Responsibilities Design automations/workflows and manage identity governance and assurance (IGA) controls and platforms to support user provisioning, deprovisioning, access requests and UARs/access recertifications. Implement automation for these processes, streamline the end user experience and internal IT provisioning/entitlement processes, and utilize AI for efficiency where possible. Design, manage and mature role-based access control (RBAC) to enforce least privilege access so that each user and device gains access only to the specific applications or data necessary for their roles, limiting exposure and minimizing the risk of data breaches or unauthorized access. Develop, validate, and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for IGA team technologies and processes. Investigate and respond to identity-related incidents, violations, and anomalous access behavior identified in IGA monitoring and reporting systems. Continuously monitor data access activity, identify potential security risks, and maintain a clear audit trail of data access events. Collaborate with IT, HR and other business partners to develop, refine, automate and streamline identity lifecycle processes (joiner/mover/leaver provisioning, de-provisioning), and establish birthright entitlement structures and mature identity verification processes. Collaborate across compliance and IT teams to align Identity Governance with regulatory requirements (e.g., SOX, CMM, TISAX, HIPAA). Promote adherence to Information Security Policies and participate in ongoing updates to policies as needed for alignment with IDAM technology roadmaps and capabilities and/or to address Information Security risks. Monitor and remediate orphan accounts, access violations, and segregation of duties (SoD) conflicts. Troubleshoot identity-related issues and provide Tier 3 support for Cyber Identity-related incidents. Automate workflows using PowerShell, Python, or similar scripting languages. Participate in ongoing auditing and risk assessments, and implement audit recommendations. Work with Cyber Identity Governance team members to manage all aspects of the User Access Review (UAR) process for enterprise-supported access programs, including regulatory environments/applications; plan and execute quarterly UARs and mature the automation around these processes. Ensure all evidence of authorization is documented and archived according to internal standards. Identify and engage with participating system partners across the company to ensure readiness and engagement for regular UARs. Produce and maintain data reporting, analysis, dashboards and scorecards in support of overall UAR health, execution, and closure. Collaborate with IT IAM leads and IT business managers to understand new business requirements and design solutions that align with enterprise policy, standards and industry best practices for identity security. Directly support the Delinea PAM platform architecture and configuration, successful migration to Delinea's SAAS platform, and support for on-prem instances in regulated enclaves. Ensure Privileged Roles are managed to policy and standards, and comply with regulatory obligations (SOX, CMMC, TISAX, HIPAA, etc.). Continue to support and refine technical PAM solutioning that aligns to enterprise architecture strategies and current state environments, supporting various business use cases and proactively defend against evolving security risks. Develop, validate, and maintain detailed documentation on SOPs, system configurations, and technical settings for internal team use, end-user support, and other business teams as needed. Stay current with emerging IAM, PAM and IGA technologies, industry security best practices and regulatory compliance changes which would introduce new identity-specific control requirements. Requirements Bachelor's degree in Cybersecurity, Computer Science, or related field. Minimum 7-9 years of experience, 10+ preferred, within IT, IAM or Cyber Security, with hands-on experience in Identity and Access Management or related security roles. Minimum of 5 years working with common industry IGA solutions (e.g., SailPoint, Saviynt) including application onboarding, development and configurations of identity workflows and automations. Understanding of Privileged Access Management (PAM) and Identity Management/IAM Governance principles. Knowledge of Active Directory, Microsoft Entra, LDAP, Redhat Identity solutions and SSO including deployment, administration, and troubleshooting. Hands-on experience with IGA tools (e.g., SailPoint, Saviynt). Hands-on experience with Privileged Access Management Solutions (particularly Delinea). This includes deployment, integrations, engineering, and adoption strategies of PAM for large-scale enterprises, including secrets key management on multi-cloud environments (AWS / Azure), DevOps and orchestration platforms. Strong understanding of identity lifecycle, RBAC, policy-based access controls. Strong understanding of Active Directory, Azure AD/Entra, Group Policy and cloud identity models. Strong knowledge of Conditional Access policy configurations in AD/Entra, as well as MFA (DUO and Microsoft Authenticator). Demonstrated expertise in leading strategic, organization-wide identity and security initiatives; providing reports to executive stakeholders; and facilitating successful adoption. Knowledge of security frameworks (NIST, ISO 27001) and regulatory compliance requirements (SOX, CMMC, PCI, etc.). Proficiency in scripting and automation (PowerShell, Python). Excellent problem-solving and communication skills. Familiarity with principles of ZTNA, specifically Identity verification methods, technologies and architectures.
11/07/2026
Full time
Responsibilities Design automations/workflows and manage identity governance and assurance (IGA) controls and platforms to support user provisioning, deprovisioning, access requests and UARs/access recertifications. Implement automation for these processes, streamline the end user experience and internal IT provisioning/entitlement processes, and utilize AI for efficiency where possible. Design, manage and mature role-based access control (RBAC) to enforce least privilege access so that each user and device gains access only to the specific applications or data necessary for their roles, limiting exposure and minimizing the risk of data breaches or unauthorized access. Develop, validate, and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for IGA team technologies and processes. Investigate and respond to identity-related incidents, violations, and anomalous access behavior identified in IGA monitoring and reporting systems. Continuously monitor data access activity, identify potential security risks, and maintain a clear audit trail of data access events. Collaborate with IT, HR and other business partners to develop, refine, automate and streamline identity lifecycle processes (joiner/mover/leaver provisioning, de-provisioning), and establish birthright entitlement structures and mature identity verification processes. Collaborate across compliance and IT teams to align Identity Governance with regulatory requirements (e.g., SOX, CMM, TISAX, HIPAA). Promote adherence to Information Security Policies and participate in ongoing updates to policies as needed for alignment with IDAM technology roadmaps and capabilities and/or to address Information Security risks. Monitor and remediate orphan accounts, access violations, and segregation of duties (SoD) conflicts. Troubleshoot identity-related issues and provide Tier 3 support for Cyber Identity-related incidents. Automate workflows using PowerShell, Python, or similar scripting languages. Participate in ongoing auditing and risk assessments, and implement audit recommendations. Work with Cyber Identity Governance team members to manage all aspects of the User Access Review (UAR) process for enterprise-supported access programs, including regulatory environments/applications; plan and execute quarterly UARs and mature the automation around these processes. Ensure all evidence of authorization is documented and archived according to internal standards. Identify and engage with participating system partners across the company to ensure readiness and engagement for regular UARs. Produce and maintain data reporting, analysis, dashboards and scorecards in support of overall UAR health, execution, and closure. Collaborate with IT IAM leads and IT business managers to understand new business requirements and design solutions that align with enterprise policy, standards and industry best practices for identity security. Directly support the Delinea PAM platform architecture and configuration, successful migration to Delinea's SAAS platform, and support for on-prem instances in regulated enclaves. Ensure Privileged Roles are managed to policy and standards, and comply with regulatory obligations (SOX, CMMC, TISAX, HIPAA, etc.). Continue to support and refine technical PAM solutioning that aligns to enterprise architecture strategies and current state environments, supporting various business use cases and proactively defend against evolving security risks. Develop, validate, and maintain detailed documentation on SOPs, system configurations, and technical settings for internal team use, end-user support, and other business teams as needed. Stay current with emerging IAM, PAM and IGA technologies, industry security best practices and regulatory compliance changes which would introduce new identity-specific control requirements. Requirements Bachelor's degree in Cybersecurity, Computer Science, or related field. Minimum 7-9 years of experience, 10+ preferred, within IT, IAM or Cyber Security, with hands-on experience in Identity and Access Management or related security roles. Minimum of 5 years working with common industry IGA solutions (e.g., SailPoint, Saviynt) including application onboarding, development and configurations of identity workflows and automations. Understanding of Privileged Access Management (PAM) and Identity Management/IAM Governance principles. Knowledge of Active Directory, Microsoft Entra, LDAP, Redhat Identity solutions and SSO including deployment, administration, and troubleshooting. Hands-on experience with IGA tools (e.g., SailPoint, Saviynt). Hands-on experience with Privileged Access Management Solutions (particularly Delinea). This includes deployment, integrations, engineering, and adoption strategies of PAM for large-scale enterprises, including secrets key management on multi-cloud environments (AWS / Azure), DevOps and orchestration platforms. Strong understanding of identity lifecycle, RBAC, policy-based access controls. Strong understanding of Active Directory, Azure AD/Entra, Group Policy and cloud identity models. Strong knowledge of Conditional Access policy configurations in AD/Entra, as well as MFA (DUO and Microsoft Authenticator). Demonstrated expertise in leading strategic, organization-wide identity and security initiatives; providing reports to executive stakeholders; and facilitating successful adoption. Knowledge of security frameworks (NIST, ISO 27001) and regulatory compliance requirements (SOX, CMMC, PCI, etc.). Proficiency in scripting and automation (PowerShell, Python). Excellent problem-solving and communication skills. Familiarity with principles of ZTNA, specifically Identity verification methods, technologies and architectures.
Role Summary Infrastructure Specialist responsible for building and maintaining infrastructure platforms and products that support applications and data systems. Utilize hardware, software, networks, and cloud computing platforms to ensure reliability, scalability and security. Key Responsibilities Build Engineering - develop, deliver, and maintain high quality infrastructure solutions that meet business requirements, ensuring measurable reliability, performance, and availability. Incident Management - monitor IT infrastructure performance, identify and resolve potential issues, vulnerabilities or outages, and use data to reduce mean time to resolution. Automation - design and implement automated tasks and processes to improve efficiency and reduce manual intervention, leveraging scripting and coding disciplines. Security - implement secure configurations and measures to protect infrastructure against cyber attacks, vulnerabilities, and other security threats. Teamwork - collaborate with product managers, architects, and other engineers to define infrastructure requirements, create solutions, and ensure seamless alignment with business objectives. Learning - stay informed of industry technology trends and innovations, and contribute to the organization's technology communities. Support - provide 24x7 support for production systems, including work during standard hours, on call duty, weekends and evenings. Qualifications Expert knowledge of Mainframe security, including RACF administration, management of profiles, user access, permissions, and security policies. Experience performing regular audits and reviews of RACF access controls, and responding to security alerts with root cause analysis and corrective actions. Understanding of Mainframe certificates and cryptography. Experience with security best practices and compliance, and in developing maintenance of security policies. Expert knowledge of Enterprise Security Manager RACF. Proficiency in REXX programming and JCL scripting for automation of security processes and monitoring. Expert knowledge of JCL for secure batch processing and troubleshooting of job failures. Knowledge of Mainframe z/OS architecture and Sysplex. Understanding of IDAM certification (CISSP, CISA, or CISM). Location: Knutsford.
11/07/2026
Full time
Role Summary Infrastructure Specialist responsible for building and maintaining infrastructure platforms and products that support applications and data systems. Utilize hardware, software, networks, and cloud computing platforms to ensure reliability, scalability and security. Key Responsibilities Build Engineering - develop, deliver, and maintain high quality infrastructure solutions that meet business requirements, ensuring measurable reliability, performance, and availability. Incident Management - monitor IT infrastructure performance, identify and resolve potential issues, vulnerabilities or outages, and use data to reduce mean time to resolution. Automation - design and implement automated tasks and processes to improve efficiency and reduce manual intervention, leveraging scripting and coding disciplines. Security - implement secure configurations and measures to protect infrastructure against cyber attacks, vulnerabilities, and other security threats. Teamwork - collaborate with product managers, architects, and other engineers to define infrastructure requirements, create solutions, and ensure seamless alignment with business objectives. Learning - stay informed of industry technology trends and innovations, and contribute to the organization's technology communities. Support - provide 24x7 support for production systems, including work during standard hours, on call duty, weekends and evenings. Qualifications Expert knowledge of Mainframe security, including RACF administration, management of profiles, user access, permissions, and security policies. Experience performing regular audits and reviews of RACF access controls, and responding to security alerts with root cause analysis and corrective actions. Understanding of Mainframe certificates and cryptography. Experience with security best practices and compliance, and in developing maintenance of security policies. Expert knowledge of Enterprise Security Manager RACF. Proficiency in REXX programming and JCL scripting for automation of security processes and monitoring. Expert knowledge of JCL for secure batch processing and troubleshooting of job failures. Knowledge of Mainframe z/OS architecture and Sysplex. Understanding of IDAM certification (CISSP, CISA, or CISM). Location: Knutsford.
The Deputy CISO is the CISO's principal delegate and second-in-command, accountable for day-to-day execution of the global cyber security program, team leadership and for elevating security influence across the enterprise. The role ensures cohesive strategy, robust operations, and clear business alignment in a complex logistics environment, including WMS/TMS platforms and warehouse robotics, IoT, and OT. The Deputy CISO strengthens succession planning, executive decision-making, and senior business partnering across the organisation. Operates in a global role, based at either of our UK corporate HQs (London or Northampton). Key Responsibilities: Strategy Support the CISO in translating the enterprise risk appetite into an actionable, outcome-driven security strategy; and support the multi-year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure "secure-by-default" across cloud, application, data, identity, and infrastructure landscapes. Establish IDAM function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24 7 detection, response, threat hunting), DFIR, purple-team/assurance, ransomware preparedness, and crisis playbooks. Maintain executive incident communications, regulator notifications, and post-incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive secure-by-design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third-party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment Business Partnering & PMO Ensure the Business Partnering function embeds security in product/platform roadmaps and regional operations (Americas/EMEA/APAC). Oversee the InfoSec PMO: portfolio selection, prioritization, benefits tracking, and transparent delivery reporting to business and technology leaders. People, Culture & Leadership Provide day-to-day management of InfoSec senior leaders (four directors/senior directors) and their teams; build succession paths, mentorship, and leadership development. Sponsor Security Awareness & Culture programs and executive engagement; promote inclusive, high-performance behaviors. The role has enterprise-wide accountability for the execution of the global cyber security program, ensuring effective risk management, operational resilience, and alignment with business strategy. It influences executive decision-making, enterprise risk posture, and regulatory outcomes across a complex global logistics environment. You will operate in a complex and evolving threat landscape, requiring continuous improvement of security processes, tooling, and operating models. You will address ambiguous and high-impact challenges across technology, risk, and business domains with enterprise-wide implications. The role engages extensively with the CISO, regulators, and senior business and technology leaders. It is responsible for executive-level incident communications, regulatory engagement, and influencing security outcomes across regions and functions. You will provide leadership to senior InfoSec leaders and their teams, supporting performance, development, and succession planning across the global security organisation. Experience and Qualifications Required: 15+ years in information security with progressive leadership; 8+ years leading multi-disciplinary teams across SecOps/IR, GRC, Engineering/Architecture and Business Partnering. Demonstrated success interfacing with boards/executive committees; executive incident leadership and public/regulatory communications. Deep experience in either GRC or technical cyber security. Experience in managing and leading global cross-functional and cross regional tech teams. Experience in Continuous improvement, six sigma or other improvement tools to drive business performance and create value Strong understanding and maturing of IT operating models in matrixed, global environments. Demonstrated success in driving technology standardization and transformation programs. Bachelor's degree in computer science, engineering, or a related field; advanced degree preferred. CISSP (or CISM) Other security certifications. Travel requirement - up to 20% GXO is a leading provider of cutting-edge supply chain solutions to the most successful companies in the world. We help our customers manage their goods most efficiently using our technology and services. Our greatest strength is our global team - energetic, innovative people of all experience levels and talents who make GXO a great place to work. GXO is an equal opportunity employer. We celebrate, support and thrive on diversity and are committed to creating an inclusive environment for all employees. We believe that diversity and inclusion in our business is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are an Armed Forces friendly organisation and Disability Confident Leader as part of the Disability Confident Scheme (GIS) and actively welcome applications from people with disabilities. The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed. Review GXO's candidate privacy statement
10/07/2026
Full time
The Deputy CISO is the CISO's principal delegate and second-in-command, accountable for day-to-day execution of the global cyber security program, team leadership and for elevating security influence across the enterprise. The role ensures cohesive strategy, robust operations, and clear business alignment in a complex logistics environment, including WMS/TMS platforms and warehouse robotics, IoT, and OT. The Deputy CISO strengthens succession planning, executive decision-making, and senior business partnering across the organisation. Operates in a global role, based at either of our UK corporate HQs (London or Northampton). Key Responsibilities: Strategy Support the CISO in translating the enterprise risk appetite into an actionable, outcome-driven security strategy; and support the multi-year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure "secure-by-default" across cloud, application, data, identity, and infrastructure landscapes. Establish IDAM function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24 7 detection, response, threat hunting), DFIR, purple-team/assurance, ransomware preparedness, and crisis playbooks. Maintain executive incident communications, regulator notifications, and post-incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive secure-by-design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third-party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment Business Partnering & PMO Ensure the Business Partnering function embeds security in product/platform roadmaps and regional operations (Americas/EMEA/APAC). Oversee the InfoSec PMO: portfolio selection, prioritization, benefits tracking, and transparent delivery reporting to business and technology leaders. People, Culture & Leadership Provide day-to-day management of InfoSec senior leaders (four directors/senior directors) and their teams; build succession paths, mentorship, and leadership development. Sponsor Security Awareness & Culture programs and executive engagement; promote inclusive, high-performance behaviors. The role has enterprise-wide accountability for the execution of the global cyber security program, ensuring effective risk management, operational resilience, and alignment with business strategy. It influences executive decision-making, enterprise risk posture, and regulatory outcomes across a complex global logistics environment. You will operate in a complex and evolving threat landscape, requiring continuous improvement of security processes, tooling, and operating models. You will address ambiguous and high-impact challenges across technology, risk, and business domains with enterprise-wide implications. The role engages extensively with the CISO, regulators, and senior business and technology leaders. It is responsible for executive-level incident communications, regulatory engagement, and influencing security outcomes across regions and functions. You will provide leadership to senior InfoSec leaders and their teams, supporting performance, development, and succession planning across the global security organisation. Experience and Qualifications Required: 15+ years in information security with progressive leadership; 8+ years leading multi-disciplinary teams across SecOps/IR, GRC, Engineering/Architecture and Business Partnering. Demonstrated success interfacing with boards/executive committees; executive incident leadership and public/regulatory communications. Deep experience in either GRC or technical cyber security. Experience in managing and leading global cross-functional and cross regional tech teams. Experience in Continuous improvement, six sigma or other improvement tools to drive business performance and create value Strong understanding and maturing of IT operating models in matrixed, global environments. Demonstrated success in driving technology standardization and transformation programs. Bachelor's degree in computer science, engineering, or a related field; advanced degree preferred. CISSP (or CISM) Other security certifications. Travel requirement - up to 20% GXO is a leading provider of cutting-edge supply chain solutions to the most successful companies in the world. We help our customers manage their goods most efficiently using our technology and services. Our greatest strength is our global team - energetic, innovative people of all experience levels and talents who make GXO a great place to work. GXO is an equal opportunity employer. We celebrate, support and thrive on diversity and are committed to creating an inclusive environment for all employees. We believe that diversity and inclusion in our business is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are an Armed Forces friendly organisation and Disability Confident Leader as part of the Disability Confident Scheme (GIS) and actively welcome applications from people with disabilities. The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed. Review GXO's candidate privacy statement
The Deputy CISO is the CISO's principal delegate and second-in-command, accountable for day to day execution of the global cyber security program, team leadership and for elevating security influence across the enterprise. The role ensures cohesive strategy, robust operations, and clear business alignment in a complex logistics environment, including WMS/TMS platforms and warehouse robotics, IoT, and OT. The Deputy CISO strengthens succession planning, executive decision making, and senior business partnering across the organisation. Operates in a global role, based at either of our UK corporate HQs (London or Northampton). Key Responsibilities Support the CISO in translating the enterprise risk appetite into an actionable, outcome driven security strategy; and support the multi year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure "secure-by-default" across cloud, application, data, identity, and infrastructure landscapes. Establish IDAM function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24/7 detection, response, threat hunting), DFIR, purple team/assurance, ransomware preparedness, and crisis playbooks. Maintain executive incident communications, regulator notifications, and post incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive secure by design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment. Business Partnering & PMO Ensure the Business Partnering function embeds security in product/platform roadmaps and regional operations (Americas/EMEA/APAC). Oversee the InfoSec PMO: portfolio selection, prioritization, benefits tracking, and transparent delivery reporting to business and technology leaders. Provide day to day management of InfoSec senior leaders (four directors/senior directors) and their teams; build succession paths, mentorship, and leadership development. Sponsor Security Awareness & Culture programs and executive engagement; promote inclusive, high performance behaviors. The role has enterprise wide accountability for the execution of the global cyber security program, ensuring effective risk management, operational resilience, and alignment with business strategy. It influences executive decision making, enterprise risk posture, and regulatory outcomes across a complex global logistics environment. You will operate in a complex and evolving threat landscape, requiring continuous improvement of security processes, tooling, and operating models. You will address ambiguous and high impact challenges across technology, risk, and business domains with enterprise wide implications. The role engages extensively with the CISO, regulators, and senior business and technology leaders. It is responsible for executive level incident communications, regulatory engagement, and influencing security outcomes across regions and functions. You will provide leadership to senior InfoSec leaders and their teams, supporting performance, development, and succession planning across the global security organisation. Experience and Qualifications Required 15+ years in information security with progressive leadership; 8+ years leading multi disciplinary teams across SecOps/IR, GRC, Engineering/Architecture and Business Partnering. Demonstrated success interfacing with boards/executive committees; executive incident leadership and public/regulatory communications. Deep experience in either GRC or technical cyber security. Experience in managing and leading global cross functional and cross regional tech teams. Experience in Continuous improvement, six sigma or other improvement tools to drive business performance and create value. Strong understanding and maturing of IT operating models in matrixed, global environments. Demonstrated success in driving technology standardization and transformation programs. Bachelor's degree in computer science, engineering, or a related field; advanced degree preferred. CISSP (or CISM). Other security certifications. Travel requirement - up to 20%. Equal Opportunity Statement GXO is an equal opportunity employer. We celebrate, support and thrive on diversity and are committed to creating an inclusive environment for all employees. We believe that diversity and inclusion in our business is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are an Armed Forces friendly organization and Disability Confident Leader as part of the Disability Confident Scheme (GIS) and actively welcome applications from people with disabilities. The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed.
08/07/2026
Full time
The Deputy CISO is the CISO's principal delegate and second-in-command, accountable for day to day execution of the global cyber security program, team leadership and for elevating security influence across the enterprise. The role ensures cohesive strategy, robust operations, and clear business alignment in a complex logistics environment, including WMS/TMS platforms and warehouse robotics, IoT, and OT. The Deputy CISO strengthens succession planning, executive decision making, and senior business partnering across the organisation. Operates in a global role, based at either of our UK corporate HQs (London or Northampton). Key Responsibilities Support the CISO in translating the enterprise risk appetite into an actionable, outcome driven security strategy; and support the multi year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure "secure-by-default" across cloud, application, data, identity, and infrastructure landscapes. Establish IDAM function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24/7 detection, response, threat hunting), DFIR, purple team/assurance, ransomware preparedness, and crisis playbooks. Maintain executive incident communications, regulator notifications, and post incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive secure by design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment. Business Partnering & PMO Ensure the Business Partnering function embeds security in product/platform roadmaps and regional operations (Americas/EMEA/APAC). Oversee the InfoSec PMO: portfolio selection, prioritization, benefits tracking, and transparent delivery reporting to business and technology leaders. Provide day to day management of InfoSec senior leaders (four directors/senior directors) and their teams; build succession paths, mentorship, and leadership development. Sponsor Security Awareness & Culture programs and executive engagement; promote inclusive, high performance behaviors. The role has enterprise wide accountability for the execution of the global cyber security program, ensuring effective risk management, operational resilience, and alignment with business strategy. It influences executive decision making, enterprise risk posture, and regulatory outcomes across a complex global logistics environment. You will operate in a complex and evolving threat landscape, requiring continuous improvement of security processes, tooling, and operating models. You will address ambiguous and high impact challenges across technology, risk, and business domains with enterprise wide implications. The role engages extensively with the CISO, regulators, and senior business and technology leaders. It is responsible for executive level incident communications, regulatory engagement, and influencing security outcomes across regions and functions. You will provide leadership to senior InfoSec leaders and their teams, supporting performance, development, and succession planning across the global security organisation. Experience and Qualifications Required 15+ years in information security with progressive leadership; 8+ years leading multi disciplinary teams across SecOps/IR, GRC, Engineering/Architecture and Business Partnering. Demonstrated success interfacing with boards/executive committees; executive incident leadership and public/regulatory communications. Deep experience in either GRC or technical cyber security. Experience in managing and leading global cross functional and cross regional tech teams. Experience in Continuous improvement, six sigma or other improvement tools to drive business performance and create value. Strong understanding and maturing of IT operating models in matrixed, global environments. Demonstrated success in driving technology standardization and transformation programs. Bachelor's degree in computer science, engineering, or a related field; advanced degree preferred. CISSP (or CISM). Other security certifications. Travel requirement - up to 20%. Equal Opportunity Statement GXO is an equal opportunity employer. We celebrate, support and thrive on diversity and are committed to creating an inclusive environment for all employees. We believe that diversity and inclusion in our business is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are an Armed Forces friendly organization and Disability Confident Leader as part of the Disability Confident Scheme (GIS) and actively welcome applications from people with disabilities. The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and skills required of personnel so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed.
Overview We are supporting a leading global financial market infrastructure organisation within their CISO division, currently undergoing a major Privileged Access Management (PAM) transformation. As part of this initiative, they are deploying CyberArk Secret Manager (Application Access Manager - AAM) across a complex enterprise environment. This is a hands-on, delivery-focused role where you will take ownership of the end-to-end deployment, configuration, and integration of CyberArk Secret Manager components across both on-prem and cloud environments. Key Responsibilities Deploy, configure, and integrate CyberArk Secret Manager (AAM) components: Credential Provider (CP), Central Credential Provider (CCP), Application Service Credential Provider (ASCP). Design and implement solutions for secure management of service and application accounts. Integrate CyberArk with applications, middleware, databases, and enterprise systems. Configure and manage Safes, platforms, and access control policies. Ensure adherence to the principle of least privilege. Automate processes using PowerShell, Bash, REST APIs, and Ansible. Troubleshoot and resolve complex integration and authentication issues. Collaborate with application and infrastructure teams to enable secure-by-design practices. Produce technical documentation, including architecture diagrams and runbooks. Required Experience Strong hands-on experience with CyberArk Secret Manager / AAM. Proven experience implementing CP, CCP, and ASCP components. Solid background in CyberArk PAM administration: Safes, platforms, permissions, onboarding. Experience integrating CyberArk with enterprise applications and systems. Strong scripting and automation skills (PowerShell, Bash, REST APIs). Experience with Ansible automation. Good understanding of Windows and Linux environments. Solid knowledge of networking and security fundamentals. Key Attributes Able to work independently and take ownership of deliverables. Strong problem-solving and troubleshooting skills. Comfortable working in a fast-paced, project-driven environment. Excellent communication and stakeholder engagement skills. Why Apply? Work on a large-scale CyberArk Secret Manager deployment. Be part of a high-performing CISO / IDAM team. Exposure to complex enterprise and financial services environments. Flexible hybrid working model across multiple European locations. Opportunity to drive automation and modern PAM practices. Rates depend on experience and client requirements.
07/07/2026
Full time
Overview We are supporting a leading global financial market infrastructure organisation within their CISO division, currently undergoing a major Privileged Access Management (PAM) transformation. As part of this initiative, they are deploying CyberArk Secret Manager (Application Access Manager - AAM) across a complex enterprise environment. This is a hands-on, delivery-focused role where you will take ownership of the end-to-end deployment, configuration, and integration of CyberArk Secret Manager components across both on-prem and cloud environments. Key Responsibilities Deploy, configure, and integrate CyberArk Secret Manager (AAM) components: Credential Provider (CP), Central Credential Provider (CCP), Application Service Credential Provider (ASCP). Design and implement solutions for secure management of service and application accounts. Integrate CyberArk with applications, middleware, databases, and enterprise systems. Configure and manage Safes, platforms, and access control policies. Ensure adherence to the principle of least privilege. Automate processes using PowerShell, Bash, REST APIs, and Ansible. Troubleshoot and resolve complex integration and authentication issues. Collaborate with application and infrastructure teams to enable secure-by-design practices. Produce technical documentation, including architecture diagrams and runbooks. Required Experience Strong hands-on experience with CyberArk Secret Manager / AAM. Proven experience implementing CP, CCP, and ASCP components. Solid background in CyberArk PAM administration: Safes, platforms, permissions, onboarding. Experience integrating CyberArk with enterprise applications and systems. Strong scripting and automation skills (PowerShell, Bash, REST APIs). Experience with Ansible automation. Good understanding of Windows and Linux environments. Solid knowledge of networking and security fundamentals. Key Attributes Able to work independently and take ownership of deliverables. Strong problem-solving and troubleshooting skills. Comfortable working in a fast-paced, project-driven environment. Excellent communication and stakeholder engagement skills. Why Apply? Work on a large-scale CyberArk Secret Manager deployment. Be part of a high-performing CISO / IDAM team. Exposure to complex enterprise and financial services environments. Flexible hybrid working model across multiple European locations. Opportunity to drive automation and modern PAM practices. Rates depend on experience and client requirements.
Salt Digital Recruitment is supporting a leading financial market infrastructure organisation seeking expertise in CyberArk Secret Manager. The role focuses on the deployment, configuration, and integration of CyberArk components across varied environments. The ideal candidate will have strong hands-on experience with CyberArk AAM, proven implementation skills, and automation capabilities. The position offers a flexible hybrid working model across multiple European locations, providing a unique opportunity in a high-performing team.
07/07/2026
Full time
Salt Digital Recruitment is supporting a leading financial market infrastructure organisation seeking expertise in CyberArk Secret Manager. The role focuses on the deployment, configuration, and integration of CyberArk components across varied environments. The ideal candidate will have strong hands-on experience with CyberArk AAM, proven implementation skills, and automation capabilities. The position offers a flexible hybrid working model across multiple European locations, providing a unique opportunity in a high-performing team.
Description Cyber Security Architect At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Our Mission, Vision, and Values guide the way we do business. Role overview We are seeking a Senior Cyber Security Architect to support customer projects within Civil & Devolved Government and Energy (DG&E) divisions in the UK. You must be based in the UK with the ability to hold SC Clearance or above, and you may need to apply for additional personnel security clearances. You will design and assure robust security architectures for customers, delivering high assurance with minimal friction, focusing on simple, effective security that customers value. The role supports secure, efficiently managed technical architectures for sensitive programmes. You will engage with third parties and customers, establishing and supporting ongoing growth. The role requires flexibility to operate in an agile environment with strong scheduling and prioritisation skills. Responsibilities Lead the design, implementation, and assurance of cybersecurity architectures for the protection of programme data, systems, and networks. Provide expert guidance on security architecture and design patterns for cloud and hybrid environments. Conduct risk assessments, threat modelling, and develop mitigation strategies for new and existing solutions. Embed security controls into architectural designs to protect data and infrastructure. Produce and maintain architectural documentation, reporting, and communication with relevant stakeholders. Embed the Security Architecture Framework and assurance approaches into delivery to maintain build assurance of system and service security. Lead the delivery and assurance of security requirements from design through service transition. Support customers in developing Zero Trust Network Architecture (ZTNA) strategies and roadmaps to target-state capabilities. Lead security design and requirements for Microsoft Entra ID, supporting IDAM strategy development. Lead Security Architecture Forums, driving governance outcomes for customer programmes. Engage with the broader architect community to embed security-by-design into IT Governance and Technical Design Authority processes. Develop and implement security policies and standards as required to stay secure and compliant. Candidate Information British - Many projects have nationality restrictions. SC cleared (or eligible for SC Vetting) - many projects have nationality restrictions. Education/Experience Experience in a security architecture or senior security engineering role. Experience in a technical leadership or architecture-focused position. Relevant security architecture certifications (e.g., SABSA, TOGAF, CISSP-ISSAP, Microsoft Certified: Cybersecurity Architect Expert, AWS Certified Security - Specialty, or similar) is an advantage. Essential Process Skills/Experience Excellent verbal and written communication skills; works well in a team environment. Experience of the IT systems engineering and architecture lifecycle. Understanding of systems engineering lifecycle controls (requirements management, configuration management, testing and assurance) and where security architecture fits. Familiarity with lifecycles/methodologies (waterfall, incremental, agile, DevOps). Solid understanding of Confidentiality, Integrity, and Availability (CIA) and applying it in architectural delivery. Experience designing secure solutions for sensitive environments. Understanding of service operations and security operational management planning. Awareness of Security Frameworks such as ISO 27001, ISO 27002, NIST, and NCSC Cloud Security Principles. Experience mentoring and acting in a team lead or senior role, including work on accredited security solutions in sensitive government or CNI scenarios. Desirable Experience Experience in both customer delivery and consulting environments. Experience in SecDevOps, infrastructure as code, or security as code. Experience in CNI or Public Sector project environments. Experience working in AGILE environments. Experience defining and implementing Zero Trust/ZTNA roadmaps and identity security patterns (e.g., Microsoft Entra ID governance and access controls). Technology Skills/Experience Deep understanding of network and boundary protection technologies (firewalls, mail gateways, load balancers, anti-virus, IPS, IDS). Experience architecting Cloud Security Controls on Azure and AWS. Practical experience with Protective Monitoring systems (SIEM/SOC) and deployment principles. Understanding of authentication and authorization technologies (SAML, LDAP, PKI, etc.). Strong grasp of encryption protocols and their deployment in secure architectures. Experience defining security requirements for systems, including: Microsoft OS Linux OS Virtualisation technologies Networking Endpoint Security Products Communication and Soft Skills Capable of developing and communicating a vision to meet system and security requirements. Ability to communicate complex technical ideas across audiences. Commercial awareness and project discipline. Note: This description reflects the responsibilities and qualifications for the role and does not include non-job content such as promotional material. EEO and diversity statements are included as required by law.
07/07/2026
Full time
Description Cyber Security Architect At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Our Mission, Vision, and Values guide the way we do business. Role overview We are seeking a Senior Cyber Security Architect to support customer projects within Civil & Devolved Government and Energy (DG&E) divisions in the UK. You must be based in the UK with the ability to hold SC Clearance or above, and you may need to apply for additional personnel security clearances. You will design and assure robust security architectures for customers, delivering high assurance with minimal friction, focusing on simple, effective security that customers value. The role supports secure, efficiently managed technical architectures for sensitive programmes. You will engage with third parties and customers, establishing and supporting ongoing growth. The role requires flexibility to operate in an agile environment with strong scheduling and prioritisation skills. Responsibilities Lead the design, implementation, and assurance of cybersecurity architectures for the protection of programme data, systems, and networks. Provide expert guidance on security architecture and design patterns for cloud and hybrid environments. Conduct risk assessments, threat modelling, and develop mitigation strategies for new and existing solutions. Embed security controls into architectural designs to protect data and infrastructure. Produce and maintain architectural documentation, reporting, and communication with relevant stakeholders. Embed the Security Architecture Framework and assurance approaches into delivery to maintain build assurance of system and service security. Lead the delivery and assurance of security requirements from design through service transition. Support customers in developing Zero Trust Network Architecture (ZTNA) strategies and roadmaps to target-state capabilities. Lead security design and requirements for Microsoft Entra ID, supporting IDAM strategy development. Lead Security Architecture Forums, driving governance outcomes for customer programmes. Engage with the broader architect community to embed security-by-design into IT Governance and Technical Design Authority processes. Develop and implement security policies and standards as required to stay secure and compliant. Candidate Information British - Many projects have nationality restrictions. SC cleared (or eligible for SC Vetting) - many projects have nationality restrictions. Education/Experience Experience in a security architecture or senior security engineering role. Experience in a technical leadership or architecture-focused position. Relevant security architecture certifications (e.g., SABSA, TOGAF, CISSP-ISSAP, Microsoft Certified: Cybersecurity Architect Expert, AWS Certified Security - Specialty, or similar) is an advantage. Essential Process Skills/Experience Excellent verbal and written communication skills; works well in a team environment. Experience of the IT systems engineering and architecture lifecycle. Understanding of systems engineering lifecycle controls (requirements management, configuration management, testing and assurance) and where security architecture fits. Familiarity with lifecycles/methodologies (waterfall, incremental, agile, DevOps). Solid understanding of Confidentiality, Integrity, and Availability (CIA) and applying it in architectural delivery. Experience designing secure solutions for sensitive environments. Understanding of service operations and security operational management planning. Awareness of Security Frameworks such as ISO 27001, ISO 27002, NIST, and NCSC Cloud Security Principles. Experience mentoring and acting in a team lead or senior role, including work on accredited security solutions in sensitive government or CNI scenarios. Desirable Experience Experience in both customer delivery and consulting environments. Experience in SecDevOps, infrastructure as code, or security as code. Experience in CNI or Public Sector project environments. Experience working in AGILE environments. Experience defining and implementing Zero Trust/ZTNA roadmaps and identity security patterns (e.g., Microsoft Entra ID governance and access controls). Technology Skills/Experience Deep understanding of network and boundary protection technologies (firewalls, mail gateways, load balancers, anti-virus, IPS, IDS). Experience architecting Cloud Security Controls on Azure and AWS. Practical experience with Protective Monitoring systems (SIEM/SOC) and deployment principles. Understanding of authentication and authorization technologies (SAML, LDAP, PKI, etc.). Strong grasp of encryption protocols and their deployment in secure architectures. Experience defining security requirements for systems, including: Microsoft OS Linux OS Virtualisation technologies Networking Endpoint Security Products Communication and Soft Skills Capable of developing and communicating a vision to meet system and security requirements. Ability to communicate complex technical ideas across audiences. Commercial awareness and project discipline. Note: This description reflects the responsibilities and qualifications for the role and does not include non-job content such as promotional material. EEO and diversity statements are included as required by law.
Senior and Principal Security Architects 50- 90 per hour (Dependent on experience and level) - Inside IR35 12 month contracts Hybrid - 2/3 days a week on site - Warton (PR4) Applicants must have the right to work in the UK Successful applicants must be eligible for SC/DV clearance Role Purpose / Overview Highly experienced security architects with strong technical credentials across enterprise, cloud, network and classified environments. Responsible for designing end-to-end secure architectures (HLD/LLD), leading Design Authorities and Technical Design Authorities, and providing architectural assurance across multi-supplier programmes up to TOP SECRET / Above Secret classifications. Ensures Secure-by-Design principles are embedded from the outset across all programmes. Key Outcomes Security is consistently embedded into system design across all programmes Architectural decisions align with Secure-by-Design principles from the outset Complex, multi-partner and classified environments are designed securely and coherently Identity, cross-domain and data protection controls are defined at the architecture level Design Authority interactions are informed, structured and technically robust Key Responsibilities Design end-to-end secure architectures (HLD/LLD) Lead Design Authorities and Technical Design Authorities Ensure security is consistently embedded into system design across all programmes Align architectural decisions with Secure-by-Design principles from the outset Define identity, cross-domain and data protection controls at the architecture level Enable structured, technically robust Design Authority interactions Provide architectural assurance across complex, multi-partner and classified environments Technical Skills & Experience, a good mix of some or all of the following: Secure-by-Design (MOD SbD / NIST 800-53r5 / NIST CSF / CIS CSC v8.1) - design, maturity tracking and assurance across full programme lifecycles Enterprise & Cloud Security Architecture - AWS, Azure, GCP, Oracle Cloud (multi-cloud landing zones, hybrid identity, secure migration patterns) Classified Platform Design - OFFICIAL, OFFICIAL-SENSITIVE, SECRET and ABOVE SECRET environments, ROSA, Garrison, Citadel, VCF, Cross-Domain Solutions Zero Trust, IDAM & PKI - conditional access, hybrid identity, cryptography, HSMs, IAM, RBAC, OIDC, federation Threat Modelling - STRIDE / STRIDE-LM, attack-surface analysis, trust boundary modelling, design reviews Network & Boundary Security - Checkpoint, Palo Alto, Fortinet, Cisco, Juniper, F5, Zscaler, NSX-T, SD-WAN, encrypted WAN, DMZ, NAC ServiceNow & M365 Architecture - ITSM, ITOM, CSM, EAM, SharePoint Online, Purview, Entra, Sentinel, Defender, Power Platform, CoPilot Container & DevSecOps - Kubernetes (EKS, Tanzu), Terraform, Ansible, CI/CD security, image scanning, container hardening Architecture Frameworks - TOGAF, ArchiMate, SABSA, Zachman, MODAF, JSP standards, NCSC architectural patterns HLD / LLD authoring, Security Patterns, Reference Architectures, Bill of Materials, Crypto Plans and JSP-compliant documentation Design Authority leadership, Technical Security Boards, Gateway Reviews, multi-supplier governance Qualifications & Certifications CISSP (multiple holders), CISM, CCSP, OSCP, CEH TOGAF 9 / TOGAF 9.2, SABSA Foundation, Zachman, ITIL v3/v4 AWS Security Specialty, AWS Solutions Architect, AWS DevOps Pro, AWS Advanced Networking Azure Security Specialist (AZ-500), Azure Solutions Architect (AZ-303/304), Microsoft MCSE CCIE (), CCNP, CCDP, VCP, VCAP-NV, VCP-NV, Check Point CCSE/CCSA, PCNSE ISO 27001 Lead Auditor, ISO 27005 Prince2 Practitioner, MSP, Chartered Engineer (IET), MBCS CITP Government Clearances: SC, DV (active and historic), Five Eyes engagement
06/07/2026
Contractor
Senior and Principal Security Architects 50- 90 per hour (Dependent on experience and level) - Inside IR35 12 month contracts Hybrid - 2/3 days a week on site - Warton (PR4) Applicants must have the right to work in the UK Successful applicants must be eligible for SC/DV clearance Role Purpose / Overview Highly experienced security architects with strong technical credentials across enterprise, cloud, network and classified environments. Responsible for designing end-to-end secure architectures (HLD/LLD), leading Design Authorities and Technical Design Authorities, and providing architectural assurance across multi-supplier programmes up to TOP SECRET / Above Secret classifications. Ensures Secure-by-Design principles are embedded from the outset across all programmes. Key Outcomes Security is consistently embedded into system design across all programmes Architectural decisions align with Secure-by-Design principles from the outset Complex, multi-partner and classified environments are designed securely and coherently Identity, cross-domain and data protection controls are defined at the architecture level Design Authority interactions are informed, structured and technically robust Key Responsibilities Design end-to-end secure architectures (HLD/LLD) Lead Design Authorities and Technical Design Authorities Ensure security is consistently embedded into system design across all programmes Align architectural decisions with Secure-by-Design principles from the outset Define identity, cross-domain and data protection controls at the architecture level Enable structured, technically robust Design Authority interactions Provide architectural assurance across complex, multi-partner and classified environments Technical Skills & Experience, a good mix of some or all of the following: Secure-by-Design (MOD SbD / NIST 800-53r5 / NIST CSF / CIS CSC v8.1) - design, maturity tracking and assurance across full programme lifecycles Enterprise & Cloud Security Architecture - AWS, Azure, GCP, Oracle Cloud (multi-cloud landing zones, hybrid identity, secure migration patterns) Classified Platform Design - OFFICIAL, OFFICIAL-SENSITIVE, SECRET and ABOVE SECRET environments, ROSA, Garrison, Citadel, VCF, Cross-Domain Solutions Zero Trust, IDAM & PKI - conditional access, hybrid identity, cryptography, HSMs, IAM, RBAC, OIDC, federation Threat Modelling - STRIDE / STRIDE-LM, attack-surface analysis, trust boundary modelling, design reviews Network & Boundary Security - Checkpoint, Palo Alto, Fortinet, Cisco, Juniper, F5, Zscaler, NSX-T, SD-WAN, encrypted WAN, DMZ, NAC ServiceNow & M365 Architecture - ITSM, ITOM, CSM, EAM, SharePoint Online, Purview, Entra, Sentinel, Defender, Power Platform, CoPilot Container & DevSecOps - Kubernetes (EKS, Tanzu), Terraform, Ansible, CI/CD security, image scanning, container hardening Architecture Frameworks - TOGAF, ArchiMate, SABSA, Zachman, MODAF, JSP standards, NCSC architectural patterns HLD / LLD authoring, Security Patterns, Reference Architectures, Bill of Materials, Crypto Plans and JSP-compliant documentation Design Authority leadership, Technical Security Boards, Gateway Reviews, multi-supplier governance Qualifications & Certifications CISSP (multiple holders), CISM, CCSP, OSCP, CEH TOGAF 9 / TOGAF 9.2, SABSA Foundation, Zachman, ITIL v3/v4 AWS Security Specialty, AWS Solutions Architect, AWS DevOps Pro, AWS Advanced Networking Azure Security Specialist (AZ-500), Azure Solutions Architect (AZ-303/304), Microsoft MCSE CCIE (), CCNP, CCDP, VCP, VCAP-NV, VCP-NV, Check Point CCSE/CCSA, PCNSE ISO 27001 Lead Auditor, ISO 27005 Prince2 Practitioner, MSP, Chartered Engineer (IET), MBCS CITP Government Clearances: SC, DV (active and historic), Five Eyes engagement
Certes IT Service Solutions
Milton Keynes, Buckinghamshire
IR35 Status: Inside Start: ASAP Role Overview A Senior Infrastructure Engineer is required for our Government Client to support a wide range of infrastructure technology across various platforms. You will be required to support various tiered systems within the Citrix skills and technology space; this role will support a wider team of skilled IT specialists supporting various government platforms and services. As well as being proficient in Citrix, you will also possess strong hands on capability across VMware and Linux platforms too. You will be required to support, maintain and enhance the client's enterprise infrastructure, ensuring reliability, performance and security across all systems. You will possess excellent troubleshooting skills, a strong technical breadth and the ability to work collaboratively within a busy operations environment. You will also support BAU and project deliverables where required. Essential Skills & Experience required As the Senior Infrastructure Engineer you will possess the following: 5 years + VMware - Configuration, updates, awareness, NSX 5 years + Linux/Debian - Scripting, updates, migrations, general support 3 years + Citrix - Updates, migrations, general support 3 years + Windows Management, PKI, IDAM, RNACS 3 years + Cloud - Azure/AWS Good general depth of skills across various core technol ogies Working experience and exposure across hardware and software Have worked with third party suppliers to provide and engage and support development Comfortable supporting documentation and knowledge enhancement Private and Public Cloud exposure.
06/07/2026
Full time
IR35 Status: Inside Start: ASAP Role Overview A Senior Infrastructure Engineer is required for our Government Client to support a wide range of infrastructure technology across various platforms. You will be required to support various tiered systems within the Citrix skills and technology space; this role will support a wider team of skilled IT specialists supporting various government platforms and services. As well as being proficient in Citrix, you will also possess strong hands on capability across VMware and Linux platforms too. You will be required to support, maintain and enhance the client's enterprise infrastructure, ensuring reliability, performance and security across all systems. You will possess excellent troubleshooting skills, a strong technical breadth and the ability to work collaboratively within a busy operations environment. You will also support BAU and project deliverables where required. Essential Skills & Experience required As the Senior Infrastructure Engineer you will possess the following: 5 years + VMware - Configuration, updates, awareness, NSX 5 years + Linux/Debian - Scripting, updates, migrations, general support 3 years + Citrix - Updates, migrations, general support 3 years + Windows Management, PKI, IDAM, RNACS 3 years + Cloud - Azure/AWS Good general depth of skills across various core technol ogies Working experience and exposure across hardware and software Have worked with third party suppliers to provide and engage and support development Comfortable supporting documentation and knowledge enhancement Private and Public Cloud exposure.
Join us as an Infrastructure Specialist at Barclays working with the Mainframe Security Engineering Team, where you'll build and maintain infrastructure platforms and products that support applications and data systems. You will use hardware, software, networks, and cloud computing platforms as required, with the aim of ensuring that the infrastructure is reliable, scalable, and secure. The team provides 24x7 support for Production systems so you will be expected to work both standard hours and on an on-call basis, weekends, and evenings. To be successful in this role you should have: Expert knowledge of Mainframe security, including: RACF administration and the management of RACF profiles, user access, and permissions. The implementation and maintenance of RACF security policies and procedures to ensure data protection. Performance of regular audits and reviews of RACF access controls, resolving any security issues. Monitoring and response to security alerts; performing root cause analysis and implementing corrective actions. Understanding the implementation of Mainframe Certificates and Mainframe cryptography. Experience of Security Best Practices and Compliance, assisting in the development and maintenance of security policies and procedures. Knowledge of Enterprise Security Manager RACF. Expert knowledge of REXX programming, including: Proficiency in the development and maintenance of REXX and JCL scripts for the automation of security processes and monitoring. Allowing for the enhancement of system efficiency through scripting to support security operations. Working with development teams to optimize scripts for performance and maintainability. Expert knowledge of JCL, including: The creation, maintenance and troubleshooting of JCL scripts for batch processing in a secure manner. Ensuring that JCL scripts adhere to security best practices and company standards. Collaboration with the operations team to support job execution and resolve job failures. Some other highly valued skills may include: Knowledge of Mainframe z/OS architecture and Sysplex. Understanding of IDAM Certification - CISSP / CISA / CISM You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our Knutsford location. Purpose of the role To build and maintain infrastructure platforms and products that support applications and data systems, using hardware, software, networks, and cloud computing platforms as required with the aim of ensuring that the infrastructure is reliable, scalable, and secure. Ensure the reliability, availability, and scalability of the systems, platforms, and technology through the application of software engineering techniques, automation, and best practices in incident response. Accountabilities Build Engineering: Development, delivery, and maintenance of high-quality infrastructure solutions to fulfil business requirements ensuring measurable reliability, performance, availability, and ease of use. Including the identification of the appropriate technologies and solutions to meet business, optimisation, and resourcing requirements. Incident Management: Monitoring of IT infrastructure and system performance to measure, identify, address, and resolve any potential issues, vulnerabilities, or outages. Use of data to drive down mean time to resolution. Automation: Development and implementation of automated tasks and processes to improve efficiency and reduce manual intervention, utilising software scripting/coding disciplines. Security: Implementation of a secure configuration and measures to protect infrastructure against cyber-attacks, vulnerabilities, and other security threats, including protection of hardware, software, and data from unauthorised access. Teamwork: Cross-functional collaboration with product managers, architects, and other engineers to define IT Infrastructure requirements, devise solutions, and ensure seamless integration and alignment with business objectives via a data driven approach. Learning: Stay informed of industry technology trends and innovations, and actively contribute to the organization's technology communities to foster a culture of technical excellence and growth. Assistant Vice President Expectations To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness. Collaborate closely with other functions/ business divisions. Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function. Set objectives and coach employees in pursuit of those objectives, appraisal of performance relative to objectives and determination of reward outcomes If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others. OR for an individual contributor, they will lead collaborative assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will identify new directions for assignments and/ or projects, identifying a combination of cross functional methodologies or practices to meet required outcomes. Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues. Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda. Take ownership for managing risk and strengthening controls in relation to the work done. Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy. Engage in complex analysis of data from multiple sources of information, internal and external sources such as procedures and practises (in other areas, teams, companies, etc).to solve problems creatively and effectively. Communicate complex information. 'Complex' information could include sensitive information or information that is difficult to communicate because of its content or its audience. Influence or convince stakeholders to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
06/07/2026
Full time
Join us as an Infrastructure Specialist at Barclays working with the Mainframe Security Engineering Team, where you'll build and maintain infrastructure platforms and products that support applications and data systems. You will use hardware, software, networks, and cloud computing platforms as required, with the aim of ensuring that the infrastructure is reliable, scalable, and secure. The team provides 24x7 support for Production systems so you will be expected to work both standard hours and on an on-call basis, weekends, and evenings. To be successful in this role you should have: Expert knowledge of Mainframe security, including: RACF administration and the management of RACF profiles, user access, and permissions. The implementation and maintenance of RACF security policies and procedures to ensure data protection. Performance of regular audits and reviews of RACF access controls, resolving any security issues. Monitoring and response to security alerts; performing root cause analysis and implementing corrective actions. Understanding the implementation of Mainframe Certificates and Mainframe cryptography. Experience of Security Best Practices and Compliance, assisting in the development and maintenance of security policies and procedures. Knowledge of Enterprise Security Manager RACF. Expert knowledge of REXX programming, including: Proficiency in the development and maintenance of REXX and JCL scripts for the automation of security processes and monitoring. Allowing for the enhancement of system efficiency through scripting to support security operations. Working with development teams to optimize scripts for performance and maintainability. Expert knowledge of JCL, including: The creation, maintenance and troubleshooting of JCL scripts for batch processing in a secure manner. Ensuring that JCL scripts adhere to security best practices and company standards. Collaboration with the operations team to support job execution and resolve job failures. Some other highly valued skills may include: Knowledge of Mainframe z/OS architecture and Sysplex. Understanding of IDAM Certification - CISSP / CISA / CISM You may be assessed on the key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen strategic thinking and digital and technology, as well as job-specific technical skills. This role will be based out of our Knutsford location. Purpose of the role To build and maintain infrastructure platforms and products that support applications and data systems, using hardware, software, networks, and cloud computing platforms as required with the aim of ensuring that the infrastructure is reliable, scalable, and secure. Ensure the reliability, availability, and scalability of the systems, platforms, and technology through the application of software engineering techniques, automation, and best practices in incident response. Accountabilities Build Engineering: Development, delivery, and maintenance of high-quality infrastructure solutions to fulfil business requirements ensuring measurable reliability, performance, availability, and ease of use. Including the identification of the appropriate technologies and solutions to meet business, optimisation, and resourcing requirements. Incident Management: Monitoring of IT infrastructure and system performance to measure, identify, address, and resolve any potential issues, vulnerabilities, or outages. Use of data to drive down mean time to resolution. Automation: Development and implementation of automated tasks and processes to improve efficiency and reduce manual intervention, utilising software scripting/coding disciplines. Security: Implementation of a secure configuration and measures to protect infrastructure against cyber-attacks, vulnerabilities, and other security threats, including protection of hardware, software, and data from unauthorised access. Teamwork: Cross-functional collaboration with product managers, architects, and other engineers to define IT Infrastructure requirements, devise solutions, and ensure seamless integration and alignment with business objectives via a data driven approach. Learning: Stay informed of industry technology trends and innovations, and actively contribute to the organization's technology communities to foster a culture of technical excellence and growth. Assistant Vice President Expectations To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness. Collaborate closely with other functions/ business divisions. Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function. Set objectives and coach employees in pursuit of those objectives, appraisal of performance relative to objectives and determination of reward outcomes If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others. OR for an individual contributor, they will lead collaborative assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will identify new directions for assignments and/ or projects, identifying a combination of cross functional methodologies or practices to meet required outcomes. Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues. Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda. Take ownership for managing risk and strengthening controls in relation to the work done. Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy. Engage in complex analysis of data from multiple sources of information, internal and external sources such as procedures and practises (in other areas, teams, companies, etc).to solve problems creatively and effectively. Communicate complex information. 'Complex' information could include sensitive information or information that is difficult to communicate because of its content or its audience. Influence or convince stakeholders to achieve outcomes. All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship - our moral compass, helping us do what we believe is right. They will also be expected to demonstrate the Barclays Mindset - to Empower, Challenge and Drive - the operating manual for how we behave.
At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. Cyber Security Architect We require a Senior Cyber Security Architect to support our customer projects within Civil & Devolved Government and Energy (DG&E) divisions in the UK. You must be based in the UK with the ability to hold SC Clearance or above, and you may need to apply for additional personnel security clearances. The role will support the delivery of secure, efficiently managed technical architectures for sensitive programmes. You will engage with third parties and customers, establishing and supporting ongoing growth. Responsibilities Lead the design, implementation, and assurance of cybersecurity architectures for the protection of programme data, systems, and networks. Provide expert guidance on security architecture and design patterns for cloud and hybrid environments. Conduct risk assessments, threat modelling, and develop mitigation strategies for new and existing solutions. Ensure that data and infrastructure are protected by embedding appropriate security controls into architectural designs. Produce and maintain architectural documentation, reporting, and communication with relevant stakeholders. Embed the existing Security Architecture Framework and associated assurance approach into delivery to maintain overall (build) assurance of system and service security. Lead the delivery and assurance of security requirements as part of new demands, ensuring requirements are captured, traced, and assured through design, delivery, and service transition. Support the customers in the development of Zero Trust Network Architecture (ZTNA) strategies, including a roadmap to achieve target state capabilities. Lead the security design and security requirements for Microsoft Entra ID, supporting current and shaping the future IDAM strategy and roadmaps. Lead the Security Architecture Forums, driving decisions, actions, and architectural governance outcomes for customer programmes. Lead engagement with the broader architect community to embed security by design into IT Governance, Technical Design Authority (TDA) processes. Where required, lead the development and implementation of security policies and supporting standards to ensure systems stay secure and compliant. Candidate Information British - many projects have nationality restrictions. SC cleared (or eligible to undergo SC Vetting) - many projects have nationality restrictions. Education and Experience Experience in a security architecture or senior security engineering role. Experience in a technical leadership or architecture focused position. Relevant security architecture certifications (e.g., SABSA, TOGAF, CISSP ISSAP, Microsoft Certified: Cybersecurity Architect Expert, AWS Certified Security - Specialty, or similar) are an advantage. Essential Process Skills and Experience Excellent verbal and written communication skills; works well in a team environment. Experience of IT systems engineering and architecture lifecycle. Understanding of the controlling processes for the systems engineering lifecycle (e.g., requirements management, configuration management, testing and assurance) and where security architecture fits into these. Familiarity with different lifecycles/methodologies (waterfall, incremental, agile, DevOps). Solid understanding of Confidentiality, Integrity, and Availability (CIA) and practical experience in applying that understanding in architectural delivery. Experience designing secure solutions for sensitive environments. Understanding of service operations and security operational management planning. Awareness of security frameworks such as ISO 27001, ISO 27002, NIST, and NCSC Cloud Security Principles. Experience mentoring and acting in a team lead or senior role, supporting junior members of the team. Experience working on accredited security solutions in sensitive government or CNI scenarios. Desirable Experience Experience working in both customer delivery and consulting environments. Experience in SecDevOps, infrastructure as code, or security as code. Experience working in CNI or Public Sector project environments. Working within an AGILE environment. Experience defining and implementing Zero Trust / ZTNA roadmaps and identity security patterns (e.g., Microsoft Entra ID governance and access controls). Technology Skills and Experience Deep understanding of network and boundary protection technologies (firewalls, mail gateways, load balancers, anti virus, IPS, IDS). Evidence of experience architecting Cloud Security Controls on both Azure and AWS. Practical experience with Protective Monitoring systems (SIEM/SOC) and the principles of their deployment. Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc.). Strong grasp of encryption protocols, structures, and their deployment in secure architectures. Experience defining and implementing security requirements for systems, including: Microsoft OS Linux OS Virtualisation technologies Networking Endpoint Security Products Communication and Soft Skills Capable of developing and communicating a vision to meet system and security requirements. Ability to communicate complex technical ideas across a wide range of audiences. A proficient level of commercial awareness and project disciplines. What We Do for You Contributory Pension Scheme Private Medical Insurance 33 days Annual Leave (including public and privilege holidays) Access to flexible benefits (life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) Flexi time benefits Pay Range £61,500.00 - £78,800.00 Commitment to Diversity We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Commitment to Non Discrimination All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
06/07/2026
Full time
At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainably. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community. Our Mission, Vision, and Values guide the way we do business. Cyber Security Architect We require a Senior Cyber Security Architect to support our customer projects within Civil & Devolved Government and Energy (DG&E) divisions in the UK. You must be based in the UK with the ability to hold SC Clearance or above, and you may need to apply for additional personnel security clearances. The role will support the delivery of secure, efficiently managed technical architectures for sensitive programmes. You will engage with third parties and customers, establishing and supporting ongoing growth. Responsibilities Lead the design, implementation, and assurance of cybersecurity architectures for the protection of programme data, systems, and networks. Provide expert guidance on security architecture and design patterns for cloud and hybrid environments. Conduct risk assessments, threat modelling, and develop mitigation strategies for new and existing solutions. Ensure that data and infrastructure are protected by embedding appropriate security controls into architectural designs. Produce and maintain architectural documentation, reporting, and communication with relevant stakeholders. Embed the existing Security Architecture Framework and associated assurance approach into delivery to maintain overall (build) assurance of system and service security. Lead the delivery and assurance of security requirements as part of new demands, ensuring requirements are captured, traced, and assured through design, delivery, and service transition. Support the customers in the development of Zero Trust Network Architecture (ZTNA) strategies, including a roadmap to achieve target state capabilities. Lead the security design and security requirements for Microsoft Entra ID, supporting current and shaping the future IDAM strategy and roadmaps. Lead the Security Architecture Forums, driving decisions, actions, and architectural governance outcomes for customer programmes. Lead engagement with the broader architect community to embed security by design into IT Governance, Technical Design Authority (TDA) processes. Where required, lead the development and implementation of security policies and supporting standards to ensure systems stay secure and compliant. Candidate Information British - many projects have nationality restrictions. SC cleared (or eligible to undergo SC Vetting) - many projects have nationality restrictions. Education and Experience Experience in a security architecture or senior security engineering role. Experience in a technical leadership or architecture focused position. Relevant security architecture certifications (e.g., SABSA, TOGAF, CISSP ISSAP, Microsoft Certified: Cybersecurity Architect Expert, AWS Certified Security - Specialty, or similar) are an advantage. Essential Process Skills and Experience Excellent verbal and written communication skills; works well in a team environment. Experience of IT systems engineering and architecture lifecycle. Understanding of the controlling processes for the systems engineering lifecycle (e.g., requirements management, configuration management, testing and assurance) and where security architecture fits into these. Familiarity with different lifecycles/methodologies (waterfall, incremental, agile, DevOps). Solid understanding of Confidentiality, Integrity, and Availability (CIA) and practical experience in applying that understanding in architectural delivery. Experience designing secure solutions for sensitive environments. Understanding of service operations and security operational management planning. Awareness of security frameworks such as ISO 27001, ISO 27002, NIST, and NCSC Cloud Security Principles. Experience mentoring and acting in a team lead or senior role, supporting junior members of the team. Experience working on accredited security solutions in sensitive government or CNI scenarios. Desirable Experience Experience working in both customer delivery and consulting environments. Experience in SecDevOps, infrastructure as code, or security as code. Experience working in CNI or Public Sector project environments. Working within an AGILE environment. Experience defining and implementing Zero Trust / ZTNA roadmaps and identity security patterns (e.g., Microsoft Entra ID governance and access controls). Technology Skills and Experience Deep understanding of network and boundary protection technologies (firewalls, mail gateways, load balancers, anti virus, IPS, IDS). Evidence of experience architecting Cloud Security Controls on both Azure and AWS. Practical experience with Protective Monitoring systems (SIEM/SOC) and the principles of their deployment. Understanding of authentication and authorisation technologies (SAML, LDAP, PKI, etc.). Strong grasp of encryption protocols, structures, and their deployment in secure architectures. Experience defining and implementing security requirements for systems, including: Microsoft OS Linux OS Virtualisation technologies Networking Endpoint Security Products Communication and Soft Skills Capable of developing and communicating a vision to meet system and security requirements. Ability to communicate complex technical ideas across a wide range of audiences. A proficient level of commercial awareness and project disciplines. What We Do for You Contributory Pension Scheme Private Medical Insurance 33 days Annual Leave (including public and privilege holidays) Access to flexible benefits (life assurance, health schemes, gym memberships, annual buy and sell holidays and a cycle to work scheme) Flexi time benefits Pay Range £61,500.00 - £78,800.00 Commitment to Diversity We welcome applications from every part of the community and are committed to a truly diverse and inclusive culture. We foster a sense of belonging, welcoming all perspectives and contributions, and providing equal access to opportunities and resources for everyone. If you have a disability or need any reasonable adjustments during the application and selection stages please let us know, and we will respond in a way that best fits your needs. Commitment to Non Discrimination All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.
The Deputy CISO is the CISO's principal delegate and second in command, accountable for day to day execution of the global cyber security program, team leadership and for elevating security influence across the enterprise. The role ensures cohesive strategy, robust operations, and clear business alignment in a complex logistics environment, including WMS/TMS platforms and warehouse robotics, IoT, and OT. The Deputy CISO strengthens succession planning, executive decision making, and senior business partnering across the organisation. Operates in a global role, based at either of our UK corporate HQs (London or Northampton). Key Responsibilities Support the CISO in translating the enterprise risk appetite into an actionable, outcome driven security strategy; and support the multi year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure "secure by default" across cloud, application, data, identity, and infrastructure landscapes. Establish IDAM function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24 7 detection, response, threat hunting), DFIR, purple team/assurance, ransomware preparedness, and crisis playbooks. Maintain executive incident communications, regulator notifications, and post incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive secure by design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment. Business Partnering & PMO Ensure the Business Partnering function embeds security in product/platform roadmaps and regional operations (Americas/EMEA/APAC). Oversee the InfoSec PMO: portfolio selection, prioritization, benefits tracking, and transparent delivery reporting to business and technology leaders. Provide day to day management of InfoSec senior leaders (four directors/senior directors) and their teams; build succession paths, mentorship, and leadership development. Sponsor Security Awareness & Culture programs and executive engagement; promote inclusive, high performance behaviors. The role has enterprise wide accountability for the execution of the global cyber security program, ensuring effective risk management, operational resilience, and alignment with business strategy. It influences executive decision making, enterprise risk posture, and regulatory outcomes across a complex global logistics environment. You will operate in a complex and evolving threat landscape, requiring continuous improvement of security processes, tooling, and operating models. You will address ambiguous and high impact challenges across technology, risk, and business domains with enterprise wide implications. The role engages extensively with the CISO, regulators, and senior business and technology leaders. It is responsible for executive level incident communications, regulatory engagement, and influencing security outcomes across regions and functions. You will provide leadership to senior InfoSec leaders and their teams, supporting performance, development, and succession planning across the global security organisation. Experience and Qualifications Required 15+ years in information security with progressive leadership; 8+ years leading multi disciplinary teams across SecOps/IR, GRC, Engineering/Architecture and Business Partnering. Demonstrated success interfacing with boards/executive committees; executive incident leadership and public/regulatory communications. Deep experience in either GRC or technical cyber security. Experience in managing and leading global cross functional and cross regional tech teams. Experience in Continuous improvement, Six Sigma or other improvement tools to drive business performance and create value. Strong understanding and maturing of IT operating models in matrixed, global environments. Demonstrated success in driving technology standardization and transformation programs. Bachelor's degree in computer science, engineering, or a related field; advanced degree preferred. CISSP (or CISM). Other security certifications. Travel requirement - up to 20%. GXO is an equal opportunity employer. We celebrate, support and thrive on diversity and are committed to creating an inclusive environment for all employees. We believe that diversity and inclusion in our business is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are an Armed Forces friendly organisation and Disability Confident Leader as part of the Disability Confident Scheme (GIS) and actively welcome applications from people with disabilities.
04/07/2026
Full time
The Deputy CISO is the CISO's principal delegate and second in command, accountable for day to day execution of the global cyber security program, team leadership and for elevating security influence across the enterprise. The role ensures cohesive strategy, robust operations, and clear business alignment in a complex logistics environment, including WMS/TMS platforms and warehouse robotics, IoT, and OT. The Deputy CISO strengthens succession planning, executive decision making, and senior business partnering across the organisation. Operates in a global role, based at either of our UK corporate HQs (London or Northampton). Key Responsibilities Support the CISO in translating the enterprise risk appetite into an actionable, outcome driven security strategy; and support the multi year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure "secure by default" across cloud, application, data, identity, and infrastructure landscapes. Establish IDAM function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24 7 detection, response, threat hunting), DFIR, purple team/assurance, ransomware preparedness, and crisis playbooks. Maintain executive incident communications, regulator notifications, and post incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive secure by design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment. Business Partnering & PMO Ensure the Business Partnering function embeds security in product/platform roadmaps and regional operations (Americas/EMEA/APAC). Oversee the InfoSec PMO: portfolio selection, prioritization, benefits tracking, and transparent delivery reporting to business and technology leaders. Provide day to day management of InfoSec senior leaders (four directors/senior directors) and their teams; build succession paths, mentorship, and leadership development. Sponsor Security Awareness & Culture programs and executive engagement; promote inclusive, high performance behaviors. The role has enterprise wide accountability for the execution of the global cyber security program, ensuring effective risk management, operational resilience, and alignment with business strategy. It influences executive decision making, enterprise risk posture, and regulatory outcomes across a complex global logistics environment. You will operate in a complex and evolving threat landscape, requiring continuous improvement of security processes, tooling, and operating models. You will address ambiguous and high impact challenges across technology, risk, and business domains with enterprise wide implications. The role engages extensively with the CISO, regulators, and senior business and technology leaders. It is responsible for executive level incident communications, regulatory engagement, and influencing security outcomes across regions and functions. You will provide leadership to senior InfoSec leaders and their teams, supporting performance, development, and succession planning across the global security organisation. Experience and Qualifications Required 15+ years in information security with progressive leadership; 8+ years leading multi disciplinary teams across SecOps/IR, GRC, Engineering/Architecture and Business Partnering. Demonstrated success interfacing with boards/executive committees; executive incident leadership and public/regulatory communications. Deep experience in either GRC or technical cyber security. Experience in managing and leading global cross functional and cross regional tech teams. Experience in Continuous improvement, Six Sigma or other improvement tools to drive business performance and create value. Strong understanding and maturing of IT operating models in matrixed, global environments. Demonstrated success in driving technology standardization and transformation programs. Bachelor's degree in computer science, engineering, or a related field; advanced degree preferred. CISSP (or CISM). Other security certifications. Travel requirement - up to 20%. GXO is an equal opportunity employer. We celebrate, support and thrive on diversity and are committed to creating an inclusive environment for all employees. We believe that diversity and inclusion in our business is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are an Armed Forces friendly organisation and Disability Confident Leader as part of the Disability Confident Scheme (GIS) and actively welcome applications from people with disabilities.
VaynerX is a family of companies building brands for the now. Founded by Chairman Gary Vaynerchuk in January 2017, the modern-day parent company is home to relevance-driving businesses including VaynerMedia, ChukMedia, Tamara Group, Gallery Media Group, Eva Nosidam Productions, Tingley Lane Trading, and VaynerSpeakers. VaynerMedia is a global integrated creative and media agency, built for today's consumers. As the Modern Agency of Record, it understands the nuances of today's attention landscape, empowering brands to win attention, drive relevance, and deliver business results. Founded in 2009, it operates in 15 offices worldwide, including Amsterdam, Bangkok, Chicago, New Delhi, Kuala Lumpur, London, Los Angeles, Mexico City, Miami, New York, Tokyo, Toronto, Singapore, and Sydney. Relevance Social Strategist, Tech Overall Purpose Strategy at VaynerMedia provides a crucial perspective on business dynamics. We are a human-centric, culture-obsessed discipline where we dive deep into audience insights, media trends, cultural shifts, and technical innovations. Our team is collectively redefining and modernizing how clients harness consumer intelligence, develop brand strategy, and plan for attention. We partner with Microsoft to drive social content that commands attention. We need a Relevance Social Strategist specializing in the Tech, AI, and Cloud sectors-a hybrid who is as comfortable debating the merits of a tech stack or the nuances of senior developer culture on Reddit as they are dissecting why a specific TikTok hook went viral. You will be the bridge between complex cloud computing and internet-first creative. Your goal is to take one of the world's most sophisticated tech stacks and make it the most culturally resonant brand in the digital landscape. You will turn B2B decision-making into must-watch social entertainment. Key Areas of Responsibility Earned Social Strategy: Design, write and communicate social-first creative across platforms that prioritizes organic reach with IT Decision Makers, Business Decision Makers, and Senior Developers. B2B Relevance: Position the client at the center of the Great Cloud conversation, AI and tech product solutions, making complex technical topics accessible and culturally relevant to engineers and executives alike. Social Showrunning: Concept and drive recurring social formats (mini-series, live streams, or platform-specific "shows") that build loyal audiences, translating complex technical briefs into creator-led social content; work daily with a creative team, helping them with the KPI of organic views. Influencer & Creator Partnerships: Identify and educate the team on emerging voices in the Tech and AI space. Maintain deep knowledge of technical creators - from GitHub legends to YouTube hardware geeks - to co-create content with built-in credibility. Trend Harvesting: Conduct daily scans of the social landscape (Cloud, DevOps, AI) to identify real-time cultural signals and formats, allowing the brand to act fast before the news cycle becomes stale. Creative Partnership: Partner closely with social creators to ensure technical products and messages are paired with actionable cultural insights to fuel high-performing content. Reporting & Insight: Deliver reports on social conversations and community sentiment, serving as a flexible strategic resource deployable across multiple initiatives. Manage Community: Be comfortable commenting and interacting with a social community, bringing positive attention to places within the category, on social media. Experience & Knowledge Required Technical Cultural Fluency: A deep background in Tech and an understanding of the ever changing, always on AI conversation with a genuine finger on the pulse of the Cloud Computing space. You don't just find the news; you understand the underlying technology and how to speak authentically to developers and IT consultants. Deeply Networked: You live in the culture of Tech and AI: connected to the right communities, subreddits, and events. This world is second nature to you. Social Mastery: Proven experience in social strategy, content curation, or community management for nuanced audience segments and technical cohorts. Analytical Skills: The ability to spot early cultural signals and translate them into strategic value for clients, even in the absence of traditional strategy frameworks. Communication: Exceptional writing skills for crafting internal reports, cultural stewardship, and POV documents. Soft Skills: Strong curiosity, go-getter energy, and a bias for action to ensure insights drive tangible, executable creativity. Who You Are You believe "B2B" shouldn't stand for "Boring-to-Boring." You speak the language of tech but have an instinctive understanding of viral creative and platform mechanics. You spend your weekends lurking in niche subreddits or watching video essays on tech history. You have a hacker mindset: you like to experiment, break things, and find the shortcut to attention. You are chronically online, deep in the web and know you're way around a suite of tech products. You know and understand social media, creative thinking and the creator economy. You can confidently defend a high-concept creative idea to a room full of C-suite engineers. The Litmus Test: If you know the difference between a container and a virtual machine, and you also know exactly why a specific audio clip is trending on TikTok, we want to talk to you. Unsure if you meet the qualifications? We are always looking for talent which will continue to cultivate an inclusive and representative team that will enhance our perspectives, skill sets, background, and behaviors. We encourage those who are passionate about what we do to apply. Benefits & Compensation Exact compensation may vary based on skills, experience, and location. Employer-sponsored 401k with match. Medical, Dental, and vision coverage. Unlimited PTO. Caregiver (Parental) Leave. Health and Wellness benefits. Base Salary $70,000-$80,000 USD
01/07/2026
Full time
VaynerX is a family of companies building brands for the now. Founded by Chairman Gary Vaynerchuk in January 2017, the modern-day parent company is home to relevance-driving businesses including VaynerMedia, ChukMedia, Tamara Group, Gallery Media Group, Eva Nosidam Productions, Tingley Lane Trading, and VaynerSpeakers. VaynerMedia is a global integrated creative and media agency, built for today's consumers. As the Modern Agency of Record, it understands the nuances of today's attention landscape, empowering brands to win attention, drive relevance, and deliver business results. Founded in 2009, it operates in 15 offices worldwide, including Amsterdam, Bangkok, Chicago, New Delhi, Kuala Lumpur, London, Los Angeles, Mexico City, Miami, New York, Tokyo, Toronto, Singapore, and Sydney. Relevance Social Strategist, Tech Overall Purpose Strategy at VaynerMedia provides a crucial perspective on business dynamics. We are a human-centric, culture-obsessed discipline where we dive deep into audience insights, media trends, cultural shifts, and technical innovations. Our team is collectively redefining and modernizing how clients harness consumer intelligence, develop brand strategy, and plan for attention. We partner with Microsoft to drive social content that commands attention. We need a Relevance Social Strategist specializing in the Tech, AI, and Cloud sectors-a hybrid who is as comfortable debating the merits of a tech stack or the nuances of senior developer culture on Reddit as they are dissecting why a specific TikTok hook went viral. You will be the bridge between complex cloud computing and internet-first creative. Your goal is to take one of the world's most sophisticated tech stacks and make it the most culturally resonant brand in the digital landscape. You will turn B2B decision-making into must-watch social entertainment. Key Areas of Responsibility Earned Social Strategy: Design, write and communicate social-first creative across platforms that prioritizes organic reach with IT Decision Makers, Business Decision Makers, and Senior Developers. B2B Relevance: Position the client at the center of the Great Cloud conversation, AI and tech product solutions, making complex technical topics accessible and culturally relevant to engineers and executives alike. Social Showrunning: Concept and drive recurring social formats (mini-series, live streams, or platform-specific "shows") that build loyal audiences, translating complex technical briefs into creator-led social content; work daily with a creative team, helping them with the KPI of organic views. Influencer & Creator Partnerships: Identify and educate the team on emerging voices in the Tech and AI space. Maintain deep knowledge of technical creators - from GitHub legends to YouTube hardware geeks - to co-create content with built-in credibility. Trend Harvesting: Conduct daily scans of the social landscape (Cloud, DevOps, AI) to identify real-time cultural signals and formats, allowing the brand to act fast before the news cycle becomes stale. Creative Partnership: Partner closely with social creators to ensure technical products and messages are paired with actionable cultural insights to fuel high-performing content. Reporting & Insight: Deliver reports on social conversations and community sentiment, serving as a flexible strategic resource deployable across multiple initiatives. Manage Community: Be comfortable commenting and interacting with a social community, bringing positive attention to places within the category, on social media. Experience & Knowledge Required Technical Cultural Fluency: A deep background in Tech and an understanding of the ever changing, always on AI conversation with a genuine finger on the pulse of the Cloud Computing space. You don't just find the news; you understand the underlying technology and how to speak authentically to developers and IT consultants. Deeply Networked: You live in the culture of Tech and AI: connected to the right communities, subreddits, and events. This world is second nature to you. Social Mastery: Proven experience in social strategy, content curation, or community management for nuanced audience segments and technical cohorts. Analytical Skills: The ability to spot early cultural signals and translate them into strategic value for clients, even in the absence of traditional strategy frameworks. Communication: Exceptional writing skills for crafting internal reports, cultural stewardship, and POV documents. Soft Skills: Strong curiosity, go-getter energy, and a bias for action to ensure insights drive tangible, executable creativity. Who You Are You believe "B2B" shouldn't stand for "Boring-to-Boring." You speak the language of tech but have an instinctive understanding of viral creative and platform mechanics. You spend your weekends lurking in niche subreddits or watching video essays on tech history. You have a hacker mindset: you like to experiment, break things, and find the shortcut to attention. You are chronically online, deep in the web and know you're way around a suite of tech products. You know and understand social media, creative thinking and the creator economy. You can confidently defend a high-concept creative idea to a room full of C-suite engineers. The Litmus Test: If you know the difference between a container and a virtual machine, and you also know exactly why a specific audio clip is trending on TikTok, we want to talk to you. Unsure if you meet the qualifications? We are always looking for talent which will continue to cultivate an inclusive and representative team that will enhance our perspectives, skill sets, background, and behaviors. We encourage those who are passionate about what we do to apply. Benefits & Compensation Exact compensation may vary based on skills, experience, and location. Employer-sponsored 401k with match. Medical, Dental, and vision coverage. Unlimited PTO. Caregiver (Parental) Leave. Health and Wellness benefits. Base Salary $70,000-$80,000 USD
Wolfspeed is seeking a Cyber Defense Analyst to join their growing global Cyber Security team. You will join a team of highly motivated security professionals who are working hard to foster a security-first culture at Wolfspeed. What does your day-to-day look like? Responsible for escalations and events Investigate and respond to cyber security events, including SIEM alerts Triage and process user generated incidents, including phishing emails Work L2 & L3 BAU information security queues Consolidate and develop Cyber Defense documentation Assist with general information security requests, including GRC related asks Investigate IDAM alerts and respond accordingly Who are we looking for? 2+ years' experience in Information Security Experience configuring and supporting security tools Strong understanding of IOCs and current TTPs Intermediate knowledge of networking fundamentals Proficiency with both Windows and Unix/Linux OS Strong technical knowledge of the Windows ecosystem, including Azure and Active Directory Strong experience within incident response, including SIEM and EDR tooling Ability to work independently and use initiative to resolve issues Plan and execute self-managed workstreams/projects with minimal oversight Excellent oral and written communication skills Ability to develop strong working relationships with other Teams to complete initiatives Nice to have PAM knowledge Security Engineering experience Ability to code Threat hunting experience Knowledge of network security
21/06/2026
Full time
Wolfspeed is seeking a Cyber Defense Analyst to join their growing global Cyber Security team. You will join a team of highly motivated security professionals who are working hard to foster a security-first culture at Wolfspeed. What does your day-to-day look like? Responsible for escalations and events Investigate and respond to cyber security events, including SIEM alerts Triage and process user generated incidents, including phishing emails Work L2 & L3 BAU information security queues Consolidate and develop Cyber Defense documentation Assist with general information security requests, including GRC related asks Investigate IDAM alerts and respond accordingly Who are we looking for? 2+ years' experience in Information Security Experience configuring and supporting security tools Strong understanding of IOCs and current TTPs Intermediate knowledge of networking fundamentals Proficiency with both Windows and Unix/Linux OS Strong technical knowledge of the Windows ecosystem, including Azure and Active Directory Strong experience within incident response, including SIEM and EDR tooling Ability to work independently and use initiative to resolve issues Plan and execute self-managed workstreams/projects with minimal oversight Excellent oral and written communication skills Ability to develop strong working relationships with other Teams to complete initiatives Nice to have PAM knowledge Security Engineering experience Ability to code Threat hunting experience Knowledge of network security
IAM Engineer An excellent opportunity has arisen for an IAM Engineer to join a highly regulated technology environment where security, reliability and continuous improvement are taken seriously. Working as part of a dedicated identity operations function, you will play a key role in day to day identity and access management, supporting joiner, mover and leaver processes while helping strengthen access governance and Zero Trust controls across a Microsoft centric estate. What You'll Be Doing Delivering BAU IAM administration across Active Directory and Azure AD / Entra ID Managing JML processes, onboarding and offboarding users securely Supporting access requests, account changes and troubleshooting identity issues Assisting with access reviews, permissions rationalisation and audits Working closely with security and support teams as a 2nd line escalation point Contributing to automation and workflow improvements using PowerShell and ServiceNow What We're Looking For OKta Identity Experience in IAM / IDAM operations Strong knowledge of Microsoft identity platforms Understanding of RBAC, least privilege and Zero Trust Familiarity with ServiceNow or similar ITSM tools Comfortable working in regulated or compliance driven environments Eligible for UK Security Clearance (SC) Nice to Have PowerShell automation ISO 27001 / ITIL exposure
19/06/2026
Full time
IAM Engineer An excellent opportunity has arisen for an IAM Engineer to join a highly regulated technology environment where security, reliability and continuous improvement are taken seriously. Working as part of a dedicated identity operations function, you will play a key role in day to day identity and access management, supporting joiner, mover and leaver processes while helping strengthen access governance and Zero Trust controls across a Microsoft centric estate. What You'll Be Doing Delivering BAU IAM administration across Active Directory and Azure AD / Entra ID Managing JML processes, onboarding and offboarding users securely Supporting access requests, account changes and troubleshooting identity issues Assisting with access reviews, permissions rationalisation and audits Working closely with security and support teams as a 2nd line escalation point Contributing to automation and workflow improvements using PowerShell and ServiceNow What We're Looking For OKta Identity Experience in IAM / IDAM operations Strong knowledge of Microsoft identity platforms Understanding of RBAC, least privilege and Zero Trust Familiarity with ServiceNow or similar ITSM tools Comfortable working in regulated or compliance driven environments Eligible for UK Security Clearance (SC) Nice to Have PowerShell automation ISO 27001 / ITIL exposure
Golang Works is seeking an OKTA/IDAM Developer based in London, United Kingdom. The role involves working with technologies such as OAuth, SSO with OIDC, and Okta Lifecycle Management. As part of a full-time position, candidates will not be provided with visa sponsorship. Competitive compensation is offered for this role, appealing to skilled professionals in the identity and access management domain.
17/06/2026
Full time
Golang Works is seeking an OKTA/IDAM Developer based in London, United Kingdom. The role involves working with technologies such as OAuth, SSO with OIDC, and Okta Lifecycle Management. As part of a full-time position, candidates will not be provided with visa sponsorship. Competitive compensation is offered for this role, appealing to skilled professionals in the identity and access management domain.
DV Cleared Infrastructure Tester - 6 months+ extensions, 500- 600pd DOE - Full time on site (Hampshire) Looking for a High Level clearance/ DV Cleared Tester with good knowledge of Windows and Linux operating systems, together with the experience of working within a multi-disciplined engineering team. You will leverage your knowledge of integration frameworks to support the continuous integration, deployment, and testing of new features across complex environments. Hands on experience in infrastructure engineering, including the testing, deployment, and maintenance of robust, scalable systems. Direct experience testing and integrating any of the following: Identity and access management (IDAM) systems including role based access control (RBAC) Public key infrastructure (PKI) Server monitoring, audit and patch deployment Key Duties and Responsibilities Running manual tests using the project approved tools. Interpretation of test results and preliminary investigation of failures. Raising defects and monitoring them through to resolution. Develop scripts for sub-systems integration testing (end to end test). Good knowledge of IT infrastructure, including Servers, networks, and virtualisation technologies. Good understanding of network protocols, and experience with both Linux and Windows operating systems. Required Competencies Experience of Testing. Experience of Integration and testing of sub-systems. Experience designing and producing manual Tests. Experience of Test Management Tools Linux Desired Competencies Experience of SAFe and agile ways of working Good Problem investigation and analysis skills ISTQB Foundation Certification This temporary contract is inside IR35 and will require working under the direction of the client delivery manager as part of a multi-disciplinary team. The successful candidate will follow established delivery processes and working practices This temporary contract is the successful candidate to undergo and be eligible for UK Security Vetting at SC/DV level. Clearance sponsorship will be provided where required. Due to the nature of the work, candidates should meet the relevant residency requirements. If applicable, reserved post nationality restrictions will be confirmed by the client. Damia is committed to inclusive recruitment and welcomes applicants from all backgrounds. Due to the secure nature of the position and working environment, you must have, or be eligible to obtain Security Clearance List of national security vetting clearance levels with guidance on who requires clearance and what checks are completed. Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Should the role require the successful candidate to undergo and be eligible for UK Security Vetting. Clearance sponsorship will be provided where required. Due to the nature of the work, candidates should meet the relevant residency requirements. If applicable, Reserved Post nationality restrictions will be confirmed by the client. Damia is committed to inclusive recruitment and welcomes applicants from all backgrounds. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.
16/06/2026
Contractor
DV Cleared Infrastructure Tester - 6 months+ extensions, 500- 600pd DOE - Full time on site (Hampshire) Looking for a High Level clearance/ DV Cleared Tester with good knowledge of Windows and Linux operating systems, together with the experience of working within a multi-disciplined engineering team. You will leverage your knowledge of integration frameworks to support the continuous integration, deployment, and testing of new features across complex environments. Hands on experience in infrastructure engineering, including the testing, deployment, and maintenance of robust, scalable systems. Direct experience testing and integrating any of the following: Identity and access management (IDAM) systems including role based access control (RBAC) Public key infrastructure (PKI) Server monitoring, audit and patch deployment Key Duties and Responsibilities Running manual tests using the project approved tools. Interpretation of test results and preliminary investigation of failures. Raising defects and monitoring them through to resolution. Develop scripts for sub-systems integration testing (end to end test). Good knowledge of IT infrastructure, including Servers, networks, and virtualisation technologies. Good understanding of network protocols, and experience with both Linux and Windows operating systems. Required Competencies Experience of Testing. Experience of Integration and testing of sub-systems. Experience designing and producing manual Tests. Experience of Test Management Tools Linux Desired Competencies Experience of SAFe and agile ways of working Good Problem investigation and analysis skills ISTQB Foundation Certification This temporary contract is inside IR35 and will require working under the direction of the client delivery manager as part of a multi-disciplinary team. The successful candidate will follow established delivery processes and working practices This temporary contract is the successful candidate to undergo and be eligible for UK Security Vetting at SC/DV level. Clearance sponsorship will be provided where required. Due to the nature of the work, candidates should meet the relevant residency requirements. If applicable, reserved post nationality restrictions will be confirmed by the client. Damia is committed to inclusive recruitment and welcomes applicants from all backgrounds. Due to the secure nature of the position and working environment, you must have, or be eligible to obtain Security Clearance List of national security vetting clearance levels with guidance on who requires clearance and what checks are completed. Damia Group Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept our Data Protection Policy which can be found on our website. Please note that no terminology in this advert is intended to discriminate on the grounds of a person's gender, marital status, race, religion, colour, age, disability or sexual orientation. Every candidate will be assessed only in accordance with their merits, qualifications and ability to perform the duties of the job. Should the role require the successful candidate to undergo and be eligible for UK Security Vetting. Clearance sponsorship will be provided where required. Due to the nature of the work, candidates should meet the relevant residency requirements. If applicable, Reserved Post nationality restrictions will be confirmed by the client. Damia is committed to inclusive recruitment and welcomes applicants from all backgrounds. Damia Group is acting as an Employment Business in relation to this vacancy and in accordance to Conduct Regulations 2003.
Guidant Global is seeking an IdAM Engineer for a fully on-site role in Greater London to support critical identity infrastructure. The role involves maintaining performance and security of identity services. Key responsibilities include supporting Windows Active Directory, delivering high-level support for IdAM solutions, and engaging with third-party suppliers. The ideal candidate will have at least 3 years of experience in a related IT environment, particularly with Windows Server and scripting capabilities. Join Guidant Global to advance your career in a dynamic and collaborative environment.
16/06/2026
Full time
Guidant Global is seeking an IdAM Engineer for a fully on-site role in Greater London to support critical identity infrastructure. The role involves maintaining performance and security of identity services. Key responsibilities include supporting Windows Active Directory, delivering high-level support for IdAM solutions, and engaging with third-party suppliers. The ideal candidate will have at least 3 years of experience in a related IT environment, particularly with Windows Server and scripting capabilities. Join Guidant Global to advance your career in a dynamic and collaborative environment.
IdAM Engineer Location: Lonodn Contract Type: 12 Month Contract Working Arrangement: Fully On-site Role About the Role Guidant Global is supporting our client in recruiting a skilled IdAM Engineer to join a dedicated Identity and Access Management (IdAM) Live Services team. This role is critical in maintaining and monitoring key components of the organisation's identity infrastructure, ensuring high levels of availability, performance, and security. You will act as a subject matter expert across identity technologies, contributing to continuous service improvement and supporting a fast-paced, evolving IT environment. Alongside operational responsibilities, you will provide technical expertise to project delivery teams and work closely with external suppliers to ensure value is maximised across partnerships. This is an exciting opportunity to work within a highly secure and complex environment, supporting essential identity services that underpin organisational operations. Key Responsibilities Provide support for Windows Active Directory Domain Services and associated security infrastructure Deliver 2nd and 3rd line support for Active Directory, Privileged Access Management, and IdAM solutions Respond to incidents and service requests, taking ownership through to resolution Perform proactive system monitoring and daily health checks to prevent service disruption Collaborate with support and project teams to implement changes and technical solutions Follow and adhere to corporate change management processes Maintain the integrity and security of identity management services in line with industry best practices Support disaster recovery testing and critical project activities, including work outside standard hours when required Engage with third-party suppliers to ensure effective service delivery and value Essential Skills & Experience Minimum 3+ years' experience administering Windows Server environments (2008/2012/2016/2019) Experience supporting Active Directory Domain Services in enterprise environments Working knowledge of Linux system administration Experience with Two-Factor Authentication (RSA) and PKI/Certificate services Strong scripting capability, particularly with PowerShell, including automation development Experience administering DNS and DHCP services Good understanding of network protocols and firewall technologies Knowledge of system security principles and integration technologies Experience supporting disaster recovery planning and testing Familiarity with Microsoft Identity Manager (MIM) / Forefront Identity Manager (FIM) Desirable Skills Experience working within secure or highly regulated environments Exposure to identity governance or access certification tools Knowledge of modern identity platforms and cloud-based identity services Who We're Looking For Someone who is: A strong communicator with excellent written and verbal skills Able to work autonomously as well as collaboratively within a team Highly organised with the ability to manage workloads and meet deadlines Proactive and solution-focused in a fast-paced environment Committed to continuous improvement and service excellence Why Join Through Guidant Global? We take a people-first approach to recruitment, supporting you at every stage of your journey. You'll have the opportunity to work on critical identity infrastructure within a collaborative and forward-thinking environment, gaining valuable experience in a highly specialised and in-demand area of IT.
16/06/2026
Full time
IdAM Engineer Location: Lonodn Contract Type: 12 Month Contract Working Arrangement: Fully On-site Role About the Role Guidant Global is supporting our client in recruiting a skilled IdAM Engineer to join a dedicated Identity and Access Management (IdAM) Live Services team. This role is critical in maintaining and monitoring key components of the organisation's identity infrastructure, ensuring high levels of availability, performance, and security. You will act as a subject matter expert across identity technologies, contributing to continuous service improvement and supporting a fast-paced, evolving IT environment. Alongside operational responsibilities, you will provide technical expertise to project delivery teams and work closely with external suppliers to ensure value is maximised across partnerships. This is an exciting opportunity to work within a highly secure and complex environment, supporting essential identity services that underpin organisational operations. Key Responsibilities Provide support for Windows Active Directory Domain Services and associated security infrastructure Deliver 2nd and 3rd line support for Active Directory, Privileged Access Management, and IdAM solutions Respond to incidents and service requests, taking ownership through to resolution Perform proactive system monitoring and daily health checks to prevent service disruption Collaborate with support and project teams to implement changes and technical solutions Follow and adhere to corporate change management processes Maintain the integrity and security of identity management services in line with industry best practices Support disaster recovery testing and critical project activities, including work outside standard hours when required Engage with third-party suppliers to ensure effective service delivery and value Essential Skills & Experience Minimum 3+ years' experience administering Windows Server environments (2008/2012/2016/2019) Experience supporting Active Directory Domain Services in enterprise environments Working knowledge of Linux system administration Experience with Two-Factor Authentication (RSA) and PKI/Certificate services Strong scripting capability, particularly with PowerShell, including automation development Experience administering DNS and DHCP services Good understanding of network protocols and firewall technologies Knowledge of system security principles and integration technologies Experience supporting disaster recovery planning and testing Familiarity with Microsoft Identity Manager (MIM) / Forefront Identity Manager (FIM) Desirable Skills Experience working within secure or highly regulated environments Exposure to identity governance or access certification tools Knowledge of modern identity platforms and cloud-based identity services Who We're Looking For Someone who is: A strong communicator with excellent written and verbal skills Able to work autonomously as well as collaboratively within a team Highly organised with the ability to manage workloads and meet deadlines Proactive and solution-focused in a fast-paced environment Committed to continuous improvement and service excellence Why Join Through Guidant Global? We take a people-first approach to recruitment, supporting you at every stage of your journey. You'll have the opportunity to work on critical identity infrastructure within a collaborative and forward-thinking environment, gaining valuable experience in a highly specialised and in-demand area of IT.
Junior Cyber Defense AnalystApplylocations: Belfast, Northern Irelandtime type: Full timeposted on: Posted Yesterdayjob requisition id: 26-466Wolfspeed is seeking a Cyber Defense Analyst to join their growing global Cyber Security team. You will join a team of highly motivated security professionals who are working hard to foster a security-first culture at Wolfspeed. What does your day-to-day look like? Responsible for escalations and events Investigate and respond to cyber security events, including SIEM alerts Triage and process user generated incidents, including phishing emails Work L2 & L3 BAU information security queues Consolidate and develop Cyber Defense documentation Assist with general information security requests, including GRC related asks Investigate IDAM alerts and respond accordinglyWho are we looking for? Must Have 2+ years' experience in Information Security Experience configuring and supporting security tools Strong understanding of IOCs and current TTPs Intermediate knowledge of networking fundamentals Proficiency with both Windows and Unix/Linux OS Strong technical knowledge of the Windows ecosystem, including Azure and Active Directory Strong experience within incident response, including SIEM and EDR tooling Ability to work independently and use initiative to resolve issues Plan and execute self-managed workstreams/projects with minimal oversight Excellent oral and written communication skills Ability to develop strong working relationships with other Teams to complete initiativesNice to have PAM knowledge Security Engineering experience Ability to code Threat hunting experience Knowledge of network security About UsWolfspeed is a powerhouse semiconductor company focused on silicon carbide and GaN technologies.After more than thirty years of forging new technology adoption and transformation, our Wolfspeed power and radio frequency (RF) semiconductors are leading the industry through unrivaled expertise and capacity.
14/06/2026
Full time
Junior Cyber Defense AnalystApplylocations: Belfast, Northern Irelandtime type: Full timeposted on: Posted Yesterdayjob requisition id: 26-466Wolfspeed is seeking a Cyber Defense Analyst to join their growing global Cyber Security team. You will join a team of highly motivated security professionals who are working hard to foster a security-first culture at Wolfspeed. What does your day-to-day look like? Responsible for escalations and events Investigate and respond to cyber security events, including SIEM alerts Triage and process user generated incidents, including phishing emails Work L2 & L3 BAU information security queues Consolidate and develop Cyber Defense documentation Assist with general information security requests, including GRC related asks Investigate IDAM alerts and respond accordinglyWho are we looking for? Must Have 2+ years' experience in Information Security Experience configuring and supporting security tools Strong understanding of IOCs and current TTPs Intermediate knowledge of networking fundamentals Proficiency with both Windows and Unix/Linux OS Strong technical knowledge of the Windows ecosystem, including Azure and Active Directory Strong experience within incident response, including SIEM and EDR tooling Ability to work independently and use initiative to resolve issues Plan and execute self-managed workstreams/projects with minimal oversight Excellent oral and written communication skills Ability to develop strong working relationships with other Teams to complete initiativesNice to have PAM knowledge Security Engineering experience Ability to code Threat hunting experience Knowledge of network security About UsWolfspeed is a powerhouse semiconductor company focused on silicon carbide and GaN technologies.After more than thirty years of forging new technology adoption and transformation, our Wolfspeed power and radio frequency (RF) semiconductors are leading the industry through unrivaled expertise and capacity.