Site Reliability Engineers (DV Security Clearance) Position Description CGI was recognised in the Sunday Times Best Places to Work List 2025 and named one of the World's Best Employers by Forbes. We offer a competitive salary, excellent pension, private healthcare, and a share scheme (3.5% + 3.5% matching), making you a CGI Partner rather than just an employee. We are committed to inclusivity and building a genuinely diverse community of technology professionals. CGI's Space, Defence and Intelligence business unit delivers innovative, mission-critical solutions to some of the UK government's most complex and challenging problems. We design, build, and operate bespoke, secure systems that help keep the nation safe and secure. Our work spans cloud, on-prem, and hybrid environments, underpinned by strong cyber and engineering best practices. We are seeking experienced Site Reliability Engineers to join our cross-functional teams supporting secure, cloud-based and big-data platforms. Working closely with clients and internal delivery teams, you will help design, build, operate, and continuously improve highly reliable, scalable systems within a secure environment. Due to the nature of the work, this role requires onsite attendance and applicants must be solely UK Nationals (not dual nationals and not visa holders) with existing HMG DV / HLC clearance. Your future duties and responsibilities Architect, build and operate cloud infrastructure Design and deliver secure, scalable, fault-tolerant infrastructure across AWS (and potentially Azure/GCP), optimised for performance, availability, and cost. Support and operate live systems Maintain deployment environments, support production systems, and manage changes to live services in mission-critical environments. You will work with a modern and diverse technology stack, including: Languages & Scripting: Java, Python, Go, JavaScript (TypeScript), Bash Frontend: Vue CI/CD & Automation: Jenkins, GitLab CI, Ansible, Cucumber Cloud & Platforms: AWS, OpenShift, Linux Infrastructure as Code: Terraform Data & Streaming: Apache NiFi Monitoring & Logging: Grafana, ELK Stack, SonarQube Version Control: GitLab Automation & Infrastructure as Code (IaC) Automate infrastructure provisioning, configuration, and CI/CD pipelines using Terraform, Ansible, CloudFormation, and scripting languages. CI/CD & Platform Engineering Build, maintain, and improve CI/CD pipelines using Jenkins, GitLab CI/CD, and related tooling. Monitoring, reliability & optimisation Implement and manage monitoring, logging, alerting, and performance optimisation using tools such as Grafana, ELK Stack, CloudWatch, Prometheus, and SonarQube. Security & compliance Implement IAM, encryption, network controls, and secure configurations in line with government and industry standards (e.g. GDPR, ISO 27001). Disaster recovery & resilience Design and test backup, disaster recovery, and self-healing strategies to ensure system reliability and availability. Collaboration & documentation Work closely with development, DevOps, security, and operations teams; produce runbooks, architecture documentation, and knowledge-sharing materials. Required qualifications to be successful in this role Proven experience as a Site Reliability Engineer, DevOps Engineer, or similar role supporting cloud-based or secure systems Strong automation and scripting skills (Python, Bash, Go, or similar) Hands-on experience with CI/CD pipelines (Jenkins, GitLab CI/CD, etc.) Strong knowledge of Infrastructure as Code (Terraform, CloudFormation, Ansible) Solid understanding of AWS and cloud-native architectures Experience with Linux-based environments and production troubleshooting Familiarity with containerisation and orchestration (OpenShift or Kubernetes) Experience with monitoring, logging, and observability tools Comfortable supporting live services in production environments Strong communication skills and a proactive, problem-solving mindset Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
01/04/2026
Full time
Site Reliability Engineers (DV Security Clearance) Position Description CGI was recognised in the Sunday Times Best Places to Work List 2025 and named one of the World's Best Employers by Forbes. We offer a competitive salary, excellent pension, private healthcare, and a share scheme (3.5% + 3.5% matching), making you a CGI Partner rather than just an employee. We are committed to inclusivity and building a genuinely diverse community of technology professionals. CGI's Space, Defence and Intelligence business unit delivers innovative, mission-critical solutions to some of the UK government's most complex and challenging problems. We design, build, and operate bespoke, secure systems that help keep the nation safe and secure. Our work spans cloud, on-prem, and hybrid environments, underpinned by strong cyber and engineering best practices. We are seeking experienced Site Reliability Engineers to join our cross-functional teams supporting secure, cloud-based and big-data platforms. Working closely with clients and internal delivery teams, you will help design, build, operate, and continuously improve highly reliable, scalable systems within a secure environment. Due to the nature of the work, this role requires onsite attendance and applicants must be solely UK Nationals (not dual nationals and not visa holders) with existing HMG DV / HLC clearance. Your future duties and responsibilities Architect, build and operate cloud infrastructure Design and deliver secure, scalable, fault-tolerant infrastructure across AWS (and potentially Azure/GCP), optimised for performance, availability, and cost. Support and operate live systems Maintain deployment environments, support production systems, and manage changes to live services in mission-critical environments. You will work with a modern and diverse technology stack, including: Languages & Scripting: Java, Python, Go, JavaScript (TypeScript), Bash Frontend: Vue CI/CD & Automation: Jenkins, GitLab CI, Ansible, Cucumber Cloud & Platforms: AWS, OpenShift, Linux Infrastructure as Code: Terraform Data & Streaming: Apache NiFi Monitoring & Logging: Grafana, ELK Stack, SonarQube Version Control: GitLab Automation & Infrastructure as Code (IaC) Automate infrastructure provisioning, configuration, and CI/CD pipelines using Terraform, Ansible, CloudFormation, and scripting languages. CI/CD & Platform Engineering Build, maintain, and improve CI/CD pipelines using Jenkins, GitLab CI/CD, and related tooling. Monitoring, reliability & optimisation Implement and manage monitoring, logging, alerting, and performance optimisation using tools such as Grafana, ELK Stack, CloudWatch, Prometheus, and SonarQube. Security & compliance Implement IAM, encryption, network controls, and secure configurations in line with government and industry standards (e.g. GDPR, ISO 27001). Disaster recovery & resilience Design and test backup, disaster recovery, and self-healing strategies to ensure system reliability and availability. Collaboration & documentation Work closely with development, DevOps, security, and operations teams; produce runbooks, architecture documentation, and knowledge-sharing materials. Required qualifications to be successful in this role Proven experience as a Site Reliability Engineer, DevOps Engineer, or similar role supporting cloud-based or secure systems Strong automation and scripting skills (Python, Bash, Go, or similar) Hands-on experience with CI/CD pipelines (Jenkins, GitLab CI/CD, etc.) Strong knowledge of Infrastructure as Code (Terraform, CloudFormation, Ansible) Solid understanding of AWS and cloud-native architectures Experience with Linux-based environments and production troubleshooting Familiarity with containerisation and orchestration (OpenShift or Kubernetes) Experience with monitoring, logging, and observability tools Comfortable supporting live services in production environments Strong communication skills and a proactive, problem-solving mindset Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Azure Technical Lead - Cloud & DevOps Position Description At CGI, we design and operate secure, resilient cloud platforms that power critical services for enterprise clients. As an Azure Technical Team Lead, you will drive the delivery, optimisation and continuous improvement of complex Azure environments within a managed services setting. Combining hands-on expertise with technical leadership, you will guide DevOps practices, strengthen automation and ensure high-performing, secure cloud operations. This is an opportunity to influence platform strategy, mentor talented engineers and deliver measurable improvements in reliability, scalability and cost efficiency, supported by a collaborative environment where your leadership and innovation directly shape client success. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you must hold Security Check (SC) clearance or be eligible to obtain it. Whilst this is a hybrid position you should expect to work on client site in Nottingham for 2/3 days a week as required. Your future duties and responsibilities In this role, you will lead and mentor a team of Azure and DevOps engineers, taking ownership of platform health, operational stability and continuous service improvement. You will remain hands-on, designing scalable and secure Azure architectures while driving automation-first practices through Infrastructure as Code and optimised CI/CD pipelines. By embedding strong governance, monitoring and cost management controls, you will ensure platforms remain resilient, high-performing and aligned to client needs. You will oversee incident response, guide root cause analysis and implement preventative improvements, working closely with stakeholders to maintain transparency and trust. Through technical leadership and collaboration, you will strengthen engineering capability while shaping the evolution of enterprise Azure environments within a managed services model. Key responsibilities: • Lead & Mentor - Guide and develop a high-performing Azure/DevOps team. • Design & Architect - Create scalable, secure Azure solutions (IaaS, PaaS, networking, identity). • Automate & Optimise - Implement Infrastructure as Code (Terraform preferred) and enhance CI/CD pipelines. • Operate & Improve - Oversee platform health, incident management and service improvement. • Monitor & Govern - Embed security, compliance, performance and cost optimisation practices. • Collaborate & Communicate - Engage stakeholders and provide clear technical leadership. Required qualifications to be successful in this role To succeed, you will bring strong hands-on Azure platform expertise combined with proven technical leadership experience within cloud or managed services environments. You will be confident driving DevOps maturity, implementing Infrastructure as Code and leading teams through operational challenges while maintaining a focus on security, performance and continuous improvement. Essential qualifications: • Strong experience across Azure IaaS, PaaS, networking and identity services. • Proven experience leading technical cloud or managed services teams. • Expertise in CI/CD tools (Azure DevOps, GitHub Actions or similar). • Experience implementing Infrastructure as Code (Terraform preferred). • Strong troubleshooting, incident management and stakeholder communication skills. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
01/04/2026
Full time
Azure Technical Lead - Cloud & DevOps Position Description At CGI, we design and operate secure, resilient cloud platforms that power critical services for enterprise clients. As an Azure Technical Team Lead, you will drive the delivery, optimisation and continuous improvement of complex Azure environments within a managed services setting. Combining hands-on expertise with technical leadership, you will guide DevOps practices, strengthen automation and ensure high-performing, secure cloud operations. This is an opportunity to influence platform strategy, mentor talented engineers and deliver measurable improvements in reliability, scalability and cost efficiency, supported by a collaborative environment where your leadership and innovation directly shape client success. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you must hold Security Check (SC) clearance or be eligible to obtain it. Whilst this is a hybrid position you should expect to work on client site in Nottingham for 2/3 days a week as required. Your future duties and responsibilities In this role, you will lead and mentor a team of Azure and DevOps engineers, taking ownership of platform health, operational stability and continuous service improvement. You will remain hands-on, designing scalable and secure Azure architectures while driving automation-first practices through Infrastructure as Code and optimised CI/CD pipelines. By embedding strong governance, monitoring and cost management controls, you will ensure platforms remain resilient, high-performing and aligned to client needs. You will oversee incident response, guide root cause analysis and implement preventative improvements, working closely with stakeholders to maintain transparency and trust. Through technical leadership and collaboration, you will strengthen engineering capability while shaping the evolution of enterprise Azure environments within a managed services model. Key responsibilities: • Lead & Mentor - Guide and develop a high-performing Azure/DevOps team. • Design & Architect - Create scalable, secure Azure solutions (IaaS, PaaS, networking, identity). • Automate & Optimise - Implement Infrastructure as Code (Terraform preferred) and enhance CI/CD pipelines. • Operate & Improve - Oversee platform health, incident management and service improvement. • Monitor & Govern - Embed security, compliance, performance and cost optimisation practices. • Collaborate & Communicate - Engage stakeholders and provide clear technical leadership. Required qualifications to be successful in this role To succeed, you will bring strong hands-on Azure platform expertise combined with proven technical leadership experience within cloud or managed services environments. You will be confident driving DevOps maturity, implementing Infrastructure as Code and leading teams through operational challenges while maintaining a focus on security, performance and continuous improvement. Essential qualifications: • Strong experience across Azure IaaS, PaaS, networking and identity services. • Proven experience leading technical cloud or managed services teams. • Expertise in CI/CD tools (Azure DevOps, GitHub Actions or similar). • Experience implementing Infrastructure as Code (Terraform preferred). • Strong troubleshooting, incident management and stakeholder communication skills. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Description Starling is the UK's first and leading digital bank on a mission to fix banking! We built a new kind of bank because we knew technology had the power to help people save, spend and manage their money in a new and transformative way. Read more about Our Story here. We're a fully licensed UK bank with the culture and spirit of a fast-moving, disruptive tech company. We're a bank, but better: fairer, easier to use and designed to demystify money for everyone. We employ more than 3,000 people across our London, Southampton, Cardiff and Manchester offices. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. About the Role As an experienced Penetration Tester at Starling, you'll be joining an established team, working with talented cyber security professionals to ensure our services are designed, developed and operated securely. This is a collaborative role - you'll directly interact with multiple areas of the business to understand requirements, conduct research, perform security testing, and report issues aligned to our risk framework. Being an internal tester, you'll gain a strong understanding of how technology works at Starling to enable in-depth testing. You'll also support remediation processes, seeing your findings lead to tangible security improvements. We understand the importance of knowledge and expertise remaining current, so we'll actively support your advancement through research and training. In turn, you'll help us continuously improve our processes, methodologies and tools to maintain the highest standard of testing. Responsibilities Scoping and performing mobile, web application, cloud and infrastructure penetration tests. Collaborating with engineering teams to facilitate secure development, including: Reviewing and analysing proposed technical solutions to identify appropriate security controls. Conducting code reviews of features and critical security components. Performing in-depth practical security testing. Advising on the remediation of security issues and identifying solutions to address root causes. Automating security testing and developing internal tooling to achieve continuous assurance. Identifying and implementing improvements to the team's internal processes and procedures. Mentoring less-experienced team members, leading by example in technical assessments, and promoting a collaborative approach to security across Starling. Requirements We're open-minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Ideally, we would like: 5+ years technical information security experience. Experience in mobile, web application, cloud and infrastructure penetration testing. Technical knowledge - we don't expect mastery of every area, but are looking for a good foundation in the following domains: Mobile security (iOS and Android) Web application security Networking and associated protocols Cloud security (AWS and GCP) Containers and Kubernetes A desire to learn, and the ability to apply technical security knowledge to new and unfamiliar areas. Penetration testing qualifications (e.g. CREST Certified Tester, OSCP) or equivalent industry experience. Experience performing code reviews or code-assisted testing, particularly in Java and Go. Experience in automation of security testing (e.g. using Python or Go). Excellent verbal and written communication skills. Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: First stage with the Penetration Testing Team Lead Second stage with additional members of the Penetration Testing team Final stage with Infosec Director and CISO Benefits We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. 25 days holiday (plus take your public holiday allowance whenever works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Starling Bank will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
01/04/2026
Full time
Description Starling is the UK's first and leading digital bank on a mission to fix banking! We built a new kind of bank because we knew technology had the power to help people save, spend and manage their money in a new and transformative way. Read more about Our Story here. We're a fully licensed UK bank with the culture and spirit of a fast-moving, disruptive tech company. We're a bank, but better: fairer, easier to use and designed to demystify money for everyone. We employ more than 3,000 people across our London, Southampton, Cardiff and Manchester offices. Our technologists are at the very heart of Starling and enjoy working in a fast-paced environment that is all about building things, creating new stuff, and disruptive technology that keeps us on the cutting edge of fintech. We operate a flat structure to empower you to make decisions regardless of what your primary responsibilities may be, innovation and collaboration will be at the core of everything you do. Help is never far away in our open culture, you will find support in your team and from across the business, we are in this together! The way to thrive and shine within Starling is to be a self-driven individual and be able to take full ownership of everything around you: From building things, designing, discovering, to sharing knowledge with your colleagues and making sure all processes are efficient and productive to deliver the best possible results for our customers. Our purpose is underpinned by five Starling values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. About the Role As an experienced Penetration Tester at Starling, you'll be joining an established team, working with talented cyber security professionals to ensure our services are designed, developed and operated securely. This is a collaborative role - you'll directly interact with multiple areas of the business to understand requirements, conduct research, perform security testing, and report issues aligned to our risk framework. Being an internal tester, you'll gain a strong understanding of how technology works at Starling to enable in-depth testing. You'll also support remediation processes, seeing your findings lead to tangible security improvements. We understand the importance of knowledge and expertise remaining current, so we'll actively support your advancement through research and training. In turn, you'll help us continuously improve our processes, methodologies and tools to maintain the highest standard of testing. Responsibilities Scoping and performing mobile, web application, cloud and infrastructure penetration tests. Collaborating with engineering teams to facilitate secure development, including: Reviewing and analysing proposed technical solutions to identify appropriate security controls. Conducting code reviews of features and critical security components. Performing in-depth practical security testing. Advising on the remediation of security issues and identifying solutions to address root causes. Automating security testing and developing internal tooling to achieve continuous assurance. Identifying and implementing improvements to the team's internal processes and procedures. Mentoring less-experienced team members, leading by example in technical assessments, and promoting a collaborative approach to security across Starling. Requirements We're open-minded when it comes to hiring and we care more about aptitude and attitude than specific experience or qualifications. Ideally, we would like: 5+ years technical information security experience. Experience in mobile, web application, cloud and infrastructure penetration testing. Technical knowledge - we don't expect mastery of every area, but are looking for a good foundation in the following domains: Mobile security (iOS and Android) Web application security Networking and associated protocols Cloud security (AWS and GCP) Containers and Kubernetes A desire to learn, and the ability to apply technical security knowledge to new and unfamiliar areas. Penetration testing qualifications (e.g. CREST Certified Tester, OSCP) or equivalent industry experience. Experience performing code reviews or code-assisted testing, particularly in Java and Go. Experience in automation of security testing (e.g. using Python or Go). Excellent verbal and written communication skills. Interview process Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: First stage with the Penetration Testing Team Lead Second stage with additional members of the Penetration Testing team Final stage with Infosec Director and CISO Benefits We have a Hybrid approach to working here at Starling - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. In Technology, we're asking that you attend the office a minimum of 1 day per week. 25 days holiday (plus take your public holiday allowance whenever works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Starling Bank are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Starling Bank will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Description About Engineering at Engine by Starling At Engine by Starling, we don't do "checkbox security"-we build security software. We treat security as a first-class engineering discipline, where the solution to a threat isn't a policy, but a robust, concurrent system written in Go . As a Cloud Security Software Engineer , you will be a hands-on builder responsible for the security architecture of our multi-tenant core banking platform. You'll spend your days architecting and writing Go-based tooling, automating defenses, and ensuring our infrastructure across AWS and GCP is secure by design and compliant by default. The Mission Your mission is to solve complex security problems through software engineering , focusing on three core pillars: Identity & Network Security: Engineering high-performance IAM controls and zero-trust network architectures. You will lead the way in refining edge-defense strategies and trust redirection, ensuring every request is verified and encrypted at scale. Unified Vulnerability Orchestration: Architecting a custom "single pane of glass" for security data. You will build Go-based API integrations and microservices that bridge scanning engines, dependency trackers, and internal portals into a seamless, automated ecosystem. Compliance as Code: Building the automated systems that provide real-time evidence for frameworks like SOC 2, ISO 27001 & PCI. You'll ensure we stay compliant through continuous, automated validation rather than manual overhead. The Team You will be a key member of our growing Security Engineering team, working at the intersection of Infrastructure, Cross-Cutting, and GRC. We operate like a specialized product team: we identify security friction and build the software to eliminate it. You won't work in a silo; you'll collaborate with engineers across the business to deliver a platform that is resilient by default. About You We are looking for Software Engineers who are passionate about the Go ecosystem and want to apply those skills to mission-critical security challenges. Whether you come from a Security Engineering background or you are a Backend Engineer with a "security-first" mindset, we value your ability to write clean, maintainable, and efficient code. What you'll get to do Engineering Security Tooling: Lead the design and maintenance of our internal security tool suite, written primarily in Go , to automate evidence collection and real-time remediation of security alerts. Infrastructure as Code: Write and peer-review Terraform and custom providers to manage identity and core infrastructure across AWS and GCP. Supply Chain Security: Build automated systems to manage container provenance and integrate security analysis into our CI/CD pipelines (GitHub Actions/TeamCity). Cloud Native Defense: Engineer Kubernetes security solutions leveraging Cilium , eBPF, and custom controllers to protect our microservices. Cryptographic Engineering (PKI): Build and maintain our Go-based Certificate Authority (CA) tooling and internal PKI infrastructure. Incident Response: Support the team in automated incident response, building the tools that help us investigate and mitigate threats faster. Requirements What skills are essential: Go Specialist: You are proficient in Go . You understand its concurrency models, testing patterns, and how to build idiomatic, performant services. The Builder Mindset: You find manual work a personal affront. If a task needs to be done twice, you've already started planning the automation for it. Cloud Native: Practical experience with AWS or GCP, ideally managed through Terraform . Container Expertise: You understand Kubernetes internals-from the runtime security to the service mesh. Identity & Networking: Strong understanding of cloud identity models and network protocols. What skills are desirable: Experience with Cilium or eBPF-based security monitoring. Knowledge of Sigstore/Cosign , image provenance, and SBOMs. Familiarity with hardware security modules (HSMs) or advanced cryptography. Cloud-native security certifications (AWS/GCP). Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing
01/04/2026
Full time
Description About Engineering at Engine by Starling At Engine by Starling, we don't do "checkbox security"-we build security software. We treat security as a first-class engineering discipline, where the solution to a threat isn't a policy, but a robust, concurrent system written in Go . As a Cloud Security Software Engineer , you will be a hands-on builder responsible for the security architecture of our multi-tenant core banking platform. You'll spend your days architecting and writing Go-based tooling, automating defenses, and ensuring our infrastructure across AWS and GCP is secure by design and compliant by default. The Mission Your mission is to solve complex security problems through software engineering , focusing on three core pillars: Identity & Network Security: Engineering high-performance IAM controls and zero-trust network architectures. You will lead the way in refining edge-defense strategies and trust redirection, ensuring every request is verified and encrypted at scale. Unified Vulnerability Orchestration: Architecting a custom "single pane of glass" for security data. You will build Go-based API integrations and microservices that bridge scanning engines, dependency trackers, and internal portals into a seamless, automated ecosystem. Compliance as Code: Building the automated systems that provide real-time evidence for frameworks like SOC 2, ISO 27001 & PCI. You'll ensure we stay compliant through continuous, automated validation rather than manual overhead. The Team You will be a key member of our growing Security Engineering team, working at the intersection of Infrastructure, Cross-Cutting, and GRC. We operate like a specialized product team: we identify security friction and build the software to eliminate it. You won't work in a silo; you'll collaborate with engineers across the business to deliver a platform that is resilient by default. About You We are looking for Software Engineers who are passionate about the Go ecosystem and want to apply those skills to mission-critical security challenges. Whether you come from a Security Engineering background or you are a Backend Engineer with a "security-first" mindset, we value your ability to write clean, maintainable, and efficient code. What you'll get to do Engineering Security Tooling: Lead the design and maintenance of our internal security tool suite, written primarily in Go , to automate evidence collection and real-time remediation of security alerts. Infrastructure as Code: Write and peer-review Terraform and custom providers to manage identity and core infrastructure across AWS and GCP. Supply Chain Security: Build automated systems to manage container provenance and integrate security analysis into our CI/CD pipelines (GitHub Actions/TeamCity). Cloud Native Defense: Engineer Kubernetes security solutions leveraging Cilium , eBPF, and custom controllers to protect our microservices. Cryptographic Engineering (PKI): Build and maintain our Go-based Certificate Authority (CA) tooling and internal PKI infrastructure. Incident Response: Support the team in automated incident response, building the tools that help us investigate and mitigate threats faster. Requirements What skills are essential: Go Specialist: You are proficient in Go . You understand its concurrency models, testing patterns, and how to build idiomatic, performant services. The Builder Mindset: You find manual work a personal affront. If a task needs to be done twice, you've already started planning the automation for it. Cloud Native: Practical experience with AWS or GCP, ideally managed through Terraform . Container Expertise: You understand Kubernetes internals-from the runtime security to the service mesh. Identity & Networking: Strong understanding of cloud identity models and network protocols. What skills are desirable: Experience with Cilium or eBPF-based security monitoring. Knowledge of Sigstore/Cosign , image provenance, and SBOMs. Familiarity with hardware security modules (HSMs) or advanced cryptography. Cloud-native security certifications (AWS/GCP). Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing
Description About Engineering at Engine by Starling At Engine by Starling, we don't do "checkbox security"-we build security software. We treat security as a first-class engineering discipline, where the solution to a threat isn't a policy, but a robust, concurrent system written in Go . As a Cloud Security Software Engineer , you will be a hands-on builder responsible for the security architecture of our multi-tenant core banking platform. You'll spend your days architecting and writing Go-based tooling, automating defenses, and ensuring our infrastructure across AWS and GCP is secure by design and compliant by default. The Mission Your mission is to solve complex security problems through software engineering , focusing on three core pillars: Identity & Network Security: Engineering high-performance IAM controls and zero-trust network architectures. You will lead the way in refining edge-defense strategies and trust redirection, ensuring every request is verified and encrypted at scale. Unified Vulnerability Orchestration: Architecting a custom "single pane of glass" for security data. You will build Go-based API integrations and microservices that bridge scanning engines, dependency trackers, and internal portals into a seamless, automated ecosystem. Compliance as Code: Building the automated systems that provide real-time evidence for frameworks like SOC 2, ISO 27001 & PCI. You'll ensure we stay compliant through continuous, automated validation rather than manual overhead. The Team You will be a key member of our growing Security Engineering team, working at the intersection of Infrastructure, Cross-Cutting, and GRC. We operate like a specialized product team: we identify security friction and build the software to eliminate it. You won't work in a silo; you'll collaborate with engineers across the business to deliver a platform that is resilient by default. About You We are looking for Software Engineers who are passionate about the Go ecosystem and want to apply those skills to mission-critical security challenges. Whether you come from a Security Engineering background or you are a Backend Engineer with a "security-first" mindset, we value your ability to write clean, maintainable, and efficient code. What you'll get to do Engineering Security Tooling: Lead the design and maintenance of our internal security tool suite, written primarily in Go , to automate evidence collection and real-time remediation of security alerts. Infrastructure as Code: Write and peer-review Terraform and custom providers to manage identity and core infrastructure across AWS and GCP. Supply Chain Security: Build automated systems to manage container provenance and integrate security analysis into our CI/CD pipelines (GitHub Actions/TeamCity). Cloud Native Defense: Engineer Kubernetes security solutions leveraging Cilium , eBPF, and custom controllers to protect our microservices. Cryptographic Engineering (PKI): Build and maintain our Go-based Certificate Authority (CA) tooling and internal PKI infrastructure. Incident Response: Support the team in automated incident response, building the tools that help us investigate and mitigate threats faster. Requirements What skills are essential: Go Specialist: You are proficient in Go . You understand its concurrency models, testing patterns, and how to build idiomatic, performant services. The Builder Mindset: You find manual work a personal affront. If a task needs to be done twice, you've already started planning the automation for it. Cloud Native: Practical experience with AWS or GCP, ideally managed through Terraform . Container Expertise: You understand Kubernetes internals-from the runtime security to the service mesh. Identity & Networking: Strong understanding of cloud identity models and network protocols. What skills are desirable: Experience with Cilium or eBPF-based security monitoring. Knowledge of Sigstore/Cosign , image provenance, and SBOMs. Familiarity with hardware security modules (HSMs) or advanced cryptography. Cloud-native security certifications (AWS/GCP). Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing
01/04/2026
Full time
Description About Engineering at Engine by Starling At Engine by Starling, we don't do "checkbox security"-we build security software. We treat security as a first-class engineering discipline, where the solution to a threat isn't a policy, but a robust, concurrent system written in Go . As a Cloud Security Software Engineer , you will be a hands-on builder responsible for the security architecture of our multi-tenant core banking platform. You'll spend your days architecting and writing Go-based tooling, automating defenses, and ensuring our infrastructure across AWS and GCP is secure by design and compliant by default. The Mission Your mission is to solve complex security problems through software engineering , focusing on three core pillars: Identity & Network Security: Engineering high-performance IAM controls and zero-trust network architectures. You will lead the way in refining edge-defense strategies and trust redirection, ensuring every request is verified and encrypted at scale. Unified Vulnerability Orchestration: Architecting a custom "single pane of glass" for security data. You will build Go-based API integrations and microservices that bridge scanning engines, dependency trackers, and internal portals into a seamless, automated ecosystem. Compliance as Code: Building the automated systems that provide real-time evidence for frameworks like SOC 2, ISO 27001 & PCI. You'll ensure we stay compliant through continuous, automated validation rather than manual overhead. The Team You will be a key member of our growing Security Engineering team, working at the intersection of Infrastructure, Cross-Cutting, and GRC. We operate like a specialized product team: we identify security friction and build the software to eliminate it. You won't work in a silo; you'll collaborate with engineers across the business to deliver a platform that is resilient by default. About You We are looking for Software Engineers who are passionate about the Go ecosystem and want to apply those skills to mission-critical security challenges. Whether you come from a Security Engineering background or you are a Backend Engineer with a "security-first" mindset, we value your ability to write clean, maintainable, and efficient code. What you'll get to do Engineering Security Tooling: Lead the design and maintenance of our internal security tool suite, written primarily in Go , to automate evidence collection and real-time remediation of security alerts. Infrastructure as Code: Write and peer-review Terraform and custom providers to manage identity and core infrastructure across AWS and GCP. Supply Chain Security: Build automated systems to manage container provenance and integrate security analysis into our CI/CD pipelines (GitHub Actions/TeamCity). Cloud Native Defense: Engineer Kubernetes security solutions leveraging Cilium , eBPF, and custom controllers to protect our microservices. Cryptographic Engineering (PKI): Build and maintain our Go-based Certificate Authority (CA) tooling and internal PKI infrastructure. Incident Response: Support the team in automated incident response, building the tools that help us investigate and mitigate threats faster. Requirements What skills are essential: Go Specialist: You are proficient in Go . You understand its concurrency models, testing patterns, and how to build idiomatic, performant services. The Builder Mindset: You find manual work a personal affront. If a task needs to be done twice, you've already started planning the automation for it. Cloud Native: Practical experience with AWS or GCP, ideally managed through Terraform . Container Expertise: You understand Kubernetes internals-from the runtime security to the service mesh. Identity & Networking: Strong understanding of cloud identity models and network protocols. What skills are desirable: Experience with Cilium or eBPF-based security monitoring. Knowledge of Sigstore/Cosign , image provenance, and SBOMs. Familiarity with hardware security modules (HSMs) or advanced cryptography. Cloud-native security certifications (AWS/GCP). Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing
Network Engineer Position Description CGI is looking for an experienced Network Engineer to help shape the secure, scalable, and future-ready network architectures that enable mission-critical outcomes across our Space, Defence and Intelligence business. In this role, you will design and optimise advanced on-premises and cloud network solutions, working closely with engineering, cloud, and security teams to deliver high-value innovations that drive real operational impact. You'll have the autonomy to solve complex challenges, the scope to contribute creative ideas, and the support of a collaborative community committed to helping you thrive. This is an opportunity to take ownership of cutting-edge network engineering in one of CGI's most influential and rewarding technical environments. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of this programme, you will need to hold High Level Clearance or be willing to go through this clearance. This position will require on site work. Your future duties and responsibilities In this role, you will architect and deliver next-generation network infrastructures spanning enterprise, virtualised, and cloud environments. You will take ownership of network design and integration, ensuring secure, resilient, and high-performance connectivity across a diverse technology landscape. Working collaboratively with cloud, engineering, and security teams, you will shape modern network solutions that support client missions and high-availability systems. You'll apply creative engineering, automation, and observability tools to streamline operations, strengthen security posture, and future-proof network platforms. Supported by a highly skilled community, you'll have the opportunity to influence architecture, introduce new ideas, and contribute to strategies that enable long-term transformation. Key Responsibilities Design & Architect: Lead enterprise, virtual and cloud network designs across Cisco, Juniper, Arista and SDN/SD-WAN ecosystems. Engineer & Optimise: Deliver routing, switching, and service provider technologies including BGP, OSPF, EVPN/VXLAN and MPLS. Secure & Protect: Implement advanced firewall, segmentation, PKI and zero-trust controls across hybrid environments. Automate & Streamline: Apply automation, scripting and intent-based networking to enhance reliability and operational efficiency. Integrate & Enable: Build cloud-ready connectivity patterns across AWS, Azure and Google Cloud, including VPC/VNet design and interconnects. Monitor & Improve: Use observability and WAN optimisation tools to ensure high performance across global infrastructures. Required qualifications to be successful in this role To succeed in this position, you should bring strong experience designing and operating complex network infrastructures across enterprise, virtualised and cloud platforms. You'll be comfortable working with modern routing, switching, SDN/SD-WAN, firewalls, PKI and cloud connectivity, with the ability to collaborate across multiple technical disciplines. Essential qualifications Extensive hands-on experience with Cisco, Juniper, and/or Arista networking platforms Strong knowledge of BGP, OSPF, IS-IS, EVPN/VXLAN, MPLS and high-availability protocols Experience with SD-WAN technologies (Cisco SD-WAN, Meraki, Aruba, Palo Alto Prisma) Familiarity with AWS, Azure and/or GCP networking (VPC/VNet architecture, interconnects) Experience with NSX-T/V, Nutanix AHV or Hyper-V networking Strong understanding of firewalls, load balancers, PKI and segmentation Ability to work within secure environments and meet UK clearance requirements Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
01/04/2026
Full time
Network Engineer Position Description CGI is looking for an experienced Network Engineer to help shape the secure, scalable, and future-ready network architectures that enable mission-critical outcomes across our Space, Defence and Intelligence business. In this role, you will design and optimise advanced on-premises and cloud network solutions, working closely with engineering, cloud, and security teams to deliver high-value innovations that drive real operational impact. You'll have the autonomy to solve complex challenges, the scope to contribute creative ideas, and the support of a collaborative community committed to helping you thrive. This is an opportunity to take ownership of cutting-edge network engineering in one of CGI's most influential and rewarding technical environments. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of this programme, you will need to hold High Level Clearance or be willing to go through this clearance. This position will require on site work. Your future duties and responsibilities In this role, you will architect and deliver next-generation network infrastructures spanning enterprise, virtualised, and cloud environments. You will take ownership of network design and integration, ensuring secure, resilient, and high-performance connectivity across a diverse technology landscape. Working collaboratively with cloud, engineering, and security teams, you will shape modern network solutions that support client missions and high-availability systems. You'll apply creative engineering, automation, and observability tools to streamline operations, strengthen security posture, and future-proof network platforms. Supported by a highly skilled community, you'll have the opportunity to influence architecture, introduce new ideas, and contribute to strategies that enable long-term transformation. Key Responsibilities Design & Architect: Lead enterprise, virtual and cloud network designs across Cisco, Juniper, Arista and SDN/SD-WAN ecosystems. Engineer & Optimise: Deliver routing, switching, and service provider technologies including BGP, OSPF, EVPN/VXLAN and MPLS. Secure & Protect: Implement advanced firewall, segmentation, PKI and zero-trust controls across hybrid environments. Automate & Streamline: Apply automation, scripting and intent-based networking to enhance reliability and operational efficiency. Integrate & Enable: Build cloud-ready connectivity patterns across AWS, Azure and Google Cloud, including VPC/VNet design and interconnects. Monitor & Improve: Use observability and WAN optimisation tools to ensure high performance across global infrastructures. Required qualifications to be successful in this role To succeed in this position, you should bring strong experience designing and operating complex network infrastructures across enterprise, virtualised and cloud platforms. You'll be comfortable working with modern routing, switching, SDN/SD-WAN, firewalls, PKI and cloud connectivity, with the ability to collaborate across multiple technical disciplines. Essential qualifications Extensive hands-on experience with Cisco, Juniper, and/or Arista networking platforms Strong knowledge of BGP, OSPF, IS-IS, EVPN/VXLAN, MPLS and high-availability protocols Experience with SD-WAN technologies (Cisco SD-WAN, Meraki, Aruba, Palo Alto Prisma) Familiarity with AWS, Azure and/or GCP networking (VPC/VNet architecture, interconnects) Experience with NSX-T/V, Nutanix AHV or Hyper-V networking Strong understanding of firewalls, load balancers, PKI and segmentation Ability to work within secure environments and meet UK clearance requirements Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Network Engineer (DV Security Clearance) Position Description The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This position will be working out of our site in Cheltenham. Your future duties and responsibilities We are seeking a highly skilled and forward-thinking Software Defined Network (SDN) Engineer to spearhead the design, deployment, and optimisation of cutting-edge network infrastructures. In this pivotal role, you will leverage your deep expertise in Cisco ACI and VMware NSX-T to deliver innovative, software-defined solutions across complex hybrid environments. Collaborating closely with cross-functional teams, you will ensure the implementation of robust, scalable, and secure network fabrics that support both on-premises and cloud platforms-driving performance, agility, and resilience across the enterprise • Design, deploy, and manage scalable Software Defined Networking (SDN) architectures using CISCO ACI. • Define and enforce policies and connectivity rules within SDN environments. • Deploy and manage VMware NSX-T for micro-segmentation, distributed firewalling, and advanced routing. • Implement dynamic routing protocols and integration with underlay networks. • Establish security zones and enforce granular access controls through logical segmentation. • Integrate SDN platforms with hybrid infrastructures, including public cloud providers and on-premises data centres. • Collaborate with cloud and systems engineering teams to ensure seamless interconnectivity and performance optimisation. • Diagnose and resolve complex network issues spanning virtual and physical environments. • Use packet capture, flow analysis, and SDN analytics to pinpoint performance bottlenecks and security anomalies. • Provide escalation support and participate in root cause analysis for critical incidents. Required qualifications to be successful in this role • Proficiency in CISCO ACI fabric design and operations. • Hands-on experience with VMware NSX-T infrastructure setup and security features. • Deep understanding of SDN principles, overlay/underlay concepts, and VXLAN architecture. • Familiarity with cloud networking (AWS, Azure, GCP) and hybrid deployment models. • Solid troubleshooting and diagnostic skills across Layer 2Ň of the OSI model. Desirable • Certifications such as Cisco CCNP/CCIE Data Center, VMware VCP-NV, or VCIX-NV. • Knowledge of network automation and orchestration tools (e.g., Ansible, Terraform). • Experience with network monitoring platforms (e.g., vRealize Network Insight, Cisco Nexus Dashboard). • Familiarity with Zero Trust Networking and Network Function Virtualisation (NFV). Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
01/04/2026
Full time
Network Engineer (DV Security Clearance) Position Description The Space, Defence and Intelligence business unit in CGI is a true IT Systems Integrator. We work, build, and operate bespoke, technically complex, mission-critical systems which help our clients keep us all safe and secure. We bring innovation to our clients using proven and emerging technologies, agile delivery processes and our deep expertise across the breadth of space, defence, intelligence, aerospace and maritime, all underpinned by our end-to-end cyber capability. We work collaboratively with global technology companies, cutting edge SMEs and academia to deliver the optimal solution for each client. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named one of the 'World's Best Employers' by Forbes magazine. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. Due to the secure nature of the programme, you will need to hold UK Security Clearance or be eligible to go through this clearance. This position will be working out of our site in Cheltenham. Your future duties and responsibilities We are seeking a highly skilled and forward-thinking Software Defined Network (SDN) Engineer to spearhead the design, deployment, and optimisation of cutting-edge network infrastructures. In this pivotal role, you will leverage your deep expertise in Cisco ACI and VMware NSX-T to deliver innovative, software-defined solutions across complex hybrid environments. Collaborating closely with cross-functional teams, you will ensure the implementation of robust, scalable, and secure network fabrics that support both on-premises and cloud platforms-driving performance, agility, and resilience across the enterprise • Design, deploy, and manage scalable Software Defined Networking (SDN) architectures using CISCO ACI. • Define and enforce policies and connectivity rules within SDN environments. • Deploy and manage VMware NSX-T for micro-segmentation, distributed firewalling, and advanced routing. • Implement dynamic routing protocols and integration with underlay networks. • Establish security zones and enforce granular access controls through logical segmentation. • Integrate SDN platforms with hybrid infrastructures, including public cloud providers and on-premises data centres. • Collaborate with cloud and systems engineering teams to ensure seamless interconnectivity and performance optimisation. • Diagnose and resolve complex network issues spanning virtual and physical environments. • Use packet capture, flow analysis, and SDN analytics to pinpoint performance bottlenecks and security anomalies. • Provide escalation support and participate in root cause analysis for critical incidents. Required qualifications to be successful in this role • Proficiency in CISCO ACI fabric design and operations. • Hands-on experience with VMware NSX-T infrastructure setup and security features. • Deep understanding of SDN principles, overlay/underlay concepts, and VXLAN architecture. • Familiarity with cloud networking (AWS, Azure, GCP) and hybrid deployment models. • Solid troubleshooting and diagnostic skills across Layer 2Ň of the OSI model. Desirable • Certifications such as Cisco CCNP/CCIE Data Center, VMware VCP-NV, or VCIX-NV. • Knowledge of network automation and orchestration tools (e.g., Ansible, Terraform). • Experience with network monitoring platforms (e.g., vRealize Network Insight, Cisco Nexus Dashboard). • Familiarity with Zero Trust Networking and Network Function Virtualisation (NFV). Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Wiz Admin JD: Role Purpose The Cloud Security (Wiz Admin) is responsible for administering, operating, and optimising Aviva's Wiz Cloud Security Posture Management (CSPM/CNAPP) platform. This role ensures continuous visibility, governance, and risk reduction across Aviva's multi-cloud environments (AWS, Azure, GCP). The administrator will drive operational excellence, support engineering teams, integrate Wiz into enterprise tooling, and maintain policy compliance and posture improvement Key Responsibilities Platform Administration & Operations Own day-to-day administration of the Wiz platform across all cloud environments. Maintain Wiz connectors, least-privilege roles, integration points, and scanning configurations. Ensure onboarding/offboarding of cloud accounts, subscriptions, and K8s clusters. Monitor platform health, ingestion coverage, API integrations, and license utilisation. Cloud Posture Management Review, tune, and maintain security policies, controls, and baselines (eg, CIS, NIST, ISO). Validate and enhance attack path analysis, identity risk detection, and data exposure mapping. Prioritise findings using impact-based and exploit-path-based logic. Partner with Cloud Platform teams to ensure guardrails remain aligned with Wiz detections. Shift-Left Enablement Work with DevOps/SRE teams to embed Wiz in CI/CD pipelines for IaC scanning. Run onboarding sessions for teams on using Wiz Issues, Projects, and Policy-as-Code. Validate false positives/negatives and fine-tune policy gates for Terraform, ARM/Bicep, and CloudFormation. Incident & Risk Handling Support Cloud Security, SOC, and IR teams during investigations involving publicly exposed, exploitable, or high-risk cloud assets. Provide expert analysis on Wiz findings and attack paths; propose remediation and compensating controls. Contribute to post-incident reviews, root-cause analysis, and long-term posture improvements. Integrations & Automation Maintain integrations with Jira/ADO, SIEM/SOAR, Slack/Teams, and CMDB/GRC. Automate workflows for enrichment, prioritisation, ticketing, and reporting. Partner with Engineering to build auto-remediation playbooks for safe-to-fix classes (eg, public S3, permissive IAM). Governance, Reporting & Compliance Produce monthly security posture reports for leadership and Risk/Compliance teams. Track KPIs (coverage, MTTR, SLA adherence, risk trends). Support external and internal audit requests using Wiz's evidence and compliance modules. Manage exceptions/waivers and ensure they are reviewed and retired on schedule. Core Technical Skills Strong understanding of AWS, Azure, and GCP security controls and architecture. Hands-on experience with cloud IAM, network security, logging/monitoring, and workload security. Familiarity with Kubernetes security and container image scanning. Experience operating cloud security platforms (Wiz preferred; alternatives: Prisma, Lacework, Defender for Cloud). Working knowledge of Infrastructure-as-Code (Terraform strongly preferred). Understanding of identity and entitlements management (CIEM). Ability to analyse cloud attack paths and map misconfigurations to real exploitable risk. Nice-to-Have Skills Experience integrating security tools into CI/CD pipelines (Azure DevOps, GitHub, GitLab). Knowledge of SAST/DAST/Secret scanning tools. Exposure to SRE or Cloud Platform engineering. Soft Skills Strong communication skills-able to simplify complex findings for engineering teams. Problem-solving mindset with a bias for automation and scalability. Ability to work cross-functionally with Security, Cloud Platform, DevOps, Risk, and Audit. Comfortable with influencing teams without formal authority.
01/04/2026
Contractor
Wiz Admin JD: Role Purpose The Cloud Security (Wiz Admin) is responsible for administering, operating, and optimising Aviva's Wiz Cloud Security Posture Management (CSPM/CNAPP) platform. This role ensures continuous visibility, governance, and risk reduction across Aviva's multi-cloud environments (AWS, Azure, GCP). The administrator will drive operational excellence, support engineering teams, integrate Wiz into enterprise tooling, and maintain policy compliance and posture improvement Key Responsibilities Platform Administration & Operations Own day-to-day administration of the Wiz platform across all cloud environments. Maintain Wiz connectors, least-privilege roles, integration points, and scanning configurations. Ensure onboarding/offboarding of cloud accounts, subscriptions, and K8s clusters. Monitor platform health, ingestion coverage, API integrations, and license utilisation. Cloud Posture Management Review, tune, and maintain security policies, controls, and baselines (eg, CIS, NIST, ISO). Validate and enhance attack path analysis, identity risk detection, and data exposure mapping. Prioritise findings using impact-based and exploit-path-based logic. Partner with Cloud Platform teams to ensure guardrails remain aligned with Wiz detections. Shift-Left Enablement Work with DevOps/SRE teams to embed Wiz in CI/CD pipelines for IaC scanning. Run onboarding sessions for teams on using Wiz Issues, Projects, and Policy-as-Code. Validate false positives/negatives and fine-tune policy gates for Terraform, ARM/Bicep, and CloudFormation. Incident & Risk Handling Support Cloud Security, SOC, and IR teams during investigations involving publicly exposed, exploitable, or high-risk cloud assets. Provide expert analysis on Wiz findings and attack paths; propose remediation and compensating controls. Contribute to post-incident reviews, root-cause analysis, and long-term posture improvements. Integrations & Automation Maintain integrations with Jira/ADO, SIEM/SOAR, Slack/Teams, and CMDB/GRC. Automate workflows for enrichment, prioritisation, ticketing, and reporting. Partner with Engineering to build auto-remediation playbooks for safe-to-fix classes (eg, public S3, permissive IAM). Governance, Reporting & Compliance Produce monthly security posture reports for leadership and Risk/Compliance teams. Track KPIs (coverage, MTTR, SLA adherence, risk trends). Support external and internal audit requests using Wiz's evidence and compliance modules. Manage exceptions/waivers and ensure they are reviewed and retired on schedule. Core Technical Skills Strong understanding of AWS, Azure, and GCP security controls and architecture. Hands-on experience with cloud IAM, network security, logging/monitoring, and workload security. Familiarity with Kubernetes security and container image scanning. Experience operating cloud security platforms (Wiz preferred; alternatives: Prisma, Lacework, Defender for Cloud). Working knowledge of Infrastructure-as-Code (Terraform strongly preferred). Understanding of identity and entitlements management (CIEM). Ability to analyse cloud attack paths and map misconfigurations to real exploitable risk. Nice-to-Have Skills Experience integrating security tools into CI/CD pipelines (Azure DevOps, GitHub, GitLab). Knowledge of SAST/DAST/Secret scanning tools. Exposure to SRE or Cloud Platform engineering. Soft Skills Strong communication skills-able to simplify complex findings for engineering teams. Problem-solving mindset with a bias for automation and scalability. Ability to work cross-functionally with Security, Cloud Platform, DevOps, Risk, and Audit. Comfortable with influencing teams without formal authority.
Location Bristol, London, Warrington For roles based in London, your contractual place of work will be Stratford. While the Stratford site is expected to become operational from November 2025 - March 2026, you will be required to carry out your contractual duties from Vauxhall or another reasonable location on a temporary basis during the interim period. Please note that, as Stratford will be your contractual place of work, any subsequent move from a temporary location will not entitle you to payments for travel time or costs under the Relocation and Excess Travel Policy. About the job Job summary Join the expanding National Data Exploitation Capability (NDEC), part of the National Crime Agency's Data and Analysis Hub,and help place data at the centre of the fight against serious and organised crime (SOC). NDEC delivers advanced analytical and exploitation capabilities that generate operational insight, inform strategic decision making, and provide a critical edge against increasingly technology driven threats. As a Lead Software Developer, you will play a key role in shaping and delivering high quality software solutions that unlock the value of complex and rapidly growing datasets. We are looking for proactive, inquisitive problem solvers who thrive in a dynamic environment, enjoy variety, and work effectively as part of a collaborative, multi disciplinary team. Job description As the Lead Software Developer, you will provide technical leadership across NDEC and the wider NCA, driving the design, development and delivery of high quality software solutions that directly support mission critical operational and analytical needs. Working within a multi disciplinary technical team, you will contribute to the creation of next generation tools and platforms that enhance the Agency's ability to detect, disrupt and prevent SOC. This role places you at the cutting edge of law enforcement technology, helping to shape capabilities that address some of the most complex and high impact threats facing the UK. You will set engineering standards, define best practice and ensure the team consistently delivers secure, scalable and maintainable software. A key part of your role will be leading, coaching and mentoring a team of developers, supporting their technical growth, fostering a positive and collaborative culture, and ensuring their work aligns with NCA priorities. You will champion modern development approaches and agile delivery methods, promoting DevOps practices, automation and continuous integration/continuous deployment to ensure rapid and reliable delivery. Your responsibilities will include guiding technical decision making, selecting appropriate technologies and architectural approaches, and making informed judgments about when to build bespoke solutions or adopt existing tools. You will work closely with data scientists, analysts, product managers and operational teams to ensure that complex mission requirements are translated into robust, user centred technical solutions. In doing so, you will ensure that software developed within NDEC integrates effectively with operational workflows and delivers real world impact. You will also play a key role in strengthening the developer community across NDEC and the wider Agency, promoting knowledge sharing, encouraging experimentation and driving the adoption of good practice in security, testing, automation and documentation. Through strong technical leadership and a commitment to continuous improvement, you will help build a high performing software engineering capability that delivers meaningful outcomes in a fast moving and demanding environment. Duties and Responsibilities Team Leadership - Lead, manage and inspire a software development team to design, build and deliver high quality data services that address complex operational challenges. Provide clear direction, set standards and foster a culture of technical excellence and continuous improvement. Relationship Building - Develop strong, collaborative relationships across the NCA technical community. Promote shared learning, knowledge exchange and cross functional working to build collective capability and support the effective delivery of Agency priorities. User Engagement - Champion user centred design by defining effective approaches for understanding user needs and guiding others in eliciting and interpreting user stories. Distinguish clearly between genuine user needs and stakeholder wants, ensuring research is applied appropriately and recommending the most suitable tools and methods. Modern Development Standards - Apply and promote modern engineering standards and practices across complex projects and programmes, ensuring solutions are robust, secure, maintainable and aligned with organisational best practice. Programme and Build (Software Engineering) - Maintain technical oversight across all stages and iterations of the software development lifecycle. Provide expert advice to stakeholders, set team wide standards for programming tools and techniques, and ensure appropriate application of methods, frameworks and compliance requirements. Information Security - Design solutions with embedded security controls, ensuring they are purposefully engineered to mitigate relevant security threats and meet NCA and national security requirements. Systems Design - Develop systems that balance risk, impact and technical complexity, selecting suitable design patterns and standards. Review and assure the designs of others, ensuring appropriate technology choices, efficient resource use and effective integration across multiple systems. Systems Integration - Coordinate integration activities across systems, defining integration approaches and supporting teams in undertaking integration testing. Ensure components interact reliably and support the delivery of end to end operational capability. Person specification Software Engineering - Demonstrable industrial experience designing, developing and testing complex object oriented software applications. Strong proficiency in object oriented programming languages, with experience applying robust engineering principles in production environments. Deep understanding of the full software development lifecycle, including discovery, design, build, testing, deployment and maintenance. Development Practices & Delivery - Hands on experience working within agile delivery environments, applying iterative development, continuous feedback and prioritisation techniques. Practical experience with modern DevOps practices, automation and CI/CD pipelines to ensure consistent, reliable and secure deployment. Ability to translate user and business requirements into technical solutions, managing expectations and making informed, collaborative trade offs. Cloud, Infrastructure & Environments - Knowledge of designing, deploying and maintaining software across cloud and on premise environments. Understanding of how to build scalable, secure and resilient systems that integrate effectively within complex technical landscapes. Technical Design & Architecture - Experience contributing to technical design decisions, architectural patterns and standards. Ability to assess technology options, ensure alignment with best practice, and contribute to long term technical strategy. Technical Leadership - Experience operating in a technical leadership role, providing direction, coaching and assurance to software developers. Ability to build a positive engineering culture, promote knowledge sharing, and drive continuous improvement across a multi disciplinary team.
01/04/2026
Full time
Location Bristol, London, Warrington For roles based in London, your contractual place of work will be Stratford. While the Stratford site is expected to become operational from November 2025 - March 2026, you will be required to carry out your contractual duties from Vauxhall or another reasonable location on a temporary basis during the interim period. Please note that, as Stratford will be your contractual place of work, any subsequent move from a temporary location will not entitle you to payments for travel time or costs under the Relocation and Excess Travel Policy. About the job Job summary Join the expanding National Data Exploitation Capability (NDEC), part of the National Crime Agency's Data and Analysis Hub,and help place data at the centre of the fight against serious and organised crime (SOC). NDEC delivers advanced analytical and exploitation capabilities that generate operational insight, inform strategic decision making, and provide a critical edge against increasingly technology driven threats. As a Lead Software Developer, you will play a key role in shaping and delivering high quality software solutions that unlock the value of complex and rapidly growing datasets. We are looking for proactive, inquisitive problem solvers who thrive in a dynamic environment, enjoy variety, and work effectively as part of a collaborative, multi disciplinary team. Job description As the Lead Software Developer, you will provide technical leadership across NDEC and the wider NCA, driving the design, development and delivery of high quality software solutions that directly support mission critical operational and analytical needs. Working within a multi disciplinary technical team, you will contribute to the creation of next generation tools and platforms that enhance the Agency's ability to detect, disrupt and prevent SOC. This role places you at the cutting edge of law enforcement technology, helping to shape capabilities that address some of the most complex and high impact threats facing the UK. You will set engineering standards, define best practice and ensure the team consistently delivers secure, scalable and maintainable software. A key part of your role will be leading, coaching and mentoring a team of developers, supporting their technical growth, fostering a positive and collaborative culture, and ensuring their work aligns with NCA priorities. You will champion modern development approaches and agile delivery methods, promoting DevOps practices, automation and continuous integration/continuous deployment to ensure rapid and reliable delivery. Your responsibilities will include guiding technical decision making, selecting appropriate technologies and architectural approaches, and making informed judgments about when to build bespoke solutions or adopt existing tools. You will work closely with data scientists, analysts, product managers and operational teams to ensure that complex mission requirements are translated into robust, user centred technical solutions. In doing so, you will ensure that software developed within NDEC integrates effectively with operational workflows and delivers real world impact. You will also play a key role in strengthening the developer community across NDEC and the wider Agency, promoting knowledge sharing, encouraging experimentation and driving the adoption of good practice in security, testing, automation and documentation. Through strong technical leadership and a commitment to continuous improvement, you will help build a high performing software engineering capability that delivers meaningful outcomes in a fast moving and demanding environment. Duties and Responsibilities Team Leadership - Lead, manage and inspire a software development team to design, build and deliver high quality data services that address complex operational challenges. Provide clear direction, set standards and foster a culture of technical excellence and continuous improvement. Relationship Building - Develop strong, collaborative relationships across the NCA technical community. Promote shared learning, knowledge exchange and cross functional working to build collective capability and support the effective delivery of Agency priorities. User Engagement - Champion user centred design by defining effective approaches for understanding user needs and guiding others in eliciting and interpreting user stories. Distinguish clearly between genuine user needs and stakeholder wants, ensuring research is applied appropriately and recommending the most suitable tools and methods. Modern Development Standards - Apply and promote modern engineering standards and practices across complex projects and programmes, ensuring solutions are robust, secure, maintainable and aligned with organisational best practice. Programme and Build (Software Engineering) - Maintain technical oversight across all stages and iterations of the software development lifecycle. Provide expert advice to stakeholders, set team wide standards for programming tools and techniques, and ensure appropriate application of methods, frameworks and compliance requirements. Information Security - Design solutions with embedded security controls, ensuring they are purposefully engineered to mitigate relevant security threats and meet NCA and national security requirements. Systems Design - Develop systems that balance risk, impact and technical complexity, selecting suitable design patterns and standards. Review and assure the designs of others, ensuring appropriate technology choices, efficient resource use and effective integration across multiple systems. Systems Integration - Coordinate integration activities across systems, defining integration approaches and supporting teams in undertaking integration testing. Ensure components interact reliably and support the delivery of end to end operational capability. Person specification Software Engineering - Demonstrable industrial experience designing, developing and testing complex object oriented software applications. Strong proficiency in object oriented programming languages, with experience applying robust engineering principles in production environments. Deep understanding of the full software development lifecycle, including discovery, design, build, testing, deployment and maintenance. Development Practices & Delivery - Hands on experience working within agile delivery environments, applying iterative development, continuous feedback and prioritisation techniques. Practical experience with modern DevOps practices, automation and CI/CD pipelines to ensure consistent, reliable and secure deployment. Ability to translate user and business requirements into technical solutions, managing expectations and making informed, collaborative trade offs. Cloud, Infrastructure & Environments - Knowledge of designing, deploying and maintaining software across cloud and on premise environments. Understanding of how to build scalable, secure and resilient systems that integrate effectively within complex technical landscapes. Technical Design & Architecture - Experience contributing to technical design decisions, architectural patterns and standards. Ability to assess technology options, ensure alignment with best practice, and contribute to long term technical strategy. Technical Leadership - Experience operating in a technical leadership role, providing direction, coaching and assurance to software developers. Ability to build a positive engineering culture, promote knowledge sharing, and drive continuous improvement across a multi disciplinary team.
Role Title: ServiceNow HRSD Specialist Duration: contract to run until 31/08/2026 Location: London, hybrid Rate: up to £763 p/d Umbrella inside IR35 Clearance required: You must hold a British Passport Role purpose/summary We are seeking a Senior ServiceNow HR Service Delivery (HRSD) specialist to join an established ServiceNow capability within a large enterprise environment. This role requires a strong blend of hands on technical delivery, HRSD functional expertise, and platform engineering capability. The successful candidate will act as a technical and functional SME, working closely with HR Technology leadership, HR journey owners, governance teams, and delivery squads to stabilise BAU, reduce backlog, and deliver scalable, outcome based HR solutions on the ServiceNow platform. This is a hands on role requiring deep ServiceNow configuration, Scripting, workflow automation, integrations, and experience designing enterprise grade HRSD solutions. Key Responsibilities Delivery & Execution Embed immediately into the ServiceNow capability to stabilise BAU and reduce backlog Lead and perform hands on technical delivery, including configuration, workflows, HRSD capabilities, Scripting, and integrations Design and deliver end to end HRSD solutions across key HR journeys (eg joining, progressing, leaving) Digitise HR processes, reducing manual effort and eliminating high volume mailboxes and triage queues Design and implement outcome based workflows, improved routing logic, and automation at scale Drive continuous improvement across performance, user experience, resilience, and operational stability Technical Leadership & Governance Act as SME for ServiceNow HRSD architecture, technical design, and platform governance Shape solution options and delivery approaches in partnership with HR Technology leadership Define and mature design standards, reusable patterns, and best practices Ensure alignment to platform roadmap, architectural principles, and enterprise controls Support upgrades, instance management, and adoption of new ServiceNow capabilities Stakeholder Engagement & Coaching Partner with senior HR stakeholders, journey owners, programme teams, and technical squads Translate business outcomes into scalable ServiceNow designs and implementations Lead and coach junior developers, providing technical guidance and quality oversight Contribute to agile delivery, working closely with product owners and scrum teams Essential Skills & Experience ServiceNow & HRSD Strong experience delivering ServiceNow HR Service Delivery (HRSD) in large or complex organisations Proven ability to translate HR business needs into scalable HRSD solution designs Hands on experience with: HR Service Delivery Enterprise Employee Center/Employee Center Pro HR Agent Workspace (UI Builder) Employee Document Management Case and knowledge management within HRSD Platform Engineering & Technical Capability Strong ServiceNow Scripting skills: JavaScript Business Rules, Script Includes, Client Scripts REST/SOAP integrations Experience with: Flow Designer and workflow automation UI Builder and UI/UX configuration Integrations with platforms such as Workday and Microsoft technologies Web technologies (HTML, CSS, XML, AngularJS) Experience implementing: Platform Analytics and reporting AI/automation capabilities (eg Now Assist, virtual agents, workflow intelligence) Familiarity with enterprise infrastructure and identity platforms (eg Microsoft Entra, Microsoft Graph, M365) Ways of Working Experience working in Agile delivery environments Comfortable acting as both individual contributor and technical lead Strong problem solving skills with the ability to work across ambiguity Excellent communication skills with the ability to engage stakeholders at all levels Certifications (Preferred) ServiceNow Certified System Administrator ServiceNow Certified Application Developer ServiceNow Certified Implementation Specialist - HR Additional ServiceNow architecture or platform certifications are desirable Ideal Candidate Profile This role suits a senior ServiceNow HRSD consultant/developer who: Is highly hands on and delivery focused Can operate as a trusted technical partner to HR and platform leadership Has experience stabilising live platforms while delivering new capabilities Brings strong engineering discipline alongside functional HRSD expertise All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
01/04/2026
Contractor
Role Title: ServiceNow HRSD Specialist Duration: contract to run until 31/08/2026 Location: London, hybrid Rate: up to £763 p/d Umbrella inside IR35 Clearance required: You must hold a British Passport Role purpose/summary We are seeking a Senior ServiceNow HR Service Delivery (HRSD) specialist to join an established ServiceNow capability within a large enterprise environment. This role requires a strong blend of hands on technical delivery, HRSD functional expertise, and platform engineering capability. The successful candidate will act as a technical and functional SME, working closely with HR Technology leadership, HR journey owners, governance teams, and delivery squads to stabilise BAU, reduce backlog, and deliver scalable, outcome based HR solutions on the ServiceNow platform. This is a hands on role requiring deep ServiceNow configuration, Scripting, workflow automation, integrations, and experience designing enterprise grade HRSD solutions. Key Responsibilities Delivery & Execution Embed immediately into the ServiceNow capability to stabilise BAU and reduce backlog Lead and perform hands on technical delivery, including configuration, workflows, HRSD capabilities, Scripting, and integrations Design and deliver end to end HRSD solutions across key HR journeys (eg joining, progressing, leaving) Digitise HR processes, reducing manual effort and eliminating high volume mailboxes and triage queues Design and implement outcome based workflows, improved routing logic, and automation at scale Drive continuous improvement across performance, user experience, resilience, and operational stability Technical Leadership & Governance Act as SME for ServiceNow HRSD architecture, technical design, and platform governance Shape solution options and delivery approaches in partnership with HR Technology leadership Define and mature design standards, reusable patterns, and best practices Ensure alignment to platform roadmap, architectural principles, and enterprise controls Support upgrades, instance management, and adoption of new ServiceNow capabilities Stakeholder Engagement & Coaching Partner with senior HR stakeholders, journey owners, programme teams, and technical squads Translate business outcomes into scalable ServiceNow designs and implementations Lead and coach junior developers, providing technical guidance and quality oversight Contribute to agile delivery, working closely with product owners and scrum teams Essential Skills & Experience ServiceNow & HRSD Strong experience delivering ServiceNow HR Service Delivery (HRSD) in large or complex organisations Proven ability to translate HR business needs into scalable HRSD solution designs Hands on experience with: HR Service Delivery Enterprise Employee Center/Employee Center Pro HR Agent Workspace (UI Builder) Employee Document Management Case and knowledge management within HRSD Platform Engineering & Technical Capability Strong ServiceNow Scripting skills: JavaScript Business Rules, Script Includes, Client Scripts REST/SOAP integrations Experience with: Flow Designer and workflow automation UI Builder and UI/UX configuration Integrations with platforms such as Workday and Microsoft technologies Web technologies (HTML, CSS, XML, AngularJS) Experience implementing: Platform Analytics and reporting AI/automation capabilities (eg Now Assist, virtual agents, workflow intelligence) Familiarity with enterprise infrastructure and identity platforms (eg Microsoft Entra, Microsoft Graph, M365) Ways of Working Experience working in Agile delivery environments Comfortable acting as both individual contributor and technical lead Strong problem solving skills with the ability to work across ambiguity Excellent communication skills with the ability to engage stakeholders at all levels Certifications (Preferred) ServiceNow Certified System Administrator ServiceNow Certified Application Developer ServiceNow Certified Implementation Specialist - HR Additional ServiceNow architecture or platform certifications are desirable Ideal Candidate Profile This role suits a senior ServiceNow HRSD consultant/developer who: Is highly hands on and delivery focused Can operate as a trusted technical partner to HR and platform leadership Has experience stabilising live platforms while delivering new capabilities Brings strong engineering discipline alongside functional HRSD expertise All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!
Government Digital & Data
Cardiff, South Glamorgan
Location Cardiff, Wales, CF14 3UZ About the job Job summary Launch your future in cloud engineering with an apprenticeship that gives you real experience, expert support, and a welcoming learning environment. Working alongside our skilled Infrastructure Engineering team, you'll help design, deliver and maintain our cloud platforms, troubleshoot issues, and contribute to automation that improves how we work. With a clear learning pathway and dedicated mentorship, you'll build confidence and capability in a fast moving digital profession. You'll gain real experience across several specialist areas: Database Operations - understanding performance, backups, replication, and maintenance. DevOps / DevSecOps - automation, secure pipelines, continuous delivery and operational excellence. FinOps - cost optimisation, cloud spend awareness and responsible resource usage. Linux & Storage - system administration, storage management and troubleshooting. Network Operations - cloud networking, connectivity, monitoring and resilience. Platforms - supporting and enhancing internal cloud platforms, tools and shared services You'll be part of a supportive team working in a flexible hybrid way, splitting your time between home and our Cardiff office. You'll also spend one day each week with our apprenticeship provider, ALS Training, in central Cardiff giving you dedicated time to learn, grow and develop the skills you need to thrive. Watch this video to find out more about working in Digital at Companies House Give yourself the best opportunity to apply! Join our Outreach team for an informal "find out more" session on: Tuesday 31st March 2026 between 12.00 - 13.00 No need to register - just click on the link above to join, listen, and gain tips to help you apply. Cameras and microphones will be switched off. Can't make the session, or want something to refer back to? Just email our Outreach mailbox on: and we'll share a copy of the session slides. Find out more about what a great place Companies House is to work Please note: Companies House cannot offer Visa sponsorship to candidates through this campaign. Security Clearance is an essential requirement for this campaign. You'll need to have been in the UK for at least 3 out of the last 5 years to be eligible to apply for SC. Please review the eligibility criteria for the academic course detailed under the Person Specification section further down in the advert before applying. Job description As an Apprentice Infrastructure Engineer, you'll join a group of new apprentices working towards a Level 4 Digital Infrastructure Engineer qualification (find out more here: Level 4 Digital Infrastructure Engineer - ALS Training ). Over 24 months, you'll be supported every step of the way helping you achieve your apprenticeship while building highly sought-after technical skills. Alongside your formal learning, you'll gain hands on experience with our talented Infrastructure teams and a range of specialist technical teams who deliver cloud-based solutions across Companies House and support for the last remaining on-premise infrastructure. Through regular rotations, you'll see the full breadth of infrastructure engineering roles and work with a variety of technologies that shape how we operate. During your apprenticeship, you'll grow your capabilities across key areas such as: Information security - understanding security principles and the controls used to protect systems and services. IT infrastructure - supporting a wide range of technologies including compute, storage, networking, physical and cloud infrastructure (IaaS, PaaS, SaaS), COTS, and opensource solutions. Developing modern industry standards - learning why up-to-date development and technical standards matter and how to apply them. Ownership and initiative - learning how to investigate issues, document your findings and work with your team to resolve them. Problem management - exploring how to identify and assess problems across systems, processes and services at strategic, tactical or operational levels. Systems design - contributing to the design of components within larger digital systems. Systems integration - understanding how systems connect, the challenges involved, and how to build and test effective interfaces. Troubleshooting - developing your diagnostic skills and learning how to apply basic troubleshooting techniques across a range of technologies. As you progress through the apprenticeship, you'll gain hands-on experience in: Core Cloud & Automation Skills Terraform - building, managing, and automating infrastructure as code. AWS Cloud Infrastructure - deploying, securing, scaling, and operating cloud platforms. Docker - containerising applications and managing lightweight, portable environments. CI/CD Pipelines - understanding automated build, test and deployment workflows using tools commonly used in Companies House. Version Control (Git) - managing source code, collaborating through branches and pull requests. Additional Technical Skills You might also get the opportunity to learn more about: Programming Languages - exposure to languages used at Companies House, such as Java, Node.js and Python, plus scripting basics. SQL & MongoDB - querying, modelling, and working with relational and nonrelational databases. Unix/Linux - essential command line usage, system administration and troubleshooting. Networking Fundamentals - understanding VPCs, subnets, routing, firewalls and connectivity in cloud environments. Storage Technologies - object storage (e.g., S3), block storage, file systems, encryption and backup concepts. Monitoring & Observability - logging, metrics, alerting, dashboards and incident response principles. Security Foundations (DevSecOps) - identity & access management, secrets handling, vulnerability awareness and secure-by-design thinking. You'll benefit from additional core skills development, a supportive apprentice community, onsite parking, an onsite gym, and a variety of active social groups across Companies House. You're joining us at a time of exciting transformation, and you'll play a real part in shaping how our systems evolve for the future. Person specification This is a role that provides the opportunity to participate in the support and rollout of existing and emerging technologies and the chance to gain knowledge of Companies House hardware and software systems. We are looking for someone who has: The willingness to learn and adapt to new technologies Strong communication skills, both written and verbal Good organisational skills, able to manage tasks and time effectively A genuine interest in technology and digital services The ability to work collaboratively and support colleagues Strong problem-solving abilities and creativity in finding solutions Eligibility Criteria There are some important things to be aware of when applying for this apprenticeship: There are no age restrictions for this apprenticeship - we welcome all applications. If you are shortlisted for interview, we will ask you to confirm your name and qualifications with us, so that we can share them with our apprenticeship provider - this is simply so that they can check your eligibility for apprenticeship funding. So that we can provide you with all of the support and training you need, you'll be required to attend our Cardiff office for a minimum of 3 days per week during the training period and then a minimum 2 days a week once training has been completed. Companies House cannot offer Visa sponsorship for this campaign. You must not already have a qualification at Level 4 or higher in the same or a similar subject to this apprenticeship. For more information on qualification levels, please visit: What qualification levels mean: England, Wales and Northern Ireland - GOV.UK To be eligible for this apprenticeship, you need to: Have achieved a GCSE grade C (or equivalent) in Maths and English Language (or equivalent qualifications). We'll ask for evidence of this before you can progress to interview. Live in Wales for at least three days a week at the start of the apprenticeship and throughout its duration. Not be in full-time education when you start the role. Hold a British Passport or indefinite leave to remain status in the UK.
01/04/2026
Full time
Location Cardiff, Wales, CF14 3UZ About the job Job summary Launch your future in cloud engineering with an apprenticeship that gives you real experience, expert support, and a welcoming learning environment. Working alongside our skilled Infrastructure Engineering team, you'll help design, deliver and maintain our cloud platforms, troubleshoot issues, and contribute to automation that improves how we work. With a clear learning pathway and dedicated mentorship, you'll build confidence and capability in a fast moving digital profession. You'll gain real experience across several specialist areas: Database Operations - understanding performance, backups, replication, and maintenance. DevOps / DevSecOps - automation, secure pipelines, continuous delivery and operational excellence. FinOps - cost optimisation, cloud spend awareness and responsible resource usage. Linux & Storage - system administration, storage management and troubleshooting. Network Operations - cloud networking, connectivity, monitoring and resilience. Platforms - supporting and enhancing internal cloud platforms, tools and shared services You'll be part of a supportive team working in a flexible hybrid way, splitting your time between home and our Cardiff office. You'll also spend one day each week with our apprenticeship provider, ALS Training, in central Cardiff giving you dedicated time to learn, grow and develop the skills you need to thrive. Watch this video to find out more about working in Digital at Companies House Give yourself the best opportunity to apply! Join our Outreach team for an informal "find out more" session on: Tuesday 31st March 2026 between 12.00 - 13.00 No need to register - just click on the link above to join, listen, and gain tips to help you apply. Cameras and microphones will be switched off. Can't make the session, or want something to refer back to? Just email our Outreach mailbox on: and we'll share a copy of the session slides. Find out more about what a great place Companies House is to work Please note: Companies House cannot offer Visa sponsorship to candidates through this campaign. Security Clearance is an essential requirement for this campaign. You'll need to have been in the UK for at least 3 out of the last 5 years to be eligible to apply for SC. Please review the eligibility criteria for the academic course detailed under the Person Specification section further down in the advert before applying. Job description As an Apprentice Infrastructure Engineer, you'll join a group of new apprentices working towards a Level 4 Digital Infrastructure Engineer qualification (find out more here: Level 4 Digital Infrastructure Engineer - ALS Training ). Over 24 months, you'll be supported every step of the way helping you achieve your apprenticeship while building highly sought-after technical skills. Alongside your formal learning, you'll gain hands on experience with our talented Infrastructure teams and a range of specialist technical teams who deliver cloud-based solutions across Companies House and support for the last remaining on-premise infrastructure. Through regular rotations, you'll see the full breadth of infrastructure engineering roles and work with a variety of technologies that shape how we operate. During your apprenticeship, you'll grow your capabilities across key areas such as: Information security - understanding security principles and the controls used to protect systems and services. IT infrastructure - supporting a wide range of technologies including compute, storage, networking, physical and cloud infrastructure (IaaS, PaaS, SaaS), COTS, and opensource solutions. Developing modern industry standards - learning why up-to-date development and technical standards matter and how to apply them. Ownership and initiative - learning how to investigate issues, document your findings and work with your team to resolve them. Problem management - exploring how to identify and assess problems across systems, processes and services at strategic, tactical or operational levels. Systems design - contributing to the design of components within larger digital systems. Systems integration - understanding how systems connect, the challenges involved, and how to build and test effective interfaces. Troubleshooting - developing your diagnostic skills and learning how to apply basic troubleshooting techniques across a range of technologies. As you progress through the apprenticeship, you'll gain hands-on experience in: Core Cloud & Automation Skills Terraform - building, managing, and automating infrastructure as code. AWS Cloud Infrastructure - deploying, securing, scaling, and operating cloud platforms. Docker - containerising applications and managing lightweight, portable environments. CI/CD Pipelines - understanding automated build, test and deployment workflows using tools commonly used in Companies House. Version Control (Git) - managing source code, collaborating through branches and pull requests. Additional Technical Skills You might also get the opportunity to learn more about: Programming Languages - exposure to languages used at Companies House, such as Java, Node.js and Python, plus scripting basics. SQL & MongoDB - querying, modelling, and working with relational and nonrelational databases. Unix/Linux - essential command line usage, system administration and troubleshooting. Networking Fundamentals - understanding VPCs, subnets, routing, firewalls and connectivity in cloud environments. Storage Technologies - object storage (e.g., S3), block storage, file systems, encryption and backup concepts. Monitoring & Observability - logging, metrics, alerting, dashboards and incident response principles. Security Foundations (DevSecOps) - identity & access management, secrets handling, vulnerability awareness and secure-by-design thinking. You'll benefit from additional core skills development, a supportive apprentice community, onsite parking, an onsite gym, and a variety of active social groups across Companies House. You're joining us at a time of exciting transformation, and you'll play a real part in shaping how our systems evolve for the future. Person specification This is a role that provides the opportunity to participate in the support and rollout of existing and emerging technologies and the chance to gain knowledge of Companies House hardware and software systems. We are looking for someone who has: The willingness to learn and adapt to new technologies Strong communication skills, both written and verbal Good organisational skills, able to manage tasks and time effectively A genuine interest in technology and digital services The ability to work collaboratively and support colleagues Strong problem-solving abilities and creativity in finding solutions Eligibility Criteria There are some important things to be aware of when applying for this apprenticeship: There are no age restrictions for this apprenticeship - we welcome all applications. If you are shortlisted for interview, we will ask you to confirm your name and qualifications with us, so that we can share them with our apprenticeship provider - this is simply so that they can check your eligibility for apprenticeship funding. So that we can provide you with all of the support and training you need, you'll be required to attend our Cardiff office for a minimum of 3 days per week during the training period and then a minimum 2 days a week once training has been completed. Companies House cannot offer Visa sponsorship for this campaign. You must not already have a qualification at Level 4 or higher in the same or a similar subject to this apprenticeship. For more information on qualification levels, please visit: What qualification levels mean: England, Wales and Northern Ireland - GOV.UK To be eligible for this apprenticeship, you need to: Have achieved a GCSE grade C (or equivalent) in Maths and English Language (or equivalent qualifications). We'll ask for evidence of this before you can progress to interview. Live in Wales for at least three days a week at the start of the apprenticeship and throughout its duration. Not be in full-time education when you start the role. Hold a British Passport or indefinite leave to remain status in the UK.
Lynx Recruitment are partnered with a leading global consultancy to source an experienced Cloud Security Engineer to join a high-performing cloud and cybersecurity team. This is an exciting opportunity to work on enterprise-scale cloud environments, driving security best practices and implementing cutting-edge cloud-native application protection solutions. The Role You will play a key role in designing, implementing, and managing cloud security controls across large-scale AWS environments, with a strong focus on policy-as-code and automation. Key Responsibilities Implement and manage CNAPP policies using Wiz for continuous cloud posture assessment and remediation Develop and maintain policy-as-code frameworks using OPA/Rego Integrate security controls into Infrastructure-as-Code (IaC) workflows using Terraform Collaborate closely with DevOps and Cyber Security teams to remediate non-compliant resources Monitor and enhance cloud governance and policy effectiveness Embed security into the SDLC through CI/CD pipelines (e.g. GitLab Runners), including vulnerability scanning and compliance checks Key Requirements Strong experience with AWS (essential) Hands-on experience with Wiz (including custom rule development, graph rules, or configuration policies) Expertise in OPA/Rego for policy-as-code Proven experience with Terraform for infrastructure and security automation Scripting experience (Python, Bash, or PowerShell) Experience working within DevSecOps environments and implementing shift-left security Degree in an IT or technology-related subject with a minimum of a 2:1 (or equivalent)
01/04/2026
Full time
Lynx Recruitment are partnered with a leading global consultancy to source an experienced Cloud Security Engineer to join a high-performing cloud and cybersecurity team. This is an exciting opportunity to work on enterprise-scale cloud environments, driving security best practices and implementing cutting-edge cloud-native application protection solutions. The Role You will play a key role in designing, implementing, and managing cloud security controls across large-scale AWS environments, with a strong focus on policy-as-code and automation. Key Responsibilities Implement and manage CNAPP policies using Wiz for continuous cloud posture assessment and remediation Develop and maintain policy-as-code frameworks using OPA/Rego Integrate security controls into Infrastructure-as-Code (IaC) workflows using Terraform Collaborate closely with DevOps and Cyber Security teams to remediate non-compliant resources Monitor and enhance cloud governance and policy effectiveness Embed security into the SDLC through CI/CD pipelines (e.g. GitLab Runners), including vulnerability scanning and compliance checks Key Requirements Strong experience with AWS (essential) Hands-on experience with Wiz (including custom rule development, graph rules, or configuration policies) Expertise in OPA/Rego for policy-as-code Proven experience with Terraform for infrastructure and security automation Scripting experience (Python, Bash, or PowerShell) Experience working within DevSecOps environments and implementing shift-left security Degree in an IT or technology-related subject with a minimum of a 2:1 (or equivalent)
Lynx Recruitment are partnered with a leading global consultancy to source an experienced Cloud Security Engineer to join a high-performing cloud and cybersecurity team. This is an exciting opportunity to work on enterprise-scale cloud environments, driving security best practices and implementing cutting-edge cloud-native application protection solutions. The Role You will play a key role in designing, implementing, and managing cloud security controls across large-scale AWS environments, with a strong focus on policy-as-code and automation. Key Responsibilities Implement and manage CNAPP policies using Wiz for continuous cloud posture assessment and remediation Develop and maintain policy-as-code frameworks using OPA/Rego Integrate security controls into Infrastructure-as-Code (IaC) workflows using Terraform Collaborate closely with DevOps and Cyber Security teams to remediate non-compliant resources Monitor and enhance cloud governance and policy effectiveness Embed security into the SDLC through CI/CD pipelines (e.g. GitLab Runners), including vulnerability scanning and compliance checks Key Requirements Strong experience with AWS (essential) Hands-on experience with Wiz (including custom rule development, graph rules, or configuration policies) Expertise in OPA/Rego for policy-as-code Proven experience with Terraform for infrastructure and security automation Scripting experience (Python, Bash, or PowerShell) Experience working within DevSecOps environments and implementing shift-left security Degree in an IT or technology-related subject with a minimum of a 2:1 (or equivalent)
01/04/2026
Full time
Lynx Recruitment are partnered with a leading global consultancy to source an experienced Cloud Security Engineer to join a high-performing cloud and cybersecurity team. This is an exciting opportunity to work on enterprise-scale cloud environments, driving security best practices and implementing cutting-edge cloud-native application protection solutions. The Role You will play a key role in designing, implementing, and managing cloud security controls across large-scale AWS environments, with a strong focus on policy-as-code and automation. Key Responsibilities Implement and manage CNAPP policies using Wiz for continuous cloud posture assessment and remediation Develop and maintain policy-as-code frameworks using OPA/Rego Integrate security controls into Infrastructure-as-Code (IaC) workflows using Terraform Collaborate closely with DevOps and Cyber Security teams to remediate non-compliant resources Monitor and enhance cloud governance and policy effectiveness Embed security into the SDLC through CI/CD pipelines (e.g. GitLab Runners), including vulnerability scanning and compliance checks Key Requirements Strong experience with AWS (essential) Hands-on experience with Wiz (including custom rule development, graph rules, or configuration policies) Expertise in OPA/Rego for policy-as-code Proven experience with Terraform for infrastructure and security automation Scripting experience (Python, Bash, or PowerShell) Experience working within DevSecOps environments and implementing shift-left security Degree in an IT or technology-related subject with a minimum of a 2:1 (or equivalent)
Overview We're looking for a skilled Generative AI Engineer to help build and scale a modern AI platform within a large, complex enterprise environment. This role combines hands-on Python development with DevOps practices and the integration of large language models into secure, production-grade systems. You'll be working on emerging technologies, solving real-world engineering challenges, and contributing to the evolution of AI capabilities in a regulated setting. Key Responsibilities Design, build, and maintain backend services and APIs that provide secure access to AI capabilities Develop Python-based components for prompt orchestration, output validation, and evaluation workflows Integrate LLMs into existing enterprise systems, ensuring alignment with security and observability standards Implement and manage CI/CD pipelines in line with engineering best practices Collaborate with cross-functional teams (engineering, platform, and operations) to ensure reliable deployment and scaling Support experimentation, benchmarking, and cost/performance analysis of AI models Contribute to retrieval-augmented generation (RAG) solutions and data integration patterns Establish reusable API standards, frameworks, and documentation to support wider adoption Troubleshoot and optimise distributed systems and cloud-based services Core Skills & Experience Strong background in backend engineering using Python (additional exposure to Node.js or similar is beneficial) Hands-on experience working with Generative AI and large language models Understanding of prompt engineering challenges and model evaluation techniques Solid DevOps capabilities, including CI/CD pipelines and monitoring practices Experience operating in secure, regulated environments with strict governance controls Proven track record of integrating AI into production applications or workflows Knowledge of authentication, secrets management, and secure system design Nice to Have Experience with API gateways, service meshes, or GitOps tooling Familiarity with cloud platforms and services (compute, containers, storage, messaging) Experience building RESTful APIs (FastAPI or similar) and microservices architectures Exposure to infrastructure-as-code and automated deployment workflows Knowledge of prompt evaluation tooling Experience with both SQL and NoSQL databases Understanding of vector search and retrieval-based AI patterns Ways of Working Takes initiative and solves problems without needing heavy direction Comfortable navigating ambiguity in a fast-evolving technical landscape Strong communicator who can work effectively across technical and non-technical teams Curious and proactive in exploring new AI approaches responsibly Focused on automation and efficiency to improve delivery What Good Looks Like High-quality, secure AI services delivered into production Improved team productivity through automation and streamlined processes Reliable, observable systems with performance and evaluation built in Solutions that are easy for other teams to adopt and build upon Clear, accessible documentation supporting rapid onboarding
01/04/2026
Contractor
Overview We're looking for a skilled Generative AI Engineer to help build and scale a modern AI platform within a large, complex enterprise environment. This role combines hands-on Python development with DevOps practices and the integration of large language models into secure, production-grade systems. You'll be working on emerging technologies, solving real-world engineering challenges, and contributing to the evolution of AI capabilities in a regulated setting. Key Responsibilities Design, build, and maintain backend services and APIs that provide secure access to AI capabilities Develop Python-based components for prompt orchestration, output validation, and evaluation workflows Integrate LLMs into existing enterprise systems, ensuring alignment with security and observability standards Implement and manage CI/CD pipelines in line with engineering best practices Collaborate with cross-functional teams (engineering, platform, and operations) to ensure reliable deployment and scaling Support experimentation, benchmarking, and cost/performance analysis of AI models Contribute to retrieval-augmented generation (RAG) solutions and data integration patterns Establish reusable API standards, frameworks, and documentation to support wider adoption Troubleshoot and optimise distributed systems and cloud-based services Core Skills & Experience Strong background in backend engineering using Python (additional exposure to Node.js or similar is beneficial) Hands-on experience working with Generative AI and large language models Understanding of prompt engineering challenges and model evaluation techniques Solid DevOps capabilities, including CI/CD pipelines and monitoring practices Experience operating in secure, regulated environments with strict governance controls Proven track record of integrating AI into production applications or workflows Knowledge of authentication, secrets management, and secure system design Nice to Have Experience with API gateways, service meshes, or GitOps tooling Familiarity with cloud platforms and services (compute, containers, storage, messaging) Experience building RESTful APIs (FastAPI or similar) and microservices architectures Exposure to infrastructure-as-code and automated deployment workflows Knowledge of prompt evaluation tooling Experience with both SQL and NoSQL databases Understanding of vector search and retrieval-based AI patterns Ways of Working Takes initiative and solves problems without needing heavy direction Comfortable navigating ambiguity in a fast-evolving technical landscape Strong communicator who can work effectively across technical and non-technical teams Curious and proactive in exploring new AI approaches responsibly Focused on automation and efficiency to improve delivery What Good Looks Like High-quality, secure AI services delivered into production Improved team productivity through automation and streamlined processes Reliable, observable systems with performance and evaluation built in Solutions that are easy for other teams to adopt and build upon Clear, accessible documentation supporting rapid onboarding
Project and Automation Engineer Location - Nottingham Shifts - Days Salary - £50,000 - £60,000 We are looking for a motivated Project and Automation Engineer to join a market leading company. Reporting directly to the Engineering Manager you will be a key member in ensuring all project and automation work is completed to the best of your ability. You will be involved in all aspects within their operation. With progressive development this company is always looking to enhance its employees and their skill sets, whilst additionally being supported by a welcoming team. The position will appeal to a Project and Automation Engineer looking for their next challenging role within in a secure and stable company. Job Details : Design, fabricate, and install mechanical improvements, rigs, or production aids Build and wire control panels, including VFDs, relays, contactors and PLCs Programme or modify PLCs and HMIs (Siemens, Omron, etc.) Install and calibrate sensors, solenoids, motors, and safety devices Lead or support capex and process improvement projects Work with Production to trial and optimise automation upgrades Maintain records and provide documentation for installations or improvements Help install and commission new machinery and line changes Ensure compliance with food safety and health & safety standards Support and mentor junior engineers or apprentices where needed Qualifications & Experience : Solid experience in a controls or automation engineering role within FMCG or food production Mechanical know-how and fabrication skills (MIG/TIG welding, cutting, etc.) Strong understanding of sensor logic, wiring, VFDs, and control systems PLC and HMI knowledge - comfortable editing and troubleshooting logic Practical problem solver who loves turning concepts into working systems Clear communicator and effective cross-team collaborator Food hygiene, HACCP or BRC understanding is a bonus In return for your commitment my client offers a stable and secure career for a technically motivated manager. If you feel this is of interest, please send your CV directly to Morgan Blount at for a confidential discussion on
01/04/2026
Full time
Project and Automation Engineer Location - Nottingham Shifts - Days Salary - £50,000 - £60,000 We are looking for a motivated Project and Automation Engineer to join a market leading company. Reporting directly to the Engineering Manager you will be a key member in ensuring all project and automation work is completed to the best of your ability. You will be involved in all aspects within their operation. With progressive development this company is always looking to enhance its employees and their skill sets, whilst additionally being supported by a welcoming team. The position will appeal to a Project and Automation Engineer looking for their next challenging role within in a secure and stable company. Job Details : Design, fabricate, and install mechanical improvements, rigs, or production aids Build and wire control panels, including VFDs, relays, contactors and PLCs Programme or modify PLCs and HMIs (Siemens, Omron, etc.) Install and calibrate sensors, solenoids, motors, and safety devices Lead or support capex and process improvement projects Work with Production to trial and optimise automation upgrades Maintain records and provide documentation for installations or improvements Help install and commission new machinery and line changes Ensure compliance with food safety and health & safety standards Support and mentor junior engineers or apprentices where needed Qualifications & Experience : Solid experience in a controls or automation engineering role within FMCG or food production Mechanical know-how and fabrication skills (MIG/TIG welding, cutting, etc.) Strong understanding of sensor logic, wiring, VFDs, and control systems PLC and HMI knowledge - comfortable editing and troubleshooting logic Practical problem solver who loves turning concepts into working systems Clear communicator and effective cross-team collaborator Food hygiene, HACCP or BRC understanding is a bonus In return for your commitment my client offers a stable and secure career for a technically motivated manager. If you feel this is of interest, please send your CV directly to Morgan Blount at for a confidential discussion on
Senior Security EngineerLondon (2x a week)Permanent About the Role We are exclusively partnered with a leading UK retail organisation that is currently undergoing a significant digital transformation. We are seeking a technical and hands-on Senior Security Engineer to design, implement, and operate robust security controls across a complex hybrid environment.In this role, you will bridge the gap between strategy and execution, serving as a technical authority for cloud platforms, identity systems, and endpoint security. You will collaborate closely with Network, Infrastructure, and Application teams to ensure that "secure-by-design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows Servers, and Azure IaaS workloads. Data Protection: Manage the certificate lifecycle (PKI/AD CS) and implement data classification and DLP strategies using Microsoft Purview. Cloud Security Posture: Manage Azure Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall and VPN configurations. Compliance & Risk: Support audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus, ensuring all remediation progress is tracked and documented. Essential Skills & Experience: Experience: 5-10 years in cloud or infrastructure security roles. Azure Expertise: Deep experience with Defender for Cloud, Sentinel, and Azure security configurations. Identity Mastery: Strong knowledge of Microsoft Entra ID, AD DS, RBAC, and hybrid identity security. Technical Proficiency: Hands-on experience with EDR (MDE), CSPM tools, and vulnerability management platforms. Security Principles: Practical understanding of Zero Trust architecture and secure-by-design methodologies. Compliance Knowledge: Familiarity with PCI DSS, NIST, and ISO 27001 frameworks. Desirable Skills: Awareness of AWS security fundamentals (Guard Duty, KMS, IAM Identity Center). Experience with Infrastructure as Code (IaC) security (Terraform, Bicep) and DevSecOps practices. Scripting for automation using PowerShell or Python. Qualifications & Soft Skills Education: Bachelor's degree in Computer Science, Information Security, or equivalent experience. Certifications: Preferred certifications include AZ-500, SC-300, SC-100, or CISSP/CCSP. Attributes: An analytical mindset with the ability to remain composed under pressure during security incidents. Collaboration: Excellent communication skills to engage with diverse stakeholders across the technology organization. Eligo Recruitment is acting as an Employment Business in relation to this vacancy. Eligo is proud to be an equal opportunity employer dedicated to fostering diversity and creating an inclusive and equitable environment for employees and applicants. We actively celebrate and embrace differences, including but not limited to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran status, and disability. We encourage applications from individuals of all backgrounds and experiences and all will be considered for employment without discrimination. At Eligo Recruitment diversity, equity and inclusion is integral to achieving our mission to ensure every workplace reflects the richness of human diversity.
01/04/2026
Full time
Senior Security EngineerLondon (2x a week)Permanent About the Role We are exclusively partnered with a leading UK retail organisation that is currently undergoing a significant digital transformation. We are seeking a technical and hands-on Senior Security Engineer to design, implement, and operate robust security controls across a complex hybrid environment.In this role, you will bridge the gap between strategy and execution, serving as a technical authority for cloud platforms, identity systems, and endpoint security. You will collaborate closely with Network, Infrastructure, and Application teams to ensure that "secure-by-design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows Servers, and Azure IaaS workloads. Data Protection: Manage the certificate lifecycle (PKI/AD CS) and implement data classification and DLP strategies using Microsoft Purview. Cloud Security Posture: Manage Azure Landing Zone security and connectivity, collaborating with Network Engineering to validate secure firewall and VPN configurations. Compliance & Risk: Support audit readiness for ISO 27001, PCI DSS, and Cyber Essentials Plus, ensuring all remediation progress is tracked and documented. Essential Skills & Experience: Experience: 5-10 years in cloud or infrastructure security roles. Azure Expertise: Deep experience with Defender for Cloud, Sentinel, and Azure security configurations. Identity Mastery: Strong knowledge of Microsoft Entra ID, AD DS, RBAC, and hybrid identity security. Technical Proficiency: Hands-on experience with EDR (MDE), CSPM tools, and vulnerability management platforms. Security Principles: Practical understanding of Zero Trust architecture and secure-by-design methodologies. Compliance Knowledge: Familiarity with PCI DSS, NIST, and ISO 27001 frameworks. Desirable Skills: Awareness of AWS security fundamentals (Guard Duty, KMS, IAM Identity Center). Experience with Infrastructure as Code (IaC) security (Terraform, Bicep) and DevSecOps practices. Scripting for automation using PowerShell or Python. Qualifications & Soft Skills Education: Bachelor's degree in Computer Science, Information Security, or equivalent experience. Certifications: Preferred certifications include AZ-500, SC-300, SC-100, or CISSP/CCSP. Attributes: An analytical mindset with the ability to remain composed under pressure during security incidents. Collaboration: Excellent communication skills to engage with diverse stakeholders across the technology organization. Eligo Recruitment is acting as an Employment Business in relation to this vacancy. Eligo is proud to be an equal opportunity employer dedicated to fostering diversity and creating an inclusive and equitable environment for employees and applicants. We actively celebrate and embrace differences, including but not limited to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran status, and disability. We encourage applications from individuals of all backgrounds and experiences and all will be considered for employment without discrimination. At Eligo Recruitment diversity, equity and inclusion is integral to achieving our mission to ensure every workplace reflects the richness of human diversity.
IAM Engineer Permanent London 2x a week About the Role We are exclusively partnered with a leading retail organisation who are seeking a highly skilled and security-focused Senior IAM Engineer to spearhead the evolution of our identity platforms and core infrastructure. As we transition toward a cloud-native, Entra ID-centric ecosystem, you will take full ownership of modernising our directory services and enterprise baseline.This is a pivotal role for a technical leader who excels in managing hybrid environments while strategically driving the retirement of legacy Active Directory (AD DS) in favor of Microsoft Entra ID and Intune . You will act as the technical authority for identity, ensuring all infrastructure controls are robust, compliant, and strictly aligned with Zero Trust principles.Key Responsibilities Identity & Access Management (IAM): Design and manage hybrid identity configurations, including domain joins, OU/GPO design, and trust relationships. Security Implementation: Maintain SSO, Conditional Access, MFA, and passwordless authentication strategies. Privileged Access: Define and oversee RBAC, PIM, and Just-in-Time (JIT) access for administrative and service accounts. Cloud Migration: Lead the shift from domain-joined/hybrid environments to Entra ID joined, utilizing Windows Autopilot and Intune for lifecycle management. Infrastructure Modernization: Replace legacy GPO-based configurations with Intune configuration profiles and security baselines. Legacy Decommissioning: Plan the phase-out of traditional services such as ADCS, on-prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. What We're Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying PIM, SSPR, and Conditional Access in a production environment. Protocols: Deep understanding of authentication protocols (SAML, OIDC, OAuth2, LDAP) and their cloud-based alternatives. Governance: Experience with Entra ID Governance features, including Access Reviews and Lifecycle Workflows. Automation Skills: Proficient in scripting with PowerShell or Logic Apps to ensure scalable operations. Desirable Experience: Familiarity with Microsoft Purview, Defender for Identity, or Microsoft Sentinel. Background in retiring legacy infrastructure like RADIUS or on-prem file shares. Knowledge of Zero Trust architecture and CIS/NIST compliance baselines. Qualifications & Attributes Experience: 5-10 years within IAM, Windows Infrastructure, or Hybrid Cloud Operations. Education: Bachelor's degree in Computer Science, Cyber Security, or equivalent professional experience. Certifications (Preferred): Microsoft SC-300, SC-100, MD-102, or AZ-104. Soft Skills: An analytical mindset with the ability to lead transformational projects and collaborate effectively across Security and DevOps teams. Eligo Recruitment is acting as an Employment Business in relation to this vacancy. Eligo is proud to be an equal opportunity employer dedicated to fostering diversity and creating an inclusive and equitable environment for employees and applicants. We actively celebrate and embrace differences, including but not limited to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran status, and disability. We encourage applications from individuals of all backgrounds and experiences and all will be considered for employment without discrimination. At Eligo Recruitment diversity, equity and inclusion is integral to achieving our mission to ensure every workplace reflects the richness of human diversity.
01/04/2026
Full time
IAM Engineer Permanent London 2x a week About the Role We are exclusively partnered with a leading retail organisation who are seeking a highly skilled and security-focused Senior IAM Engineer to spearhead the evolution of our identity platforms and core infrastructure. As we transition toward a cloud-native, Entra ID-centric ecosystem, you will take full ownership of modernising our directory services and enterprise baseline.This is a pivotal role for a technical leader who excels in managing hybrid environments while strategically driving the retirement of legacy Active Directory (AD DS) in favor of Microsoft Entra ID and Intune . You will act as the technical authority for identity, ensuring all infrastructure controls are robust, compliant, and strictly aligned with Zero Trust principles.Key Responsibilities Identity & Access Management (IAM): Design and manage hybrid identity configurations, including domain joins, OU/GPO design, and trust relationships. Security Implementation: Maintain SSO, Conditional Access, MFA, and passwordless authentication strategies. Privileged Access: Define and oversee RBAC, PIM, and Just-in-Time (JIT) access for administrative and service accounts. Cloud Migration: Lead the shift from domain-joined/hybrid environments to Entra ID joined, utilizing Windows Autopilot and Intune for lifecycle management. Infrastructure Modernization: Replace legacy GPO-based configurations with Intune configuration profiles and security baselines. Legacy Decommissioning: Plan the phase-out of traditional services such as ADCS, on-prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. What We're Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying PIM, SSPR, and Conditional Access in a production environment. Protocols: Deep understanding of authentication protocols (SAML, OIDC, OAuth2, LDAP) and their cloud-based alternatives. Governance: Experience with Entra ID Governance features, including Access Reviews and Lifecycle Workflows. Automation Skills: Proficient in scripting with PowerShell or Logic Apps to ensure scalable operations. Desirable Experience: Familiarity with Microsoft Purview, Defender for Identity, or Microsoft Sentinel. Background in retiring legacy infrastructure like RADIUS or on-prem file shares. Knowledge of Zero Trust architecture and CIS/NIST compliance baselines. Qualifications & Attributes Experience: 5-10 years within IAM, Windows Infrastructure, or Hybrid Cloud Operations. Education: Bachelor's degree in Computer Science, Cyber Security, or equivalent professional experience. Certifications (Preferred): Microsoft SC-300, SC-100, MD-102, or AZ-104. Soft Skills: An analytical mindset with the ability to lead transformational projects and collaborate effectively across Security and DevOps teams. Eligo Recruitment is acting as an Employment Business in relation to this vacancy. Eligo is proud to be an equal opportunity employer dedicated to fostering diversity and creating an inclusive and equitable environment for employees and applicants. We actively celebrate and embrace differences, including but not limited to race, colour, religion, sex, sexual orientation, gender identity, national origin, veteran status, and disability. We encourage applications from individuals of all backgrounds and experiences and all will be considered for employment without discrimination. At Eligo Recruitment diversity, equity and inclusion is integral to achieving our mission to ensure every workplace reflects the richness of human diversity.
Tendering Engineer - Automation Controls Leicester £55-60k doe + great benefits Do you have experience preparing technical and commercial tenders within automation, control systems or M&E projects? Are you confident in producing detailed costings and project programmes using tools such as Excel and Microsoft Project? Do you have a solid understanding of PLC/SCADA systems and their application within engineering projects? Interested in working for a true industry leader in their field? This is a great opportunity to work for a specialist automation business, expanding their team on the back of recent contract wins and significant investment. You'll play a key role in preparing and managing tenders, working closely with senior leadership to develop accurate, competitive and compelling proposals for automation and control system projects. Key Responsibilities: Prepare technical and commercial tenders for automation projects Develop costings, programmes and proposal documentation Monitor tender portals and manage opportunities through the CRM system Support directors on complex bids and structured tender submissions Produce and maintain standard costing and proposal templates Compile sales reports and maintain accurate documentation Assist with client engagement, sales materials and enquiries About You: Experience in a Tendering or Proposals role within automation, controls or M&E environments Strong knowledge of PLC/SCADA systems and project delivery Ability to produce detailed costings and tender programmes High attention to detail with strong organisational skills Proficient in Microsoft Office and Microsoft Project Strong communication skills and ability to work collaboratively Benefits include supportive working environment with personal development plans, annual pay reviews, opportunities to progress, enhanced holiday allowance, on-site gym, flexi time around core hours, overtime rates and more! Interested? Click to apply!
01/04/2026
Full time
Tendering Engineer - Automation Controls Leicester £55-60k doe + great benefits Do you have experience preparing technical and commercial tenders within automation, control systems or M&E projects? Are you confident in producing detailed costings and project programmes using tools such as Excel and Microsoft Project? Do you have a solid understanding of PLC/SCADA systems and their application within engineering projects? Interested in working for a true industry leader in their field? This is a great opportunity to work for a specialist automation business, expanding their team on the back of recent contract wins and significant investment. You'll play a key role in preparing and managing tenders, working closely with senior leadership to develop accurate, competitive and compelling proposals for automation and control system projects. Key Responsibilities: Prepare technical and commercial tenders for automation projects Develop costings, programmes and proposal documentation Monitor tender portals and manage opportunities through the CRM system Support directors on complex bids and structured tender submissions Produce and maintain standard costing and proposal templates Compile sales reports and maintain accurate documentation Assist with client engagement, sales materials and enquiries About You: Experience in a Tendering or Proposals role within automation, controls or M&E environments Strong knowledge of PLC/SCADA systems and project delivery Ability to produce detailed costings and tender programmes High attention to detail with strong organisational skills Proficient in Microsoft Office and Microsoft Project Strong communication skills and ability to work collaboratively Benefits include supportive working environment with personal development plans, annual pay reviews, opportunities to progress, enhanced holiday allowance, on-site gym, flexi time around core hours, overtime rates and more! Interested? Click to apply!
M365 Engineer Location: London Hybrid Profectus Recruitment are working with a highly successful and growing financial services organisation to recruit an M365 Engineer. This is a fantastic opportunity to play a key role in shaping how Microsoft 365, Copilot, and Power Platform are safely and effectively adopted across the business. You will operate in a delivery and operational enablement role, ensuring platforms are scalable, secure, and fully supportable, enabling teams to innovate without introducing unmanaged risk. The Role Lead the rollout and adoption of Microsoft 365 Copilot in a controlled, secure manner Configure and manage Power Platform environments, policies, and governance Implement DLP policies and connector governance to ensure safe usage Strengthen SharePoint and M365 configuration, including permissions and sharing controls Establish monitoring, logging, and BAU support processes Provide 2nd and 3rd line support across M365 and Power Platform Work closely with security, risk, and audit teams to implement controls and evidence compliance Create clear documentation, runbooks, and operational standards Support AI and automation initiatives across the wider programme What We Are Looking For Strong experience administering Microsoft 365 in a production environment Solid understanding of identity, access, and permissions within M365 Hands-on experience with Power Platform governance, including DLP and connectors Experience delivering phased rollouts of new M365 capabilities Ability to work closely with security and risk teams in regulated environments Proven experience troubleshooting complex M365 or Power Platform issues Experience setting up BAU support models and transitioning from project to operations Desirable Experience Exposure to Microsoft Purview and information protection controls Experience with Microsoft 365 Copilot and associated governance Understanding of audit, monitoring, and logging within M365 Experience supporting user adoption and working with training or comms teams Why Join Work at the forefront of AI and automation within Microsoft 365 Be part of a forward-thinking, highly regulated environment where your work has real impact Collaborate with senior stakeholders across technology, security, and risk Opportunity to shape governance and best practice in a growing organisation If you are an experienced M365 Engineer looking to step into a role with real influence across AI, automation, and platform governance, please apply with your latest CV for immediate consideration.
01/04/2026
Full time
M365 Engineer Location: London Hybrid Profectus Recruitment are working with a highly successful and growing financial services organisation to recruit an M365 Engineer. This is a fantastic opportunity to play a key role in shaping how Microsoft 365, Copilot, and Power Platform are safely and effectively adopted across the business. You will operate in a delivery and operational enablement role, ensuring platforms are scalable, secure, and fully supportable, enabling teams to innovate without introducing unmanaged risk. The Role Lead the rollout and adoption of Microsoft 365 Copilot in a controlled, secure manner Configure and manage Power Platform environments, policies, and governance Implement DLP policies and connector governance to ensure safe usage Strengthen SharePoint and M365 configuration, including permissions and sharing controls Establish monitoring, logging, and BAU support processes Provide 2nd and 3rd line support across M365 and Power Platform Work closely with security, risk, and audit teams to implement controls and evidence compliance Create clear documentation, runbooks, and operational standards Support AI and automation initiatives across the wider programme What We Are Looking For Strong experience administering Microsoft 365 in a production environment Solid understanding of identity, access, and permissions within M365 Hands-on experience with Power Platform governance, including DLP and connectors Experience delivering phased rollouts of new M365 capabilities Ability to work closely with security and risk teams in regulated environments Proven experience troubleshooting complex M365 or Power Platform issues Experience setting up BAU support models and transitioning from project to operations Desirable Experience Exposure to Microsoft Purview and information protection controls Experience with Microsoft 365 Copilot and associated governance Understanding of audit, monitoring, and logging within M365 Experience supporting user adoption and working with training or comms teams Why Join Work at the forefront of AI and automation within Microsoft 365 Be part of a forward-thinking, highly regulated environment where your work has real impact Collaborate with senior stakeholders across technology, security, and risk Opportunity to shape governance and best practice in a growing organisation If you are an experienced M365 Engineer looking to step into a role with real influence across AI, automation, and platform governance, please apply with your latest CV for immediate consideration.
Job Description: Smart Factory Engineer or Automation Engineer role Location: Birstall, West Yorkshire (on site role) Reporting to: Technical Manager What are we looking for: Experienced controls, automation, IT/OT, systems or MES Engineer with experience in PLCs (preferably Rockwell), factory SCADA systems & MES (Manufacturing Execution System) Solid project Management experience from concept to validation Strong problem-solving & communication skills Have worked in a high-performance culture and can partner closely with multiple stakeholders Proficient in SQL for database queries, scripting, and understanding of IT infrastructure Have a good understanding of lean principles and key losses within manufacturing Previous involvement in a digital transformation rollout is a plus What will be your key responsibilities? Connect factory control systems, sensors, and ERP/MES systems for real-time data monitoring, analytics, and automation Use data analytics to identify bottlenecks and improve yield and quality through the application of lean or six sigma methodologies Execute new solution testing and deployment to provide advanced process control, i.e., Machine Learning algorithms, Machine vision applications, closed loop statistical process control, etc Support the design of digital standards within the COE with input fromthe local site Project manage digital infrastructure extension projects with local teams (Wi-Fi network extension, digital tool addition to workplaces) Collaborate with operations, IT, industrial Engineering and reliability teams to drive change management Actively participate in the regional and global forums for benchmarking and reapplication Bring the outside in through constant scanning of best practices in the industry What Can You Expect from Mars? Consistently ranked among the UK's Top 10 'Great Places to Work' since 2016. Competitive salary, yearly bonus, and comprehensive benefits package. Equal Parental Leave: 52 weeks off (26 paid at 90% salary) for all new parents. Mentoring and development support from day one, including access to Mars University. Purpose-driven work environment focused on building a better world tomorrow. Succession potential for director-level roles through strong performance and personal development. Mars is committed to providing access, equal opportunity, and reasonable adjustments for individuals with disabilities, long-term health conditions, or neurodiversity during the application and recruitment process. To request reasonable adjustments, complete our Reasonable Adjustment Request Form here
01/04/2026
Full time
Job Description: Smart Factory Engineer or Automation Engineer role Location: Birstall, West Yorkshire (on site role) Reporting to: Technical Manager What are we looking for: Experienced controls, automation, IT/OT, systems or MES Engineer with experience in PLCs (preferably Rockwell), factory SCADA systems & MES (Manufacturing Execution System) Solid project Management experience from concept to validation Strong problem-solving & communication skills Have worked in a high-performance culture and can partner closely with multiple stakeholders Proficient in SQL for database queries, scripting, and understanding of IT infrastructure Have a good understanding of lean principles and key losses within manufacturing Previous involvement in a digital transformation rollout is a plus What will be your key responsibilities? Connect factory control systems, sensors, and ERP/MES systems for real-time data monitoring, analytics, and automation Use data analytics to identify bottlenecks and improve yield and quality through the application of lean or six sigma methodologies Execute new solution testing and deployment to provide advanced process control, i.e., Machine Learning algorithms, Machine vision applications, closed loop statistical process control, etc Support the design of digital standards within the COE with input fromthe local site Project manage digital infrastructure extension projects with local teams (Wi-Fi network extension, digital tool addition to workplaces) Collaborate with operations, IT, industrial Engineering and reliability teams to drive change management Actively participate in the regional and global forums for benchmarking and reapplication Bring the outside in through constant scanning of best practices in the industry What Can You Expect from Mars? Consistently ranked among the UK's Top 10 'Great Places to Work' since 2016. Competitive salary, yearly bonus, and comprehensive benefits package. Equal Parental Leave: 52 weeks off (26 paid at 90% salary) for all new parents. Mentoring and development support from day one, including access to Mars University. Purpose-driven work environment focused on building a better world tomorrow. Succession potential for director-level roles through strong performance and personal development. Mars is committed to providing access, equal opportunity, and reasonable adjustments for individuals with disabilities, long-term health conditions, or neurodiversity during the application and recruitment process. To request reasonable adjustments, complete our Reasonable Adjustment Request Form here
