patterns including API-led, event-driven, and microservices architectures. Develop integration and application roadmaps supporting organisational transformation initiatives. Integration Architecture Leadership Serve as the principal authority for enterprise integration architecture across programmes and platforms. Design scalable, secure, and reusable integration frameworks across SAP, SaaS, and third-party systems. Lead architecture decisions spanning APIs, middleware, messaging, B2B/EDI, and data integration. Govern architectural compliance across delivery teams and strategic initiatives. Define enterprise integration patterns, accelerators, and reusable assets. Application Development Leadership Establish engineering best practices for application development. Promote modern software development approaches including DevSecOps, CI/CD, automation, and cloud-native engineering. Guide development team in designing resilient, maintainable, and high-performance applications. Drive application modernisation, rationalisation, and technical debt reduction initiatives. Enable alignment between integration architecture and application engineering models. Programme & Delivery Leadership Provide architectural leadership across multiple client programmes and transformation initiatives. Translate complex business capabilities into scalable technical solutions. Lead cross-functional collaboration between architects, developers, functional consultants, and business stakeholders. Support planning, sequencing, dependency management, and risk mitigation across enterprise initiatives. Provide oversight across design reviews, solution assurance, and quality governance. Technology Governance & Innovation Establish enterprise governance for integration platforms and application development. Evaluate emerging technologies, tools, and platforms to support innovation and optimisation. Champion automation, AI, and platform engineering capabilities. Drive continuous improvement in delivery methodologies, tooling, and engineering maturity. Stakeholder & Leadership Engagement Act as trusted advisor to senior technology and business leadership. Communicate architectural strategy and complex technical concepts to executive audiences. Influence enterprise technology decisions and investment priorities. Required Skills & Experience 12+ years of experience in enterprise integration, architecture, or application engineering roles. Proven experience operating at enterprise or principal architect level focused on Source to Pay technologies. Extensive experience designing integration solutions across complex enterprise landscapes. Strong background across integration technologies such as: SAP Integration Suite / Cloud Integration (CPI) Middleware platforms (MuleSoft, Dell Boomi, webMethods, Azure Integration Services, or similar) SAP BTP Deep understanding of: API-led architecture Event-driven architecture Microservices and cloud-native design Distributed systems architecture Strong application development and engineering leadership experience. Experience integrating enterprise platforms including SAP ECC, S/4HANA, Ariba, Oracle, and SaaS applications. Expertise in API technologies (REST, SOAP), messaging frameworks, and integration security (OAuth, SAML, JWT). Strong knowledge of B2B and EDI standards (ANSI X12, EDIFACT, cXML, IDoc). Demonstrated leadership across large transformation programmes. Excellent stakeholder engagement and executive communication skills. Preferred Qualifications Experience with SAP Ariba, Cloud Integration Gateway (CIG), and SAP BTP Experience defining enterprise architecture or technology strategies. Exposure to multi-cloud environments (Azure, AWS, GCP). Experience with DevSecOps, platform engineering, and automation frameworks. TOGAF, SAP, cloud, or integration platform certifications. Leadership & Personal Attributes Strategic thinker with strong enterprise vision. Influential leader capable of driving organisational change. Strong mentoring and capability-building mindset. Commercially aware with strong business alignment. Collaborative, pragmatic, and outcome-focused. Comfortable operating in complex global transformation environments.
We are seeking a highly experienced Principal, Enterprise Integration Architect & Application Development to lead the definition, governance, and evolution of enterprise integration and application architecture across global source to pay technology platforms. This is a senior role responsible for shaping client's enterprise integration strategy, driving modern application development practices, and ensuring scalable, secure, and future-ready technology ecosystems across SAP and non-SAP environments. The successful candidate will operate as a principal technical authority, combining deep architectural expertise with delivery leadership to enable client's business transformation, digital innovation, and operational excellence. The role spans integration architecture, application engineering strategy, and cross-programme governance, with particular focus on complex Source-to-Pay and enterprise business processes. Key Responsibilities Enterprise Architecture & Strategy Define client's enterprise integration and application architecture vision aligned to business and digital strategy. Establish integration and application development standards, reference architectures, and governance frameworks. Lead enterprise integration strategy across cloud, hybrid, and on-premise ecosystems. Drive adoption of modern architecture patterns including API-led, event-driven, and microservices architectures. Develop integration and application roadmaps supporting organisational transformation initiatives. Integration Architecture Leadership Serve as the principal authority for enterprise integration architecture across programmes and platforms. Design scalable, secure, and reusable integration frameworks across SAP, SaaS, and third-party systems. Lead architecture decisions spanning APIs, middleware, messaging, B2B/EDI, and data integration. Govern architectural compliance across delivery teams and strategic initiatives. Define enterprise integration patterns, accelerators, and reusable assets. Application Development Leadership Establish engineering best practices for application development. Promote modern software development approaches including DevSecOps, CI/CD, automation, and cloud-native engineering. Guide development team in designing resilient, maintainable, and high-performance applications. Drive application modernisation, rationalisation, and technical debt reduction initiatives. Enable alignment between integration architecture and application engineering models. Programme & Delivery Leadership Provide architectural leadership across multiple client programmes and transformation initiatives. Translate complex business capabilities into scalable technical solutions. Lead cross-functional collaboration between architects, developers, functional consultants, and business stakeholders. Support planning, sequencing, dependency management, and risk mitigation across enterprise initiatives. Provide oversight across design reviews, solution assurance, and quality governance. Technology Governance & Innovation Establish enterprise governance for integration platforms and application development. Evaluate emerging technologies, tools, and platforms to support innovation and optimisation. Champion automation, AI, and platform engineering capabilities. Drive continuous improvement in delivery methodologies, tooling, and engineering maturity. Stakeholder & Leadership Engagement Act as trusted advisor to senior technology and business leadership. Communicate architectural strategy and complex technical concepts to executive audiences. Influence enterprise technology decisions and investment priorities. Required Skills & Experience 12+ years of experience in enterprise integration, architecture, or application engineering roles. Proven experience operating at enterprise or principal architect level focused on Source to Pay technologies. Extensive experience designing integration solutions across complex enterprise landscapes. Strong background across integration technologies such as: SAP Integration Suite / Cloud Integration (CPI) Middleware platforms (MuleSoft, Dell Boomi, webMethods, Azure Integration Services, or similar) SAP BTP Deep understanding of: API-led architecture Event-driven architecture Microservices and cloud-native design Distributed systems architecture Strong application development and engineering leadership experience. Experience integrating enterprise platforms including SAP ECC, S/4HANA, Ariba, Oracle, and SaaS applications. Expertise in API technologies (REST, SOAP), messaging frameworks, and integration security (OAuth, SAML, JWT). Strong knowledge of B2B and EDI standards (ANSI X12, EDIFACT, cXML, IDoc). Demonstrated leadership across large transformation programmes. Excellent stakeholder engagement and executive communication skills. Preferred Qualifications Experience with SAP Ariba, Cloud Integration Gateway (CIG), and SAP BTP Experience defining enterprise architecture or technology strategies. Exposure to multi-cloud environments (Azure, AWS, GCP). Experience with DevSecOps, platform engineering, and automation frameworks. TOGAF, SAP, cloud, or integration platform certifications. Leadership & Personal Attributes Strategic thinker with strong enterprise vision. Influential leader capable of driving organisational change. Strong mentoring and capability-building mindset. Commercially aware with strong business alignment. Collaborative, pragmatic, and outcome-focused. Comfortable operating in complex global transformation environments.
26/05/2026
Full time
We are seeking a highly experienced Principal, Enterprise Integration Architect & Application Development to lead the definition, governance, and evolution of enterprise integration and application architecture across global source to pay technology platforms. This is a senior role responsible for shaping client's enterprise integration strategy, driving modern application development practices, and ensuring scalable, secure, and future-ready technology ecosystems across SAP and non-SAP environments. The successful candidate will operate as a principal technical authority, combining deep architectural expertise with delivery leadership to enable client's business transformation, digital innovation, and operational excellence. The role spans integration architecture, application engineering strategy, and cross-programme governance, with particular focus on complex Source-to-Pay and enterprise business processes. Key Responsibilities Enterprise Architecture & Strategy Define client's enterprise integration and application architecture vision aligned to business and digital strategy. Establish integration and application development standards, reference architectures, and governance frameworks. Lead enterprise integration strategy across cloud, hybrid, and on-premise ecosystems. Drive adoption of modern architecture patterns including API-led, event-driven, and microservices architectures. Develop integration and application roadmaps supporting organisational transformation initiatives. Integration Architecture Leadership Serve as the principal authority for enterprise integration architecture across programmes and platforms. Design scalable, secure, and reusable integration frameworks across SAP, SaaS, and third-party systems. Lead architecture decisions spanning APIs, middleware, messaging, B2B/EDI, and data integration. Govern architectural compliance across delivery teams and strategic initiatives. Define enterprise integration patterns, accelerators, and reusable assets. Application Development Leadership Establish engineering best practices for application development. Promote modern software development approaches including DevSecOps, CI/CD, automation, and cloud-native engineering. Guide development team in designing resilient, maintainable, and high-performance applications. Drive application modernisation, rationalisation, and technical debt reduction initiatives. Enable alignment between integration architecture and application engineering models. Programme & Delivery Leadership Provide architectural leadership across multiple client programmes and transformation initiatives. Translate complex business capabilities into scalable technical solutions. Lead cross-functional collaboration between architects, developers, functional consultants, and business stakeholders. Support planning, sequencing, dependency management, and risk mitigation across enterprise initiatives. Provide oversight across design reviews, solution assurance, and quality governance. Technology Governance & Innovation Establish enterprise governance for integration platforms and application development. Evaluate emerging technologies, tools, and platforms to support innovation and optimisation. Champion automation, AI, and platform engineering capabilities. Drive continuous improvement in delivery methodologies, tooling, and engineering maturity. Stakeholder & Leadership Engagement Act as trusted advisor to senior technology and business leadership. Communicate architectural strategy and complex technical concepts to executive audiences. Influence enterprise technology decisions and investment priorities. Required Skills & Experience 12+ years of experience in enterprise integration, architecture, or application engineering roles. Proven experience operating at enterprise or principal architect level focused on Source to Pay technologies. Extensive experience designing integration solutions across complex enterprise landscapes. Strong background across integration technologies such as: SAP Integration Suite / Cloud Integration (CPI) Middleware platforms (MuleSoft, Dell Boomi, webMethods, Azure Integration Services, or similar) SAP BTP Deep understanding of: API-led architecture Event-driven architecture Microservices and cloud-native design Distributed systems architecture Strong application development and engineering leadership experience. Experience integrating enterprise platforms including SAP ECC, S/4HANA, Ariba, Oracle, and SaaS applications. Expertise in API technologies (REST, SOAP), messaging frameworks, and integration security (OAuth, SAML, JWT). Strong knowledge of B2B and EDI standards (ANSI X12, EDIFACT, cXML, IDoc). Demonstrated leadership across large transformation programmes. Excellent stakeholder engagement and executive communication skills. Preferred Qualifications Experience with SAP Ariba, Cloud Integration Gateway (CIG), and SAP BTP Experience defining enterprise architecture or technology strategies. Exposure to multi-cloud environments (Azure, AWS, GCP). Experience with DevSecOps, platform engineering, and automation frameworks. TOGAF, SAP, cloud, or integration platform certifications. Leadership & Personal Attributes Strategic thinker with strong enterprise vision. Influential leader capable of driving organisational change. Strong mentoring and capability-building mindset. Commercially aware with strong business alignment. Collaborative, pragmatic, and outcome-focused. Comfortable operating in complex global transformation environments.
A leading financial services firm in Greater London is hiring a Contract Cloud Security Consultant to support their Cyber Transformation Programme. The role involves ensuring security alignment with standards like NIST CSF 2.0, leading threat modelling and risk assessments, and promoting best security practices within a matrixed environment. Ideal candidates will have deep knowledge in DevSecOps, Azure IAM, and secure coding, including experience with Python. This position offers a hybrid work model.
22/05/2026
Full time
A leading financial services firm in Greater London is hiring a Contract Cloud Security Consultant to support their Cyber Transformation Programme. The role involves ensuring security alignment with standards like NIST CSF 2.0, leading threat modelling and risk assessments, and promoting best security practices within a matrixed environment. Ideal candidates will have deep knowledge in DevSecOps, Azure IAM, and secure coding, including experience with Python. This position offers a hybrid work model.
Cloud Security Consultant A Global Financial Services firm requires a Contract Cloud Security Consultant to join their Cyber Transformation Programme consulting across Al, DevSecOps & Microsoft Security Suite. Travel: Hydbrid Location: London IT Security Cloud Consultant working in Al engineering and project teams, ensuring all deliverables align with security standards (e.g. NIST CSF 2.0) and protect information assets (Confidentiality, Integrity, Availability). Lead threat modelling, risk assessments, and secure coding initiatives (especially in Python and Azure environments) across the chatbot lifecycle and broader IT systems, mitigating vulnerabilities and ensuring compliance with data protection laws (e.g., GDPR). Establish, implement, and maintain security policies, standards, and operational controls; support audits, incident response, vulnerability remediation, and ensure effective use of security tooling (eg., Sentinel, Defender for Cloud, SIEM). Work closely with Operational Risk, DevOps, and Information Security teams to embed best practices into Agile delivery pipelines, balance stakeholder priorities, and drive the security agenda within a matrixed environment. Serve as the security point of contact for projects, leveraging deep knowledge in DevSecOps, Azure IAM, PKI, secure SDLC, and adversarial Al threats, while promoting a culture of continuous improvement and security awareness.
20/05/2026
Full time
Cloud Security Consultant A Global Financial Services firm requires a Contract Cloud Security Consultant to join their Cyber Transformation Programme consulting across Al, DevSecOps & Microsoft Security Suite. Travel: Hydbrid Location: London IT Security Cloud Consultant working in Al engineering and project teams, ensuring all deliverables align with security standards (e.g. NIST CSF 2.0) and protect information assets (Confidentiality, Integrity, Availability). Lead threat modelling, risk assessments, and secure coding initiatives (especially in Python and Azure environments) across the chatbot lifecycle and broader IT systems, mitigating vulnerabilities and ensuring compliance with data protection laws (e.g., GDPR). Establish, implement, and maintain security policies, standards, and operational controls; support audits, incident response, vulnerability remediation, and ensure effective use of security tooling (eg., Sentinel, Defender for Cloud, SIEM). Work closely with Operational Risk, DevOps, and Information Security teams to embed best practices into Agile delivery pipelines, balance stakeholder priorities, and drive the security agenda within a matrixed environment. Serve as the security point of contact for projects, leveraging deep knowledge in DevSecOps, Azure IAM, PKI, secure SDLC, and adversarial Al threats, while promoting a culture of continuous improvement and security awareness.
Principal Security Engineer page is loaded Principal Security Engineerlocations: Bexhill: Leicestertime type: Full timeposted on: Posted Todayjob requisition id: We're a digital insurance provider with ambitious plans to become The Best and Biggest in the UK market. Over the past few years, we've made significant investments in our data and tech capabilities, particularly within our CIO function. Our CIO team is at the forefront of driving innovation and ensuring our technology infrastructure supports our ambitious goals. We've nurtured our 4Cs culture, fostering collaboration, creativity, and continuous improvement.We're proud of the journey we're on as a company and know that our continued success will rely on the contribution of our talented colleagues. The CIO team plays a crucial role in this journey, working on cutting-edge projects that enhance our digital presence and improve customer engagement.We provide insurance to nearly four million customers, but we know there's even bigger opportunity out there. The fact you're now reading this job advert means we've tempted you to find out more about - we really hope you like what you see, and you'll join us to share in the success of the exciting chapter that lies ahead.We understand some people may not apply for jobs unless they feel they tick every box. If you are excited about joining us and think you have some of what we are looking for, even if you're not 100% sure, we would love to hear from you. Our CIO team is always looking for passionate individuals who are eager to make a difference and contribute to our success. Job Details Promote a culture where we re-use more which allows us to optimise workflow efficiency and reduce duplication. Guide and coach teams on good security engineering practices and process improvements, helping to build capability and maturity across the organisation. Supports the team in delivering outcomes efficiently, by reducing manual execution. Ensure fast, reliable feedback loops are in place to enable fail-fast delivery and continuous improvement. Define and implement best practices and controls, ensuring adherence and enabling early detection of issues. Drive engagement and collaboration across Scrum Teams and the CIO community, leading the definition and adoption of best practices to enable faster, secure and more reliable delivery. Skills we would love you to have Extensive practical experience in IT Security working in an agile environment. Transformational leadership skills being able to influence decision making and implement new processes and procedures in support of the company's vision. Excellent mentoring skills to support direct reports in their ongoing development Proven experience in designing, implementing, and securing cloud environments, with a strong emphasis on Microsoft Azure services. In-depth knowledge of cloud security best practices, network security, identity and access management, encryption, and secure coding principles. Excellent problem-solving skills and the ability to analyse complex security issues and develop effective solutions. Strong communication and collaboration skills, with the ability to work effectively in cross-functional teams. Track record of successfully designing, building, and deploying scalable, secure, and highly available security infrastructures using Azure. Strong proficiency in leveraging data and advanced analytics to drive decision-making and continuously enhance security solutions. Tools & Technologies: Proficient knowledge of at least on agile methodology (eg Scrum, Kanban, SAFe)Familiar with backlog and test case management in a system of record such as Jira or Octane Expert knowledge using Cloud Technologies Strong understanding of regulatory compliance requirements (e.g. GDPR, ISO 27001, NIST) and experience implementing security controls to meet those requirements. Hands-on experience with Azure Kubernetes Service (AKS) and microservices architecture. Familiarity with DevSecOps methodologies and tools, enabling the seamless integration of security into the development process. Proficiency in Microsoft Defender security assessment tools, vulnerability scanning tools, and SIEM platforms. In-depth understanding of the Microsoft ecosystem, including hands-on experience with Firewalls, IDS/IPS, Load Balancers, Applications Gateways, Proxies, M365, EDR, KQL. Expertise in utilizing Azure DevOps to drive efficient and collaborative development processes, including the development of security solutions and updates in code. Unfortunately, we are unable to progress with candidates that require sponsorship at this time What we offer Join us and you'll find a different way of doing things. We call it the 4Cs. We focus on getting it right for our colleagues, customers, company, and community. As one of our colleagues, you'll be helping to drive our growth, so in return, we'll give you all the support, training and development you need. Not to mention plenty of recognition and rewards, and the scope to voice your ideas and put them into practice. Reward Salary - Attractive salary based on experience + car allowance (pay reviews also completed each year) Flexible Working - We champion a flexible and hybrid working approach so please speak to your recruiter to discuss in more detail, including days in the office and at home. Competitive Bonus Scheme - All colleagues are eligible for our annual 4Cs performance bonus, which is usually paid in March. The scheme is based on Hastings' performance against our business goals and your own personal performance. Physical Wellbeing - as a Band 4 colleague, Hastings pay for you to receive private medical Insurance (also known as PMI) This gives you flexibility and convenience to see a specialist or consultant and allows you to decide when and where you will be seen. Financial Wellbeing - As well as providing you with 4x your salary with our life assurance cover and income protection at no extra cost, pension contribution match up to 10%, we are proud to provide you with an AWARD WINNING package which includes - discounts and cashback at everyday retailers and on our own products, fee free independent mortgage advice, and free access to financial wellbeing support. Mental Wellbeing programme - At Hastings Direct we understand that mental health cannot not be scheduled, that's why we have a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24/7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs There's more! - 27 days annual leave + bank holidays, with the option to buy or sell one of your contracted weeks, access to our health care cash back plans, dental plans, discounted health assessments, Cycle to work and tech schemes, discounted and free onsite facilities, social events throughout the year and much more Our 4Cs principles are simple: we believe by creating the right culture for our colleagues and giving them the right tools to do their job, we'll deliver good outcomes for every customer, helping us to grow the company profitably and sustainably and allowing us to invest in the communities we serve.We deliver good outcomes for our customers every time by providing great products at the right price with our simple and straightforward service. We treat customers like we want to be treated - fairly, respectfully and with their best interests at heart.Hastings Group is an equal opportunities employer which means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion/belief, sexual orientation, gender reassignment or marital/family status. Please also
16/05/2026
Full time
Principal Security Engineer page is loaded Principal Security Engineerlocations: Bexhill: Leicestertime type: Full timeposted on: Posted Todayjob requisition id: We're a digital insurance provider with ambitious plans to become The Best and Biggest in the UK market. Over the past few years, we've made significant investments in our data and tech capabilities, particularly within our CIO function. Our CIO team is at the forefront of driving innovation and ensuring our technology infrastructure supports our ambitious goals. We've nurtured our 4Cs culture, fostering collaboration, creativity, and continuous improvement.We're proud of the journey we're on as a company and know that our continued success will rely on the contribution of our talented colleagues. The CIO team plays a crucial role in this journey, working on cutting-edge projects that enhance our digital presence and improve customer engagement.We provide insurance to nearly four million customers, but we know there's even bigger opportunity out there. The fact you're now reading this job advert means we've tempted you to find out more about - we really hope you like what you see, and you'll join us to share in the success of the exciting chapter that lies ahead.We understand some people may not apply for jobs unless they feel they tick every box. If you are excited about joining us and think you have some of what we are looking for, even if you're not 100% sure, we would love to hear from you. Our CIO team is always looking for passionate individuals who are eager to make a difference and contribute to our success. Job Details Promote a culture where we re-use more which allows us to optimise workflow efficiency and reduce duplication. Guide and coach teams on good security engineering practices and process improvements, helping to build capability and maturity across the organisation. Supports the team in delivering outcomes efficiently, by reducing manual execution. Ensure fast, reliable feedback loops are in place to enable fail-fast delivery and continuous improvement. Define and implement best practices and controls, ensuring adherence and enabling early detection of issues. Drive engagement and collaboration across Scrum Teams and the CIO community, leading the definition and adoption of best practices to enable faster, secure and more reliable delivery. Skills we would love you to have Extensive practical experience in IT Security working in an agile environment. Transformational leadership skills being able to influence decision making and implement new processes and procedures in support of the company's vision. Excellent mentoring skills to support direct reports in their ongoing development Proven experience in designing, implementing, and securing cloud environments, with a strong emphasis on Microsoft Azure services. In-depth knowledge of cloud security best practices, network security, identity and access management, encryption, and secure coding principles. Excellent problem-solving skills and the ability to analyse complex security issues and develop effective solutions. Strong communication and collaboration skills, with the ability to work effectively in cross-functional teams. Track record of successfully designing, building, and deploying scalable, secure, and highly available security infrastructures using Azure. Strong proficiency in leveraging data and advanced analytics to drive decision-making and continuously enhance security solutions. Tools & Technologies: Proficient knowledge of at least on agile methodology (eg Scrum, Kanban, SAFe)Familiar with backlog and test case management in a system of record such as Jira or Octane Expert knowledge using Cloud Technologies Strong understanding of regulatory compliance requirements (e.g. GDPR, ISO 27001, NIST) and experience implementing security controls to meet those requirements. Hands-on experience with Azure Kubernetes Service (AKS) and microservices architecture. Familiarity with DevSecOps methodologies and tools, enabling the seamless integration of security into the development process. Proficiency in Microsoft Defender security assessment tools, vulnerability scanning tools, and SIEM platforms. In-depth understanding of the Microsoft ecosystem, including hands-on experience with Firewalls, IDS/IPS, Load Balancers, Applications Gateways, Proxies, M365, EDR, KQL. Expertise in utilizing Azure DevOps to drive efficient and collaborative development processes, including the development of security solutions and updates in code. Unfortunately, we are unable to progress with candidates that require sponsorship at this time What we offer Join us and you'll find a different way of doing things. We call it the 4Cs. We focus on getting it right for our colleagues, customers, company, and community. As one of our colleagues, you'll be helping to drive our growth, so in return, we'll give you all the support, training and development you need. Not to mention plenty of recognition and rewards, and the scope to voice your ideas and put them into practice. Reward Salary - Attractive salary based on experience + car allowance (pay reviews also completed each year) Flexible Working - We champion a flexible and hybrid working approach so please speak to your recruiter to discuss in more detail, including days in the office and at home. Competitive Bonus Scheme - All colleagues are eligible for our annual 4Cs performance bonus, which is usually paid in March. The scheme is based on Hastings' performance against our business goals and your own personal performance. Physical Wellbeing - as a Band 4 colleague, Hastings pay for you to receive private medical Insurance (also known as PMI) This gives you flexibility and convenience to see a specialist or consultant and allows you to decide when and where you will be seen. Financial Wellbeing - As well as providing you with 4x your salary with our life assurance cover and income protection at no extra cost, pension contribution match up to 10%, we are proud to provide you with an AWARD WINNING package which includes - discounts and cashback at everyday retailers and on our own products, fee free independent mortgage advice, and free access to financial wellbeing support. Mental Wellbeing programme - At Hastings Direct we understand that mental health cannot not be scheduled, that's why we have a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24/7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs There's more! - 27 days annual leave + bank holidays, with the option to buy or sell one of your contracted weeks, access to our health care cash back plans, dental plans, discounted health assessments, Cycle to work and tech schemes, discounted and free onsite facilities, social events throughout the year and much more Our 4Cs principles are simple: we believe by creating the right culture for our colleagues and giving them the right tools to do their job, we'll deliver good outcomes for every customer, helping us to grow the company profitably and sustainably and allowing us to invest in the communities we serve.We deliver good outcomes for our customers every time by providing great products at the right price with our simple and straightforward service. We treat customers like we want to be treated - fairly, respectfully and with their best interests at heart.Hastings Group is an equal opportunities employer which means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion/belief, sexual orientation, gender reassignment or marital/family status. Please also
We believe in the power of ingenuity to build a positive human future. As strategies, technologies, and innovation collide, we create opportunity from complexity. Our teams of interdisciplinary experts combine innovative thinking and breakthrough technologies to progress further, faster. Our clients adapt and transform, and together we achieve enduring results. We are over 4,000 strategists, innovators, designers, consultants, digital experts, scientists, engineers, and technologists. And we have deep expertise in consumer and manufacturing, defence and security, energy and utilities, financial services, government and public services, health and life sciences, and transport. Our teams operate globally from offices across the UK, Ireland, US, Nordics, and Netherlands. PA. Bringing Ingenuity to Life. We believe in the power of ingenuity to build a positive human future. We challenge where it matters and own the outcome. We combine strategic thinking, customer centric service design, and agile engineering practices to accelerate innovation in a tech driven world. Join our Digital & Data team working alongside product, design and a wide range of other experts and cross disciplinary teams to bring ideas to life through innovative software solutions. Grow a flexible and unique career within a trust based, inclusive environment that values excellence, innovation, and curiosity. You have the option to progress with us on a technical career track. No need to go onto the Partner career track if this doesn't align with what you want to do. Hybrid working - our approach is to be in the office or on client site a minimum of 2 days per week. Work on a broad variety of projects and tech stacks for clients across seven sectors - no project is ever the same Join other experts within our supportive and collaborative tech community through knowledge sharing and peer level support, coaching and mentoring Deepen your expertise through our culture of learning and growth - you'll have budget to take courses (technical and non technical training), plus gain certifications What you can expect Work to agile best practices and cross functionally with multiple teams and stakeholders. You'll be using your technical skills to problem solve with our clients, as well as working on internal projects Live in person whiteboarding sessions to problem solve as a team, alongside asynchronous communication on Teams Hybrid working with the team on client site or in our office a minimum of two days per week. However, the actual time you spend and where you spend it will vary by role or assignment, including up to 5 days per week on a client site. We're hands on with emerging technologies - exploring what works, what scales, and what's next: Experimenting with Generative AI frameworks and tools such as LangChain, LlamaIndex, Hugging Face, and APIs from OpenAI and Anthropic. Building retrieval augmented generation (RAG) prototypes with vector stores and knowledge graphs. Developing and testing agentic architectures through our own Genie Platform - enabling AI agents that reason, retrieve, and act across systems. Exploring LLMOps, evaluation tools, and model observability platforms like TruLens and LangSmith. Deploying solutions on modern cloud and DevOps environments (AWS, Azure, GCP) - but always choosing the right tools for the problem at hand. Constantly learning, testing, and sharing findings across our internal AI community. Qualifications Essential requirements Even if you don't meet every requirement below, feel free to still apply as we are often hiring for similar roles which your background might be better suited to. Software engineers with a passion for AI - or data scientists who've embraced engineering. People who experiment, prototype, and explore emerging AI tools in their own time. Strong foundation in a language suited to AI system development and data workflows. Experience integrating models with APIs, data sources, or production systems. Curiosity about LLMs, RAG pipelines (Graph & Vector based), and agent frameworks. Understanding of cloud native (AWS / GCP / Azure) and DevOps / DevSecOps practices. A collaborative mindset and willingness to share, learn, and teach. Understanding of prompt and context engineering and model evaluation. Solid grasp of distributed systems, microservices, and RESTful APIs. An understanding of LLMOps tools for managing GenAI workflows. Additional information Please note that the interview stages may be subject to change based on the specific requirements of the role. Quick call with one of our Tech Recruiters - to discuss your application, the role and PA Round 1: Either a competency or technical interview (60 mins) Round 2: Either a competency or technical interview, whichever you didn't do at first round (60 mins) Final round : Meeting with a PA leader - a mini case study and discussion around your client centricity (60 mins) Benefits Life At PA encompasses our people's experience at PA. It's about how we enrich people's working lives by giving them access to unique people and growth opportunities and purpose led meaningful work. Our purpose guides how we work with our clients and our teams, and support our communities, to deliver insight and impact, solving the world's most complex challenges. We're focused on building a workplace that values human difference and diverse mindsets, and a culture of inclusion and equality that unlocks the potential in our people so everyone can be their best self. We are dedicated to supporting the physical, emotional, social and financial well being of our people. Check out some of our extensive benefits: Health and lifestyle perks accompanying private healthcare for you and your family 25 days annual leave (plus a bonus half day on Christmas Eve) with the opportunity to buy 5 additional days Generous company pension scheme Opportunity to get involved with community and charity based initiatives Annual performance based bonus PA share ownership Tax efficient benefits (cycle to work, give as you earn) We're committed to advancing equality. We recruit, retain, reward and develop our people based solely on their abilities and contributions and without reference to their age, background, disability, genetic information, parental or family status, religion or belief, race, ethnicity, nationality, sex, sexual orientation, gender identity (or expression), political belief, veteran status, any other range of human difference brought about by identity and experience. We welcome applications from underrepresented groups. Adjustments or accommodations - Should you need any adjustments or accommodations to the recruitment process, at either application or interview, please contact us on
15/05/2026
Full time
We believe in the power of ingenuity to build a positive human future. As strategies, technologies, and innovation collide, we create opportunity from complexity. Our teams of interdisciplinary experts combine innovative thinking and breakthrough technologies to progress further, faster. Our clients adapt and transform, and together we achieve enduring results. We are over 4,000 strategists, innovators, designers, consultants, digital experts, scientists, engineers, and technologists. And we have deep expertise in consumer and manufacturing, defence and security, energy and utilities, financial services, government and public services, health and life sciences, and transport. Our teams operate globally from offices across the UK, Ireland, US, Nordics, and Netherlands. PA. Bringing Ingenuity to Life. We believe in the power of ingenuity to build a positive human future. We challenge where it matters and own the outcome. We combine strategic thinking, customer centric service design, and agile engineering practices to accelerate innovation in a tech driven world. Join our Digital & Data team working alongside product, design and a wide range of other experts and cross disciplinary teams to bring ideas to life through innovative software solutions. Grow a flexible and unique career within a trust based, inclusive environment that values excellence, innovation, and curiosity. You have the option to progress with us on a technical career track. No need to go onto the Partner career track if this doesn't align with what you want to do. Hybrid working - our approach is to be in the office or on client site a minimum of 2 days per week. Work on a broad variety of projects and tech stacks for clients across seven sectors - no project is ever the same Join other experts within our supportive and collaborative tech community through knowledge sharing and peer level support, coaching and mentoring Deepen your expertise through our culture of learning and growth - you'll have budget to take courses (technical and non technical training), plus gain certifications What you can expect Work to agile best practices and cross functionally with multiple teams and stakeholders. You'll be using your technical skills to problem solve with our clients, as well as working on internal projects Live in person whiteboarding sessions to problem solve as a team, alongside asynchronous communication on Teams Hybrid working with the team on client site or in our office a minimum of two days per week. However, the actual time you spend and where you spend it will vary by role or assignment, including up to 5 days per week on a client site. We're hands on with emerging technologies - exploring what works, what scales, and what's next: Experimenting with Generative AI frameworks and tools such as LangChain, LlamaIndex, Hugging Face, and APIs from OpenAI and Anthropic. Building retrieval augmented generation (RAG) prototypes with vector stores and knowledge graphs. Developing and testing agentic architectures through our own Genie Platform - enabling AI agents that reason, retrieve, and act across systems. Exploring LLMOps, evaluation tools, and model observability platforms like TruLens and LangSmith. Deploying solutions on modern cloud and DevOps environments (AWS, Azure, GCP) - but always choosing the right tools for the problem at hand. Constantly learning, testing, and sharing findings across our internal AI community. Qualifications Essential requirements Even if you don't meet every requirement below, feel free to still apply as we are often hiring for similar roles which your background might be better suited to. Software engineers with a passion for AI - or data scientists who've embraced engineering. People who experiment, prototype, and explore emerging AI tools in their own time. Strong foundation in a language suited to AI system development and data workflows. Experience integrating models with APIs, data sources, or production systems. Curiosity about LLMs, RAG pipelines (Graph & Vector based), and agent frameworks. Understanding of cloud native (AWS / GCP / Azure) and DevOps / DevSecOps practices. A collaborative mindset and willingness to share, learn, and teach. Understanding of prompt and context engineering and model evaluation. Solid grasp of distributed systems, microservices, and RESTful APIs. An understanding of LLMOps tools for managing GenAI workflows. Additional information Please note that the interview stages may be subject to change based on the specific requirements of the role. Quick call with one of our Tech Recruiters - to discuss your application, the role and PA Round 1: Either a competency or technical interview (60 mins) Round 2: Either a competency or technical interview, whichever you didn't do at first round (60 mins) Final round : Meeting with a PA leader - a mini case study and discussion around your client centricity (60 mins) Benefits Life At PA encompasses our people's experience at PA. It's about how we enrich people's working lives by giving them access to unique people and growth opportunities and purpose led meaningful work. Our purpose guides how we work with our clients and our teams, and support our communities, to deliver insight and impact, solving the world's most complex challenges. We're focused on building a workplace that values human difference and diverse mindsets, and a culture of inclusion and equality that unlocks the potential in our people so everyone can be their best self. We are dedicated to supporting the physical, emotional, social and financial well being of our people. Check out some of our extensive benefits: Health and lifestyle perks accompanying private healthcare for you and your family 25 days annual leave (plus a bonus half day on Christmas Eve) with the opportunity to buy 5 additional days Generous company pension scheme Opportunity to get involved with community and charity based initiatives Annual performance based bonus PA share ownership Tax efficient benefits (cycle to work, give as you earn) We're committed to advancing equality. We recruit, retain, reward and develop our people based solely on their abilities and contributions and without reference to their age, background, disability, genetic information, parental or family status, religion or belief, race, ethnicity, nationality, sex, sexual orientation, gender identity (or expression), political belief, veteran status, any other range of human difference brought about by identity and experience. We welcome applications from underrepresented groups. Adjustments or accommodations - Should you need any adjustments or accommodations to the recruitment process, at either application or interview, please contact us on
Azure Architect / Senior Cloud Engineer (Infrastructure) - SC Cleared Location: Fully Remote (occasional UK site visits) Rate: Up to £750 per day Contract: Long-term Contract IR35 Status: Inside IR35 Security Clearance: Active SC Clearance required The Role We are looking for an experienced Azure Architect / Senior Cloud Engineer with a strong infrastructure background to support a large-scale secure cloud transformation programme within a highly regulated environment. This role will suit a hands on senior consultant who can operate across both architecture and engineering disciplines, delivering secure, scalable and resilient Azure infrastructure solutions within complex enterprise environments. Key Responsibilities Design and implement Azure cloud infrastructure solutions Deliver secure and scalable cloud architectures Support cloud migration and transformation initiatives Build and maintain Azure landing zones and governance frameworks Work across hybrid infrastructure environments Produce high and low level technical designs Implement Infrastructure as Code and automation solutions Collaborate with security, networking and platform teams Ensure compliance with security and operational standards Provide technical leadership across cloud infrastructure delivery Required Skills & Experience Strong Azure architecture and cloud engineering experience Extensive infrastructure engineering background Experience working within secure or highly regulated environments Strong technical knowledge of: Azure IaaS and core platform services Azure networking and connectivity Identity and access management Hybrid cloud infrastructure Enterprise infrastructure technologies Strong Infrastructure as Code experience (Terraform, Bicep or ARM) Experience with CI/CD pipelines and automation tooling Strong understanding of cloud security best practices Ability to work autonomously within complex technical environments Excellent communication and stakeholder engagement skills Desirable Skills Experience within defence, government or secure delivery environments Kubernetes / AKS experience Exposure to DevSecOps practices Experience supporting large scale enterprise cloud programmes Mandatory Requirements Active SC Clearance Sole UK National status Eligibility to work within highly secure UK environments Additional Information Fully remote working Occasional UK site visits required Long-term engagement Immediate availability preferred
11/05/2026
Full time
Azure Architect / Senior Cloud Engineer (Infrastructure) - SC Cleared Location: Fully Remote (occasional UK site visits) Rate: Up to £750 per day Contract: Long-term Contract IR35 Status: Inside IR35 Security Clearance: Active SC Clearance required The Role We are looking for an experienced Azure Architect / Senior Cloud Engineer with a strong infrastructure background to support a large-scale secure cloud transformation programme within a highly regulated environment. This role will suit a hands on senior consultant who can operate across both architecture and engineering disciplines, delivering secure, scalable and resilient Azure infrastructure solutions within complex enterprise environments. Key Responsibilities Design and implement Azure cloud infrastructure solutions Deliver secure and scalable cloud architectures Support cloud migration and transformation initiatives Build and maintain Azure landing zones and governance frameworks Work across hybrid infrastructure environments Produce high and low level technical designs Implement Infrastructure as Code and automation solutions Collaborate with security, networking and platform teams Ensure compliance with security and operational standards Provide technical leadership across cloud infrastructure delivery Required Skills & Experience Strong Azure architecture and cloud engineering experience Extensive infrastructure engineering background Experience working within secure or highly regulated environments Strong technical knowledge of: Azure IaaS and core platform services Azure networking and connectivity Identity and access management Hybrid cloud infrastructure Enterprise infrastructure technologies Strong Infrastructure as Code experience (Terraform, Bicep or ARM) Experience with CI/CD pipelines and automation tooling Strong understanding of cloud security best practices Ability to work autonomously within complex technical environments Excellent communication and stakeholder engagement skills Desirable Skills Experience within defence, government or secure delivery environments Kubernetes / AKS experience Exposure to DevSecOps practices Experience supporting large scale enterprise cloud programmes Mandatory Requirements Active SC Clearance Sole UK National status Eligibility to work within highly secure UK environments Additional Information Fully remote working Occasional UK site visits required Long-term engagement Immediate availability preferred
Daintta are a rapidly growing, values-driven consultancy delivering mission-critical data, technology, and engineering solutions across the UK public sector. We partner with clients in Defence, National Security, Law Enforcement, and wider Government to strengthen the UK's resilience and operational advantage through innovative, data-driven insights. We are seeking a Software Engineer with proven experience in the Public Safety sector to design and deliver secure, scalable software systems supporting our clients' most important missions. You'll be joining a collaborative, purpose-led team committed to transparency, fairness, and daring innovation. As a Software Engineer (Public Safety), you will work alongside stakeholders, programme leads, and multi-disciplinary teams to design, develop, and maintain software systems that directly support public safety capabilities. You will apply your software engineering expertise within classified or restricted environments, ensuring security, reliability, and compliance with organisational standards and industry best practice. Key Responsibilities Work closely with clients to understand mission requirements and translate them into robust software solutions. Design, develop, test, and deploy high-quality, secure software using approved toolchains and environments. Contribute to systems that enhance situational awareness, command and control, cyber defence, and decision-support capabilities. Develop clean, well-documented, and maintainable code in accordance with relevant coding standards and security requirements. Participate in code reviews, peer testing, and design assurance activities to maintain delivery quality in secure environments. Collaborate with systems engineers, data scientists, and solution architects to deliver integrated solutions across restricted environments. Apply DevSecOps principles, CI/CD pipelines, and containerisation technologies (e.g. Docker, Kubernetes) to projects where appropriate. Keep up to date with emerging public safety technology trends, secure software frameworks, and government digital standards. Contribute to bid and proposal work, technical presentations, and client demonstrations. Support Daintta's growth in the public safety sector through mentoring, technical input, and alignment with company strategy. Helping to support & grow Daintta by actively inputting into the company strategy and helping to shape our future. Representing us and our core values: Transparent, Fair, and Daring. Skills/Knowledge The role requires the following key skills / knowledge, non-exhaustively: Proven experience delivering software engineering projects within the UK Public Safety ecosystem. Strong knowledge of secure software development practices and handling sensitive information appropriately. Proficiency in one or more programming languages: Python, Java, C++, Rust, or Go. Familiarity with relevant software development frameworks and toolsets, such as Jenkins, GitLab CI, pytest, and OpenAPI. Experience working within Unix/Linux environments and with database systems (SQL or NoSQL). Familiarity with secure by design principles, and working in cross-domain environments. Hands-on experience with Agile or Scrum delivery methods, ideally in secure or hybrid cloud environments. Strong analytical, problem-solving, and communication skills; able to convey complex technical information clearly to non-technical stakeholders. Knowledge of cloud platforms (AWS, Azure, etc.) and DevOps practices (CI/CD, infrastructure-as-code). Commitment to producing high-quality, mission-ready software underpinned by robust testing and assurance. What's in it for you? In addition to being rewarded fairly for your contribution to the business, you get to work in a dynamic organisation that is agile and responsive. A business that is growing fast and where you get to drive and shape the future. A place where you are respected by everyone and your voice is important. Somewhere where you can be innovative and creative. A place where you have the opportunity to learn about all aspects of business from marketing to sales, to delivery and business operations. Benefits We believe in supporting our people both professionally and personally. Here's what you can expect when you join us: Time Off: 25 days annual leave, plus bank holidays Up to 3 days annual volunteering leave - give back to the community Competitive maternity, paternity, shared parental leave & compassionate leave Health & Wellness: Comprehensive Private Health Insurance Employee Assistance Programme - 24/7 support services £2,000 Flex Cash Allowance, paid pro-rata over the year Financial Benefits: 5% pension contribution Discretionary company awards and bonuses, based on performance and company targets Access to Electric Vehicle (EV) Salary Sacrifice scheme Professional Development Up to £1,000 annual training budget (access to additional training and development budget via business case) Up to 5 days annual training leave 1 professional membership paid annually Up to £200 of additional IT budget for new joiners Location? Hybrid where possible, but likely to be mostly on client site with infrequent days working from one of the Daintta offices (London or Cheltenham). Security information Due to the nature of this position, you must be willing and eligible to achieve a minimum of SC clearance, and it is desirable to attain DV clearance. Strong preference is to hold an existing DV clearance. To qualify, you must be a British Citizen and have resided in the UK for the last 5 years. For more information about clearance eligibility, please see
10/05/2026
Full time
Daintta are a rapidly growing, values-driven consultancy delivering mission-critical data, technology, and engineering solutions across the UK public sector. We partner with clients in Defence, National Security, Law Enforcement, and wider Government to strengthen the UK's resilience and operational advantage through innovative, data-driven insights. We are seeking a Software Engineer with proven experience in the Public Safety sector to design and deliver secure, scalable software systems supporting our clients' most important missions. You'll be joining a collaborative, purpose-led team committed to transparency, fairness, and daring innovation. As a Software Engineer (Public Safety), you will work alongside stakeholders, programme leads, and multi-disciplinary teams to design, develop, and maintain software systems that directly support public safety capabilities. You will apply your software engineering expertise within classified or restricted environments, ensuring security, reliability, and compliance with organisational standards and industry best practice. Key Responsibilities Work closely with clients to understand mission requirements and translate them into robust software solutions. Design, develop, test, and deploy high-quality, secure software using approved toolchains and environments. Contribute to systems that enhance situational awareness, command and control, cyber defence, and decision-support capabilities. Develop clean, well-documented, and maintainable code in accordance with relevant coding standards and security requirements. Participate in code reviews, peer testing, and design assurance activities to maintain delivery quality in secure environments. Collaborate with systems engineers, data scientists, and solution architects to deliver integrated solutions across restricted environments. Apply DevSecOps principles, CI/CD pipelines, and containerisation technologies (e.g. Docker, Kubernetes) to projects where appropriate. Keep up to date with emerging public safety technology trends, secure software frameworks, and government digital standards. Contribute to bid and proposal work, technical presentations, and client demonstrations. Support Daintta's growth in the public safety sector through mentoring, technical input, and alignment with company strategy. Helping to support & grow Daintta by actively inputting into the company strategy and helping to shape our future. Representing us and our core values: Transparent, Fair, and Daring. Skills/Knowledge The role requires the following key skills / knowledge, non-exhaustively: Proven experience delivering software engineering projects within the UK Public Safety ecosystem. Strong knowledge of secure software development practices and handling sensitive information appropriately. Proficiency in one or more programming languages: Python, Java, C++, Rust, or Go. Familiarity with relevant software development frameworks and toolsets, such as Jenkins, GitLab CI, pytest, and OpenAPI. Experience working within Unix/Linux environments and with database systems (SQL or NoSQL). Familiarity with secure by design principles, and working in cross-domain environments. Hands-on experience with Agile or Scrum delivery methods, ideally in secure or hybrid cloud environments. Strong analytical, problem-solving, and communication skills; able to convey complex technical information clearly to non-technical stakeholders. Knowledge of cloud platforms (AWS, Azure, etc.) and DevOps practices (CI/CD, infrastructure-as-code). Commitment to producing high-quality, mission-ready software underpinned by robust testing and assurance. What's in it for you? In addition to being rewarded fairly for your contribution to the business, you get to work in a dynamic organisation that is agile and responsive. A business that is growing fast and where you get to drive and shape the future. A place where you are respected by everyone and your voice is important. Somewhere where you can be innovative and creative. A place where you have the opportunity to learn about all aspects of business from marketing to sales, to delivery and business operations. Benefits We believe in supporting our people both professionally and personally. Here's what you can expect when you join us: Time Off: 25 days annual leave, plus bank holidays Up to 3 days annual volunteering leave - give back to the community Competitive maternity, paternity, shared parental leave & compassionate leave Health & Wellness: Comprehensive Private Health Insurance Employee Assistance Programme - 24/7 support services £2,000 Flex Cash Allowance, paid pro-rata over the year Financial Benefits: 5% pension contribution Discretionary company awards and bonuses, based on performance and company targets Access to Electric Vehicle (EV) Salary Sacrifice scheme Professional Development Up to £1,000 annual training budget (access to additional training and development budget via business case) Up to 5 days annual training leave 1 professional membership paid annually Up to £200 of additional IT budget for new joiners Location? Hybrid where possible, but likely to be mostly on client site with infrequent days working from one of the Daintta offices (London or Cheltenham). Security information Due to the nature of this position, you must be willing and eligible to achieve a minimum of SC clearance, and it is desirable to attain DV clearance. Strong preference is to hold an existing DV clearance. To qualify, you must be a British Citizen and have resided in the UK for the last 5 years. For more information about clearance eligibility, please see
Location: Newbury + HybridSalary: Excellent basic salary plus bonus and Vodafone benefitsWorking Hours: Full time 37.5 hours per week - Monday to FridayHybridWe believe that through collaboration and connection with our colleagues we can achieve great things. Our hybrid working approach allows our people to work both in the office and at home, providing the flexibility and resources you need to succeed in your role. We don't require you to be in on specific days; instead, we ask people to come into the office 2-3 days each week, for at least 8 days per month. You should work with your line manager to understand what their expectations are for you, your specific role and your team.Who We AreWe're here to build a network the UK can count on - one that connects people, places and potential. Because no matter where you live, what your background is, or how you get online - we think everyone deserves the same chance to stay connected, and with VodafoneThree, that future's being built - today.We're creating more than the UK's best network. We're helping close the digital divide, empower communities and drive meaningful progress.We believe that everyone should feel they belong. Whoever you are and whatever your story, there's space for you here. We're building a workplace where different perspectives are welcomed, voices are heard, and everyone feels safe to show up as themselves.You'll join a team that genuinely cares - about each other, about our customers, and about the future we're building. From day one, you'll be welcomed, valued and encouraged to bring your whole self to work.Why VodafoneThreeJoin us and you'll be at the heart of change. That means building responsibly, investing sustainably and creating opportunities that last.We're not just expanding connectivity; we're reimagining what a connected nation looks like. With £11bn invested in 5G and digital infrastructure, your work will directly power businesses, services, and communities across the country.You'll work on real challenges, with real impact, across every corner of the country. Wherever you join us, whatever your role, you'll be helping to build a future that works better for everyone.We move at pace, because what we're building matters - and we're learning as we go. We're proud of the progress we've made, but we're just getting started.What you'll doAs a Security Architect within Secure by Design, you will be accountable for embedding security into IT and Digital systems by design, ensuring that security is considered early, applied proportionately, and assured consistently across programmes and business as usual change.You will provide end to end security architecture leadership across VodafoneThree's IT & Digital estate, partnering with delivery teams, architects, and senior stakeholders to ensure that solutions are secure, compliant, resilient, and aligned to regulatory and business obligations.This role plays a critical part in protecting VodafoneThree from persistent cyber threats while enabling safe digital transformation at pace.As a Security Architect in Secure by Design, you will define, document, and assure end to end security architectures that protect the confidentiality, integrity, and availability of VodafoneThree's IT & Digital systems.You will work closely with:UK IT & Digital, Networks and Data & Analytics teamsUK & Group architecture functionsSecure by Design Managers, Consultants, and Cyber Security ChampionsYou will influence senior technical stakeholders to ensure UK security requirements are understood, accepted, and embedded, supporting compliance with TSA, data protection, and other regulatory frameworks.Act as a member of the Secure by Design Security Architecture team, representing IT & Digital domainsOwn and deliver end to end security architecture for assigned initiativesDefine and embed technical and non-technical security controls into solution designsReview and assess solution architectures against VodafoneThree security policies, standards, and patternsApprove compliant designs and escalate deviations and exceptions in line with SbD governanceProvide security input during RFx, supplier selection, contracting, and early design phasesEmbed Secure by Design principles into Agile, DevSecOps, CI/CD and product centric delivery modelsIdentify, assess, and manage cyber security risks-ensuring risks are recorded, owned, and mitigatedSpecify and scope penetration testing and security assurance activities for complex solutionsEnsure vulnerabilities and findings are tracked and remediated prior to go liveEngage business and technology teams to understand roadmaps and future plans, ensuring timely security engagementInfluence internal teams, suppliers, and partners to adopt secure design practicesProvide technical leadership, mentoring, and design guidance to SbD Managers, Consultants, and Cyber Security ChampionsLead or support regulatory, compliance, and audit activities relevant to IT & Digital systemsWho you areExperience in cyber security roles, with strong architecture focusProven experience delivering complex, cross domain IT & Digital security architecturesStrong understanding of security risks, threat modelling, and mitigating controlsHands on experience securing public cloud platforms (AWS, Azure, GCP)Deep knowledge of containerised, virtualised and hybrid infrastructureStrong knowledge of security and compliance frameworks (ISO 27001, NIST, COBIT, SOC2, ITIL)Understanding of regulatory and data protection requirements (PII, PCI DSS, privacy legislation)Ability to influence senior technical and non-technical stakeholdersExcellent documentation, communication, and decision-making skillsSABSA and/or TOGAF architecture qualificationsCISSP, CCSP/CCSK, and cloud provider certificationsWorried that you don't meet all the desired criteria exactly?We know that everyone is unique, with multiple aspects to their identity and different experiences behind them. We are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. If you're excited about this role but your experience doesn't align exactly with every part of the job description, we encourage you to apply as you may be the right candidate for this role or another role, and our recruitment team can help you see how your skills fit in.What we offerWe care about our people's success by offering great pay, bonuses, up to 28 days off plus bank holidays, and paid time for charity work. You can personalise our benefits for you and your family, like discounts, vouchers, a pension plan and loads more. We help with your career through our amazing learning tools and top-notch parental leave policies.Need to KnowWe are regulated by the Financial Conduct Authority and all offers of employment for this role are subject to background checks, including criminal (DBS) and financial checks to meet the regulators standards.If you require any reasonable adjustments or have an accessibility request as part of your recruitment journey, for example, extended time or breaks in between online assessments, a sign language interpreter, or assistive technology, please refer to the Accessibility section of our Careers website () for guidance.We use AI in different parts of our business to boost innovation, improve efficiency, and create new opportunities. We know many candidates use AI to fine-tune their CVs or prepare for interviews, but what we really care about is your unique experiences and achievements.During the interview, we want you to rely on your own knowledge and skills to show us who you really are-your personality, creativity, and abilities. Above all, we're looking for authenticity and can't wait to get to know the real you.
09/05/2026
Full time
Location: Newbury + HybridSalary: Excellent basic salary plus bonus and Vodafone benefitsWorking Hours: Full time 37.5 hours per week - Monday to FridayHybridWe believe that through collaboration and connection with our colleagues we can achieve great things. Our hybrid working approach allows our people to work both in the office and at home, providing the flexibility and resources you need to succeed in your role. We don't require you to be in on specific days; instead, we ask people to come into the office 2-3 days each week, for at least 8 days per month. You should work with your line manager to understand what their expectations are for you, your specific role and your team.Who We AreWe're here to build a network the UK can count on - one that connects people, places and potential. Because no matter where you live, what your background is, or how you get online - we think everyone deserves the same chance to stay connected, and with VodafoneThree, that future's being built - today.We're creating more than the UK's best network. We're helping close the digital divide, empower communities and drive meaningful progress.We believe that everyone should feel they belong. Whoever you are and whatever your story, there's space for you here. We're building a workplace where different perspectives are welcomed, voices are heard, and everyone feels safe to show up as themselves.You'll join a team that genuinely cares - about each other, about our customers, and about the future we're building. From day one, you'll be welcomed, valued and encouraged to bring your whole self to work.Why VodafoneThreeJoin us and you'll be at the heart of change. That means building responsibly, investing sustainably and creating opportunities that last.We're not just expanding connectivity; we're reimagining what a connected nation looks like. With £11bn invested in 5G and digital infrastructure, your work will directly power businesses, services, and communities across the country.You'll work on real challenges, with real impact, across every corner of the country. Wherever you join us, whatever your role, you'll be helping to build a future that works better for everyone.We move at pace, because what we're building matters - and we're learning as we go. We're proud of the progress we've made, but we're just getting started.What you'll doAs a Security Architect within Secure by Design, you will be accountable for embedding security into IT and Digital systems by design, ensuring that security is considered early, applied proportionately, and assured consistently across programmes and business as usual change.You will provide end to end security architecture leadership across VodafoneThree's IT & Digital estate, partnering with delivery teams, architects, and senior stakeholders to ensure that solutions are secure, compliant, resilient, and aligned to regulatory and business obligations.This role plays a critical part in protecting VodafoneThree from persistent cyber threats while enabling safe digital transformation at pace.As a Security Architect in Secure by Design, you will define, document, and assure end to end security architectures that protect the confidentiality, integrity, and availability of VodafoneThree's IT & Digital systems.You will work closely with:UK IT & Digital, Networks and Data & Analytics teamsUK & Group architecture functionsSecure by Design Managers, Consultants, and Cyber Security ChampionsYou will influence senior technical stakeholders to ensure UK security requirements are understood, accepted, and embedded, supporting compliance with TSA, data protection, and other regulatory frameworks.Act as a member of the Secure by Design Security Architecture team, representing IT & Digital domainsOwn and deliver end to end security architecture for assigned initiativesDefine and embed technical and non-technical security controls into solution designsReview and assess solution architectures against VodafoneThree security policies, standards, and patternsApprove compliant designs and escalate deviations and exceptions in line with SbD governanceProvide security input during RFx, supplier selection, contracting, and early design phasesEmbed Secure by Design principles into Agile, DevSecOps, CI/CD and product centric delivery modelsIdentify, assess, and manage cyber security risks-ensuring risks are recorded, owned, and mitigatedSpecify and scope penetration testing and security assurance activities for complex solutionsEnsure vulnerabilities and findings are tracked and remediated prior to go liveEngage business and technology teams to understand roadmaps and future plans, ensuring timely security engagementInfluence internal teams, suppliers, and partners to adopt secure design practicesProvide technical leadership, mentoring, and design guidance to SbD Managers, Consultants, and Cyber Security ChampionsLead or support regulatory, compliance, and audit activities relevant to IT & Digital systemsWho you areExperience in cyber security roles, with strong architecture focusProven experience delivering complex, cross domain IT & Digital security architecturesStrong understanding of security risks, threat modelling, and mitigating controlsHands on experience securing public cloud platforms (AWS, Azure, GCP)Deep knowledge of containerised, virtualised and hybrid infrastructureStrong knowledge of security and compliance frameworks (ISO 27001, NIST, COBIT, SOC2, ITIL)Understanding of regulatory and data protection requirements (PII, PCI DSS, privacy legislation)Ability to influence senior technical and non-technical stakeholdersExcellent documentation, communication, and decision-making skillsSABSA and/or TOGAF architecture qualificationsCISSP, CCSP/CCSK, and cloud provider certificationsWorried that you don't meet all the desired criteria exactly?We know that everyone is unique, with multiple aspects to their identity and different experiences behind them. We are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. If you're excited about this role but your experience doesn't align exactly with every part of the job description, we encourage you to apply as you may be the right candidate for this role or another role, and our recruitment team can help you see how your skills fit in.What we offerWe care about our people's success by offering great pay, bonuses, up to 28 days off plus bank holidays, and paid time for charity work. You can personalise our benefits for you and your family, like discounts, vouchers, a pension plan and loads more. We help with your career through our amazing learning tools and top-notch parental leave policies.Need to KnowWe are regulated by the Financial Conduct Authority and all offers of employment for this role are subject to background checks, including criminal (DBS) and financial checks to meet the regulators standards.If you require any reasonable adjustments or have an accessibility request as part of your recruitment journey, for example, extended time or breaks in between online assessments, a sign language interpreter, or assistive technology, please refer to the Accessibility section of our Careers website () for guidance.We use AI in different parts of our business to boost innovation, improve efficiency, and create new opportunities. We know many candidates use AI to fine-tune their CVs or prepare for interviews, but what we really care about is your unique experiences and achievements.During the interview, we want you to rely on your own knowledge and skills to show us who you really are-your personality, creativity, and abilities. Above all, we're looking for authenticity and can't wait to get to know the real you.
CBSbutler Holdings Limited trading as CBSbutler
Reading, Oxfordshire
Azure Architect / Senior Cloud Engineer (Infrastructure) - SC Cleared Location: Fully Remote (occasional UK site visits) Rate: Up to 750 per day Contract: Long-term Contract IR35 Status: Inside IR35 Security Clearance: Active SC Clearance required The Role We are looking for an experienced Azure Architect / Senior Cloud Engineer with a strong infrastructure background to support a large-scale secure cloud transformation programme within a highly regulated environment. This role will suit a hands-on senior consultant who can operate across both architecture and engineering disciplines, delivering secure, scalable and resilient Azure infrastructure solutions within complex enterprise environments. Key Responsibilities Design and implement Azure cloud infrastructure solutions Deliver secure and scalable cloud architectures Support cloud migration and transformation initiatives Build and maintain Azure landing zones and governance frameworks Work across hybrid infrastructure environments Produce high and low-level technical designs Implement Infrastructure as Code and automation solutions Collaborate with security, networking and platform teams Ensure compliance with security and operational standards Provide technical leadership across cloud infrastructure delivery Required Skills & Experience Strong Azure architecture and cloud engineering experience Extensive infrastructure engineering background Experience working within secure or highly regulated environments Strong technical knowledge of: Azure IaaS and core platform services Azure networking and connectivity Identity and access management Hybrid cloud infrastructure Enterprise infrastructure technologies Strong Infrastructure as Code experience (Terraform, Bicep or ARM) Experience with CI/CD pipelines and automation tooling Strong understanding of cloud security best practices Ability to work autonomously within complex technical environments Excellent communication and stakeholder engagement skills Desirable Skills Experience within defence, government or secure delivery environments Kubernetes / AKS experience Exposure to DevSecOps practices Experience supporting large-scale enterprise cloud programmes Mandatory Requirements Active SC Clearance Sole UK National status Eligibility to work within highly secure UK environments Additional Information Fully remote working Occasional UK site visits required Long-term engagement Immediate availability preferred
08/05/2026
Contractor
Azure Architect / Senior Cloud Engineer (Infrastructure) - SC Cleared Location: Fully Remote (occasional UK site visits) Rate: Up to 750 per day Contract: Long-term Contract IR35 Status: Inside IR35 Security Clearance: Active SC Clearance required The Role We are looking for an experienced Azure Architect / Senior Cloud Engineer with a strong infrastructure background to support a large-scale secure cloud transformation programme within a highly regulated environment. This role will suit a hands-on senior consultant who can operate across both architecture and engineering disciplines, delivering secure, scalable and resilient Azure infrastructure solutions within complex enterprise environments. Key Responsibilities Design and implement Azure cloud infrastructure solutions Deliver secure and scalable cloud architectures Support cloud migration and transformation initiatives Build and maintain Azure landing zones and governance frameworks Work across hybrid infrastructure environments Produce high and low-level technical designs Implement Infrastructure as Code and automation solutions Collaborate with security, networking and platform teams Ensure compliance with security and operational standards Provide technical leadership across cloud infrastructure delivery Required Skills & Experience Strong Azure architecture and cloud engineering experience Extensive infrastructure engineering background Experience working within secure or highly regulated environments Strong technical knowledge of: Azure IaaS and core platform services Azure networking and connectivity Identity and access management Hybrid cloud infrastructure Enterprise infrastructure technologies Strong Infrastructure as Code experience (Terraform, Bicep or ARM) Experience with CI/CD pipelines and automation tooling Strong understanding of cloud security best practices Ability to work autonomously within complex technical environments Excellent communication and stakeholder engagement skills Desirable Skills Experience within defence, government or secure delivery environments Kubernetes / AKS experience Exposure to DevSecOps practices Experience supporting large-scale enterprise cloud programmes Mandatory Requirements Active SC Clearance Sole UK National status Eligibility to work within highly secure UK environments Additional Information Fully remote working Occasional UK site visits required Long-term engagement Immediate availability preferred
Daintta are a rapidly growing, values-driven consultancy delivering mission-critical data, technology, and engineering solutions across the UK public sector. We partner with clients in Defence, National Security, Law Enforcement, and wider Government to strengthen the UK's resilience and operational advantage through innovative, data-driven insights. We are seeking a Software Engineer with proven experience in the UK Defence sector to design and deliver secure, scalable software systems supporting our clients' most important missions. You'll be joining a collaborative, purpose-led team committed to transparency, fairness, and daring innovation. As a Software Engineer (Defence), you will work alongside Defence stakeholders, programme leads, and multi-disciplinary teams to design, develop, and maintain software systems that directly support national defence capabilities. You will apply your software engineering expertise within classified or restricted environments, ensuring security, reliability, and compliance with MOD standards. Key Responsibilities Work closely with MOD and Defence Industry clients to understand mission requirements and translate them into robust software solutions. Design, develop, test, and deploy high-quality, secure software using Defence-approved toolchains and environments. Contribute to systems that enhance situational awareness, command and control, cyber defence, and decision-support capabilities. Develop clean, well-documented, and maintainable code in accordance with relevant coding standards and security requirements. Participate in code reviews, peer testing, and design assurance activities to maintain delivery quality in secure environments. Collaborate with systems engineers, data scientists, and solution architects to deliver integrated solutions across restricted environments. Apply DevSecOps principles, CI/CD pipelines, and containerisation technologies (e.g., Docker, Kubernetes) to Defence projects where appropriate. Keep up to date with emerging Defence technology trends, secure software frameworks, and government digital standards. Contribute to bid and proposal work, technical presentations, and client demonstrations. Support Daintta's growth in the Defence sector through mentoring, technical input, and alignment with company strategy. Helping to support & grow Daintta by actively inputting into the company strategy and helping to shape our future. Representing us and our core values: Transparent, Fair, and Daring. Skills/Knowledge The role requires the following key skills / knowledge, non-exhaustively: Proven experience delivering software engineering projects within the UK Defence ecosystem (e.g., MOD, DE&S, DSTL, DIO, or Defence primes). Strong knowledge of secure software development practices and handling sensitive information appropriately. Proficiency in one or more programming languages: Python, Java, C++, Rust, or Go. Familiarity with Defence-relevant software development frameworks and toolsets, such as Jenkins, GitLab CI, pytest, and OpenAPI. Experience working within Unix/Linux environments and with database systems (SQL or NoSQL). Familiarity with secure by design principles Hands on experience with Agile or Scrum delivery methods, ideally in secure or hybrid cloud environments. Strong analytical, problem solving, and communication skills; able to convey complex technical information clearly to non technical stakeholders. Knowledge of cloud platforms (AWS, Azure, or MODCloud) and DevOps practices (CI/CD, infrastructure as code). Commitment to producing high quality, mission ready software underpinned by robust testing and assurance. What's in it for you? In addition to being rewarded fairly for your contribution to the business, you get to work in a dynamic organisation that is agile and responsive. A business that is growing fast and where you get to drive and shape the future. A place where you are respected by everyone and your voice is important. Somewhere where you can be innovative and creative. A place where you have the opportunity to learn about all aspects of business from marketing to sales, to delivery and business operations. Benefits We believe in supporting our people both professionally and personally. Here's what you can expect when you join us: Time Off 25 days annual leave, plus bank holidays Up to 3 days annual volunteering leave - give back to the community Competitive maternity, paternity, shared parental leave & compassionate leave Health & Wellness Comprehensive Private Health Insurance Employee Assistance Programme - 24/7 support services £2,000 Flex Cash Allowance, paid pro rata over the year Financial Benefits 5% pension contribution Discretionary company awards and bonuses, based on performance and company targets Access to Electric Vehicle (EV) Salary Sacrifice scheme Professional Development Up to £1,000 annual training budget (access to additional training and development budget via business case) Up to 5 days annual training leave 1 professional membership paid annually Up to £200 of additional IT budget for new joiners Location? Hybrid, with 2-3 days working from Daintta office (London or Cheltenham) or on client site as required. Depending on client demands, there may be a need for more than 3 days per week on client site. Security Information Due to the nature of this position, you must be willing and eligible to achieve a minimum of SC clearance, and it would be desirable to be able to attain DV clearance. To qualify, you must be a British Citizen and have resided in the UK for the last 5 years. For more information about clearance eligibility, please see
08/05/2026
Full time
Daintta are a rapidly growing, values-driven consultancy delivering mission-critical data, technology, and engineering solutions across the UK public sector. We partner with clients in Defence, National Security, Law Enforcement, and wider Government to strengthen the UK's resilience and operational advantage through innovative, data-driven insights. We are seeking a Software Engineer with proven experience in the UK Defence sector to design and deliver secure, scalable software systems supporting our clients' most important missions. You'll be joining a collaborative, purpose-led team committed to transparency, fairness, and daring innovation. As a Software Engineer (Defence), you will work alongside Defence stakeholders, programme leads, and multi-disciplinary teams to design, develop, and maintain software systems that directly support national defence capabilities. You will apply your software engineering expertise within classified or restricted environments, ensuring security, reliability, and compliance with MOD standards. Key Responsibilities Work closely with MOD and Defence Industry clients to understand mission requirements and translate them into robust software solutions. Design, develop, test, and deploy high-quality, secure software using Defence-approved toolchains and environments. Contribute to systems that enhance situational awareness, command and control, cyber defence, and decision-support capabilities. Develop clean, well-documented, and maintainable code in accordance with relevant coding standards and security requirements. Participate in code reviews, peer testing, and design assurance activities to maintain delivery quality in secure environments. Collaborate with systems engineers, data scientists, and solution architects to deliver integrated solutions across restricted environments. Apply DevSecOps principles, CI/CD pipelines, and containerisation technologies (e.g., Docker, Kubernetes) to Defence projects where appropriate. Keep up to date with emerging Defence technology trends, secure software frameworks, and government digital standards. Contribute to bid and proposal work, technical presentations, and client demonstrations. Support Daintta's growth in the Defence sector through mentoring, technical input, and alignment with company strategy. Helping to support & grow Daintta by actively inputting into the company strategy and helping to shape our future. Representing us and our core values: Transparent, Fair, and Daring. Skills/Knowledge The role requires the following key skills / knowledge, non-exhaustively: Proven experience delivering software engineering projects within the UK Defence ecosystem (e.g., MOD, DE&S, DSTL, DIO, or Defence primes). Strong knowledge of secure software development practices and handling sensitive information appropriately. Proficiency in one or more programming languages: Python, Java, C++, Rust, or Go. Familiarity with Defence-relevant software development frameworks and toolsets, such as Jenkins, GitLab CI, pytest, and OpenAPI. Experience working within Unix/Linux environments and with database systems (SQL or NoSQL). Familiarity with secure by design principles Hands on experience with Agile or Scrum delivery methods, ideally in secure or hybrid cloud environments. Strong analytical, problem solving, and communication skills; able to convey complex technical information clearly to non technical stakeholders. Knowledge of cloud platforms (AWS, Azure, or MODCloud) and DevOps practices (CI/CD, infrastructure as code). Commitment to producing high quality, mission ready software underpinned by robust testing and assurance. What's in it for you? In addition to being rewarded fairly for your contribution to the business, you get to work in a dynamic organisation that is agile and responsive. A business that is growing fast and where you get to drive and shape the future. A place where you are respected by everyone and your voice is important. Somewhere where you can be innovative and creative. A place where you have the opportunity to learn about all aspects of business from marketing to sales, to delivery and business operations. Benefits We believe in supporting our people both professionally and personally. Here's what you can expect when you join us: Time Off 25 days annual leave, plus bank holidays Up to 3 days annual volunteering leave - give back to the community Competitive maternity, paternity, shared parental leave & compassionate leave Health & Wellness Comprehensive Private Health Insurance Employee Assistance Programme - 24/7 support services £2,000 Flex Cash Allowance, paid pro rata over the year Financial Benefits 5% pension contribution Discretionary company awards and bonuses, based on performance and company targets Access to Electric Vehicle (EV) Salary Sacrifice scheme Professional Development Up to £1,000 annual training budget (access to additional training and development budget via business case) Up to 5 days annual training leave 1 professional membership paid annually Up to £200 of additional IT budget for new joiners Location? Hybrid, with 2-3 days working from Daintta office (London or Cheltenham) or on client site as required. Depending on client demands, there may be a need for more than 3 days per week on client site. Security Information Due to the nature of this position, you must be willing and eligible to achieve a minimum of SC clearance, and it would be desirable to be able to attain DV clearance. To qualify, you must be a British Citizen and have resided in the UK for the last 5 years. For more information about clearance eligibility, please see
DevSecOps Advisory Consultant Banking Hybrid: Onsite in London 3 days per week 6 months+ £800 - £900 per day In short: Working with the Front Office Product and Business Platform team, we require a strong DevSecOps Consultant to assess our current pipeline and advise on where we can increase our measures of security. We're interested in technical consultants that will look at the minute detail and relate that to the bigger picture. Bering able to present findings to a wide audience will be crucial to make this role a success. We want to know who the leading companies are and how they secure their pipeline so we are very much open to ideas! Within 3-4 months we'd like a full assessment documented and a plan put into place that you will assist in the delivery on. In full: We are seeking a highly skilled and experienced DevSecOps Subject Matter Expert (SME) to lead and advise on the integration of security practices into our DevOps pipelines. This role requires a deep understanding of development, security, and operations, with a strong emphasis on automation, continuous integration/continuous deployment (CI/CD), and secure software development lifecycle (SDLC) practices. Advise and offer guidance on: Design, implement, and maintaining secure CI/CD pipelines. Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management). Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices. Advise on threat modeling, risk assessments, and vulnerability management. Provide expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Develop and enforce security policies, standards, and best practices. Lead incident response and root cause analysis for security-related issues. Mentor and train teams on DevSecOps principles and tools. Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
01/09/2025
Full time
DevSecOps Advisory Consultant Banking Hybrid: Onsite in London 3 days per week 6 months+ £800 - £900 per day In short: Working with the Front Office Product and Business Platform team, we require a strong DevSecOps Consultant to assess our current pipeline and advise on where we can increase our measures of security. We're interested in technical consultants that will look at the minute detail and relate that to the bigger picture. Bering able to present findings to a wide audience will be crucial to make this role a success. We want to know who the leading companies are and how they secure their pipeline so we are very much open to ideas! Within 3-4 months we'd like a full assessment documented and a plan put into place that you will assist in the delivery on. In full: We are seeking a highly skilled and experienced DevSecOps Subject Matter Expert (SME) to lead and advise on the integration of security practices into our DevOps pipelines. This role requires a deep understanding of development, security, and operations, with a strong emphasis on automation, continuous integration/continuous deployment (CI/CD), and secure software development lifecycle (SDLC) practices. Advise and offer guidance on: Design, implement, and maintaining secure CI/CD pipelines. Integrate security tools and practices into DevOps workflows (e.g., SAST, DAST, SCA, secrets management). Collaborate with development, operations, and security teams to implement and ensure secure coding and deployment practices. Advise on threat modeling, risk assessments, and vulnerability management. Provide expert guidance on cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Develop and enforce security policies, standards, and best practices. Lead incident response and root cause analysis for security-related issues. Mentor and train teams on DevSecOps principles and tools. Candidates will ideally show evidence of the above in their CV in order to be considered.Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly. Pontoon is an employment consultancy and operates as an equal opportunities employer.
