275 jobs found

Responsibilities Provide organisation-wide leadership for digital and technology, including: Defining and maintaining a clear, coherent digital, data and technology architecture across systems, infrastructure, data, applications and integrations. Establishing clear solution architecture principles and design governance, ensuring new systems, integrations and digital changes are safe, supportable, secure and aligned to BrisDocs wider architecture. Developing a realistic, costed roadmap for digital, data and technology improvement, aligned to BrisDocs organisational priorities and future growth. Lead BrisDocs data capability, including data governance, reporting, analytics, business intelligence and data engineering. Provide senior leadership to a growing data team, including a Senior Data Engineer, Senior Business Analyst and Data Scientist. Lead our digital/IT support function, including first and second line support, service levels, escalation routes and supplier support. Build and develop a high-performing Digital, Data and Technology function, with clear roles, standards, priorities and ways of working across support, data, suppliers and governance. Keep BrisDocs digital infrastructure secure, reliable, scalable and resilient, supporting 24/7 service delivery. Act as BrisDocs Senior Information Risk Owner (SIRO), with oversight of information risk, information governance and data protection arrangements. Provide clear assurance to the CEO, Directors and Board on digital risk, cyber security, information governance, data protection and service resilience. Lead cyber security arrangements, including relevant accreditations, incident preparedness and proactive cyber risk management. Ensure data is collected, stored, processed, shared and reported lawfully, securely and effectively. Oversee the maintenance and development of applications, ensuring they remain supportable, secure and aligned to operational needs. Work closely with the Business Transformation Lead to make sure wider change is digitally safe, data-informed and operationally sustainable. Manage digital, data and technology budgets with the Commercial and Finance Director, ensuring value for money. Lead suppliers and contracts as an intelligent client, holding providers to account and advising on internal versus third-party delivery. Support Emergency Preparedness, Resilience and Response (EPRR), making sure data, digital and technology arrangements enable safe and responsive services. Build strong working relationships across clinical, operational, corporate and leadership teams.

Job Search Place Limited is seeking a Senior Cyber Security Analyst focused on embedding security into application design and development. You will perform security assessments and work closely with software engineers and architects to ensure alignment with secure-by-design principles. The ideal candidate will have 7-12+ years of experience in cyber security, particularly in application security and DevSecOps. You will play a pivotal role in securing modern platforms and contributing to best practices in security architecture.

Senior Cyber Security Analyst (OWASP / SAST /DAST - Banking Client Application Security Secure Design Threat Modelling DevSecOps) Locations: London, Paris, Brussels, Amsterdam Rate: Flexible Duration: 12 months Job Overview We are looking for a Cyber Security Analyst specialising in Application Security and Secure Architecture to join a high-performing security team responsible for protecting large-scale enterprise platforms. This role focuses on embedding security into application design and development, performing security risk assessments, and ensuring that modern applications and platforms are built following secure-by-design principles. You will work closely with software engineers, architects, DevOps teams and security engineers to ensure security is integrated throughout the technology lifecycle. Key Responsibilities Application Security & Secure SDLC - Perform application security assessments across modern enterprise platforms, review application architecture and ensure alignment with secure-by-design principles, embed security into the software development lifecycle (SDLC), support development teams in implementing secure coding practices aligned with OWASP guidelines. Security Testing & DevSecOps - Define and review security testing activities including SAST, DAST and software composition analysis (SCA), work with engineering teams to integrate security scanning into CI/CD pipelines, analyse vulnerability scan results and support remediation of application security issues. Threat Modelling & Security Risk Assessments - Conduct threat modelling exercises using frameworks such as STRIDE or MITRE ATT&CK, identify potential security threats, vulnerabilities and attack scenarios within applications and supporting infrastructure, perform structured security risk assessments and provide remediation recommendations. Security Architecture & Secure Design - Review application and platform architectures to ensure appropriate security controls are implemented, translate high-level security policies into technical security requirements for development teams, work with architects to ensure applications are built following secure architecture patterns. Security Advisory - Provide security expertise to engineering teams, project managers and technology leaders, support security decision-making during application design and implementation, contribute to security best practices, standards and guidelines. Key Technical Skills Strong experience in application security and secure software development including Secure Software Development Lifecycle (SSDLC) OWASP Top 10 and secure coding practices Application security testing (SAST / DAST / SCA) Threat modelling methodologies (STRIDE, MITRE ATT&CK) Vulnerability management and remediation Secure architecture and design reviews DevSecOps and CI/CD security integration API security and modern application architectures Experience with Tools SAST / DAST platforms Code scanning tools CI/CD pipelines (GitHub, GitLab, Jenkins etc.) Container security platforms Cloud security tooling Technology Environment Cloud platforms (AWS, Azure or GCP) Containerised platforms (Docker / Kubernetes) Microservices architectures REST APIs and modern application frameworks Identity and access management solutions Ideal Candidate Background 7-12+ years experience in cyber security, strong focus on application security, experience working closely with software engineering teams, experience performing security architecture reviews, experience in DevSecOps environments, strong communication skills and ability to explain security risks clearly. Certifications (Optional) Relevant certifications may include: CISSP, OSCP, CSSLP, GIAC, Security+ or similar. What Makes This Role Interesting You will work in a highly technical security environment, collaborating directly with engineers and architects to secure modern platforms at scale. This role offers the opportunity to influence secure architecture, application security practices and DevSecOps adoption across complex enterprise systems.

We are seeking an enthusiastic and skilled IT Helpdesk Engineer to support our end users across multiple sites. You will handle IT support requests efficiently and effectively, ensuring a high level of service and satisfaction. This is a full-time, on-site role, with participation in an out-of-hours on-call rota (one week on, three weeks off). The ideal candidate will bring a positive, proactive attitude with a passion for continuous service improvement, technical problem-solving, and excellent customer service. Key Responsibilities Respond to user inquiries via email, phone, in person, and through the helpdesk system. Perform onsite and remote troubleshooting using diagnostic techniques and relevant questioning. Identify and implement the most effective solutions to resolve technical issues. Guide users through problem solving steps in a clear and supportive manner. Escalate unresolved issues to senior engineers or relevant teams when required. Ensure Service Level Agreements (SLAs) are consistently met. Maintain detailed documentation of troubleshooting efforts and resolutions. Provide clear updates and communication to end users throughout the resolution process. Act as the main point of contact for local IT issues and provide remote support to other locations as needed. Technology Stack Support, maintain, and troubleshoot Microsoft 365, including Exchange Online, SharePoint, Teams, and OneDrive. Manage and support Windows 11 desktop environments and Active Directory user accounts, permissions, and group policies. Provide first line and second line support for Azure AD, Intune, and other Microsoft cloud services. Assist with endpoint management, device enrolment, and configuration using Microsoft Endpoint Manager. Support and maintain networked printers, Windows servers, and basic networking components (DNS, DHCP, VPN). Security Support and System Security Support and maintain IT system security and data protection. Work in alignment with cybersecurity policies under the guidance of the IT Security & Risk Manager. Ensure compliance with MFA, endpoint security standards, and data governance requirements. Compliance and Best Practice Work within the ITIL framework to ensure structured service delivery and improvement. Monitor IT satisfaction levels and proactively address recurring issues. Meet deadlines and resolution targets in line with agreed SLAs. Rates depend on experience and client requirements

Senior Solutions Architect Location: London Hybrid: 2 days per week onsite Rate: £650 per day Contract: Initial 6 months IR35: Inside IR35 About the Role A London Council is seeking an experienced Senior Solutions Architect to lead the design and delivery of secure, scalable and cloud first technology solutions across a major digital transformation programme. This is a senior level technical leadership role, responsible for shaping enterprise architecture, defining solution strategies and ensuring technology solutions align with organisational standards, security frameworks and modern digital delivery practices. You will work closely with Digital Services, project delivery teams, suppliers and senior stakeholders to deliver complex cross platform solutions across cloud, infrastructure, integration and Microsoft technologies. Key Responsibilities Lead the architecture and design of enterprise scale digital and cloud solutions Define solution architectures aligned to enterprise architecture principles and GDS standards Design secure and scalable Azure based environments across hybrid cloud infrastructures Deliver cloud first strategies across infrastructure, applications, integrations and identity management Work across full solution lifecycle from discovery through to implementation and support Design and implement Azure networking solutions including VNets, VPNs, ExpressRoute and network security Support application modernisation, API integration and cloud native service delivery Design and manage secure integration solutions using API Management, Service Bus and Event Grid Implement governance, RBAC, Azure AD, Conditional Access and security best practices Ensure solutions align with GDPR, ISO27001, Cyber Essentials and NIST frameworks Drive automation and CI/CD practices using Azure DevOps and GitHub Actions Produce high quality architecture documentation, technical specifications and solution diagrams Work collaboratively with developers, infrastructure teams, analysts and third party suppliers Provide technical leadership and mentoring to project teams and junior architects Support cost optimisation, monitoring and operational governance across Azure estates Required Experience Proven experience working as a Solutions Architect, Enterprise Architect or Technical Architect within large scale environments Strong experience designing enterprise and cloud solutions within Microsoft Azure Experience delivering solutions across hybrid cloud and on premises environments Strong understanding of Microsoft 365 technologies including Teams, SharePoint and Exchange Online Experience with Azure App Services, Azure Functions, Logic Apps and Azure SQL Knowledge of cloud native architectures, microservices and API led integration Experience implementing CI/CD pipelines using Azure DevOps or GitHub Actions Strong understanding of networking, security and Zero Trust principles Experience with Azure Monitor, Log Analytics, Application Insights and Security Centre Strong understanding of Azure AD, RBAC, Key Vault and identity management Experience working within agile delivery environments Excellent stakeholder engagement and communication skills Public sector or local government experience would be highly desirable Desirable Experience working within GDS aligned environments Knowledge of containerisation and Kubernetes Relevant Microsoft Azure certifications Experience working on large scale digital transformation programmes Rates depend on experience and client requirements

Business Analyst (IAM, Sailpoint, Cyberark, JML) - Banking Client Rate: £600 - £650 per day Duration: 12 months (Inside IR35) - Hybrid working As a Business Analyst within the IDAM 2.0 Programme, you will play a key role in delivering new systems and enhancing existing ones across the organisation's identity and access ecosystem. Acting as the bridge between business and technology, you will analyse needs, define requirements, and guide delivery teams to ensure the successful implementation of IAM solutions. This role blends traditional Business Analysis expertise with a strong understanding of Identity and Access Management principles, tools, and processes. Key Objectives Support the Project Lead in defining the scope, objectives, and constraints within the IAM domain. Collect, analyse, and document business and technical requirements, transforming them into actionable deliverables. Develop and maintain the benefits realisation profile, ensuring traceability of business value and ownership. Provide expertise on Mainframe LAM processes, data, and roles. Define clear and testable acceptance criteria to validate delivery outcomes. Analyse the Target Operating Model (TOM) and migration strategy to refine scope, identify changes, and support implementation. Contribute to resource planning and demand management for Business Analysis activities across the IDAM portfolio. Key Responsibilities Lead feasibility studies and risk assessments to support business and technical decision making. Work closely with Business and IT stakeholders to elicit, validate, and document functional and non functional requirements. Define the approach for data analysis, migration, and data cleansing. Model and optimise business processes using BPMN tools (e.g. Adonis, Visio). Support solution design, integration, and migration strategies to ensure seamless transition between current and target environments. Collaborate with Change Management teams to assess and manage the business impact of new IAM capabilities. Analyse and document security risks and dependencies, leveraging existing mitigations and controls. Facilitate clear and continuous communication between business, IT, and delivery teams throughout the project lifecycle. Contribute to test planning, validation, and traceability to ensure solution quality and readiness. Maintain and update documentation such as Standard Operating Procedures (SOPs), user guides, and training materials. Ensure operational readiness of the delivered solution, following internal methodologies and quality standards. Required Skills and Experience 3 5 years' experience as a Business Analyst, ideally within cybersecurity, IAM, or a regulated IT environment. Strong understanding of Identity and Access Management concepts, including access provisioning/deprovisioning, RBAC, JML processes, ServiceNow integration, and security standards (e.g. SAML, OAuth). Hands on experience onboarding applications into IAM platforms and implementing process improvements. Strong analytical and problem solving skills with the ability to interpret data and drive informed decisions. Excellent communication and stakeholder management skills - comfortable engaging with both technical teams and senior stakeholders. Skilled in business process modelling and documentation (BPMN). Familiarity with agile methodologies and working in cross functional agile teams. Proficiency with data analysis and visualisation tools (e.g. Excel, Power BI, Tableau). Understanding of data management, governance, and data quality principles. Professional proficiency in English (spoken and written). Rates depend on experience and client requirements

Job Title: DV Cleared Cyber Security Operations - Senior Analyst Location: Corsham Duration: Until 31/12/2026 Rate: Up to £850 per day via an approved umbrella company Must be willing and eligible to go through the DV clearance process Are you an experienced cyber security professional with a passion for protecting critical assets? Our client, a reputable organisation, is hiring for a Senior Analyst to join their Cyber Security Operations team. This is a fantastic opportunity to work within a dynamic environment, supporting the delivery of essential security controls aligned with the NIST Cyber Security Framework. What you'll be doing: Maintain and optimise SOC PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse engineering, and develop IOCs and detection signatures. Manage and integrate logs from various sources, ensuring full visibility and compliance. Analyse attacker TTPs and manage threat intelligence, including incident assessment and reporting. Collaborate with stakeholders to ensure operational effectiveness and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands on experience with SIEM and SOAR platforms such as Trend, Elastic, or SolarWinds. Strong understanding of Windows and Linux OS, log collection, and threat detection techniques. Ability to create and modify detection rules, automate scripts, and correlate data from multiple sources. Knowledge of malware analysis, threat intelligence, and forensic techniques. Current DV clearance is essential. Skills in Python, PowerShell, Bash, or similar scripting languages. Familiarity with ISO 27001, MITRE ATT&CK, and ITIL frameworks. Desired skills: Certifications like CompTIA Security+, CySA+, PenTest+, or MCSE. Experience with network forensics and intrusion detection systems. Join a forward-thinking team where your expertise will make a real impact. If you're ready to take on a challenging role in cyber security, apply now to support our client's mission to stay ahead of evolving threats. If you receive suspicious outreach claiming to be from us, please contact us via the ManpowerGroup website.

Hours : Monday to Friday, 09:00 - 17:00 (35 hours per week) Hybrid working with a minimum of two days per week office based Happy to talk flexible working Hill Dickinson are proud to be named as a Top Ten Employer for Working Families 2025 for the second year running and so, we are happy to consider flexible working opportunities to help you balance your work and home life. Team: Project Management Office Location: Liverpool Benefits: At Hill Dickinson we understand that incentives go far beyond a good salary, so we have created a comprehensive benefits package tailored around our people. Here are some examples of what we offer: Annual leave starting at 25 days Birthday privilege day and Christmas shutdown Holiday buy, sell and carryover scheme Optional private medical insurance via BUPA Annual fitness allowance ISA saving scheme and independent financial advice Electric or hybrid vehicle lease scheme EAP with access to counselling Enhanced family leave policies Access to confidential, expert support via Fertifa in relation to reproductive health and wellbeing Access to 10 days fully subsidised emergency or back-up care per year via Bright Horizons. Life assurance Group income protection Annual travel season ticket loan Hybrid working and dress for your day policy Bespoke training and development opportunities Role overview Introduction to the role As a Project Manager, you will be responsible for delivering projects effectively, with a strong focus on planning, coordination, communication, dependency management, and the control of risks, scope and resources where required. This is a varied and fast-paced role, offering exposure to a broad portfolio of projects across technology, cyber security, and business change. Our approach to delivery is flexible and adapts to the needs of each project, while maintaining a strong framework for governance, documentation, and reporting. You will manage multiple projects at the same time, maintaining control over scope, risks, issues, budgets, and dependencies to deliver successful outcomes. We are looking for a motivated and experienced Project Manager who is confident working with a wide range of stakeholders and managing competing priorities. The successful candidate will bring strong organisational, problem-solving, and communication skills, together with the ability to lead, influence, and provide clear direction. You will also be comfortable engaging with senior stakeholders, facilitating project boards, and escalating issues where appropriate to keep delivery on track. Introduction to the team We are a firm-wide Project Management Office, made up of Project Managers, Business Analysts, QA Analysts and a PMO Analyst. We deliver a rolling portfolio of diverse projects across our Legal Business Groups (Health, Marine and Business Services) and Operational Directorates (IT & Cyber Security, Legal Technology & Data, Finance, Risk & Compliance, Human Resources, and Business Development & Marketing). There are, on average, 20 projects in flight at any time, with budgets ranging from £0 for internal change-only projects to £500,000+ for large-scale transformation programmes. Over the past 12 months, this has included delivering cyber security enhancements, supporting estates projects such as the move to our flagship Manchester office, completing a firm-wide laptop refresh and Windows upgrade, redesigning our Active Directory service, upgrading backup and recovery systems, and supporting the rollout of the firm's recent rebrand. Key responsibilities Lead the end-to-end delivery of projects, from initiation through to business readiness, rollout, and BAU handover. Ensure all projects are initiated and governed in line with PMO standards, working closely with the PMO Analyst. Define project scope, objectives, and deliverables in collaboration with stakeholders and the Portfolio team. Develop and maintain detailed project plans, ensuring alignment across internal teams and external suppliers. Manage third-party suppliers, including onboarding, contractual engagement, and delivery oversight. Collaborate with Business Analysts and QA teams to capture detailed requirements and define test approaches. Identify, allocate, and manage resources required to successfully deliver project outcomes. Monitor and control project scope, timelines, budgets, and dependencies, ensuring effective delivery. Proactively manage risks and issues, implementing mitigation plans and escalating where appropriate. Facilitate regular project meetings, including stand-ups, project reviews, steering groups, and project boards. Produce clear and concise project reporting, including weekly highlight reports and monthly board updates. Manage project change, including scope adjustments and timeline re-planning where required. Work with internal teams (Infrastructure, IT Support, L&D, LTI) to ensure smooth business readiness and adoption. Support the development of training materials and business communications to enable successful change delivery. Conduct lessons learned sessions and contribute to continuous improvement across the PMO. What are we looking for A minimum of three years' experience in a Project Manager or similar delivery role Proven experience of managing multiple projects concurrently A strong understanding of project delivery practices, including planning, risk and issue management, and governance Experience of working with third party suppliers and managing external delivery partners Excellent stakeholder management skills, with the ability to engage and influence at all levels of the organisation Strong organisational and problem solving skills, with the ability to prioritise competing demands effectively Experience of managing project budgets and tracking financial performance A confident written and verbal communicator, with experience of producing clear and structured project reporting The ability to lead project meetings, including steering groups and project boards A proactive approach, with the confidence to escalateto issues and drive resolution It would be beneficial for you to have some of the following Experience of working within a legal or professional services environment Knowledge of legal processes and software such as Aderant, Clio, Intapp and iManage Knowledge of formal project management methodologies, such as PRINCE2 / Agile / Lean Experience of supporting organisational change, business readiness, and user adoption activities Experience of working with PPM tools such as or similar If you don't meet all of the criteria above but feel that you could add real value to Hill Dickinson, we encourage you to apply and if successful, we can help you develop along the way. Equality, Diversity and Inclusion Hill Dickinson is committed to providing fairness and equal opportunity for all regardless of age, gender, gender identity, ethnic origin, disability, sexual orientation, marital or transgender status, nationality, religion or belief. We understand that our power as a firm comes from empowering our people and that it is only by encouraging and enabling individuals to be themselves at work that we can truly benefit from their rich and varied strengths. Hill Dickinson is an equal opportunities employer. All applications received by the firm will be considered based on their merit alone and we welcome applications from all suitably qualified individuals regardless of background and from all routes to qualification, with both the SRA and CILEx. Disability Support We are a Disability Confident employer, which means if there is anything that we can do to make your visit easier, so you are able to perform at your best, please let us know. You can contact the HR team at should you require any adjustments to the application or interview process. At Hill Dickinson, we welcome applications from individuals that are looking to return to the law as well as all routes to qualification, with both the SRA and CILEx. All successful candidates will be subject to our standard pre-employment screening, including a basic criminal record check via Disclosure and Barring Service. Any offer of employment made is conditional upon completion of all checks. Due to the high response levels we receive for some vacancies, we may expire any of them prior to the advertised closing date and advise you to submit your application as soon as possible.

Overview Cybersecurity Analysts protect organisations from cyber threats. Depending on the speciality, roles may involve monitoring live security events in a Security Operations Centre (SOC), researching threat intelligence, conducting penetration tests to uncover vulnerabilities, or managing Governance, Risk & Compliance (GRC) workstreams. All work aligns with recognised frameworks such as NIST CSF, ISO 27001, and CIS Controls. Responsibilities Monitor security events and respond to active threats in real time. Run vulnerability assessments, penetration tests, and incident response exercises. Specialise in SOC analysis, threat intelligence, penetration testing, GRC, or cloud security. Work for banks, telcos, defence contractors, government agencies, NHS and FTSE 100 corporates. Career Progression Typical career stages for a Cybersecurity Analyst: Years 0-2: SOC Analyst (Tier 1) - monitor events and respond to common incidents; progression via CompTIA Security+ and SANS GCIH or CEH. Years 2-5: Cybersecurity Analyst / Penetration Tester - specialise in penetration testing (CREST CRT, OSCP), threat intelligence or GRC (ISO 27001 Lead Auditor). Years 5-8: Senior Analyst / Security Engineer - lead complex incident response, run major risk assessments, or design enterprise security architecture; often required to hold CISSP. Years 8+: Lead / Head of Security / CISO - strategic leadership of an organisation's security function; requires technical depth and business/board level communication. Qualifications & Skills Required technical knowledge and professional traits include: Calm decision making under incident pressure. Clear written reporting for non technical executives. Ethical decision making and professional integrity. Continuous learning across rapidly evolving threats. Methodical, evidence based investigation. Teamwork across IT, business and law enforcement. Relevant certifications such as CompTIA Security+, CEH, SANS GCIH, OSCP/CREST CRT, CISM/CISSP, ISO 27001 Lead Auditor. Typical Salary Ranges (UK) Junior SOC analysts at major banks and managed service providers start at £35,000-£45,000. Penetration testers and threat intelligence analysts at top consultancies earn £45,000-£65,000 within 3 years. Senior engineers and CISO track leaders in FTSE 100 companies can reach £100,000+. Education and Entry Routes Common pathways include: MSc Cybersecurity - 1 year postgraduate specialist degree (many are NCSC certified). Cybersecurity Apprenticeship - 2-4 years, fully employer funded (Levels 4 & 6). CompTIA Security+ plus a Tier 1 SOC role - common entry for career changers. University undergraduate degree in Cybersecurity or Computer Science - 3 years; with student loans and progression into junior roles. FAQ - Becoming a Cybersecurity Analyst in the UK How long does it take to become a cyber analyst? Typically straight after a 3 year undergraduate degree, or via CompTIA Security+ and a Tier 1 SOC role. Do I need a cybersecurity degree to work in the UK? Not strictly, but a specialist degree and relevant certifications are the most reliable route. Is the role on the Skilled Worker visa shortage list? No; however, salaries often meet the threshold and most private sector employers sponsor international analysts. What's the difference between a SOC analyst and a penetration tester? SOC analysts monitor events; penetration testers actively find vulnerabilities. Which UK certifications matter most? CompTIA Security+, CEH, SANS GCIH, OSCP/CREST CRT, CISM/CISSP. Can I move into cybersecurity from another career? Yes - career changers can transition via Security+ and a Tier 1 SOC role within 6-12 months.

Position Senior Application Security & Controls Specialist (DORA Programme) - Banking Client - Brussels / Paris Contract & Working Arrangements Duration: 1 year contract. Hybrid working - 8 days onsite per month in the Paris or Brussels office, the rest remote. Overview We are looking for an experienced and dynamic Senior Security Analyst to support DORA transformation through the design, implementation and embedding of new transversal security controls across the organization. Responsibilities Embed & operationalise new security controls by working with IT, Engineering, Architecture and CISO teams to integrate them into existing processes, tools and platforms. Support teams in understanding threats, risks and compliance expectations related to software supply chain, cryptography and application security. Identify gaps between current capabilities and new DORA requirements and provide actionable remediation recommendations. Contribute to the rollout, adoption and continuous improvement of newly introduced security controls. Perform targeted security assessments on applications, processes and technical components to evaluate compliance with the new security controls. Map system architectures, technology stacks and data flows to validate control applicability. Provide expert level advisory on secure implementation across different environments (on prem, mainframe, cloud). Collaborate closely with architects, engineers, developers, risk teams and control owners to support remediation plans and technical decisions. Qualifications 5-10 years hands on experience designing or implementing information security controls, frameworks or processes. Proven experience in security risk assessment, application security or security governance. Strong expertise in at least several of the following areas: Software Supply Chain Security, SBOM management, Code integrity and build pipeline security, SAST/DAST/code analysis/ASPM, Data classification, Database encryption & key management, Cryptography governance & implementation. Solid knowledge of cybersecurity frameworks (ISO 27001, CIS, NIST, DORA). Good understanding of financial sector IT security regulatory requirements, especially DORA, ESMA and outsourcing regulation (plus). Fluency in English. Certifications such as CISSP, CSSLP, CCSP, CISM, CISMP, GCIH, CEH are an advantage. Soft Skills Strong communication and coordination skills; ability to engage effectively with stakeholders across diverse teams (Supply Chain, CISO, IT, etc.). Proactive, self motivated and comfortable working in a dynamic, continuously evolving environment. Strong analytical capabilities combined with creative problem solving skills. Structured and synthetic, able to deliver clear, concise and relevant responses to requests. Calm, organized and efficient under pressure, maintaining clarity even in uncertain situations. Collaborative mindset; able to work effectively with executives, business leaders and technical teams. Autonomous, well organized with strong prioritisation and time management abilities.

Salt Digital Recruitment is seeking a Senior Cyber Security Analyst to join a high-performing team in London. This role focuses on Application Security and DevSecOps while embedding security into modern software delivery. The successful candidate will work with cloud-native platforms and CI/CD pipelines, supporting the integration of secure design principles. This is a hybrid position with 8 days onsite per month and offers a competitive rate of £600 per day.

Senior Business Analyst - CISO / IDAM 2.0 / JML/ RBAC - Banking Client Duration: 12 months + extension Rate: €500 - €700 per day Hybrid Working - 8 days onsite in London office An opportunity to join a Cyber Information Security function driving a large-scale Identity & Access Management (IAM) transformation programme. This role sits within the IDAM function, responsible for managing and governing access across enterprise IT infrastructure - ensuring the right access, at the right time, for the right reasons, in line with regulatory and security standards. Core Focus of the Role Lead business analysis activities within an Identity Governance & Administration (IGA) environment Design, optimise and maintain business roles (RBAC models) Support Local Access Management (LAM) transition, including Mainframe environments Define scope, requirements, acceptance criteria & testing strategy Contribute to Target Operating Model (TOM) refinement & migration approach Support data analysis, cleansing & migration activities Drive stakeholder alignment across Business, IT & Security Key Experience Required 3-5+ years' experience as a Senior Business Analyst Strong Identity & Access Management knowledge, including: access provisioning & deprovisioning Joiner / Mover / Leaver (JML) processes, role based access control (RBAC), ServiceNow integrations, SAML / OAuth Experience onboarding applications into IAM tools Exposure to Mainframe / RACF / LAM (strong advantage) Experience in process design & implementation Agile delivery experience Key Skills Strong analytical & critical thinking mindset Ability to translate complex functional & non functional requirements into structured documentation Excellent stakeholder management & communication skills Strong risk awareness within security environments Data analysis capability (Power BI / Tableau desirable) Understanding of data governance & data quality principles Rates depend on experience and client requirements.