Title: Cloud Dev Security Operations (DevSecOps) Engineer Must hold (or be eligible for) SC Clearance. Cloud Dev Security Operations (DevSecOps) Engineer to identify and mitigate vulnerabilities observed on products hosted on AWS cloud infrastructure. Location: London UK This role is ideal for someone with strong technical troubleshooting skills, a proactive mindset, and the ability to balance stability with continuous improvement. This a hybrid role of 40% in the client's London office. May required weekend working once a month Immediate joining, min 6 months contract The candidate must be an expert in AWS cloud services with a strong cloud security background and automation mindset, joining the AWS Dev Security Operations (DevSecOps) team responsible for product security, vulnerability management, and cloud security posture improvement. The successful candidate will combine hands-on Linux administrative skills, security operations expertise, and the ability to identify, design, and deliver security automation using Scripting, AWS services, and container security tooling. The goal is to move from reactive security remediation to proactive and preventive security operations. Participation in an on-call rota is required to support business-critical services or high priority incidents. Skills & Qualifications (Required) Strong experience in cloud security operations, vulnerability management, or AWS security engineering roles Proven experience in BAU/IT Operations/Cloud Operations roles. Strong Linux (RHEL) system administration experience. Solid hands-on knowledge of AWS services including: EC2, VPC, ELB, RDS, ECS, EFS, EMR, S3, IAM, Lambda, CloudTrail, Config, EBS Experience with ITIL processes (Incident, Change, Problem Management). Strong automation skills using Ansible, Scripting (Bash/Python/PowerShell). Experience working with monitoring and observability tools (Datadog preferred). Ability to work independently, trouble shoot the incident root case, resolve the customer incident and respond to the impact user via ServiceNow Ability to communicate technical issues clearly to both technical and non-technical stakeholders. Proactive mindset with a passion for continuous improvement and automation. Willingness to participate in on-call support (rotational). Exposure to AWS Bedrock, Lambda-based automation, or event-driven architectures. Hands-on experience with AI/GenAI initiatives in operations, such as: o AI-assisted incident analysis o Automated remediation o Intelligent alerting or chatbot-based ops support
22/06/2026
Contractor
Title: Cloud Dev Security Operations (DevSecOps) Engineer Must hold (or be eligible for) SC Clearance. Cloud Dev Security Operations (DevSecOps) Engineer to identify and mitigate vulnerabilities observed on products hosted on AWS cloud infrastructure. Location: London UK This role is ideal for someone with strong technical troubleshooting skills, a proactive mindset, and the ability to balance stability with continuous improvement. This a hybrid role of 40% in the client's London office. May required weekend working once a month Immediate joining, min 6 months contract The candidate must be an expert in AWS cloud services with a strong cloud security background and automation mindset, joining the AWS Dev Security Operations (DevSecOps) team responsible for product security, vulnerability management, and cloud security posture improvement. The successful candidate will combine hands-on Linux administrative skills, security operations expertise, and the ability to identify, design, and deliver security automation using Scripting, AWS services, and container security tooling. The goal is to move from reactive security remediation to proactive and preventive security operations. Participation in an on-call rota is required to support business-critical services or high priority incidents. Skills & Qualifications (Required) Strong experience in cloud security operations, vulnerability management, or AWS security engineering roles Proven experience in BAU/IT Operations/Cloud Operations roles. Strong Linux (RHEL) system administration experience. Solid hands-on knowledge of AWS services including: EC2, VPC, ELB, RDS, ECS, EFS, EMR, S3, IAM, Lambda, CloudTrail, Config, EBS Experience with ITIL processes (Incident, Change, Problem Management). Strong automation skills using Ansible, Scripting (Bash/Python/PowerShell). Experience working with monitoring and observability tools (Datadog preferred). Ability to work independently, trouble shoot the incident root case, resolve the customer incident and respond to the impact user via ServiceNow Ability to communicate technical issues clearly to both technical and non-technical stakeholders. Proactive mindset with a passion for continuous improvement and automation. Willingness to participate in on-call support (rotational). Exposure to AWS Bedrock, Lambda-based automation, or event-driven architectures. Hands-on experience with AI/GenAI initiatives in operations, such as: o AI-assisted incident analysis o Automated remediation o Intelligent alerting or chatbot-based ops support
Security Architect Permanent Location: Home / Andover (Hybrid - onsite 2 days a week) Salary: £100,000 - £110,000 (+ benefits) We are looking to recruit an SC Cleared Security Architect for a leading technology consultancy who deliver complex, business-critical solutions into secure UK Government and Defence environments. They are looking for an experienced Security Architect to support major programmes of work, providing security architecture assurance, risk oversight and secure design guidance across complex systems and capabilities. This is a senior, client-facing role suited to someone who can operate confidently across architecture, cyber security, assurance and delivery teams. You will review solution designs, identify security risks, recommend proportionate controls and produce high-quality architecture artefacts for senior technical and non-technical stakeholders. The role would suit a Security Architect with strong UK Defence experience, ideally gained across Army, MOD or similarly secure government programmes. Key responsibilities Lead security architecture reviews across complex Defence or Central Government systems and programmes. Identify risks, control gaps and design changes required to achieve the required security posture. Produce and maintain security architecture artefacts, including HLDs, LLDs, data flows, security principles, patterns and architecture building blocks. Ensure security is embedded across solution design, integration, deployment and operational readiness. Support cyber assurance activity across design, build, deploy and run phases. Work closely with enterprise architects, solution architects, delivery teams, security stakeholders and customer representatives. Translate complex security risks and design issues into clear options, recommendations and decision papers. Support alignment to relevant Defence, Government and industry security standards. Contribute to technical management plans, covering areas such as configuration standards, patching, cryptography, IAM and assurance checkpoints. Provide confident stakeholder engagement across mixed technical, operational and senior leadership audiences. Essential experience Active SC clearance. Strong UK Defence, MOD or secure Central Government experience. Proven background as a Security Architect, Enterprise Security Architect, Cyber Security Architect or Security Consultant. Experience providing security architecture assurance across complex systems or major programmes. Ability to produce clear architecture documentation and security artefacts. Strong understanding of secure design principles, risk management, threat modelling and security controls. Knowledge of UK Government / Defence security standards, guidance and assurance processes. Experience working with senior stakeholders across security, architecture, engineering and delivery. Strong communication skills, with the ability to explain security risk clearly to technical and non-technical audiences. Desirable experience Army programme experience or strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data flows and security architecture patterns. Experience reviewing HLDs, LLDs, current-state and future-state designs. CISSP, CISM, ISO27001 Lead Auditor, Microsoft Cybersecurity Architect, AWS Security or similar certifications. JBRP1_UKTJ
22/06/2026
Full time
Security Architect Permanent Location: Home / Andover (Hybrid - onsite 2 days a week) Salary: £100,000 - £110,000 (+ benefits) We are looking to recruit an SC Cleared Security Architect for a leading technology consultancy who deliver complex, business-critical solutions into secure UK Government and Defence environments. They are looking for an experienced Security Architect to support major programmes of work, providing security architecture assurance, risk oversight and secure design guidance across complex systems and capabilities. This is a senior, client-facing role suited to someone who can operate confidently across architecture, cyber security, assurance and delivery teams. You will review solution designs, identify security risks, recommend proportionate controls and produce high-quality architecture artefacts for senior technical and non-technical stakeholders. The role would suit a Security Architect with strong UK Defence experience, ideally gained across Army, MOD or similarly secure government programmes. Key responsibilities Lead security architecture reviews across complex Defence or Central Government systems and programmes. Identify risks, control gaps and design changes required to achieve the required security posture. Produce and maintain security architecture artefacts, including HLDs, LLDs, data flows, security principles, patterns and architecture building blocks. Ensure security is embedded across solution design, integration, deployment and operational readiness. Support cyber assurance activity across design, build, deploy and run phases. Work closely with enterprise architects, solution architects, delivery teams, security stakeholders and customer representatives. Translate complex security risks and design issues into clear options, recommendations and decision papers. Support alignment to relevant Defence, Government and industry security standards. Contribute to technical management plans, covering areas such as configuration standards, patching, cryptography, IAM and assurance checkpoints. Provide confident stakeholder engagement across mixed technical, operational and senior leadership audiences. Essential experience Active SC clearance. Strong UK Defence, MOD or secure Central Government experience. Proven background as a Security Architect, Enterprise Security Architect, Cyber Security Architect or Security Consultant. Experience providing security architecture assurance across complex systems or major programmes. Ability to produce clear architecture documentation and security artefacts. Strong understanding of secure design principles, risk management, threat modelling and security controls. Knowledge of UK Government / Defence security standards, guidance and assurance processes. Experience working with senior stakeholders across security, architecture, engineering and delivery. Strong communication skills, with the ability to explain security risk clearly to technical and non-technical audiences. Desirable experience Army programme experience or strong MOD stakeholder exposure. Experience with Sparx Enterprise Architect, ArchiMate, NAFv4 or similar modelling approaches. Knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS or related security frameworks. Experience across IAM, PKI, secure integration, cloud security, data flows and security architecture patterns. Experience reviewing HLDs, LLDs, current-state and future-state designs. CISSP, CISM, ISO27001 Lead Auditor, Microsoft Cybersecurity Architect, AWS Security or similar certifications. JBRP1_UKTJ
Head of Cyber Defence Location: London, GB, N1 9FN Ingenico is the global leader in payments acceptance solutions. As the trusted technology partner for merchants, banks, acquirers, ISVs, payment aggregators and fintech customers our world-class terminals, solutions and services enable the global ecosystem of payments acceptance. With 40 years of experience, innovation is integral to Ingenico's approach and culture, inspiring our large and diverse community of experts who anticipate and help shape the evolution of commerce worldwide. At Ingenico, trust and sustainability are at the heart of everything we do. The Head of Cyber Defense is accountable for protecting the organisation from cyber threats by leading the strategy, governance, and operational execution of all defensive security capabilities. Reporting directly to the Chief Information Security Officer (CISO), the role provides leadership across threat detection, incident response, vulnerability management, application security, cloud and platform security, and identity security. The organisation operates a Managed Security Service Provider (MSSP/MSP) model for Security Operations. The Head of Cyber Defense owns the relationship, performance oversight, and strategic direction of the MSP to ensure high quality, risk aligned security operations. The role leads five specialist domains through the following direct reports: Lead - SecOps Incident Management & Response, Lead - Application Security & Vulnerabilities, Lead - Cloud & Platform Security, Lead - IAM/PAM, and Lead - Incident Response and Cyber Resilience. Key Results Areas 1. Strategic Leadership & Cyber Defense Architecture Define and execute the organisation's Cyber Defense Strategy, ensuring alignment with business objectives and the wider security strategy set by the CISO. Own the end-to-end cyber defense operating model across Enterprise and Tech Ops BAU, ensuring consistent protection and response. Develop and maintain a cohesive defense architecture across detection, response, identity, cloud, and application security. Ensure alignment between internal teams, Tech Ops, and third-party providers (MSSP, platform teams). Drive continuous improvement and maturity uplift across all defensive capabilities. Ensure cyber defense strategy, architecture and control priorities are informed by current threat intelligence, attacker techniques and incident trends. 2. Security Engineering & Platforms Own cybersecurity engineering across endpoint protection (EDR/XDR), network security, email and collaboration security, and cloud and platform security (including Azure, AWS, GCP). Drive secure by design implementation for security tooling, platforms, and integrations. Ensure scalability, resilience, and operational effectiveness of all security controls. 3. Security Operations Oversight (MSP Delivered) Act as the senior owner of the MSP relationship for Security Operations. Set performance expectations, SLAs, KPIs, and quality standards for SOC services. Ensure effective threat detection, triage, escalation, and incident response processes. Own the quality, coverage and continuous improvement of security detection use cases, including validation, tuning and effectiveness of detections delivered by internal platforms and the MSP. Ensure clear escalation paths, governance, and continuous improvement of MSSP services. Lead service reviews, challenge performance, and ensure the MSP delivers measurable risk reduction. 4. Security Incident Response, Crisis & Tabletop Exercises Provide executive oversight of major cyber incidents, ensuring coordinated response across internal teams, MSP, and external partners. Serve as the senior escalation point for high severity incidents. Ensure effective coordination during major incidents with Legal, Data Protection, Communications and senior management, including regulatory and customer impact assessment where required. Ensure post incident reviews, root cause analysis, and remediation plans are completed and embedded. Lead crisis management, preparedness, incident tabletop exercises and crisis simulations across Enterprise IT, and coordinate with Technology security/operations where required. Ensure lessons learned are captured and translated into improved controls and processes. Ensure cyber resilience and technical recovery readiness are embedded into incident response, including coordination with IT disaster recovery and business continuity teams from a cyber perspective. 5. Vulnerability, Application, and Platform Security Oversee the organisation's vulnerability management programme, ensuring timely identification, prioritisation, and remediation of risks. Ensure cloud and platform security controls are effectively designed, implemented, and monitored to support proactive vulnerability management. Define prioritisation, risk based remediation expectations, and escalation for unaddressed vulnerabilities and weaknesses. Ensure effective coordination between teams, including MSP, Product Security, and Technology Ops. 6. Identity, Access, and Privileged Access Management Provide strategic direction for IAM and PAM capabilities, ensuring robust identity governance, access control, and privileged account security. Own global IAM and PAM security from a cyber defense perspective, including technical security architecture, monitoring and detection of identity based threats, and privileged access controls and abuse detection. Oversee the adoption of Zero Trust principles across identity and access. Ensure all cyber defense activities align with regulatory, legal and policy requirements. Contribute to enterprise risk assessments and provide expert input on cyber risk posture. Support the Head of Security Risk Management with evidence and material for audits, risk assessments and customer assurance. Produce clear reporting for the CISO, senior leadership, and governance committees. Lead, mentor, and develop a team of senior security specialists and domain leads. Foster a culture of accountability, innovation, and continuous improvement. Build strong relationships with technology, risk, compliance, and business stakeholders. Candidate Requirements Skills & Experience - Essential Proven leadership experience in cyber defense, security operations, or incident response at scale. Strong understanding of modern security architectures, cloud security, identity security, and application security. Experience managing or governing MSP/MSSP delivered security services. Demonstrated ability to lead during high pressure cyber incidents. Strong stakeholder management and communication skills, including reporting to senior executives. Deep knowledge of threat landscapes, attack techniques, and defensive controls. Experience in regulated industries. Certifications such as CISSP, CISM, CCSP, GIAC, or equivalent. Experience implementing Zero Trust, DevSecOps, or advanced detection engineering. As part of our values, we embrace diversity and inclusion at Ingenico. We are an equal opportunity employer and do not discriminate on the basis of an individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status or any other protected characteristic under applicable law, whether actual or perceived. Ingenico welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process. We want to adapt our processes and create a safe work environment that welcomes everyone. To learn more about what it's like working inside Ingenico, follow us onLinkedIn
22/06/2026
Full time
Head of Cyber Defence Location: London, GB, N1 9FN Ingenico is the global leader in payments acceptance solutions. As the trusted technology partner for merchants, banks, acquirers, ISVs, payment aggregators and fintech customers our world-class terminals, solutions and services enable the global ecosystem of payments acceptance. With 40 years of experience, innovation is integral to Ingenico's approach and culture, inspiring our large and diverse community of experts who anticipate and help shape the evolution of commerce worldwide. At Ingenico, trust and sustainability are at the heart of everything we do. The Head of Cyber Defense is accountable for protecting the organisation from cyber threats by leading the strategy, governance, and operational execution of all defensive security capabilities. Reporting directly to the Chief Information Security Officer (CISO), the role provides leadership across threat detection, incident response, vulnerability management, application security, cloud and platform security, and identity security. The organisation operates a Managed Security Service Provider (MSSP/MSP) model for Security Operations. The Head of Cyber Defense owns the relationship, performance oversight, and strategic direction of the MSP to ensure high quality, risk aligned security operations. The role leads five specialist domains through the following direct reports: Lead - SecOps Incident Management & Response, Lead - Application Security & Vulnerabilities, Lead - Cloud & Platform Security, Lead - IAM/PAM, and Lead - Incident Response and Cyber Resilience. Key Results Areas 1. Strategic Leadership & Cyber Defense Architecture Define and execute the organisation's Cyber Defense Strategy, ensuring alignment with business objectives and the wider security strategy set by the CISO. Own the end-to-end cyber defense operating model across Enterprise and Tech Ops BAU, ensuring consistent protection and response. Develop and maintain a cohesive defense architecture across detection, response, identity, cloud, and application security. Ensure alignment between internal teams, Tech Ops, and third-party providers (MSSP, platform teams). Drive continuous improvement and maturity uplift across all defensive capabilities. Ensure cyber defense strategy, architecture and control priorities are informed by current threat intelligence, attacker techniques and incident trends. 2. Security Engineering & Platforms Own cybersecurity engineering across endpoint protection (EDR/XDR), network security, email and collaboration security, and cloud and platform security (including Azure, AWS, GCP). Drive secure by design implementation for security tooling, platforms, and integrations. Ensure scalability, resilience, and operational effectiveness of all security controls. 3. Security Operations Oversight (MSP Delivered) Act as the senior owner of the MSP relationship for Security Operations. Set performance expectations, SLAs, KPIs, and quality standards for SOC services. Ensure effective threat detection, triage, escalation, and incident response processes. Own the quality, coverage and continuous improvement of security detection use cases, including validation, tuning and effectiveness of detections delivered by internal platforms and the MSP. Ensure clear escalation paths, governance, and continuous improvement of MSSP services. Lead service reviews, challenge performance, and ensure the MSP delivers measurable risk reduction. 4. Security Incident Response, Crisis & Tabletop Exercises Provide executive oversight of major cyber incidents, ensuring coordinated response across internal teams, MSP, and external partners. Serve as the senior escalation point for high severity incidents. Ensure effective coordination during major incidents with Legal, Data Protection, Communications and senior management, including regulatory and customer impact assessment where required. Ensure post incident reviews, root cause analysis, and remediation plans are completed and embedded. Lead crisis management, preparedness, incident tabletop exercises and crisis simulations across Enterprise IT, and coordinate with Technology security/operations where required. Ensure lessons learned are captured and translated into improved controls and processes. Ensure cyber resilience and technical recovery readiness are embedded into incident response, including coordination with IT disaster recovery and business continuity teams from a cyber perspective. 5. Vulnerability, Application, and Platform Security Oversee the organisation's vulnerability management programme, ensuring timely identification, prioritisation, and remediation of risks. Ensure cloud and platform security controls are effectively designed, implemented, and monitored to support proactive vulnerability management. Define prioritisation, risk based remediation expectations, and escalation for unaddressed vulnerabilities and weaknesses. Ensure effective coordination between teams, including MSP, Product Security, and Technology Ops. 6. Identity, Access, and Privileged Access Management Provide strategic direction for IAM and PAM capabilities, ensuring robust identity governance, access control, and privileged account security. Own global IAM and PAM security from a cyber defense perspective, including technical security architecture, monitoring and detection of identity based threats, and privileged access controls and abuse detection. Oversee the adoption of Zero Trust principles across identity and access. Ensure all cyber defense activities align with regulatory, legal and policy requirements. Contribute to enterprise risk assessments and provide expert input on cyber risk posture. Support the Head of Security Risk Management with evidence and material for audits, risk assessments and customer assurance. Produce clear reporting for the CISO, senior leadership, and governance committees. Lead, mentor, and develop a team of senior security specialists and domain leads. Foster a culture of accountability, innovation, and continuous improvement. Build strong relationships with technology, risk, compliance, and business stakeholders. Candidate Requirements Skills & Experience - Essential Proven leadership experience in cyber defense, security operations, or incident response at scale. Strong understanding of modern security architectures, cloud security, identity security, and application security. Experience managing or governing MSP/MSSP delivered security services. Demonstrated ability to lead during high pressure cyber incidents. Strong stakeholder management and communication skills, including reporting to senior executives. Deep knowledge of threat landscapes, attack techniques, and defensive controls. Experience in regulated industries. Certifications such as CISSP, CISM, CCSP, GIAC, or equivalent. Experience implementing Zero Trust, DevSecOps, or advanced detection engineering. As part of our values, we embrace diversity and inclusion at Ingenico. We are an equal opportunity employer and do not discriminate on the basis of an individual's race, national origin, color, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status or any other protected characteristic under applicable law, whether actual or perceived. Ingenico welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process. We want to adapt our processes and create a safe work environment that welcomes everyone. To learn more about what it's like working inside Ingenico, follow us onLinkedIn
Security Architect 2-3 days Bristol then rest remote 6 months likely extension £600pd outside IR35 Active DV or SC clearance required Key Responsibilities Architecture & Design Develop secure architecture designs for container platforms (e.g., Kubernetes, OpenShift, Docker). Architect and strengthen security controls across virtualisation technologies, including VMware, Hyper?V, and cloud-native virtualisation frameworks. Produce high-quality HLDs/LLDs, security patterns, and architectural governance artefacts. Ensure designs align with NCSC guidance, industry best practices (e.g., CIS Benchmarks), and organisational policy. Security Assurance Conduct security assessments and threat modelling against containerised and virtualised workloads. Validate platform configurations against security baselines, compliance frameworks, and risk appetite. Provide expert guidance during project delivery to ensure security by design principles are followed. Support accreditation activities and ensure all architectural documentation meets government standards. DevSecOps & Platform Security Embed security controls within CI/CD pipelines. Advise on secure container image lifecycle management (build, scan, deploy, retire). Evaluate and implement tools for: Container security scanning (e.g., Trivy, Aqua, Twistlock) Runtime protection and workload isolation Secrets and identity management (Vault, KMS, etc.) Define security controls for ingress/egress, service mesh, and inter?container communications. Stakeholder Engagement Work closely with engineering, infrastructure, and security operations teams. Act as SME for containerisation and virtualisation security. Communicate complex technical concepts to both technical and non?technical stakeholders. Influence and guide senior leadership on architectural decisions and risk. Essential Skills & Experience Active SC Clearance (minimum). Proven track record as a Security Architect in large-scale or secure environments. Deep technical knowledge of: Kubernetes, Docker, and container orchestration platforms. Virtualisation platforms such as VMware vSphere/ESXi, Hyper?V, or KVM. Cloud platforms (AWS, Azure, GCP) and container services (AKS/EKS/GKE). Strong understanding of: Network and infrastructure security Zero Trust principles Identity and Access Management (IAM) Secrets management Workload isolation and micro?segmentation Knowledge of security standards and frameworks: NIST, ISO 27001, CIS Benchmarks NCSC Cloud Security Principles Government Security Classifications Policy Desirable Skills Experience with OpenShift or enterprise Kubernetes distributions. Hands?on security tooling (Falco, Istio, Calico, etc.). Experience with SAST/DAST, SBOMs, and software supply chain security. Familiarity with automation tooling (Terraform, Ansible, Helm). Certifications such as: CCSK / CCSP CISSP CISM Kubernetes Security Specialist (CKS) VMware security-related certifications
22/06/2026
Full time
Security Architect 2-3 days Bristol then rest remote 6 months likely extension £600pd outside IR35 Active DV or SC clearance required Key Responsibilities Architecture & Design Develop secure architecture designs for container platforms (e.g., Kubernetes, OpenShift, Docker). Architect and strengthen security controls across virtualisation technologies, including VMware, Hyper?V, and cloud-native virtualisation frameworks. Produce high-quality HLDs/LLDs, security patterns, and architectural governance artefacts. Ensure designs align with NCSC guidance, industry best practices (e.g., CIS Benchmarks), and organisational policy. Security Assurance Conduct security assessments and threat modelling against containerised and virtualised workloads. Validate platform configurations against security baselines, compliance frameworks, and risk appetite. Provide expert guidance during project delivery to ensure security by design principles are followed. Support accreditation activities and ensure all architectural documentation meets government standards. DevSecOps & Platform Security Embed security controls within CI/CD pipelines. Advise on secure container image lifecycle management (build, scan, deploy, retire). Evaluate and implement tools for: Container security scanning (e.g., Trivy, Aqua, Twistlock) Runtime protection and workload isolation Secrets and identity management (Vault, KMS, etc.) Define security controls for ingress/egress, service mesh, and inter?container communications. Stakeholder Engagement Work closely with engineering, infrastructure, and security operations teams. Act as SME for containerisation and virtualisation security. Communicate complex technical concepts to both technical and non?technical stakeholders. Influence and guide senior leadership on architectural decisions and risk. Essential Skills & Experience Active SC Clearance (minimum). Proven track record as a Security Architect in large-scale or secure environments. Deep technical knowledge of: Kubernetes, Docker, and container orchestration platforms. Virtualisation platforms such as VMware vSphere/ESXi, Hyper?V, or KVM. Cloud platforms (AWS, Azure, GCP) and container services (AKS/EKS/GKE). Strong understanding of: Network and infrastructure security Zero Trust principles Identity and Access Management (IAM) Secrets management Workload isolation and micro?segmentation Knowledge of security standards and frameworks: NIST, ISO 27001, CIS Benchmarks NCSC Cloud Security Principles Government Security Classifications Policy Desirable Skills Experience with OpenShift or enterprise Kubernetes distributions. Hands?on security tooling (Falco, Istio, Calico, etc.). Experience with SAST/DAST, SBOMs, and software supply chain security. Familiarity with automation tooling (Terraform, Ansible, Helm). Certifications such as: CCSK / CCSP CISSP CISM Kubernetes Security Specialist (CKS) VMware security-related certifications
About the role We're looking for a Security Engineer to join the ElevenLabs Security team. In this role, you'll work at the intersection of security, software and infrastructure engineering, building the platforms, controls and tooling that let teams ship and operate cloud infrastructure securely at high velocity. Responsibilities Design and build security tools and guardrails that integrate directly into our infrastructure and products Partner with Engineering and Infrastructure teams to review application architectures, develop threat models and build in secure by default patterns throughout the software development lifecycle Identify, prioritise and remediate security vulnerabilities, working directly with engineers and contributing to fixes where required, across the entire stack. Ship new security features which directly improve the security posture of our products in production Design and implement supply chain security controls across build and deployment pipelines, including artefact signing, provenance, dynamic admission controls and SBOM generation Requirements Strong engineering background, with experience building and shipping production systems Proven track record of building and scaling security programs Fluency in at least one programming language (Python, Typescript, Golang etc) with the ability to read, write and maintain production quality code Hands on experience in cloud-native environments (AWS or GCP), Kubernetes, and infrastructure-as-code (Terraform) Strong understanding of cloud security fundamentals: IAM, networking, PKI, linux internals Experience securing CI/CD pipelines to prevent supply chain attacks Bonus Experience securing AI or Machine Learning systems, including training pipelines Background in developer experience or platform engineering, especially building developer tooling Contributions to open source security projects, published research or talks at security conferences Experience working in regulated environments (SOC 2, ISO27001, PCI, HIPAA or similar) Location This role is remote and can be executed globally. However, to facilitate working with the Security Team, we prefer candidates based in GMT to GMT+3 or UK. If you prefer, you can work from our offices in Dublin, London or Warsaw. What we offer Innovative culture: You'll be part of a generational opportunity to define the trajectory of AI, surrounded by a team pushing the boundaries of what's possible. Growth paths: Joining ElevenLabs means joining a dynamic team with countless opportunities to drive impact - beyond your immediate role and responsibilities. Learning & development: ElevenLabs proactively supports professional development through an annual discretionary stipend. Social travel: We also provide an annual discretionary stipend to meet up with colleagues each year, however you choose. Annual company offsite: Each year, we bring the entire team together in a new location - past offsites have included Croatia and Italy. Co-working: If you're not located near one of our main hubs, we offer a monthly co-working stipend.
21/06/2026
Full time
About the role We're looking for a Security Engineer to join the ElevenLabs Security team. In this role, you'll work at the intersection of security, software and infrastructure engineering, building the platforms, controls and tooling that let teams ship and operate cloud infrastructure securely at high velocity. Responsibilities Design and build security tools and guardrails that integrate directly into our infrastructure and products Partner with Engineering and Infrastructure teams to review application architectures, develop threat models and build in secure by default patterns throughout the software development lifecycle Identify, prioritise and remediate security vulnerabilities, working directly with engineers and contributing to fixes where required, across the entire stack. Ship new security features which directly improve the security posture of our products in production Design and implement supply chain security controls across build and deployment pipelines, including artefact signing, provenance, dynamic admission controls and SBOM generation Requirements Strong engineering background, with experience building and shipping production systems Proven track record of building and scaling security programs Fluency in at least one programming language (Python, Typescript, Golang etc) with the ability to read, write and maintain production quality code Hands on experience in cloud-native environments (AWS or GCP), Kubernetes, and infrastructure-as-code (Terraform) Strong understanding of cloud security fundamentals: IAM, networking, PKI, linux internals Experience securing CI/CD pipelines to prevent supply chain attacks Bonus Experience securing AI or Machine Learning systems, including training pipelines Background in developer experience or platform engineering, especially building developer tooling Contributions to open source security projects, published research or talks at security conferences Experience working in regulated environments (SOC 2, ISO27001, PCI, HIPAA or similar) Location This role is remote and can be executed globally. However, to facilitate working with the Security Team, we prefer candidates based in GMT to GMT+3 or UK. If you prefer, you can work from our offices in Dublin, London or Warsaw. What we offer Innovative culture: You'll be part of a generational opportunity to define the trajectory of AI, surrounded by a team pushing the boundaries of what's possible. Growth paths: Joining ElevenLabs means joining a dynamic team with countless opportunities to drive impact - beyond your immediate role and responsibilities. Learning & development: ElevenLabs proactively supports professional development through an annual discretionary stipend. Social travel: We also provide an annual discretionary stipend to meet up with colleagues each year, however you choose. Annual company offsite: Each year, we bring the entire team together in a new location - past offsites have included Croatia and Italy. Co-working: If you're not located near one of our main hubs, we offer a monthly co-working stipend.
At Bionic, we're on a mission to make it radically easier to run a small business. As the UK's leading business comparison and switching service, we help thousands of small and medium size businesses save time and money on essentials like energy, broadband, insurance, and finance. We combine smart technology with real human support to match our customers with the best deals - quickly and effortlessly. With trusted partnerships including Compare the Market, Uswitch for Business, MoneySuperMarket and we're committed to help SMEs get the best deals for their business essentials every time. Role As a Senior Data Engineer you'll be responsible for designing, building, and scaling robust, high quality data platforms that underpin critical business reporting and operational decision making. You will drive the development of data pipelines, models, and architecture across our modern data stack (AWS, Snowflake, dbt) ensuring performance, reliability, and scalability. Working closely with Architecture, Data Analytics, and Salesforce teams, you will drive the evolution of our data platform, guide best practices, and play a key role in modernising legacy processes. You will act as a technical leader within the team, shaping design decisions, mentoring engineers, and ensuring delivery of resilient, well governed data products. This role requires strong technical expertise, strategic thinking, and the ability to translate complex business needs into scalable, production grade data solutions. Key Responsibilities Design, build and optimise scalable data pipelines and data products across AWS, Snowflake and dbt, setting engineering standards and best practices. Lead the development of robust, testable dbt models and frameworks to ensure high data quality, consistency, and maintainability. Own data pipeline reliability, proactively monitoring, troubleshooting, and resolving complex data and performance issues with minimal disruption. Architect and evolve analytics ready data models (e.g., star schemas, data marts), balancing performance, flexibility, and usability. Collaborate with senior stakeholders (Analytics, Salesforce, Architecture) to define requirements and translate them into scalable technical solutions. Drive continuous improvement of data engineering practices, including CI/CD, observability, testing frameworks, and documentation standards. Provide technical leadership through mentoring, code reviews, and guidance to junior team members, fostering engineering excellence. Ensure compliance with security, governance, and data privacy requirements, embedding best practices in all solutions. Contribute to strategic data platform decisions, including tooling, architecture, and long term roadmap planning. Essential Skills and Experience Required Proven experience designing, building and maintaining scalable data pipelines and cloud based data platforms in production environments. Advanced SQL expertise, including query optimisation, performance tuning and complex data transformations. Strong Python skills for data engineering, automation and system integrations. Hands on experience with Snowflake (or similar cloud data warehouse), including data modelling, optimisation and security/access controls. Strong experience with dbt, including modelling, testing and deployment best practices. Solid knowledge of AWS data services and cloud native architectures (e.g. S3, Lambda, IAM, CloudWatch). Experience with modern software engineering practices, including Git, CI/CD and automated testing. Strong understanding of data modelling and data warehousing principles. Ability to solve complex problems, identify root causes and deliver scalable, reliable solutions. Experience leading technical delivery, influencing architectural decisions and collaborating across multiple stakeholders. Comfortable working in ambiguity, translating complex business requirements into structured technical solutions. Strong communication skills, with the ability to engage both technical and non technical audiences. Nice to have Experience with real time or streaming data architectures. Exposure to Salesforce data models and API integrations. Experience using AWS CDK for infrastructure deployment. Familiarity with orchestration tools such as Airflow. Experience implementing data observability, monitoring and alerting solutions. Knowledge of BI platforms such as Tableau and how data products are consumed by end users. Exposure to MLOps practices, including supporting machine learning pipelines, model deployment and monitoring. Awareness of emerging trends, technologies and best practices within modern data engineering. Why Join Bionic At Bionic, better never stops. You'll join a team obsessed with improvement, innovation and impact - where your expertise will directly shape how thousands of British businesses grow and thrive. Benefits We know that our employees are what sets us aside from our competitors; our benefits are just part of the way we say thanks. Health & Wellbeing Private healthcare cover Employee Assistance Programme, including a virtual GP service, priority physio & talking therapies Eyecare scheme Time Off 25 days annual leave plus the 8 UK bank holidays, increasing with tenure 1 paid family/religious day of leave per year - following successful probation period 1 paid charity volunteering day per year Option to buy/sell up to an additional 3 days leave per year Family Matters Enhanced maternity, paternity or shared parental leave 2 days off for your wedding upon joining, and up to 5 days after 2 years service Flexible working options & a hybrid work approach Financial Wellbeing Auto enrolled salary sacrifice pension scheme Life assurance Season ticket loans, salary advances & loans to buy or rent a home - based on tenure Cycle to work scheme Recognition Highflyers incentive, a VIP experience for our high performers across Bionic group to celebrate success Company summer & Christmas party celebrations, business and local zone & annual awards and recognition Long service awards
21/06/2026
Full time
At Bionic, we're on a mission to make it radically easier to run a small business. As the UK's leading business comparison and switching service, we help thousands of small and medium size businesses save time and money on essentials like energy, broadband, insurance, and finance. We combine smart technology with real human support to match our customers with the best deals - quickly and effortlessly. With trusted partnerships including Compare the Market, Uswitch for Business, MoneySuperMarket and we're committed to help SMEs get the best deals for their business essentials every time. Role As a Senior Data Engineer you'll be responsible for designing, building, and scaling robust, high quality data platforms that underpin critical business reporting and operational decision making. You will drive the development of data pipelines, models, and architecture across our modern data stack (AWS, Snowflake, dbt) ensuring performance, reliability, and scalability. Working closely with Architecture, Data Analytics, and Salesforce teams, you will drive the evolution of our data platform, guide best practices, and play a key role in modernising legacy processes. You will act as a technical leader within the team, shaping design decisions, mentoring engineers, and ensuring delivery of resilient, well governed data products. This role requires strong technical expertise, strategic thinking, and the ability to translate complex business needs into scalable, production grade data solutions. Key Responsibilities Design, build and optimise scalable data pipelines and data products across AWS, Snowflake and dbt, setting engineering standards and best practices. Lead the development of robust, testable dbt models and frameworks to ensure high data quality, consistency, and maintainability. Own data pipeline reliability, proactively monitoring, troubleshooting, and resolving complex data and performance issues with minimal disruption. Architect and evolve analytics ready data models (e.g., star schemas, data marts), balancing performance, flexibility, and usability. Collaborate with senior stakeholders (Analytics, Salesforce, Architecture) to define requirements and translate them into scalable technical solutions. Drive continuous improvement of data engineering practices, including CI/CD, observability, testing frameworks, and documentation standards. Provide technical leadership through mentoring, code reviews, and guidance to junior team members, fostering engineering excellence. Ensure compliance with security, governance, and data privacy requirements, embedding best practices in all solutions. Contribute to strategic data platform decisions, including tooling, architecture, and long term roadmap planning. Essential Skills and Experience Required Proven experience designing, building and maintaining scalable data pipelines and cloud based data platforms in production environments. Advanced SQL expertise, including query optimisation, performance tuning and complex data transformations. Strong Python skills for data engineering, automation and system integrations. Hands on experience with Snowflake (or similar cloud data warehouse), including data modelling, optimisation and security/access controls. Strong experience with dbt, including modelling, testing and deployment best practices. Solid knowledge of AWS data services and cloud native architectures (e.g. S3, Lambda, IAM, CloudWatch). Experience with modern software engineering practices, including Git, CI/CD and automated testing. Strong understanding of data modelling and data warehousing principles. Ability to solve complex problems, identify root causes and deliver scalable, reliable solutions. Experience leading technical delivery, influencing architectural decisions and collaborating across multiple stakeholders. Comfortable working in ambiguity, translating complex business requirements into structured technical solutions. Strong communication skills, with the ability to engage both technical and non technical audiences. Nice to have Experience with real time or streaming data architectures. Exposure to Salesforce data models and API integrations. Experience using AWS CDK for infrastructure deployment. Familiarity with orchestration tools such as Airflow. Experience implementing data observability, monitoring and alerting solutions. Knowledge of BI platforms such as Tableau and how data products are consumed by end users. Exposure to MLOps practices, including supporting machine learning pipelines, model deployment and monitoring. Awareness of emerging trends, technologies and best practices within modern data engineering. Why Join Bionic At Bionic, better never stops. You'll join a team obsessed with improvement, innovation and impact - where your expertise will directly shape how thousands of British businesses grow and thrive. Benefits We know that our employees are what sets us aside from our competitors; our benefits are just part of the way we say thanks. Health & Wellbeing Private healthcare cover Employee Assistance Programme, including a virtual GP service, priority physio & talking therapies Eyecare scheme Time Off 25 days annual leave plus the 8 UK bank holidays, increasing with tenure 1 paid family/religious day of leave per year - following successful probation period 1 paid charity volunteering day per year Option to buy/sell up to an additional 3 days leave per year Family Matters Enhanced maternity, paternity or shared parental leave 2 days off for your wedding upon joining, and up to 5 days after 2 years service Flexible working options & a hybrid work approach Financial Wellbeing Auto enrolled salary sacrifice pension scheme Life assurance Season ticket loans, salary advances & loans to buy or rent a home - based on tenure Cycle to work scheme Recognition Highflyers incentive, a VIP experience for our high performers across Bionic group to celebrate success Company summer & Christmas party celebrations, business and local zone & annual awards and recognition Long service awards
Senior Cloud EngineerApplyremote type: Hybridlocations: Crawley, United Kingdom: Conwy, United Kingdomtime type: Full timeposted on: Posted Yesterdayjob requisition id: JR101309Viridien () is an advanced technology, digital and Earth data company that pushes the boundaries of science for a more prosperous and sustainable future. With our ingenuity, drive and deep curiosity we discover new insights, innovations, and solutions that efficiently and responsibly resolve complex natural resource, digital, energy transition and infrastructure challenges. Job Details Viridien is seeking a Senior Cloud Engineer to lead the implementation and operation of secure, scalable cloud platforms across both Viridien and client environments.This role is responsible for translating cloud architectures into production-ready solutions, supporting the deployment of Data Hub's data transformation and analytics platform across multiple cloud environments. You will work closely with software, data, and infrastructure teams to deliver reliable, secure, and repeatable deployments while ensuring operational excellence and adherence to governance requirements. About The Team You will join the Data Hub team, a multidisciplinary group of scientists, engineers, and developers focused on solving complex data transformation and analytics challenges across industries including geothermal, environmental, hydrocarbon, and mineral exploration.The team works in a collaborative environment alongside data engineers, machine learning engineers, and software developers. This role is based in either North Wales or Crawley with a hybrid working arrangement. Key Responsibilities Cloud Platform Engineering Implement cloud architectures within Viridien and client environments. Build and automate cloud foundations including networking, identity, governance, and security controls. Deliver and operate Kubernetes-based platforms, primarily using Azure Kubernetes Service (AKS). Infrastructure Automation & Deployment Develop and maintain Infrastructure as Code using Terraform, Bicep, or similar tools. Build and manage CI/CD pipelines, deployment processes, and release controls. Create reusable cloud modules and deployment patterns to improve consistency and scalability. Security & Governance Implement security controls including IAM/RBAC, network segmentation, encryption, secrets management, and policy enforcement. Ensure cloud platforms meet security, compliance, and governance requirements. Support vulnerability management and security monitoring practices. Operations & Reliability Implement monitoring, alerting, backup, and disaster recovery solutions. Troubleshoot and resolve complex issues across cloud, Kubernetes, and database platforms. Develop operational documentation, runbooks, and knowledge transfer materials. Stakeholder Collaboration Work closely with software teams, client stakeholders, and operations teams to deliver cloud solutions. Support technical planning, risk management, and deployment activities. Contribute to engineering standards, best practices, and continuous improvement initiatives. Qualifications Required Proven experience delivering production cloud environments, particularly within Microsoft Azure. Strong experience implementing and operating Kubernetes platforms. Experience deploying and supporting database platforms using both PaaS and VM-based solutions. Strong experience with Infrastructure as Code tools such as Terraform or Bicep. Experience building and maintaining CI/CD pipelines. Strong understanding of cloud security principles, including IAM, networking, encryption, and secrets management. Experience troubleshooting networking, distributed systems, and cloud platform issues. Ability to work independently and take ownership of technical delivery. Preferred Experience with AWS and/or OpenStack environments. Experience implementing landing zones and cloud governance frameworks. Scripting and automation experience using PowerShell, Python, or Bash. Experience with policy-as-code and cloud security tooling. Experience supporting hybrid or private cloud environments. Experience working within highly regulated or security-sensitive environments. Additional Information Hybrid working available from North Wales or Crawley. Opportunity to work across both Viridien and client cloud environments. Collaboration with software, data, and machine learning teams on large-scale data and analytics platforms. Why work with us? Competitive salary commensurate with experience Highly attractive bonus scheme Hybrid model and flexible working with up to 2 days at home Initial 22 days annual leave with future increases, complemented by a flexible buying and selling holiday program Company pension with generous employer contribution Wellbeing Unmind app - puts you in control of your mental health A flexible benefits platform with numerous discount schemes - gym membership, restaurants, cinema tickets, and much more! Regular social club events, spontaneous reward events throughout the year Cycle purchase scheme Flexible Private Medical & Dental care programmes Sponsorship of visas/comprehensive relocation packages Bank Holiday Swap - our holiday swap program allows you to change it for another day of your choice! Relaxed dress code policy L earning and Development At Viridien, we foster a culture of continuous learning and provide tailored training programs through our Learning Hub, designed to enhance technical, commercial, and personal growth. We Care About The Environment We encourage and actively support a strong sense of community, through volunteering and various company initiatives, as well as a strong company commitment to protecting our environment through sustainable solutions, energy saving and waste reduction enterprises. Our Hiring Process At Viridien, we are committed to delivering a respectful, inclusive, and transparent recruitment experience.Due to the high volume of applications we receive, we may not be able to provide individual feedback to every applicant. Only candidates whose qualifications closely match the role criteria will be contacted for an interview. We do, however, aim to share personalized feedback with those who progress to the first round of interviews and beyond.We are also dedicated to ensuring that our hiring process accessible to all. If you require any reasonable adjustments to fully participate in the application or interview stages, please don't hesitate to contact your recruiter directly.We see things differently. Diversity fuels our innovation, we value the unique ways in which we differ, and we are committed to equal employment opportunities for all professionals.
21/06/2026
Full time
Senior Cloud EngineerApplyremote type: Hybridlocations: Crawley, United Kingdom: Conwy, United Kingdomtime type: Full timeposted on: Posted Yesterdayjob requisition id: JR101309Viridien () is an advanced technology, digital and Earth data company that pushes the boundaries of science for a more prosperous and sustainable future. With our ingenuity, drive and deep curiosity we discover new insights, innovations, and solutions that efficiently and responsibly resolve complex natural resource, digital, energy transition and infrastructure challenges. Job Details Viridien is seeking a Senior Cloud Engineer to lead the implementation and operation of secure, scalable cloud platforms across both Viridien and client environments.This role is responsible for translating cloud architectures into production-ready solutions, supporting the deployment of Data Hub's data transformation and analytics platform across multiple cloud environments. You will work closely with software, data, and infrastructure teams to deliver reliable, secure, and repeatable deployments while ensuring operational excellence and adherence to governance requirements. About The Team You will join the Data Hub team, a multidisciplinary group of scientists, engineers, and developers focused on solving complex data transformation and analytics challenges across industries including geothermal, environmental, hydrocarbon, and mineral exploration.The team works in a collaborative environment alongside data engineers, machine learning engineers, and software developers. This role is based in either North Wales or Crawley with a hybrid working arrangement. Key Responsibilities Cloud Platform Engineering Implement cloud architectures within Viridien and client environments. Build and automate cloud foundations including networking, identity, governance, and security controls. Deliver and operate Kubernetes-based platforms, primarily using Azure Kubernetes Service (AKS). Infrastructure Automation & Deployment Develop and maintain Infrastructure as Code using Terraform, Bicep, or similar tools. Build and manage CI/CD pipelines, deployment processes, and release controls. Create reusable cloud modules and deployment patterns to improve consistency and scalability. Security & Governance Implement security controls including IAM/RBAC, network segmentation, encryption, secrets management, and policy enforcement. Ensure cloud platforms meet security, compliance, and governance requirements. Support vulnerability management and security monitoring practices. Operations & Reliability Implement monitoring, alerting, backup, and disaster recovery solutions. Troubleshoot and resolve complex issues across cloud, Kubernetes, and database platforms. Develop operational documentation, runbooks, and knowledge transfer materials. Stakeholder Collaboration Work closely with software teams, client stakeholders, and operations teams to deliver cloud solutions. Support technical planning, risk management, and deployment activities. Contribute to engineering standards, best practices, and continuous improvement initiatives. Qualifications Required Proven experience delivering production cloud environments, particularly within Microsoft Azure. Strong experience implementing and operating Kubernetes platforms. Experience deploying and supporting database platforms using both PaaS and VM-based solutions. Strong experience with Infrastructure as Code tools such as Terraform or Bicep. Experience building and maintaining CI/CD pipelines. Strong understanding of cloud security principles, including IAM, networking, encryption, and secrets management. Experience troubleshooting networking, distributed systems, and cloud platform issues. Ability to work independently and take ownership of technical delivery. Preferred Experience with AWS and/or OpenStack environments. Experience implementing landing zones and cloud governance frameworks. Scripting and automation experience using PowerShell, Python, or Bash. Experience with policy-as-code and cloud security tooling. Experience supporting hybrid or private cloud environments. Experience working within highly regulated or security-sensitive environments. Additional Information Hybrid working available from North Wales or Crawley. Opportunity to work across both Viridien and client cloud environments. Collaboration with software, data, and machine learning teams on large-scale data and analytics platforms. Why work with us? Competitive salary commensurate with experience Highly attractive bonus scheme Hybrid model and flexible working with up to 2 days at home Initial 22 days annual leave with future increases, complemented by a flexible buying and selling holiday program Company pension with generous employer contribution Wellbeing Unmind app - puts you in control of your mental health A flexible benefits platform with numerous discount schemes - gym membership, restaurants, cinema tickets, and much more! Regular social club events, spontaneous reward events throughout the year Cycle purchase scheme Flexible Private Medical & Dental care programmes Sponsorship of visas/comprehensive relocation packages Bank Holiday Swap - our holiday swap program allows you to change it for another day of your choice! Relaxed dress code policy L earning and Development At Viridien, we foster a culture of continuous learning and provide tailored training programs through our Learning Hub, designed to enhance technical, commercial, and personal growth. We Care About The Environment We encourage and actively support a strong sense of community, through volunteering and various company initiatives, as well as a strong company commitment to protecting our environment through sustainable solutions, energy saving and waste reduction enterprises. Our Hiring Process At Viridien, we are committed to delivering a respectful, inclusive, and transparent recruitment experience.Due to the high volume of applications we receive, we may not be able to provide individual feedback to every applicant. Only candidates whose qualifications closely match the role criteria will be contacted for an interview. We do, however, aim to share personalized feedback with those who progress to the first round of interviews and beyond.We are also dedicated to ensuring that our hiring process accessible to all. If you require any reasonable adjustments to fully participate in the application or interview stages, please don't hesitate to contact your recruiter directly.We see things differently. Diversity fuels our innovation, we value the unique ways in which we differ, and we are committed to equal employment opportunities for all professionals.
Job description: Data Engineer Location: London or Newcastle with a minimum of 2 days a week office attendance. Contract Type: Permanent Full Time. Salary: London c£70,000; Newcastle £61,250 plus civil service employer pension employer contribution of 28.9%. The deadline for applications is 5.00pm Sunday 5th July. We will be holding first stage online interviews WC 6th July followed by a final 2nd stage interviews on the 14th and 15th July. Nationality Requirement UK Nationals Nationals of Commonwealth countries who have the right to work in the UK Nationals from the EU, EEA or Switzerland with (or eligible for) status under the European Union Settlement Scheme (EUSS) We do not provide sponsorship for work visas for this position. Applicants must already meet the nationality requirements outlined above. If you have any questions regarding your eligibility, please contact the HR Service desk at . About the National Audit Office The National Audit Office (NAO) is the UK's main public sector audit body. Independent of government, we are responsible for auditing the accounts of various public sector bodies, examining the propriety of government spending, assessing risks to financial control and accountability, and reviewing the economy, efficiency and effectiveness of programmes, projects, and activities. We report directly to Parliament, through the Committee of Public Accounts of the House of Commons which uses our reports as the basis of its own investigations. We employ approx. 1,000 people, most of whom are qualified accountants, trainees, or technicians. The organisation comprises two service lines: financial audit, and value for money (VFM) audit, and has a strong core of highly talented corporate teams. The NAO welcomes applications from everyone. We value diversity in all its forms and the difference it makes to our organisation. By removing barriers and creating an inclusive culture, all our people can develop and maximise their full potential. We guarantee to interview all disabled applicants who meet the minimum criteria. The NAO supports flexible working and is happy to discuss this with you at application stage. Context and main purpose of the job This is a new vacancy created within NAO's Digital Services (DS) to expand the data team within the Audit Technology & Data pillar, with responsibility for designing, building, and maintaining the infrastructure that enables robust data ingestion process, storage, and access across the organisation. This role supports the development and continual improvement of NAO data & technology service composition and provision, enabling scalable and reliable data solutions. In this capacity, you will build and optimise data pipelines, integrate diverse data sources, and ensure the efficient movement of data across systems. You will work closely with analytics engineers, data scientists, and other stakeholders to ensure data is accessible, high quality, and fit for purpose. Your work will underpin the NAO's ability to derive insights and automate processes using corporate and client data. In this role, you will Design, develop, and maintain scalable data pipelines and ETL processes. Integrate structured and unstructured data from internal and external sources. Ensure data quality, consistency, and security across systems in alignment with the NAO's data strategy. Collaborate with analytics engineers and subject matter experts to support data modelling and transformation. Work closely with other digital roles including Cybersecurity, BI, Architecture to ensure effective delivery. Monitor and optimise performance of data infrastructure. Test, monitor, and document data architecture and engineering processes to ensure transparency and maintainability. This role reports into the Audit Data Platform Lead. This role requires regular attendance at the NAO's office either in Victoria, London, or at the office in Newcastle. Responsibilities of the role As a data engineer at the NAO, you will play a critical role in building and maintaining the technical foundation that enables data driven operations and insights. You will be responsible for architecting and managing data infrastructure, ensuring that data flows securely and efficiently across systems, and enabling downstream users to access reliable, well structured data. Your key responsibilities will include Building scalable data infrastructure - design and implement systems that support the ingestion, storage, and processing of large volumes of structured and unstructured data from internal and external sources. Developing robust data pipelines - create automated workflows that extract, transform, and load data into centralized platforms, ensuring consistency, reliability, and performance across all stages. Designing and optimising ETL processes - build and maintain efficient ETL workflows to move data from source systems into usable formats. Ensure these processes are scalable, well documented, and aligned with data quality standards. Integrating diverse data sources - connect and harmonise data from various systems (operational databases, APIs, cloud services) to create unified datasets for analysis and reporting. Collaborating across teams - work closely with analytics engineers, data scientists, and business stakeholders to understand data needs and deliver infrastructure that supports analytical and operational use cases. Ensuring data reliability and performance - monitor data systems for latency, failures, and bottlenecks. Implement performance tuning and system optimisations to maintain high availability and responsiveness. Implementing data governance and security protocols - apply best practices for data privacy, access control, and compliance. Ensure that sensitive data is protected and handled in accordance with regulatory requirements. Maintaining technical documentation - produce and update documentation for data architecture, pipeline configurations, and operational procedures to support transparency and continuity. Troubleshooting and incident response - investigate and resolve data related issues, from pipeline failures to data integrity concerns. Establish proactive monitoring and alerting systems. Supporting data accessibility - enable self service access to clean, well organised data for analysts and other users through tools, APIs, or data platforms. Keeping pace with technology - stay informed about emerging tools, frameworks, and methodologies in data engineering. Continuously evaluate and adopt innovations that improve efficiency and scalability. Key skills / competencies required Communicating between the technical and non-technical (Skill level: Awareness). You can explain why it is important to communicate technical concepts in non-technical language and understand the types of communication used with internal and external stakeholders. Data analysis and synthesis (Skill level: Working). You can undertake data profiling and source system analysis and present clear insights to colleagues to support the end use of the data. Data development process (Skill level: Working). You can design, build, and test data products based on feeds from multiple systems, using a range of storage technologies and access methods. You create repeatable and reusable products. Data innovation (Skill level: Awareness). You show awareness of opportunities for innovation with new tools and uses of data. Data integration design (Skill level: Working). You deliver data solutions in accordance with agreed organisational standards that ensure services are resilient, scalable, and future proof. Data modelling (Skill level: Working). You understand the concepts and principles of data modelling and can produce, maintain, and update relevant data models and reverse engineer models from live systems. Metadata management (Skill level: Working). You use metadata repositories to complete complex tasks such as data and systems integration impact analysis and maintain them to ensure accuracy and currency. Problem management (Skill level: Awareness). You investigate problems in systems, processes, and services and contribute to the implementation of remedies and preventative measures. Programming and build (Data Engineering) (Skill level: Working). You can design, code, test, correct, and document simple programs or scripts under direction and follow agreed standards and tools. Technical understanding (Skill level: Working). You understand core technical concepts related to the role and apply them with guidance. Testing (Skill level: Working). You review requirements and specifications, define test conditions, identify issues and risks, and report test activities and results. Essential Criteria Deep, hands on experience as a cloud based Data Engineer, ideally within Microsoft Azure environments. Expert level experience designing and delivering ETL/ELT pipelines at scale. Strong experience in data modelling, including standardisation, best practice, and semantic layer design. Advanced Python skills for data processing, optimisation, and automation. Strong SQL expertise, including T SQL and PostgreSQL. Proven experience implementing and operating medallion architecture patterns. Experience with cloud native Azure data services, including: Azure Databricks Microsoft Fabric Azure Data Factory . click apply for full job details
21/06/2026
Full time
Job description: Data Engineer Location: London or Newcastle with a minimum of 2 days a week office attendance. Contract Type: Permanent Full Time. Salary: London c£70,000; Newcastle £61,250 plus civil service employer pension employer contribution of 28.9%. The deadline for applications is 5.00pm Sunday 5th July. We will be holding first stage online interviews WC 6th July followed by a final 2nd stage interviews on the 14th and 15th July. Nationality Requirement UK Nationals Nationals of Commonwealth countries who have the right to work in the UK Nationals from the EU, EEA or Switzerland with (or eligible for) status under the European Union Settlement Scheme (EUSS) We do not provide sponsorship for work visas for this position. Applicants must already meet the nationality requirements outlined above. If you have any questions regarding your eligibility, please contact the HR Service desk at . About the National Audit Office The National Audit Office (NAO) is the UK's main public sector audit body. Independent of government, we are responsible for auditing the accounts of various public sector bodies, examining the propriety of government spending, assessing risks to financial control and accountability, and reviewing the economy, efficiency and effectiveness of programmes, projects, and activities. We report directly to Parliament, through the Committee of Public Accounts of the House of Commons which uses our reports as the basis of its own investigations. We employ approx. 1,000 people, most of whom are qualified accountants, trainees, or technicians. The organisation comprises two service lines: financial audit, and value for money (VFM) audit, and has a strong core of highly talented corporate teams. The NAO welcomes applications from everyone. We value diversity in all its forms and the difference it makes to our organisation. By removing barriers and creating an inclusive culture, all our people can develop and maximise their full potential. We guarantee to interview all disabled applicants who meet the minimum criteria. The NAO supports flexible working and is happy to discuss this with you at application stage. Context and main purpose of the job This is a new vacancy created within NAO's Digital Services (DS) to expand the data team within the Audit Technology & Data pillar, with responsibility for designing, building, and maintaining the infrastructure that enables robust data ingestion process, storage, and access across the organisation. This role supports the development and continual improvement of NAO data & technology service composition and provision, enabling scalable and reliable data solutions. In this capacity, you will build and optimise data pipelines, integrate diverse data sources, and ensure the efficient movement of data across systems. You will work closely with analytics engineers, data scientists, and other stakeholders to ensure data is accessible, high quality, and fit for purpose. Your work will underpin the NAO's ability to derive insights and automate processes using corporate and client data. In this role, you will Design, develop, and maintain scalable data pipelines and ETL processes. Integrate structured and unstructured data from internal and external sources. Ensure data quality, consistency, and security across systems in alignment with the NAO's data strategy. Collaborate with analytics engineers and subject matter experts to support data modelling and transformation. Work closely with other digital roles including Cybersecurity, BI, Architecture to ensure effective delivery. Monitor and optimise performance of data infrastructure. Test, monitor, and document data architecture and engineering processes to ensure transparency and maintainability. This role reports into the Audit Data Platform Lead. This role requires regular attendance at the NAO's office either in Victoria, London, or at the office in Newcastle. Responsibilities of the role As a data engineer at the NAO, you will play a critical role in building and maintaining the technical foundation that enables data driven operations and insights. You will be responsible for architecting and managing data infrastructure, ensuring that data flows securely and efficiently across systems, and enabling downstream users to access reliable, well structured data. Your key responsibilities will include Building scalable data infrastructure - design and implement systems that support the ingestion, storage, and processing of large volumes of structured and unstructured data from internal and external sources. Developing robust data pipelines - create automated workflows that extract, transform, and load data into centralized platforms, ensuring consistency, reliability, and performance across all stages. Designing and optimising ETL processes - build and maintain efficient ETL workflows to move data from source systems into usable formats. Ensure these processes are scalable, well documented, and aligned with data quality standards. Integrating diverse data sources - connect and harmonise data from various systems (operational databases, APIs, cloud services) to create unified datasets for analysis and reporting. Collaborating across teams - work closely with analytics engineers, data scientists, and business stakeholders to understand data needs and deliver infrastructure that supports analytical and operational use cases. Ensuring data reliability and performance - monitor data systems for latency, failures, and bottlenecks. Implement performance tuning and system optimisations to maintain high availability and responsiveness. Implementing data governance and security protocols - apply best practices for data privacy, access control, and compliance. Ensure that sensitive data is protected and handled in accordance with regulatory requirements. Maintaining technical documentation - produce and update documentation for data architecture, pipeline configurations, and operational procedures to support transparency and continuity. Troubleshooting and incident response - investigate and resolve data related issues, from pipeline failures to data integrity concerns. Establish proactive monitoring and alerting systems. Supporting data accessibility - enable self service access to clean, well organised data for analysts and other users through tools, APIs, or data platforms. Keeping pace with technology - stay informed about emerging tools, frameworks, and methodologies in data engineering. Continuously evaluate and adopt innovations that improve efficiency and scalability. Key skills / competencies required Communicating between the technical and non-technical (Skill level: Awareness). You can explain why it is important to communicate technical concepts in non-technical language and understand the types of communication used with internal and external stakeholders. Data analysis and synthesis (Skill level: Working). You can undertake data profiling and source system analysis and present clear insights to colleagues to support the end use of the data. Data development process (Skill level: Working). You can design, build, and test data products based on feeds from multiple systems, using a range of storage technologies and access methods. You create repeatable and reusable products. Data innovation (Skill level: Awareness). You show awareness of opportunities for innovation with new tools and uses of data. Data integration design (Skill level: Working). You deliver data solutions in accordance with agreed organisational standards that ensure services are resilient, scalable, and future proof. Data modelling (Skill level: Working). You understand the concepts and principles of data modelling and can produce, maintain, and update relevant data models and reverse engineer models from live systems. Metadata management (Skill level: Working). You use metadata repositories to complete complex tasks such as data and systems integration impact analysis and maintain them to ensure accuracy and currency. Problem management (Skill level: Awareness). You investigate problems in systems, processes, and services and contribute to the implementation of remedies and preventative measures. Programming and build (Data Engineering) (Skill level: Working). You can design, code, test, correct, and document simple programs or scripts under direction and follow agreed standards and tools. Technical understanding (Skill level: Working). You understand core technical concepts related to the role and apply them with guidance. Testing (Skill level: Working). You review requirements and specifications, define test conditions, identify issues and risks, and report test activities and results. Essential Criteria Deep, hands on experience as a cloud based Data Engineer, ideally within Microsoft Azure environments. Expert level experience designing and delivering ETL/ELT pipelines at scale. Strong experience in data modelling, including standardisation, best practice, and semantic layer design. Advanced Python skills for data processing, optimisation, and automation. Strong SQL expertise, including T SQL and PostgreSQL. Proven experience implementing and operating medallion architecture patterns. Experience with cloud native Azure data services, including: Azure Databricks Microsoft Fabric Azure Data Factory . click apply for full job details
Newcastle upon Tyne, United Kingdom Posted on 17/06/2026 Scrumconnect Consulting is a leading digital transformation consultancy delivering innovative, user-centred technology solutions across the public and private sectors. We specialise in helping organisations build scalable, secure, and accessible digital services by combining agile delivery, engineering excellence, and collaborative ways of working. Our multidisciplinary teams work across cloud engineering, software development, user-centred design, data, and DevOps to create impactful digital products that improve outcomes for millions of users. We foster a culture of continuous learning, innovation, and inclusion, empowering our people to deliver meaningful change while growing their careers in a supportive environment. Location: UK (Remote with occasional travel as required) Employment Type: Permanent / Contract Security Clearance: SC Clearance Required (or eligibility to obtain SC Clearance) Role Overview Scrumconnect is seeking an experienced AWS DevOps Engineer to support the delivery of large-scale digital services within a complex cloud environment. You will be responsible for building, maintaining, and optimising AWS infrastructure, deployment pipelines, and cloud operations across multiple environments. The role will involve working closely with multidisciplinary teams, including software developers, architects, testers, and delivery teams, to deliver secure, scalable, and resilient solutions. The successful candidate will have strong experience across AWS services, CI/CD pipelines, infrastructure automation, and modern application architectures comprising React front-end applications, microservices, serverless functions, and event-driven integrations. Key Responsibilities Support the setup, configuration, and management of multiple AWS environments across development, test, staging, and production. Build, maintain, and optimise CI/CD pipelines using Git-based tooling. Manage AWS infrastructure supporting a mix of React front-end applications, microservices, AWS Lambda functions, and Kafka event integrations. Support integrations involving ETL processes and Robotic Process Automation (RPA) solutions. Implement and manage secure networking patterns, including AWS Transit Gateway and PrivateLink where required. Support the deployment and management of Kong Enterprise API Gateway. Administer Multi-Factor Authentication (MFA) and AWS Identity and Access Management (IAM) roles and permissions for development teams. Ensure AWS resources are correctly tagged and managed in accordance with FinOps standards and governance requirements. Monitor system performance, availability, and reliability across environments. Collaborate with engineering teams to improve automation, deployment efficiency, and operational excellence. Troubleshoot infrastructure and deployment issues across cloud environments. Contribute to cloud security best practices and continuous improvement initiatives. Support the delivery of highly accessible digital services, ensuring front-end solutions align with WCAG 2.2 AAA accessibility standards. Strong experience designing, deploying, and supporting AWS cloud infrastructure. Experience managing multiple environments within AWS. Strong knowledge of CI/CD pipelines and Git-based workflows. Experience supporting modern application architectures, including: React front-end applications Microservices AWS Lambda functions Event-driven architectures using Kafka Experience with Infrastructure as Code (Terraform, CloudFormation, or equivalent). Strong understanding of AWS networking concepts, including Transit Gateway and PrivateLink. Experience administering IAM, MFA, and security controls. Knowledge of API management platforms such as Kong Enterprise. Experience implementing cloud governance and FinOps practices, including resource tagging standards. Strong troubleshooting and problem-solving skills. Experience working within Agile delivery teams. Experience supporting ETL pipelines and data integration solutions. Exposure to Robotic Process Automation (RPA) platforms. Experience delivering services within UK Government or highly regulated environments. Familiarity with accessibility standards, particularly WCAG 2.2. Knowledge of monitoring and observability tools such as CloudWatch, Grafana, or Prometheus. What We Offer Opportunity to work on impactful digital transformation programmes. Collaborative and supportive working environment. Exposure to modern cloud technologies and large-scale platforms. Continuous learning and professional development opportunities. Flexible working arrangements. Diversity & Inclusion At Scrumconnect, we are committed to creating an inclusive workplace where everyone can thrive. We welcome applications from individuals of all backgrounds, experiences, and perspectives and are dedicated to fostering a diverse workforce that reflects the communities we serve. We are an equal opportunities employer and actively encourage applications from underrepresented groups. Reasonable adjustments are available throughout the recruitment process to support candidates who may require them.
21/06/2026
Full time
Newcastle upon Tyne, United Kingdom Posted on 17/06/2026 Scrumconnect Consulting is a leading digital transformation consultancy delivering innovative, user-centred technology solutions across the public and private sectors. We specialise in helping organisations build scalable, secure, and accessible digital services by combining agile delivery, engineering excellence, and collaborative ways of working. Our multidisciplinary teams work across cloud engineering, software development, user-centred design, data, and DevOps to create impactful digital products that improve outcomes for millions of users. We foster a culture of continuous learning, innovation, and inclusion, empowering our people to deliver meaningful change while growing their careers in a supportive environment. Location: UK (Remote with occasional travel as required) Employment Type: Permanent / Contract Security Clearance: SC Clearance Required (or eligibility to obtain SC Clearance) Role Overview Scrumconnect is seeking an experienced AWS DevOps Engineer to support the delivery of large-scale digital services within a complex cloud environment. You will be responsible for building, maintaining, and optimising AWS infrastructure, deployment pipelines, and cloud operations across multiple environments. The role will involve working closely with multidisciplinary teams, including software developers, architects, testers, and delivery teams, to deliver secure, scalable, and resilient solutions. The successful candidate will have strong experience across AWS services, CI/CD pipelines, infrastructure automation, and modern application architectures comprising React front-end applications, microservices, serverless functions, and event-driven integrations. Key Responsibilities Support the setup, configuration, and management of multiple AWS environments across development, test, staging, and production. Build, maintain, and optimise CI/CD pipelines using Git-based tooling. Manage AWS infrastructure supporting a mix of React front-end applications, microservices, AWS Lambda functions, and Kafka event integrations. Support integrations involving ETL processes and Robotic Process Automation (RPA) solutions. Implement and manage secure networking patterns, including AWS Transit Gateway and PrivateLink where required. Support the deployment and management of Kong Enterprise API Gateway. Administer Multi-Factor Authentication (MFA) and AWS Identity and Access Management (IAM) roles and permissions for development teams. Ensure AWS resources are correctly tagged and managed in accordance with FinOps standards and governance requirements. Monitor system performance, availability, and reliability across environments. Collaborate with engineering teams to improve automation, deployment efficiency, and operational excellence. Troubleshoot infrastructure and deployment issues across cloud environments. Contribute to cloud security best practices and continuous improvement initiatives. Support the delivery of highly accessible digital services, ensuring front-end solutions align with WCAG 2.2 AAA accessibility standards. Strong experience designing, deploying, and supporting AWS cloud infrastructure. Experience managing multiple environments within AWS. Strong knowledge of CI/CD pipelines and Git-based workflows. Experience supporting modern application architectures, including: React front-end applications Microservices AWS Lambda functions Event-driven architectures using Kafka Experience with Infrastructure as Code (Terraform, CloudFormation, or equivalent). Strong understanding of AWS networking concepts, including Transit Gateway and PrivateLink. Experience administering IAM, MFA, and security controls. Knowledge of API management platforms such as Kong Enterprise. Experience implementing cloud governance and FinOps practices, including resource tagging standards. Strong troubleshooting and problem-solving skills. Experience working within Agile delivery teams. Experience supporting ETL pipelines and data integration solutions. Exposure to Robotic Process Automation (RPA) platforms. Experience delivering services within UK Government or highly regulated environments. Familiarity with accessibility standards, particularly WCAG 2.2. Knowledge of monitoring and observability tools such as CloudWatch, Grafana, or Prometheus. What We Offer Opportunity to work on impactful digital transformation programmes. Collaborative and supportive working environment. Exposure to modern cloud technologies and large-scale platforms. Continuous learning and professional development opportunities. Flexible working arrangements. Diversity & Inclusion At Scrumconnect, we are committed to creating an inclusive workplace where everyone can thrive. We welcome applications from individuals of all backgrounds, experiences, and perspectives and are dedicated to fostering a diverse workforce that reflects the communities we serve. We are an equal opportunities employer and actively encourage applications from underrepresented groups. Reasonable adjustments are available throughout the recruitment process to support candidates who may require them.
About The Role Hippo is a rapidly growing digital consultancy passionate about building and delivering transformative digital solutions for a diverse range of Public and Private sector clients. We are recruiting for a Principal Business Analyst (Identity) to support our mission of solving complex problems at the intersection of strategy, design, and technology. As a Principal Business Analyst (Identity), you will play an important role in making Hippo the best consultancy out there. You will work as part of a multi disciplinary team combining data, design, product, delivery, analysis and engineering to deliver bespoke digital services that make a positive and meaningful impact on organisations and society. You will act as a Principal Consultant to deliver Business Analysis services to our clients. A Principal Business Analyst (Identity) at Hippo is all about bringing deep business analysis expertise, strong product thinking, and practical Identity experience to frame complex problems, shape service direction, and scale our internal capability. Our solutions empower our customers to build and support secure, scalable, and well engineered systems beyond traditional boundaries, allowing them to understand and get the most from their data and digital services. The Principal Business Analyst (Identity) will be a key player and implementer in this. Your Role in a Nutshell Identity is a growing service line for Hippo, with increasing demand for expertise across bids, discoveries and active delivery work. This role needs someone who can operate confidently with clients from day one, look beneath stated requirements, challenge assumptions and guide teams towards clear outcomes, options and delivery priorities. You will need a strong background to work credibly with senior clients, product teams, architects and technical specialists, and to lead Identity related discovery, assessment and delivery work. You'll also help build Hippo's internal Identity capability by sharing knowledge, supporting other BAs and fostering a community that helps us develop this capability in house. Lead Strategic Analysis: Lead business analysis across Identity discovery, assessment, and delivery work, helping senior clients frame complex problems and agree on outcomes. Shape Product Direction: Guide product and service direction, managing high level scope, backlogs, strategic risks, and delivery approaches across complex accounts. Senior Stakeholder Mediation: Build trusted relationships with senior client executives, successfully mediating conflicting priorities and guiding teams toward clear options. Growth and Commercial Support: Support bids, proposals, RFPs, and pre build assessments where technical Identity knowledge is required to secure new work. Build the Practice: Line manage, coach, and mentor other BAs while fostering and scaling Hippo's internal Identity capability through community activity and guidance. Skills and Experience that You Need Essential Experience Identity and IAM Expertise Deep Domain Knowledge: Strong practical experience in IAM, digital identity, architectures, and industry acronyms to guide requirements and product decisions. Identity Types: Covered across customer, workforce, and non human identity (including Agentic AI). Security Methods and Patterns: Confident handling verification (GPG45), authentication (MFA), authorisation (RBAC/ABAC/PBAC), lifecycle management (JML), governance (IGA), SSO/Federation, and Zero Trust fraud prevention. Vendor Platforms: Familiar with major identity tools (Okta, Ping, SailPoint, iProov, Entrust, OneLogin) and native cloud capabilities (Microsoft Entra, AWS, Google). Consultancy and Client Leadership Client and Stakeholder Management: Confident from day one in building senior relationships and translating complex technical concepts for non technical audiences. Problem Solving and Delivery: Skilled at turning ambiguity into clear recommendations, managing risks/dependencies, and supporting product prioritisation trade offs. Cross Functional Collaboration: Adapts analysis approaches to collaborate effectively with cross functional teams (Product, Delivery, Architecture, Engineering) to align them around key outcomes. Capability and Practice Development Mentorship and Coaching: Acts as a practice leader by coaching other Business Analysts and supporting recruitment. Community and Knowledge Sharing: Fosters internal identity capabilities by sharing project learnings, defining BA identity standards, and contributing to the wider BA community. Desirable Experience Experience establishing an Identity focused BA framework or competency matrix within a growing consultancy practice. Exposure to Fraud Prevention approaches, Zero Trust network architectures, and broader Cyber Security contexts. Benefits Contributory Pension Scheme (Hippo 6% and Employee 2%) 25 Days Holiday plus UK Public Holidays Perkbox access for a wide range of discounts Critical illness cover Life assurance and death in service cover Volunteer days Cycle to work scheme for avid cyclists Salary sacrifice electric vehicles scheme Season ticket loans Financial and general wellbeing sessions Flexible benefits scheme with options of: Private health cover Private dental cover Additional company pension contributions Additional holidays (up to an extra 2 days) Wellbeing contribution Charity contributions Tree planting Diversity, Inclusion and Belonging at Hippo At Hippo, we're dedicated to creating a diverse, equitable and inclusive workplace that works for everyone. We understand that having a diverse team unlocks our capacity for innovation, creativity and problem solving. Only by building a community of diverse perspectives, cultures and socio economic backgrounds can we create an environment where all can contribute and thrive. We actively encourage applications from underrepresented groups including women, ethnic minorities, LGBTQ+, neurodivergent and people with disabilities. We are committed to providing an inclusive and accessible recruitment process that reflects our workplace culture. We are a registered Disability Confident Employer, Mindful Employer, Endometriosis Friendly Employer and a member of the Armed Forces Covenant. Hippo continually strives to remove barriers, provide accommodations and offer reasonable adjustments to ensure equity throughout our practices. Locations We are headquartered in Leeds and have offices across the UK in Glasgow, Manchester, Birmingham, London and Bristol. We are looking for talent nationwide but you need to be located within reasonable travelling distance from one of our offices. Given the dynamic nature of a consulting business, you may be required to work on site at a Hippo office or at an in/out of town client location for a number of days per week (client dependent) and therefore candidates will need to be open/flexible to travel and working on one of those sites at least 2 days per week. We offer a generous relocation support package of up to £8,000 (please ask for terms and conditions) to help make your move a smooth one.
21/06/2026
Full time
About The Role Hippo is a rapidly growing digital consultancy passionate about building and delivering transformative digital solutions for a diverse range of Public and Private sector clients. We are recruiting for a Principal Business Analyst (Identity) to support our mission of solving complex problems at the intersection of strategy, design, and technology. As a Principal Business Analyst (Identity), you will play an important role in making Hippo the best consultancy out there. You will work as part of a multi disciplinary team combining data, design, product, delivery, analysis and engineering to deliver bespoke digital services that make a positive and meaningful impact on organisations and society. You will act as a Principal Consultant to deliver Business Analysis services to our clients. A Principal Business Analyst (Identity) at Hippo is all about bringing deep business analysis expertise, strong product thinking, and practical Identity experience to frame complex problems, shape service direction, and scale our internal capability. Our solutions empower our customers to build and support secure, scalable, and well engineered systems beyond traditional boundaries, allowing them to understand and get the most from their data and digital services. The Principal Business Analyst (Identity) will be a key player and implementer in this. Your Role in a Nutshell Identity is a growing service line for Hippo, with increasing demand for expertise across bids, discoveries and active delivery work. This role needs someone who can operate confidently with clients from day one, look beneath stated requirements, challenge assumptions and guide teams towards clear outcomes, options and delivery priorities. You will need a strong background to work credibly with senior clients, product teams, architects and technical specialists, and to lead Identity related discovery, assessment and delivery work. You'll also help build Hippo's internal Identity capability by sharing knowledge, supporting other BAs and fostering a community that helps us develop this capability in house. Lead Strategic Analysis: Lead business analysis across Identity discovery, assessment, and delivery work, helping senior clients frame complex problems and agree on outcomes. Shape Product Direction: Guide product and service direction, managing high level scope, backlogs, strategic risks, and delivery approaches across complex accounts. Senior Stakeholder Mediation: Build trusted relationships with senior client executives, successfully mediating conflicting priorities and guiding teams toward clear options. Growth and Commercial Support: Support bids, proposals, RFPs, and pre build assessments where technical Identity knowledge is required to secure new work. Build the Practice: Line manage, coach, and mentor other BAs while fostering and scaling Hippo's internal Identity capability through community activity and guidance. Skills and Experience that You Need Essential Experience Identity and IAM Expertise Deep Domain Knowledge: Strong practical experience in IAM, digital identity, architectures, and industry acronyms to guide requirements and product decisions. Identity Types: Covered across customer, workforce, and non human identity (including Agentic AI). Security Methods and Patterns: Confident handling verification (GPG45), authentication (MFA), authorisation (RBAC/ABAC/PBAC), lifecycle management (JML), governance (IGA), SSO/Federation, and Zero Trust fraud prevention. Vendor Platforms: Familiar with major identity tools (Okta, Ping, SailPoint, iProov, Entrust, OneLogin) and native cloud capabilities (Microsoft Entra, AWS, Google). Consultancy and Client Leadership Client and Stakeholder Management: Confident from day one in building senior relationships and translating complex technical concepts for non technical audiences. Problem Solving and Delivery: Skilled at turning ambiguity into clear recommendations, managing risks/dependencies, and supporting product prioritisation trade offs. Cross Functional Collaboration: Adapts analysis approaches to collaborate effectively with cross functional teams (Product, Delivery, Architecture, Engineering) to align them around key outcomes. Capability and Practice Development Mentorship and Coaching: Acts as a practice leader by coaching other Business Analysts and supporting recruitment. Community and Knowledge Sharing: Fosters internal identity capabilities by sharing project learnings, defining BA identity standards, and contributing to the wider BA community. Desirable Experience Experience establishing an Identity focused BA framework or competency matrix within a growing consultancy practice. Exposure to Fraud Prevention approaches, Zero Trust network architectures, and broader Cyber Security contexts. Benefits Contributory Pension Scheme (Hippo 6% and Employee 2%) 25 Days Holiday plus UK Public Holidays Perkbox access for a wide range of discounts Critical illness cover Life assurance and death in service cover Volunteer days Cycle to work scheme for avid cyclists Salary sacrifice electric vehicles scheme Season ticket loans Financial and general wellbeing sessions Flexible benefits scheme with options of: Private health cover Private dental cover Additional company pension contributions Additional holidays (up to an extra 2 days) Wellbeing contribution Charity contributions Tree planting Diversity, Inclusion and Belonging at Hippo At Hippo, we're dedicated to creating a diverse, equitable and inclusive workplace that works for everyone. We understand that having a diverse team unlocks our capacity for innovation, creativity and problem solving. Only by building a community of diverse perspectives, cultures and socio economic backgrounds can we create an environment where all can contribute and thrive. We actively encourage applications from underrepresented groups including women, ethnic minorities, LGBTQ+, neurodivergent and people with disabilities. We are committed to providing an inclusive and accessible recruitment process that reflects our workplace culture. We are a registered Disability Confident Employer, Mindful Employer, Endometriosis Friendly Employer and a member of the Armed Forces Covenant. Hippo continually strives to remove barriers, provide accommodations and offer reasonable adjustments to ensure equity throughout our practices. Locations We are headquartered in Leeds and have offices across the UK in Glasgow, Manchester, Birmingham, London and Bristol. We are looking for talent nationwide but you need to be located within reasonable travelling distance from one of our offices. Given the dynamic nature of a consulting business, you may be required to work on site at a Hippo office or at an in/out of town client location for a number of days per week (client dependent) and therefore candidates will need to be open/flexible to travel and working on one of those sites at least 2 days per week. We offer a generous relocation support package of up to £8,000 (please ask for terms and conditions) to help make your move a smooth one.
Role Title: .Net IAM Developer Location: Sheffield (Hybrid - 2-3 days per week onsite) Role Category: Inside IR35 Contract Duration: Until 30th November with extension Overview We're recruiting for an experienced .Net IAM Developer to join the Identity & Access Management team of a leading global financial services organisation. This role offers the opportunity to work on enterprise-scale identity solutions, developing secure integrations and supporting identity lifecycle management across a complex technology estate. Responsibilities Develop enterprise IAM solutions using .NET Core, ASP.NET and C#. Build and support integrations with SailPoint IdentityNow. Develop custom connectors and REST API integrations. Configure integrations with Active Directory, Microsoft SQL and Web Services. Support identity lifecycle processes including Joiner, Mover and Leaver. Implement and support Role-Based Access Control (RBAC). Investigate and resolve provisioning and access-related issues. Work closely with business stakeholders, infrastructure teams and third-party suppliers. Produce technical documentation and knowledge transfer materials. Support CI/CD automation using Jenkins, GitHub and Ansible. Contribute to cloud-based IAM solutions within Azure and AWS environments. Required Skills 5+ years' experience in enterprise software development. Strong experience with .NET Core, ASP.NET and C#. Microsoft SQL Server. REST API development and enterprise integrations. Experience integrating with Active Directory. Experience with SailPoint IdentityNow or another enterprise IAM platform. Knowledge of Identity Lifecycle Management, Access Provisioning and RBAC. Experience using Jenkins, GitHub and Ansible. Azure and/or AWS exposure. Excellent troubleshooting and communication skills. Desirable Skills SailPoint IdentityNow custom connector development. CyberArk, HashiCorp or Centrify. Angular. Docker and Kubernetes. QA and automated testing. JIRA and Confluence. This is an excellent opportunity to join a high-performing engineering team delivering secure, enterprise-scale Identity & Access Management solutions using modern .NET technologies, cloud platforms and automation practices. GCS is acting as an Employment Business in relation to this vacancy.
21/06/2026
Full time
Role Title: .Net IAM Developer Location: Sheffield (Hybrid - 2-3 days per week onsite) Role Category: Inside IR35 Contract Duration: Until 30th November with extension Overview We're recruiting for an experienced .Net IAM Developer to join the Identity & Access Management team of a leading global financial services organisation. This role offers the opportunity to work on enterprise-scale identity solutions, developing secure integrations and supporting identity lifecycle management across a complex technology estate. Responsibilities Develop enterprise IAM solutions using .NET Core, ASP.NET and C#. Build and support integrations with SailPoint IdentityNow. Develop custom connectors and REST API integrations. Configure integrations with Active Directory, Microsoft SQL and Web Services. Support identity lifecycle processes including Joiner, Mover and Leaver. Implement and support Role-Based Access Control (RBAC). Investigate and resolve provisioning and access-related issues. Work closely with business stakeholders, infrastructure teams and third-party suppliers. Produce technical documentation and knowledge transfer materials. Support CI/CD automation using Jenkins, GitHub and Ansible. Contribute to cloud-based IAM solutions within Azure and AWS environments. Required Skills 5+ years' experience in enterprise software development. Strong experience with .NET Core, ASP.NET and C#. Microsoft SQL Server. REST API development and enterprise integrations. Experience integrating with Active Directory. Experience with SailPoint IdentityNow or another enterprise IAM platform. Knowledge of Identity Lifecycle Management, Access Provisioning and RBAC. Experience using Jenkins, GitHub and Ansible. Azure and/or AWS exposure. Excellent troubleshooting and communication skills. Desirable Skills SailPoint IdentityNow custom connector development. CyberArk, HashiCorp or Centrify. Angular. Docker and Kubernetes. QA and automated testing. JIRA and Confluence. This is an excellent opportunity to join a high-performing engineering team delivering secure, enterprise-scale Identity & Access Management solutions using modern .NET technologies, cloud platforms and automation practices. GCS is acting as an Employment Business in relation to this vacancy.
If you are unable to complete this application due to a disability, contact this employer to ask for an accommodation or an alternative application process. Security Engineer Full Time Manchester, England, GB 4 days ago Requisition ID: 1410 Job Title: Senior Security Engineer (On-Premise Focus) Reports To: Head of Engineering Location: Manchester, UK About the Role: We are seeking a highly experienced Senior Security Engineer to take ownership of security for our critical on premise platform. This is a hands on, technical leadership role where you will design, implement, harden, monitor, and continuously improve our security posture in a predominantly VMware based on prem environment. You will drive security strategy and execution, ensuring compliance, threat prevention, and rapid incident response, while collaborating with infrastructure, operations, and leadership teams. This position requires a proactive, detail oriented engineer comfortable working in a high security, regulated environment. This is a full time fixed term role, requiring 5 days per week on site (no remote or hybrid options). There is occasional travel required within the UK (and potentially internationally) to support related sites, vendors, or projects. Security Clearance Required: Secret Clearance at a minimum. Willing to attain Developed Vetting. Key Responsibilities Lead the design, configuration, deployment, and ongoing management of security controls for on premise infrastructure, with a strong emphasis on network and workload segmentation. Own and optimise VMware NSX (including Distributed Firewall policies and micro segmentation) and VMware vDefend (Distributed Firewall, threat prevention, and lateral security features) to enforce zero trust principles and prevent lateral threat movement. Manage, tune, and harden Palo Alto Networks next generation firewalls (NGFW), including policy creation, Panorama management, App ID/User ID, NAT, VPN, threat prevention profiles, and integration with other security tools. Configure and maintain Cisco network security devices (e.g., routers, switches, ASA/FTD firewalls, ISE for NAC) to support secure network access and segmentation. Harden Windows Server environments and related Microsoft products (Active Directory, Group Policy, endpoint configurations) using security best practices and CIS Benchmarks. Champion DevSecOps practices by embedding security into CI/CD pipelines, automating security testing (e.g., vulnerability scanning, policy as code), collaborating with development and operations teams to shift security left, and ensuring secure software delivery without impeding velocity. Deploy, configure, and leverage Elastic Stack (Elasticsearch, Kibana, Beats, Logstash) and Elastic Security features for centralised logging, SIEM capabilities, threat detection, dashboards, alerting, and integration with on prem security tools (e.g., feeding logs from NSX/vDefend, firewalls, and endpoints). Implement, audit, and remediate against CIS Benchmarks, STIGs, and other hardening standards across operating systems, network devices, virtualisation platforms, and applications. Perform vulnerability assessments, penetration testing support, risk assessments, and remediation planning for on prem assets. Monitor security events, respond to incidents, conduct root cause analysis, and implement preventive measures. Drive security architecture decisions, contribute to policy development, and act as the primary technical security point of contact for the platform. Collaborate with vendors, auditors, and internal teams to ensure compliance with regulatory and organisational requirements. Mentor junior engineers and promote a security first culture. Required Qualifications & Experience 7+ years of hands on experience in cybersecurity engineering, with at least 5 years focused on on premise enterprise environments. Proven deep expertise in VMware NSX (micro segmentation, DFW policies, integration) and VMware vDefend (Distributed Firewall, advanced threat prevention). Strong experience designing and managing Palo Alto Networks firewalls (NGFW, Panorama, threat prevention, GlobalProtect). Solid hands on experience with Cisco security/networking technologies (ASA/FTD, ISE, secure routing/switching). Extensive experience securing Windows environments (Server, Active Directory, Group Policy Objects, endpoint hardening). In depth knowledge of CIS Benchmarks and their practical application to harden systems and networks. Strong understanding of zero trust principles, network segmentation, firewall policy optimisation, identity and access management (IAM), and encryption. Experience with vulnerability management, SIEM integration, logging, and incident response in on prem setups. Familiarity with TCP/IP networking fundamentals, the OSI model, routing protocols (BGP/OSPF), VPN technologies, and secure architecture design. Practical experience implementing DevSecOps principles, including integrating security tools and controls into CI/CD pipelines, automating security checks, and collaborating across dev, sec, and ops teams. Hands on experience with the Elastic Stack (Elasticsearch, Kibana) and Elastic Security (SIEM, threat hunting, endpoint integration, dashboards/alerting) in on premise deployments for log management, security analytics, and incident response. Security Clearance: Must have UK government security clearance, minimum SC, with the requirement to go through DV. Right to work in the UK and ability to pass background checks. Desirable Skills & Certifications Relevant certifications such as: VMware Certified Professional - Network Virtualisation (VCP NV) or Security Palo Alto Networks Certified Network Security Engineer (PCNSE) Cisco Certified Network Professional Security (CCNP Security) or CCIE Security Certified Information Systems Security Professional (CISSP) Microsoft Certified: Security, Compliance, and Identity Fundamentals (or equivalent) Experience with endpoint detection and response (EDR), SIEM tools, IDS/IPS, or threat intelligence platforms. Knowledge of Linux hardening, container security, or hybrid environments (though focus remains on prem). Experience in regulated sectors (e.g., government, finance, critical national infrastructure). Sterling Computers Corporation ("Sterling") is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to age, race, color, creed, religion, disability, medical condition, economic status or status with regard to public assistance, citizenship status, national or social or ethnic origin, past or present membership in the uniformed services, protected veteran status, sex, pregnancy, marital or civil union or domestic partnership status, family or parental status, sexual orientation, gender expression or identity, family medical history or genetic information, HIV status, political belief, or any other status or characteristic protected by applicable law.
21/06/2026
Full time
If you are unable to complete this application due to a disability, contact this employer to ask for an accommodation or an alternative application process. Security Engineer Full Time Manchester, England, GB 4 days ago Requisition ID: 1410 Job Title: Senior Security Engineer (On-Premise Focus) Reports To: Head of Engineering Location: Manchester, UK About the Role: We are seeking a highly experienced Senior Security Engineer to take ownership of security for our critical on premise platform. This is a hands on, technical leadership role where you will design, implement, harden, monitor, and continuously improve our security posture in a predominantly VMware based on prem environment. You will drive security strategy and execution, ensuring compliance, threat prevention, and rapid incident response, while collaborating with infrastructure, operations, and leadership teams. This position requires a proactive, detail oriented engineer comfortable working in a high security, regulated environment. This is a full time fixed term role, requiring 5 days per week on site (no remote or hybrid options). There is occasional travel required within the UK (and potentially internationally) to support related sites, vendors, or projects. Security Clearance Required: Secret Clearance at a minimum. Willing to attain Developed Vetting. Key Responsibilities Lead the design, configuration, deployment, and ongoing management of security controls for on premise infrastructure, with a strong emphasis on network and workload segmentation. Own and optimise VMware NSX (including Distributed Firewall policies and micro segmentation) and VMware vDefend (Distributed Firewall, threat prevention, and lateral security features) to enforce zero trust principles and prevent lateral threat movement. Manage, tune, and harden Palo Alto Networks next generation firewalls (NGFW), including policy creation, Panorama management, App ID/User ID, NAT, VPN, threat prevention profiles, and integration with other security tools. Configure and maintain Cisco network security devices (e.g., routers, switches, ASA/FTD firewalls, ISE for NAC) to support secure network access and segmentation. Harden Windows Server environments and related Microsoft products (Active Directory, Group Policy, endpoint configurations) using security best practices and CIS Benchmarks. Champion DevSecOps practices by embedding security into CI/CD pipelines, automating security testing (e.g., vulnerability scanning, policy as code), collaborating with development and operations teams to shift security left, and ensuring secure software delivery without impeding velocity. Deploy, configure, and leverage Elastic Stack (Elasticsearch, Kibana, Beats, Logstash) and Elastic Security features for centralised logging, SIEM capabilities, threat detection, dashboards, alerting, and integration with on prem security tools (e.g., feeding logs from NSX/vDefend, firewalls, and endpoints). Implement, audit, and remediate against CIS Benchmarks, STIGs, and other hardening standards across operating systems, network devices, virtualisation platforms, and applications. Perform vulnerability assessments, penetration testing support, risk assessments, and remediation planning for on prem assets. Monitor security events, respond to incidents, conduct root cause analysis, and implement preventive measures. Drive security architecture decisions, contribute to policy development, and act as the primary technical security point of contact for the platform. Collaborate with vendors, auditors, and internal teams to ensure compliance with regulatory and organisational requirements. Mentor junior engineers and promote a security first culture. Required Qualifications & Experience 7+ years of hands on experience in cybersecurity engineering, with at least 5 years focused on on premise enterprise environments. Proven deep expertise in VMware NSX (micro segmentation, DFW policies, integration) and VMware vDefend (Distributed Firewall, advanced threat prevention). Strong experience designing and managing Palo Alto Networks firewalls (NGFW, Panorama, threat prevention, GlobalProtect). Solid hands on experience with Cisco security/networking technologies (ASA/FTD, ISE, secure routing/switching). Extensive experience securing Windows environments (Server, Active Directory, Group Policy Objects, endpoint hardening). In depth knowledge of CIS Benchmarks and their practical application to harden systems and networks. Strong understanding of zero trust principles, network segmentation, firewall policy optimisation, identity and access management (IAM), and encryption. Experience with vulnerability management, SIEM integration, logging, and incident response in on prem setups. Familiarity with TCP/IP networking fundamentals, the OSI model, routing protocols (BGP/OSPF), VPN technologies, and secure architecture design. Practical experience implementing DevSecOps principles, including integrating security tools and controls into CI/CD pipelines, automating security checks, and collaborating across dev, sec, and ops teams. Hands on experience with the Elastic Stack (Elasticsearch, Kibana) and Elastic Security (SIEM, threat hunting, endpoint integration, dashboards/alerting) in on premise deployments for log management, security analytics, and incident response. Security Clearance: Must have UK government security clearance, minimum SC, with the requirement to go through DV. Right to work in the UK and ability to pass background checks. Desirable Skills & Certifications Relevant certifications such as: VMware Certified Professional - Network Virtualisation (VCP NV) or Security Palo Alto Networks Certified Network Security Engineer (PCNSE) Cisco Certified Network Professional Security (CCNP Security) or CCIE Security Certified Information Systems Security Professional (CISSP) Microsoft Certified: Security, Compliance, and Identity Fundamentals (or equivalent) Experience with endpoint detection and response (EDR), SIEM tools, IDS/IPS, or threat intelligence platforms. Knowledge of Linux hardening, container security, or hybrid environments (though focus remains on prem). Experience in regulated sectors (e.g., government, finance, critical national infrastructure). Sterling Computers Corporation ("Sterling") is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to age, race, color, creed, religion, disability, medical condition, economic status or status with regard to public assistance, citizenship status, national or social or ethnic origin, past or present membership in the uniformed services, protected veteran status, sex, pregnancy, marital or civil union or domestic partnership status, family or parental status, sexual orientation, gender expression or identity, family medical history or genetic information, HIV status, political belief, or any other status or characteristic protected by applicable law.
Salary: £? - ? per year Requirements Active SC Clearance required Strictly no dual nationals due to security constraints Strong background in enterprise-scale Microsoft and infrastructure technologies Deep specialization in Identity & Access Management (IAM) Enterprise or multi-forest Active Directory management experience Experience with Domain Controller installations and migrations Strong understanding of Group Policy (GPO) Experience with FIM / MIM (Forefront / Microsoft Identity Management) Extensive experience with Exchange 2010/2016 and Exchange CUs Experience with Mail AV/SPAM solutions, ideally Trend IMSVA Solid understanding of SSO / PKI Proficiency with PowerShell for scripting and reporting Strong experience with VMware environments Strong experience with NetApp storage systems Deep knowledge of Windows Server 2012 through 2025 Robust understanding of DNS Experience with Enterprise Vault, File/Print Clusters, and Thin Client environments is highly desirable Relevant technical certifications such as MCSE or equivalent are highly desirable Proven track record of working successfully against strict SLA targets Responsibilities Partner with stakeholders to scope technical solutions, estimate effort and costs, and shape technically accurate proposals Administer, optimize, and enhance enterprise environments Focus on user account administration, network access integrity, data management, and SAN optimization Evaluate and integrate new hardware and software across server, network, storage, and desktop environments Provide expert second-line support and resolve incidents and service requests within tight SLA frameworks Produce high-quality documentation for operational handovers Occasionally lead small technical teams to drive project tasks to completion Technologies Active Directory Hardware IAM Support Network PowerShell Security VMware Windows DevOps More We are offering a 12-month contract for a Senior IAM Infrastructure Engineer based in Newport, Wales, with 3 to 4 days per week on-site. The day rate is £500 to £550. We operate in a highly secure, fast-paced, and technology-rich environment where the role combines high-level technical delivery, pre-sales solution scoping, hands-on second-line support, and opportunities to lead small technical teams. This is a high-impact position supporting mission-critical infrastructure and helping to strengthen our security posture. last updated 25 week of 2026
21/06/2026
Full time
Salary: £? - ? per year Requirements Active SC Clearance required Strictly no dual nationals due to security constraints Strong background in enterprise-scale Microsoft and infrastructure technologies Deep specialization in Identity & Access Management (IAM) Enterprise or multi-forest Active Directory management experience Experience with Domain Controller installations and migrations Strong understanding of Group Policy (GPO) Experience with FIM / MIM (Forefront / Microsoft Identity Management) Extensive experience with Exchange 2010/2016 and Exchange CUs Experience with Mail AV/SPAM solutions, ideally Trend IMSVA Solid understanding of SSO / PKI Proficiency with PowerShell for scripting and reporting Strong experience with VMware environments Strong experience with NetApp storage systems Deep knowledge of Windows Server 2012 through 2025 Robust understanding of DNS Experience with Enterprise Vault, File/Print Clusters, and Thin Client environments is highly desirable Relevant technical certifications such as MCSE or equivalent are highly desirable Proven track record of working successfully against strict SLA targets Responsibilities Partner with stakeholders to scope technical solutions, estimate effort and costs, and shape technically accurate proposals Administer, optimize, and enhance enterprise environments Focus on user account administration, network access integrity, data management, and SAN optimization Evaluate and integrate new hardware and software across server, network, storage, and desktop environments Provide expert second-line support and resolve incidents and service requests within tight SLA frameworks Produce high-quality documentation for operational handovers Occasionally lead small technical teams to drive project tasks to completion Technologies Active Directory Hardware IAM Support Network PowerShell Security VMware Windows DevOps More We are offering a 12-month contract for a Senior IAM Infrastructure Engineer based in Newport, Wales, with 3 to 4 days per week on-site. The day rate is £500 to £550. We operate in a highly secure, fast-paced, and technology-rich environment where the role combines high-level technical delivery, pre-sales solution scoping, hands-on second-line support, and opportunities to lead small technical teams. This is a high-impact position supporting mission-critical infrastructure and helping to strengthen our security posture. last updated 25 week of 2026
Protect identities at global scale. We're hiring a hands-on Senior Identity Protection Engineer/Specialist to lead detection, investigation, and response for identity-based threats across Microsoft Entra ID/Azure AD, on prem Active Directory, and connected SaaS/IaaS. You'll serve as the enterprise SME/administrator for CrowdStrike Identity Protection, tune high-fidelity detections, integrate dark web intelligence, and orchestrate automation that measurably reduces MTTD/MTTR and risk.What you'll doLead identity threat monitoring and triageOperate and tune CrowdStrike Identity Protection; monitor SIEM/UEBA and identity telemetry for risks like impossible travel, atypical sign ins, MFA fatigue, and session hijackingValidate true/false positives, prioritize by business impact, and escalate per playbooks/SLAsDrive rapid containment and remediationExecute containment actions (disable accounts, revoke sessions/tokens, isolate hosts)Coordinate remediation with IAM/Endpoint/Infrastructure; verify risk reduction to closureOwn identity-focused incident responseLead IR for credential compromise, privilege escalation, directory persistence, and lateral movementEnsure evidence handling, root cause analysis, post incident reviews, and lessons learnedEngineer detections and hunt for threatsBuild and refine detections and hunts across SIEM/EDR/identity platforms using KQL/SQL/regex/Sigma aligned to MITRE ATT&CKClose visibility gaps, reduce false positives, and expand privileged activity monitoringStrengthen privileged access controlsDetect anomalous privileged behavior via SIEM/UEBA and Netskope telemetryRecommend/enforce JIT, break glass patterns, and mover/leaver privilege hygiene with IAMRespond to dark web/credential exposureIntegrate sources like CyberInt; assess exposure and targeted campaignsOrchestrate takedowns, forced resets, token revocation, and Conditional Access updatesAdminister platforms and sustain hygieneMaintain coverage/health for identity monitoring; manage upgrades and changes via CABKeep operational runbooks, SOPs, and playbooks currentAutomate and orchestrate at scaleUse PowerShell/Python and REST/Graph/CrowdStrike APIs (and SOAR where applicable) to automate enrichment and response, standardize workflows, and improve signal fidelityShape identity policy and controlsAdvise on Conditional Access, MFA exceptions, SSO/SCIM patterns, and session controls under the shared responsibility model with IAMReport outcomes and support auditsProduce executive-ready dashboards and KPIs (identity incident volume, MTTD/MTTR, CA/MFA efficacy, exposure/takedown cycle time)Maintain audit-ready evidence and support internal/external auditsWhat you'll bringBachelor's degree in Cybersecurity, Computer Science, IT, or related field; or equivalent practical experience8+ years in IT/cybersecurity, including 3+ years focused on identity security/operations (Entra ID/Azure AD, on prem AD, MFA, Conditional Access, SSO/SCIM)Hands-on enterprise experience administering/operating CrowdStrike Identity ProtectionProficiency with SIEM/UEBA (Splunk preferred) and cloud security platforms (e.g., Netskope) for identity telemetry, detection, and investigationsDemonstrated experience in identity centric IR, threat hunting, and detection engineering (KQL/SQL/regex/Sigma)Scripting/automation with PowerShell and Python; experience with REST/Graph/CrowdStrike APIs and SOARClear communication and documentation skills; comfortable producing executive ready reports and audit evidenceOperates effectively within change control/CAB and under pressure during high severity incidentsBonus pointsCertifications: Microsoft SC 200/SC 300; Okta Certified Administrator/Professional; CISSP, SSCP, Security+; GIAC (GMON, GCIH, GCDA) or equivalentDeep knowledge of identity attack paths and protocols (Kerberos/NTLM), token/session abuse, and persistence techniques (e.g., Golden/Silver Ticket, DCShadow)Experience with JIT/JEA, PAM concepts, and global on call rotationsLocation, work style, and travelOpportunities in the United States, United Kingdom, and DenmarkOnsite or hybrid depending on location and business needsOccasional on call coverage may be requiredWhy you'll love it hereOwn a mission critical identity defense stack and make measurable impact on MTTD/MTTR and privilege hygieneSolve complex problems from dark web exposure to directory persistence and lateral movementCollaborate with experienced global teams and leading vendors to continuously raise the barGrow your career in a modern, data driven security operations environmentThis is a global position that will support all our FUJIFILM Biotechnologies sites. This position can be based at any of our locations around the globe. Benefits and compensation will be governed by the location that you are based from and considered your home site.As part of any recruitment process, FUJIFILM Diosynth Biotechnologies collects and processes personal data relating to job applicants. The organization is committed to being transparent about how it collects and uses that data and to meeting its data protection obligations and may share this as part of the global recruitment process with hiring managers in Europe and the United States.Please, no phone calls or emails to any employee of FUJIFILM about this requisition. All resumes submitted by search firms/employment agencies to any employee at FUJIFILM via-email, the internet or in any form and/or method will be deemed the sole property of FUJIFILM, unless such search firms/employment agencies were engaged by FUJIFILM for this requisition and a valid agreement with FUJIFILM is in place. In the event a candidate who was submitted outside of the FUJIFILM agency engagement process is hired, no fee or payment of any kind will be paid.
21/06/2026
Full time
Protect identities at global scale. We're hiring a hands-on Senior Identity Protection Engineer/Specialist to lead detection, investigation, and response for identity-based threats across Microsoft Entra ID/Azure AD, on prem Active Directory, and connected SaaS/IaaS. You'll serve as the enterprise SME/administrator for CrowdStrike Identity Protection, tune high-fidelity detections, integrate dark web intelligence, and orchestrate automation that measurably reduces MTTD/MTTR and risk.What you'll doLead identity threat monitoring and triageOperate and tune CrowdStrike Identity Protection; monitor SIEM/UEBA and identity telemetry for risks like impossible travel, atypical sign ins, MFA fatigue, and session hijackingValidate true/false positives, prioritize by business impact, and escalate per playbooks/SLAsDrive rapid containment and remediationExecute containment actions (disable accounts, revoke sessions/tokens, isolate hosts)Coordinate remediation with IAM/Endpoint/Infrastructure; verify risk reduction to closureOwn identity-focused incident responseLead IR for credential compromise, privilege escalation, directory persistence, and lateral movementEnsure evidence handling, root cause analysis, post incident reviews, and lessons learnedEngineer detections and hunt for threatsBuild and refine detections and hunts across SIEM/EDR/identity platforms using KQL/SQL/regex/Sigma aligned to MITRE ATT&CKClose visibility gaps, reduce false positives, and expand privileged activity monitoringStrengthen privileged access controlsDetect anomalous privileged behavior via SIEM/UEBA and Netskope telemetryRecommend/enforce JIT, break glass patterns, and mover/leaver privilege hygiene with IAMRespond to dark web/credential exposureIntegrate sources like CyberInt; assess exposure and targeted campaignsOrchestrate takedowns, forced resets, token revocation, and Conditional Access updatesAdminister platforms and sustain hygieneMaintain coverage/health for identity monitoring; manage upgrades and changes via CABKeep operational runbooks, SOPs, and playbooks currentAutomate and orchestrate at scaleUse PowerShell/Python and REST/Graph/CrowdStrike APIs (and SOAR where applicable) to automate enrichment and response, standardize workflows, and improve signal fidelityShape identity policy and controlsAdvise on Conditional Access, MFA exceptions, SSO/SCIM patterns, and session controls under the shared responsibility model with IAMReport outcomes and support auditsProduce executive-ready dashboards and KPIs (identity incident volume, MTTD/MTTR, CA/MFA efficacy, exposure/takedown cycle time)Maintain audit-ready evidence and support internal/external auditsWhat you'll bringBachelor's degree in Cybersecurity, Computer Science, IT, or related field; or equivalent practical experience8+ years in IT/cybersecurity, including 3+ years focused on identity security/operations (Entra ID/Azure AD, on prem AD, MFA, Conditional Access, SSO/SCIM)Hands-on enterprise experience administering/operating CrowdStrike Identity ProtectionProficiency with SIEM/UEBA (Splunk preferred) and cloud security platforms (e.g., Netskope) for identity telemetry, detection, and investigationsDemonstrated experience in identity centric IR, threat hunting, and detection engineering (KQL/SQL/regex/Sigma)Scripting/automation with PowerShell and Python; experience with REST/Graph/CrowdStrike APIs and SOARClear communication and documentation skills; comfortable producing executive ready reports and audit evidenceOperates effectively within change control/CAB and under pressure during high severity incidentsBonus pointsCertifications: Microsoft SC 200/SC 300; Okta Certified Administrator/Professional; CISSP, SSCP, Security+; GIAC (GMON, GCIH, GCDA) or equivalentDeep knowledge of identity attack paths and protocols (Kerberos/NTLM), token/session abuse, and persistence techniques (e.g., Golden/Silver Ticket, DCShadow)Experience with JIT/JEA, PAM concepts, and global on call rotationsLocation, work style, and travelOpportunities in the United States, United Kingdom, and DenmarkOnsite or hybrid depending on location and business needsOccasional on call coverage may be requiredWhy you'll love it hereOwn a mission critical identity defense stack and make measurable impact on MTTD/MTTR and privilege hygieneSolve complex problems from dark web exposure to directory persistence and lateral movementCollaborate with experienced global teams and leading vendors to continuously raise the barGrow your career in a modern, data driven security operations environmentThis is a global position that will support all our FUJIFILM Biotechnologies sites. This position can be based at any of our locations around the globe. Benefits and compensation will be governed by the location that you are based from and considered your home site.As part of any recruitment process, FUJIFILM Diosynth Biotechnologies collects and processes personal data relating to job applicants. The organization is committed to being transparent about how it collects and uses that data and to meeting its data protection obligations and may share this as part of the global recruitment process with hiring managers in Europe and the United States.Please, no phone calls or emails to any employee of FUJIFILM about this requisition. All resumes submitted by search firms/employment agencies to any employee at FUJIFILM via-email, the internet or in any form and/or method will be deemed the sole property of FUJIFILM, unless such search firms/employment agencies were engaged by FUJIFILM for this requisition and a valid agreement with FUJIFILM is in place. In the event a candidate who was submitted outside of the FUJIFILM agency engagement process is hired, no fee or payment of any kind will be paid.
Salary: £100,000 - 100,000 per year Requirements We require active SC clearance. We require strong UK Defence, MOD, or secure Central Government experience. We require proven experience as a Security Architect, Enterprise Security Architect, Cyber Security Architect, or Security Consultant. We require experience providing security architecture assurance across complex systems or major programmes. We require the ability to produce clear architecture documentation and security artefacts. We require a strong understanding of secure design principles, risk management, threat modelling, and security controls. We require knowledge of UK Government and Defence security standards, guidance, and assurance processes. We require experience working with senior stakeholders across security, architecture, engineering, and delivery. We require strong communication skills and the ability to explain security risk clearly to technical and non-technical audiences. We prefer Army programme experience or strong MOD stakeholder exposure. We prefer experience with Sparx Enterprise Architect, ArchiMate, NAFv4, or similar modelling approaches. We prefer knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS, or related security frameworks. We prefer experience across IAM, PKI, secure integration, cloud security, data flows, and security architecture patterns. We prefer experience reviewing HLDs, LLDs, current-state, and future-state designs. We prefer relevant certifications such as CISSP, CISM, ISO27001 Lead Auditor, Microsoft Cybersecurity Architect, AWS Security, or similar. Responsibilities We lead security architecture reviews across complex Defence or Central Government systems and programmes. We identify risks, control gaps, and design changes required to achieve the required security posture. We produce and maintain security architecture artefacts, including HLDs, LLDs, data flows, security principles, patterns, and architecture building blocks. We ensure security is embedded across solution design, integration, deployment, and operational readiness. We support cyber assurance activity across design, build, deploy, and run phases. We work closely with enterprise architects, solution architects, delivery teams, security stakeholders, and customer representatives. We translate complex security risks and design issues into clear options, recommendations, and decision papers. We support alignment to relevant Defence, Government, and industry security standards. We contribute to technical management plans covering configuration standards, patching, cryptography, IAM, and assurance checkpoints. We provide confident stakeholder engagement across technical, operational, and senior leadership audiences. Technologies AWS Architect ArchiMate Cloud Cryptography Embedded IAM Support Security More We are a leading technology consultancy delivering complex, business-critical solutions into secure UK Government and Defence environments. This is a permanent Security Architect role based in Home/Andover on a hybrid basis with onsite attendance two days per week. We offer a salary of £100,000 to £110,000 plus benefits. This is a senior, client-facing position suited to someone who can operate confidently across architecture, cyber security, assurance, and delivery teams, and who can provide security architecture assurance, risk oversight, and secure design guidance across major programmes of work. last updated 25 week of 2026
21/06/2026
Full time
Salary: £100,000 - 100,000 per year Requirements We require active SC clearance. We require strong UK Defence, MOD, or secure Central Government experience. We require proven experience as a Security Architect, Enterprise Security Architect, Cyber Security Architect, or Security Consultant. We require experience providing security architecture assurance across complex systems or major programmes. We require the ability to produce clear architecture documentation and security artefacts. We require a strong understanding of secure design principles, risk management, threat modelling, and security controls. We require knowledge of UK Government and Defence security standards, guidance, and assurance processes. We require experience working with senior stakeholders across security, architecture, engineering, and delivery. We require strong communication skills and the ability to explain security risk clearly to technical and non-technical audiences. We prefer Army programme experience or strong MOD stakeholder exposure. We prefer experience with Sparx Enterprise Architect, ArchiMate, NAFv4, or similar modelling approaches. We prefer knowledge of Joint Service Publications, NCSC guidance, ISO27001, NIST, CIS, or related security frameworks. We prefer experience across IAM, PKI, secure integration, cloud security, data flows, and security architecture patterns. We prefer experience reviewing HLDs, LLDs, current-state, and future-state designs. We prefer relevant certifications such as CISSP, CISM, ISO27001 Lead Auditor, Microsoft Cybersecurity Architect, AWS Security, or similar. Responsibilities We lead security architecture reviews across complex Defence or Central Government systems and programmes. We identify risks, control gaps, and design changes required to achieve the required security posture. We produce and maintain security architecture artefacts, including HLDs, LLDs, data flows, security principles, patterns, and architecture building blocks. We ensure security is embedded across solution design, integration, deployment, and operational readiness. We support cyber assurance activity across design, build, deploy, and run phases. We work closely with enterprise architects, solution architects, delivery teams, security stakeholders, and customer representatives. We translate complex security risks and design issues into clear options, recommendations, and decision papers. We support alignment to relevant Defence, Government, and industry security standards. We contribute to technical management plans covering configuration standards, patching, cryptography, IAM, and assurance checkpoints. We provide confident stakeholder engagement across technical, operational, and senior leadership audiences. Technologies AWS Architect ArchiMate Cloud Cryptography Embedded IAM Support Security More We are a leading technology consultancy delivering complex, business-critical solutions into secure UK Government and Defence environments. This is a permanent Security Architect role based in Home/Andover on a hybrid basis with onsite attendance two days per week. We offer a salary of £100,000 to £110,000 plus benefits. This is a senior, client-facing position suited to someone who can operate confidently across architecture, cyber security, assurance, and delivery teams, and who can provide security architecture assurance, risk oversight, and secure design guidance across major programmes of work. last updated 25 week of 2026
Purpose of the role To design, develop and improve software, utilising various engineering methodologies, that provides business, platform, and technology capabilities for our customers and colleagues. Accountabilities Development and delivery of high quality software solutions by using industry aligned programming languages, frameworks, and tools. Ensuring that code is scalable, maintainable, and optimized for performance. Cross functional collaboration with product managers, designers, and other engineers to define software requirements, devise solution strategies, and ensure seamless integration and alignment with business objectives. Collaboration with peers, participate in code reviews, and promote a culture of code quality and knowledge sharing. Stay informed of industry technology trends and innovations and actively contribute to the organization's technology communities to foster a culture of technical excellence and growth. Adherence to secure coding practices to mitigate vulnerabilities, protect sensitive data, and ensure secure software solutions. Implementation of effective unit testing practices to ensure proper code design, readability, and reliability. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalation of breaches of policies/procedures. If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements. If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others. Or for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions. Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave. AI Platform Engineer - Shape the Future of AI at Barclays We're excited to launch a groundbreaking initiative at Barclays - building a next generation platform that empowers front office developers (Quants and Strats) to create high-performance, AI-driven applications. As an AI Platform Engineer, you'll play a pivotal role in designing, building, and scaling robust platform components that enable advanced AI/ML workloads across both on premises and cloud environments. This is a hands on engineering role where your expertise will directly influence how we deliver secure, scalable, and innovative solutions. You'll collaborate with diverse teams, solve complex challenges, and help shape the technical direction of a platform that will transform how AI is leveraged in financial services. To be successful as an AI Platform Engineer at this level, you should have experience with: Proven experience in Python engineering, with a focus on backend and infrastructure tooling. Deep knowledge of AWS services (IAM, KMS, CloudFormation, API Gateway, S3, Lambda, ECS, Glue, Step Functions, MSK, EKS, Bedrock). Experience scaling platforms for AI/ML workloads and integrating generative AI tooling. Understanding of secure software development, cloud cost optimization, and platform observability. Ability to communicate complex technical concepts clearly to technical and non-technical audiences. Demonstrated capability to guide engineering teams and influence technical strategy. Some other highly valued skills may include: Experience with MLOps platforms such as Databricks or SageMaker, and familiarity with hybrid cloud strategies (Azure, on-prem Kubernetes). Strong understanding of AI infrastructure for scalable model serving, distributed training, and GPU orchestration. Expertise in Large Language Models (LLMs) and Small Language Models (SLMs), including fine-tuning and deployment for enterprise use cases. Hands on experience with Hugging Face libraries and tools for model training, evaluation and deployment. Knowledge of agentic frameworks (e.g., LangChain, AutoGen) and Model Context Protocol (MCP) for building autonomous AI workflows and interoperability. Awareness of emerging trends in GenAI platforms, open-source MLOps, and cloud-native AI solutions. This role can be based out of our Glasgow or Canary Wharf office.
20/06/2026
Full time
Purpose of the role To design, develop and improve software, utilising various engineering methodologies, that provides business, platform, and technology capabilities for our customers and colleagues. Accountabilities Development and delivery of high quality software solutions by using industry aligned programming languages, frameworks, and tools. Ensuring that code is scalable, maintainable, and optimized for performance. Cross functional collaboration with product managers, designers, and other engineers to define software requirements, devise solution strategies, and ensure seamless integration and alignment with business objectives. Collaboration with peers, participate in code reviews, and promote a culture of code quality and knowledge sharing. Stay informed of industry technology trends and innovations and actively contribute to the organization's technology communities to foster a culture of technical excellence and growth. Adherence to secure coding practices to mitigate vulnerabilities, protect sensitive data, and ensure secure software solutions. Implementation of effective unit testing practices to ensure proper code design, readability, and reliability. Vice President Expectations To contribute or set strategy, drive requirements and make recommendations for change. Plan resources, budgets, and policies; manage and maintain policies/ processes; deliver continuous improvements and escalation of breaches of policies/procedures. If managing a team, they define jobs and responsibilities, planning for the department's future needs and operations, counselling employees on performance and contributing to employee pay decisions/changes. They may also lead a number of specialists to influence the operations of a department, in alignment with strategic as well as tactical priorities, while balancing short and long term goals and ensuring that budgets and schedules meet corporate requirements. If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others. Or for an individual contributor, they will be a subject matter expert within own discipline and will guide technical direction. They will lead collaborative, multi year assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will train, guide and coach less experienced specialists and provide information affecting long term profits, organisational risks and strategic decisions. Advise key stakeholders, including functional leadership teams and senior management on functional and cross functional areas of impact and alignment. Manage and mitigate risks through assessment, in support of the control and governance agenda. Demonstrate leadership and accountability for managing risk and strengthening controls in relation to the work your team does. Demonstrate comprehensive understanding of the organisation functions to contribute to achieving the goals of the business. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategies. Create solutions based on sophisticated analytical thought comparing and selecting complex alternatives. In depth analysis with interpretative thinking will be required to define problems and develop innovative solutions. Adopt and include the outcomes of extensive research in problem solving processes. Seek out, build and maintain trusting relationships and partnerships with internal and external stakeholders in order to accomplish key business objectives, using influencing and negotiating skills to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave. AI Platform Engineer - Shape the Future of AI at Barclays We're excited to launch a groundbreaking initiative at Barclays - building a next generation platform that empowers front office developers (Quants and Strats) to create high-performance, AI-driven applications. As an AI Platform Engineer, you'll play a pivotal role in designing, building, and scaling robust platform components that enable advanced AI/ML workloads across both on premises and cloud environments. This is a hands on engineering role where your expertise will directly influence how we deliver secure, scalable, and innovative solutions. You'll collaborate with diverse teams, solve complex challenges, and help shape the technical direction of a platform that will transform how AI is leveraged in financial services. To be successful as an AI Platform Engineer at this level, you should have experience with: Proven experience in Python engineering, with a focus on backend and infrastructure tooling. Deep knowledge of AWS services (IAM, KMS, CloudFormation, API Gateway, S3, Lambda, ECS, Glue, Step Functions, MSK, EKS, Bedrock). Experience scaling platforms for AI/ML workloads and integrating generative AI tooling. Understanding of secure software development, cloud cost optimization, and platform observability. Ability to communicate complex technical concepts clearly to technical and non-technical audiences. Demonstrated capability to guide engineering teams and influence technical strategy. Some other highly valued skills may include: Experience with MLOps platforms such as Databricks or SageMaker, and familiarity with hybrid cloud strategies (Azure, on-prem Kubernetes). Strong understanding of AI infrastructure for scalable model serving, distributed training, and GPU orchestration. Expertise in Large Language Models (LLMs) and Small Language Models (SLMs), including fine-tuning and deployment for enterprise use cases. Hands on experience with Hugging Face libraries and tools for model training, evaluation and deployment. Knowledge of agentic frameworks (e.g., LangChain, AutoGen) and Model Context Protocol (MCP) for building autonomous AI workflows and interoperability. Awareness of emerging trends in GenAI platforms, open-source MLOps, and cloud-native AI solutions. This role can be based out of our Glasgow or Canary Wharf office.
FLBK FUJIFILM Diosynth Biotechnologies UK Limited
Billingham, Yorkshire
Protect identities at global scale. We're hiring a hands on Senior Identity Protection Engineer/Specialist to lead detection, investigation, and response for identity based threats across Microsoft Entra ID/Azure AD, on prem Active Directory, and connected SaaS/IaaS. What you'll do Lead identity threat monitoring and triage Operate and tune CrowdStrike Identity Protection; monitor SIEM/UEBA and identity telemetry for risks like impossible travel, atypical sign ins, MFA fatigue, and session hijacking Validate true/false positives, prioritize by business impact, and expedite per playbooks/SLAs Drive rapid containment and remediation Execute containment actions (disable accounts, revoke sessions/tokens, isolate hosts) Coordinate remediation with IAM/Endpoint/Infrastructure; verify risk reduction to closure Own identity focused incident response; lead IR for credential compromise, privilege escalation, directory persistence, and lateral movement Ensure evidence handling, root cause analysis, post incident reviews, and lessons learned Engineer detections and hunt for threats Build and refine detections and hunts across SIEM/EDR/identity platforms using KQL/SQL/regex/Sigma aligned to MITRE ATT&CK Close visibility gaps, reduce false positives, and expand privileged activity monitoring Strengthen privileged access controls; detect anomalous privileged behavior via SIEM/UEBA and Netskope telemetry Recommend/enforce JIT, break glass patterns, and mover/leaver privilege hygiene with IAM Respond to dark web/credential exposure; integrate sources like CyberInt; assess exposure and targeted campaigns Orchestrate takedowns, forced resets, token revocation, and Conditional Access updates Administer platforms and sustain hygiene; maintain coverage/health for identity monitoring; manage upgrades and changes via CAB Keep operational runbooks, SOPs, and playbooks current Automate and orchestrate at scale using PowerShell/Python and REST/Graph/CrowdStrike APIs (and SOAR where applicable) Shape identity policy and controls; advise on Conditional Access, MFA exceptions, SSO/SCIM patterns, and session controls under the shared responsibility model with IAM Report outcomes and support audits; produce executive ready dashboards and KPIs (identity incident volume, MTTD/MTTR, CA/MFA efficacy, exposure/takedown cycle time) Maintain audit ready evidence and support internal/external audits What you'll bring Bachelor's degree in Cybersecurity, Computer Science, IT, or related field; or equivalent practical experience 8+ years in IT/cybersecurity, including 3+ years focused on identity security/operations (Entra ID/Azure AD, on prem AD, MFA, Conditional Access, SSO/SCIM) Hands on enterprise experience administering/operating CrowdStrike Identity Protection Proficiency with SIEM/UEBA (Splunk preferred) and cloud security platforms (e.g., Netskope) for identity telemetry, detection, and investigations Demonstrated experience in identity centric IR, threat hunting, and detection engineering (KQL/SQL/regex/Sigma) Scripting/automation with PowerShell and Python; experience with REST/Graph/CrowdStrike APIs and SOAR Clear communication and documentation skills; comfortable producing executive ready reports and audit evidence Operates effectively within change control/CAB and under pressure during high severity incidents Bonus points Certifications: Microsoft SC 200/SC 300; Okta Certified Administrator/Professional; CISSP, SSCP, Security+; GIAC (GMON, GCIH, GCDA) or equivalent Deep knowledge of identity attack paths and protocols (Kerberos/NTLM), token/session abuse, and persistence techniques (e.g., Golden/Silver Ticket, DCShadow) Experience with JIT/JEA, PAM concepts, and global on call rotations Location, work style, and travel Opportunities in the United States, United Kingdom, and Denmark. Onsite or hybrid depending on location and business needs. Occasional on call coverage may be required. Why you'll love it here Own a mission critical identity defense stack and make measurable impact on MTTD/MTTR and privilege hygiene Solve complex problems from dark web exposure to directory persistence and lateral movement Collaborate with experienced global teams and leading vendors to continuously raise the bar Grow your career in a modern, data driven security operations environment Benefits and compensation will be governed by the location where you are based and considered your home site. This is a global position that will support all our FUJIFILM Biotechnologies sites.
20/06/2026
Full time
Protect identities at global scale. We're hiring a hands on Senior Identity Protection Engineer/Specialist to lead detection, investigation, and response for identity based threats across Microsoft Entra ID/Azure AD, on prem Active Directory, and connected SaaS/IaaS. What you'll do Lead identity threat monitoring and triage Operate and tune CrowdStrike Identity Protection; monitor SIEM/UEBA and identity telemetry for risks like impossible travel, atypical sign ins, MFA fatigue, and session hijacking Validate true/false positives, prioritize by business impact, and expedite per playbooks/SLAs Drive rapid containment and remediation Execute containment actions (disable accounts, revoke sessions/tokens, isolate hosts) Coordinate remediation with IAM/Endpoint/Infrastructure; verify risk reduction to closure Own identity focused incident response; lead IR for credential compromise, privilege escalation, directory persistence, and lateral movement Ensure evidence handling, root cause analysis, post incident reviews, and lessons learned Engineer detections and hunt for threats Build and refine detections and hunts across SIEM/EDR/identity platforms using KQL/SQL/regex/Sigma aligned to MITRE ATT&CK Close visibility gaps, reduce false positives, and expand privileged activity monitoring Strengthen privileged access controls; detect anomalous privileged behavior via SIEM/UEBA and Netskope telemetry Recommend/enforce JIT, break glass patterns, and mover/leaver privilege hygiene with IAM Respond to dark web/credential exposure; integrate sources like CyberInt; assess exposure and targeted campaigns Orchestrate takedowns, forced resets, token revocation, and Conditional Access updates Administer platforms and sustain hygiene; maintain coverage/health for identity monitoring; manage upgrades and changes via CAB Keep operational runbooks, SOPs, and playbooks current Automate and orchestrate at scale using PowerShell/Python and REST/Graph/CrowdStrike APIs (and SOAR where applicable) Shape identity policy and controls; advise on Conditional Access, MFA exceptions, SSO/SCIM patterns, and session controls under the shared responsibility model with IAM Report outcomes and support audits; produce executive ready dashboards and KPIs (identity incident volume, MTTD/MTTR, CA/MFA efficacy, exposure/takedown cycle time) Maintain audit ready evidence and support internal/external audits What you'll bring Bachelor's degree in Cybersecurity, Computer Science, IT, or related field; or equivalent practical experience 8+ years in IT/cybersecurity, including 3+ years focused on identity security/operations (Entra ID/Azure AD, on prem AD, MFA, Conditional Access, SSO/SCIM) Hands on enterprise experience administering/operating CrowdStrike Identity Protection Proficiency with SIEM/UEBA (Splunk preferred) and cloud security platforms (e.g., Netskope) for identity telemetry, detection, and investigations Demonstrated experience in identity centric IR, threat hunting, and detection engineering (KQL/SQL/regex/Sigma) Scripting/automation with PowerShell and Python; experience with REST/Graph/CrowdStrike APIs and SOAR Clear communication and documentation skills; comfortable producing executive ready reports and audit evidence Operates effectively within change control/CAB and under pressure during high severity incidents Bonus points Certifications: Microsoft SC 200/SC 300; Okta Certified Administrator/Professional; CISSP, SSCP, Security+; GIAC (GMON, GCIH, GCDA) or equivalent Deep knowledge of identity attack paths and protocols (Kerberos/NTLM), token/session abuse, and persistence techniques (e.g., Golden/Silver Ticket, DCShadow) Experience with JIT/JEA, PAM concepts, and global on call rotations Location, work style, and travel Opportunities in the United States, United Kingdom, and Denmark. Onsite or hybrid depending on location and business needs. Occasional on call coverage may be required. Why you'll love it here Own a mission critical identity defense stack and make measurable impact on MTTD/MTTR and privilege hygiene Solve complex problems from dark web exposure to directory persistence and lateral movement Collaborate with experienced global teams and leading vendors to continuously raise the bar Grow your career in a modern, data driven security operations environment Benefits and compensation will be governed by the location where you are based and considered your home site. This is a global position that will support all our FUJIFILM Biotechnologies sites.
Senior IAM Infrastructure Engineer (Contract) Location: Newport, Wales (3-4 days per week on-site) Day Rate: £500 - £550 per day Duration: 12 Months Security Clearance: Active SC Clearance Required (Strictly no dual nationals due to security constraints) The Opportunity Are you a seasoned Infrastructure Engineer with a deep specialization in Identity & Access Management (IAM) and enterprise Microsoft environments? We are looking for a Senior IAM Infrastructure Engineer to play a pivotal role in delivering, optimizing, and supporting mission-critical infrastructure. This role perfectly balances high-level technical delivery, pre-sales solution scoping, and hands-on second-line support. If you thrive in highly secure, fast-paced, and technology-rich environments, this contract offers an incredible opportunity to make a tangible impact. Key Responsibilities As a Senior Engineer, you will span the full lifecycle of project delivery and support: Pre-Sales & Scoping: Partner with stakeholders to scope technical solutions, estimate effort/costs, and shape technically accurate proposals. Infrastructure & IAM Management: Administer, optimize, and enhance enterprise environments, focusing heavily on user account administration, network access integrity, data management, and SAN optimization. Integration & Testing: Evaluate and integrate new hardware and software across server, network, storage, and desktop environments. Escalation Support: Provide expert second-line support, ensuring incidents and service requests are resolved swiftly within tight SLA frameworks. Leadership & Docs: High-quality documentation for operational handovers, while occasionally leading small technical teams to drive project tasks to completion. Technical Skills & Experience To hit the ground running, you will need a robust background in enterprise-scale Microsoft and infrastructure technologies: Core Essentials: Active Directory & IAM: Enterprise/multi-forest Active Directory management, Domain Controller installations/migrations, Group Policy (GPO), and a strong understanding of FIM / MIM (Forefront/Microsoft Identity Management). Messaging: Extensive experience with Exchange 2010/2016, Exchange CUs, and Mail AV/SPAM (Trend IMSVA). Security & Scripting: Solid understanding of SSO / PKI and proficiency with PowerShell for scripting and reporting. Virtualization & Storage: Strong experience with VMware environments and NetApp storage systems. Operating Systems: Deep knowledge of Windows Server (spanning 2012 through to 2025). Core Networking: Robust understanding of DNS. Highly Desirable: Enterprise Vault, File/Print Clusters, and Thin Client environments. Relevant technical certifications (e.g., MCSE or equivalent). A proven track record of working successfully against strict SLA targets. Why This Contract? High-Impact Work: Own and secure mission-critical infrastructure where your expertise directly affects the client's security posture. Diverse Challenges: A brilliant mix of pre-sales architecture, hands-on implementation, and high-level support. Leadership Growth: An excellent opportunity to stretch your leadership muscles by guiding small technical project teams. To Apply: If you hold an active SC Clearance and possess the deep Microsoft and IAM expertise required, please apply with your latest CV and details of your availability.
20/06/2026
Full time
Senior IAM Infrastructure Engineer (Contract) Location: Newport, Wales (3-4 days per week on-site) Day Rate: £500 - £550 per day Duration: 12 Months Security Clearance: Active SC Clearance Required (Strictly no dual nationals due to security constraints) The Opportunity Are you a seasoned Infrastructure Engineer with a deep specialization in Identity & Access Management (IAM) and enterprise Microsoft environments? We are looking for a Senior IAM Infrastructure Engineer to play a pivotal role in delivering, optimizing, and supporting mission-critical infrastructure. This role perfectly balances high-level technical delivery, pre-sales solution scoping, and hands-on second-line support. If you thrive in highly secure, fast-paced, and technology-rich environments, this contract offers an incredible opportunity to make a tangible impact. Key Responsibilities As a Senior Engineer, you will span the full lifecycle of project delivery and support: Pre-Sales & Scoping: Partner with stakeholders to scope technical solutions, estimate effort/costs, and shape technically accurate proposals. Infrastructure & IAM Management: Administer, optimize, and enhance enterprise environments, focusing heavily on user account administration, network access integrity, data management, and SAN optimization. Integration & Testing: Evaluate and integrate new hardware and software across server, network, storage, and desktop environments. Escalation Support: Provide expert second-line support, ensuring incidents and service requests are resolved swiftly within tight SLA frameworks. Leadership & Docs: High-quality documentation for operational handovers, while occasionally leading small technical teams to drive project tasks to completion. Technical Skills & Experience To hit the ground running, you will need a robust background in enterprise-scale Microsoft and infrastructure technologies: Core Essentials: Active Directory & IAM: Enterprise/multi-forest Active Directory management, Domain Controller installations/migrations, Group Policy (GPO), and a strong understanding of FIM / MIM (Forefront/Microsoft Identity Management). Messaging: Extensive experience with Exchange 2010/2016, Exchange CUs, and Mail AV/SPAM (Trend IMSVA). Security & Scripting: Solid understanding of SSO / PKI and proficiency with PowerShell for scripting and reporting. Virtualization & Storage: Strong experience with VMware environments and NetApp storage systems. Operating Systems: Deep knowledge of Windows Server (spanning 2012 through to 2025). Core Networking: Robust understanding of DNS. Highly Desirable: Enterprise Vault, File/Print Clusters, and Thin Client environments. Relevant technical certifications (e.g., MCSE or equivalent). A proven track record of working successfully against strict SLA targets. Why This Contract? High-Impact Work: Own and secure mission-critical infrastructure where your expertise directly affects the client's security posture. Diverse Challenges: A brilliant mix of pre-sales architecture, hands-on implementation, and high-level support. Leadership Growth: An excellent opportunity to stretch your leadership muscles by guiding small technical project teams. To Apply: If you hold an active SC Clearance and possess the deep Microsoft and IAM expertise required, please apply with your latest CV and details of your availability.
Senior IAM Infrastructure Engineer Newport/hybrid (3 days per week on site) £550 per day (Inside IR35) 6-Month Contract (scope for extension) Active SC Clearance Required We're seeking a Senior IAM Infrastructure Engineer with NetApp Expertise Required to join a major secure technology programme, supporting a complex enterprise environment where identity, messaging and storage services are critical to business operations. This is a hands on engineering role requiring deep expertise across Identity & Access Management, Active Directory, Microsoft Exchange and NetApp technologies. You'll be responsible for maintaining, enhancing and modernising key infrastructure platforms while delivering secure, resilient and scalable solutions within a highly regulated environment. What You'll Be Doing Designing, implementing and supporting enterprise IAM and infrastructure services Managing complex Active Directory environments, including multi-forest estates Supporting and optimising Microsoft Exchange platforms and messaging services Administering and enhancing NetApp storage environments Working with MIM/FIM, PKI and Single Sign-On technologies Automating administration, reporting and operational processes using PowerShell Supporting infrastructure upgrades, migrations and technical transformation initiatives Providing technical leadership, troubleshooting expertise and mentoring support Essential Skills & Experience Enterprise-scale Microsoft Active Directory Microsoft Exchange 2010/2016 (or later) Strong NetApp administration and support experience Microsoft Identity Manager (MIM) / Forefront Identity Manager (FIM) PowerShell scripting and automation Group Policy (GPO) management PKI and Single Sign-On technologies Windows Server 2012 / 2016 / 2019 / 2022 VMware virtualised environments DNS, Domain Controllers and Active Directory migrations Infrastructure monitoring, troubleshooting and operational support Highly Desirable Experience within secure or highly regulated environments Enterprise Vault Trend IMSVA or equivalent mail security platforms Technical certifications (MCSE or equivalent) Experience leading small technical teams If you are interested in this role, please feel free to submit your CV!
20/06/2026
Full time
Senior IAM Infrastructure Engineer Newport/hybrid (3 days per week on site) £550 per day (Inside IR35) 6-Month Contract (scope for extension) Active SC Clearance Required We're seeking a Senior IAM Infrastructure Engineer with NetApp Expertise Required to join a major secure technology programme, supporting a complex enterprise environment where identity, messaging and storage services are critical to business operations. This is a hands on engineering role requiring deep expertise across Identity & Access Management, Active Directory, Microsoft Exchange and NetApp technologies. You'll be responsible for maintaining, enhancing and modernising key infrastructure platforms while delivering secure, resilient and scalable solutions within a highly regulated environment. What You'll Be Doing Designing, implementing and supporting enterprise IAM and infrastructure services Managing complex Active Directory environments, including multi-forest estates Supporting and optimising Microsoft Exchange platforms and messaging services Administering and enhancing NetApp storage environments Working with MIM/FIM, PKI and Single Sign-On technologies Automating administration, reporting and operational processes using PowerShell Supporting infrastructure upgrades, migrations and technical transformation initiatives Providing technical leadership, troubleshooting expertise and mentoring support Essential Skills & Experience Enterprise-scale Microsoft Active Directory Microsoft Exchange 2010/2016 (or later) Strong NetApp administration and support experience Microsoft Identity Manager (MIM) / Forefront Identity Manager (FIM) PowerShell scripting and automation Group Policy (GPO) management PKI and Single Sign-On technologies Windows Server 2012 / 2016 / 2019 / 2022 VMware virtualised environments DNS, Domain Controllers and Active Directory migrations Infrastructure monitoring, troubleshooting and operational support Highly Desirable Experience within secure or highly regulated environments Enterprise Vault Trend IMSVA or equivalent mail security platforms Technical certifications (MCSE or equivalent) Experience leading small technical teams If you are interested in this role, please feel free to submit your CV!
Senior IAM Infrastructure Engineer Contract £450 to £550 per day Umbrella Location: Newport, 3 to 4 days onsite Clearance: SC Cleared required, no dual nationals We are supporting a major secure programme and are looking for a Senior IAM Infrastructure Engineer to join a high performing team delivering critical infrastructure services. This role will focus on the design, implementation and support of enterprise infrastructure with a strong emphasis on Identity and Access Management and NetApp technologies. Key Responsibilities Provide technical design, implementation and support across infrastructure environments Engage in pre-sales activities and solution scoping Assess effort, time and cost for delivery Produce high quality technical and operational documentation Evaluate and integrate new hardware and software into the environment Administer and enhance infrastructure including access control, storage and network integrity Provide 2nd line support and ensure SLA adherence Support operational procedures and continuous improvement Essential Skills and Experience Strong experience in enterprise infrastructure engineering Proven experience with Microsoft Active Directory at multi forest scale Exchange 2010 or 2016 experience and cumulative updates Experience with FIM or MIM Strong understanding of Group Policy and DNS PowerShell scripting and reporting Experience monitoring AD and Exchange environments Knowledge of Single Sign On and PKI VMware and virtualised environments experience Windows Server 2012 through 2022 Domain Controller installation and migration experience NetApp experience is essential Experience leading small technical teams Strong documentation and stakeholder communication skills Desirable Enterprise Vault knowledge Messaging and AV such as Trend IMSVA Experience in high security or regulated environments Relevant certifications such as MCSE Additional Information 37.5 hours per week Onsite requirement in Newport 3 to 4 days per week SC clearance is mandatory to start
20/06/2026
Contractor
Senior IAM Infrastructure Engineer Contract £450 to £550 per day Umbrella Location: Newport, 3 to 4 days onsite Clearance: SC Cleared required, no dual nationals We are supporting a major secure programme and are looking for a Senior IAM Infrastructure Engineer to join a high performing team delivering critical infrastructure services. This role will focus on the design, implementation and support of enterprise infrastructure with a strong emphasis on Identity and Access Management and NetApp technologies. Key Responsibilities Provide technical design, implementation and support across infrastructure environments Engage in pre-sales activities and solution scoping Assess effort, time and cost for delivery Produce high quality technical and operational documentation Evaluate and integrate new hardware and software into the environment Administer and enhance infrastructure including access control, storage and network integrity Provide 2nd line support and ensure SLA adherence Support operational procedures and continuous improvement Essential Skills and Experience Strong experience in enterprise infrastructure engineering Proven experience with Microsoft Active Directory at multi forest scale Exchange 2010 or 2016 experience and cumulative updates Experience with FIM or MIM Strong understanding of Group Policy and DNS PowerShell scripting and reporting Experience monitoring AD and Exchange environments Knowledge of Single Sign On and PKI VMware and virtualised environments experience Windows Server 2012 through 2022 Domain Controller installation and migration experience NetApp experience is essential Experience leading small technical teams Strong documentation and stakeholder communication skills Desirable Enterprise Vault knowledge Messaging and AV such as Trend IMSVA Experience in high security or regulated environments Relevant certifications such as MCSE Additional Information 37.5 hours per week Onsite requirement in Newport 3 to 4 days per week SC clearance is mandatory to start
