144 jobs found

Job Description: SECURITY CLEARANCE: Must have or be able to obtain security clearance eligibility to access UK Ministry of Defence establishments, working within ITAR and Export Control restrictions LOCATION: Newport, South Wales, Portsmouth or Stevenage TYPE: Full time HOURS: 37. WHAT'S IN IT FOR YOU Financial Reward: Competitive salary, annual profit share, contributory pension, share options, car leasing scheme, free onsite parking, season ticket loan, tax-free technology scheme, discounted shopping and much more Work / Life Balance: 37 hour week, flexible working around core hours and Friday afternoons off, hybrid working, up to 2 additional days per month as TOIL, option to buy/sell holiday Personal Development: Personalised development plan, Airbus Leadership University and unlimited access to 10,000+ E-learning courses, internal mobility including international opportunities Health & Wellbeing: Wellbeing benefits (including 24/7 online GP and mental health support), Employee Assistance Programme, discounted family health / dental insurance / eye tests, cycle-to-work scheme Family and Caregiving: Life assurance, enhanced pay for maternity, paternity, adoption and shared parental leave and caregiving Inclusive Environment: Wellbeing room, Multi-faith room, Employee Representative Groups (Gender, LGBTQ+, International, Generational, Disability, Social & Cultural Diversity, Neurodiversity) Our world is changing. And so are we. From our commitment to zero-carbon flight ( ) to cleaning up space , sustainability is at the heart of our purpose . So what's your next change? Airbus Defense and Space is looking for a passionate and talented Cyber Security Detection & Automation Engineer to join our international Incident Response Team (CSIRT), in Newport, Portsmouth or Stevenage. A mission critical part for us in order to secure our world-class business. This is a technical, hands-on role that will work with a variety of security tools and technologies protecting our whole enterprise. You will be responsible for managing our Cyber Threat Intelligence (CTI) research and Threat Hunting activities, the entire lifecycle of our detection rules repository and SOC automation stack. You will be responsible for the technical evolution of our SOC blueprint and managing enhancement projects to integrate new features and solutions into our Security Operation Centers (SOC). This is a fantastic opportunity to join a team who live and breathe cyber security and to work for a company with great products and technologies around the globe. HOW YOU WILL CONTRIBUTE TO THE TEAM Threat Analysis - Leverage the organization's CTI provider as a strategic asset , not just a data source-integrating external intel with internal context to assess real impact and relevance. Conduct in-depth analysis of cyber threats (APT groups, malware campaigns, zero-days, etc.) and assess their relevance to Airbus operations, especially the aerospace and defense-related. Translate complex threat data into clear, actionable intelligence for technical and non-technical stakeholders. Produce regular and ad hoc threat intelligence reports , briefings, and dashboards tailored to specific business units or leadership needs. Threat Hunting - Proactively hunt for signs of adversary presence within enterprise environments using threat intelligence, telemetry, and hypothesis-driven methods. Design and execute structured threat hunting playbooks based on known TTPs (e.g., MITRE ATT&CK) and emerging threats, enabling consistent, repeatable hunts. Develop code-based playbooks (e.g., Jupyter Notebooks or Python scripts) that integrate threat intelligence, log sources, and detection logic-making them reusable by SOC, IR, and detection engineering teams. Collaborate with detection engineers to convert hunt findings into long-term detections and SIEM use cases , contributing to continuous monitoring improvements. Continuously refine and document hunt processes and hypotheses for knowledge sharing across cyber defense teams. Monitoring & Anticipation - Maintain situational awareness of the evolving threat landscape through open-source intelligence (OSINT), commercial feeds, dark web monitoring , and collaboration with national cybersecurity bodies. Detect and flag early indicators of potential cyber campaigns targeting aerospace or defense sectors. Assist in the development and fine-tuning of detection rules and alerts for monitoring security systems (e.g., SIEM, EDR). Contribute in the specification of telemetry log sources and data normalization for its processing in Cyber Detection. Develop tools and techniques to identify patterns and anomalies in network traffic, system logs, and application data that could indicate security incidents (Threat Hunting). Implement adversary emulation tests to assess the quality of the detection rules Stakeholder Engagement - Build relationships with external CTI peers in industry and government to share best practices, TTPs (tactics, techniques, procedures), and threat actor profiles . Ensure timely and accurate dissemination of threat data to internal stakeholders across the organization, including CISO-level reports. Rapid Response Enablement - Design and maintain workflows for the rapid delivery of intelligence to incident response and risk teams, enabling faster decision-making and containment. Support post-incident analysis by enriching forensic investigations with relevant threat intelligence context. ABOUT YOU Technical Skills - Understanding of security tools such as EDR, Windows Logging, firewalls, intrusion detection/prevention systems (IDS/IPS). Deep knowledge of Operating System insights (Windows/Linux). Experience with Python is a requirement, PowerShell/Bash are a plus. Understanding of DevOps, git Analytical Skills - Strong knowledge of threat actor tactics, techniques, and procedures (TTPs) and frameworks like MITRE ATT&CK , Kill Chain, and Diamond Model. Proficiency with SIEM tools (e.g., Splunk, ELK), threat intelligence platforms (e.g., MISP, ThreatConnect), and endpoint detection tools (e.g., EDR/XDR). Experience building code-based hunting or automation playbooks (e.g., Python, Jupyter Notebooks, PowerShell ). Familiarity with scripting or automation for IOC enrichment, API integrations , and telemetry analysis. Ability to correlate multiple data sources and pivot across logs, alerts, and CTI for deeper investigation. Understanding of threat modeling, detection engineering , or purple teaming is a plus. Not a 100% match? No worries! Airbus supports your personal growth with custom development solutions. HOW WE CAN SUPPORT YOU Many of our staff work flexibly in many different ways, including part-time. Please talk to us at the interview about the flexibility you need and we'll always do our best to accommodate your request. Please let us know if you need us to make any adjustments for the selection process - you can share this with your Talent Acquisition Partner if you are invited to interview. Examples may include (but not exclusive to) accessible facilities; auxiliary aids; room layout, etc. Any information disclosed will be treated in the strictest confidence. As a Disability Confident Employer, Airbus UK will offer an interview to any applicant that considers themselves to have a disability or long-term condition and meets the minimum criteria of the role (as set out in the job advert). To 'opt in', just select the option during your application submission and our Talent Acquisition team will contact you. :MF1 This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation and sustainable growth. Company: AIRBUS Defence and Space Limited Employment Type: Permanent - Experience Level: Professional Job Family: Cyber Security By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus. Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief. Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to . At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.

Job Description: SECURITY CLEARANCE: Must have or be able to obtain security clearance eligibility to access UK Ministry of Defence establishments, working within ITAR and Export Control restrictions LOCATION: Newport, South Wales, Portsmouth or Stevenage TYPE: Full time HOURS: 37. WHAT'S IN IT FOR YOU Financial Reward: Competitive salary, annual profit share, contributory pension, share options, car leasing scheme, free onsite parking, season ticket loan, tax-free technology scheme, discounted shopping and much more Work / Life Balance: 37 hour week, flexible working around core hours and Friday afternoons off, hybrid working, up to 2 additional days per month as TOIL, option to buy/sell holiday Personal Development: Personalised development plan, Airbus Leadership University and unlimited access to 10,000+ E-learning courses, internal mobility including international opportunities Health & Wellbeing: Wellbeing benefits (including 24/7 online GP and mental health support), Employee Assistance Programme, discounted family health / dental insurance / eye tests, cycle-to-work scheme Family and Caregiving: Life assurance, enhanced pay for maternity, paternity, adoption and shared parental leave and caregiving Inclusive Environment: Wellbeing room, Multi-faith room, Employee Representative Groups (Gender, LGBTQ+, International, Generational, Disability, Social & Cultural Diversity, Neurodiversity) Our world is changing. And so are we. From our commitment to zero-carbon flight ( ) to cleaning up space , sustainability is at the heart of our purpose . So what's your next change? Airbus Defense and Space is looking for a passionate and talented Cyber Security Detection & Automation Engineer to join our international Incident Response Team (CSIRT), in Newport, Portsmouth or Stevenage. A mission critical part for us in order to secure our world-class business. This is a technical, hands-on role that will work with a variety of security tools and technologies protecting our whole enterprise. You will be responsible for managing our Cyber Threat Intelligence (CTI) research and Threat Hunting activities, the entire lifecycle of our detection rules repository and SOC automation stack. You will be responsible for the technical evolution of our SOC blueprint and managing enhancement projects to integrate new features and solutions into our Security Operation Centers (SOC). This is a fantastic opportunity to join a team who live and breathe cyber security and to work for a company with great products and technologies around the globe. HOW YOU WILL CONTRIBUTE TO THE TEAM Threat Analysis - Leverage the organization's CTI provider as a strategic asset , not just a data source-integrating external intel with internal context to assess real impact and relevance. Conduct in-depth analysis of cyber threats (APT groups, malware campaigns, zero-days, etc.) and assess their relevance to Airbus operations, especially the aerospace and defense-related. Translate complex threat data into clear, actionable intelligence for technical and non-technical stakeholders. Produce regular and ad hoc threat intelligence reports , briefings, and dashboards tailored to specific business units or leadership needs. Threat Hunting - Proactively hunt for signs of adversary presence within enterprise environments using threat intelligence, telemetry, and hypothesis-driven methods. Design and execute structured threat hunting playbooks based on known TTPs (e.g., MITRE ATT&CK) and emerging threats, enabling consistent, repeatable hunts. Develop code-based playbooks (e.g., Jupyter Notebooks or Python scripts) that integrate threat intelligence, log sources, and detection logic-making them reusable by SOC, IR, and detection engineering teams. Collaborate with detection engineers to convert hunt findings into long-term detections and SIEM use cases , contributing to continuous monitoring improvements. Continuously refine and document hunt processes and hypotheses for knowledge sharing across cyber defense teams. Monitoring & Anticipation - Maintain situational awareness of the evolving threat landscape through open-source intelligence (OSINT), commercial feeds, dark web monitoring , and collaboration with national cybersecurity bodies. Detect and flag early indicators of potential cyber campaigns targeting aerospace or defense sectors. Assist in the development and fine-tuning of detection rules and alerts for monitoring security systems (e.g., SIEM, EDR). Contribute in the specification of telemetry log sources and data normalization for its processing in Cyber Detection. Develop tools and techniques to identify patterns and anomalies in network traffic, system logs, and application data that could indicate security incidents (Threat Hunting). Implement adversary emulation tests to assess the quality of the detection rules Stakeholder Engagement - Build relationships with external CTI peers in industry and government to share best practices, TTPs (tactics, techniques, procedures), and threat actor profiles . Ensure timely and accurate dissemination of threat data to internal stakeholders across the organization, including CISO-level reports. Rapid Response Enablement - Design and maintain workflows for the rapid delivery of intelligence to incident response and risk teams, enabling faster decision-making and containment. Support post-incident analysis by enriching forensic investigations with relevant threat intelligence context. ABOUT YOU Technical Skills - Understanding of security tools such as EDR, Windows Logging, firewalls, intrusion detection/prevention systems (IDS/IPS). Deep knowledge of Operating System insights (Windows/Linux). Experience with Python is a requirement, PowerShell/Bash are a plus. Understanding of DevOps, git Analytical Skills - Strong knowledge of threat actor tactics, techniques, and procedures (TTPs) and frameworks like MITRE ATT&CK , Kill Chain, and Diamond Model. Proficiency with SIEM tools (e.g., Splunk, ELK), threat intelligence platforms (e.g., MISP, ThreatConnect), and endpoint detection tools (e.g., EDR/XDR). Experience building code-based hunting or automation playbooks (e.g., Python, Jupyter Notebooks, PowerShell ). Familiarity with scripting or automation for IOC enrichment, API integrations , and telemetry analysis. Ability to correlate multiple data sources and pivot across logs, alerts, and CTI for deeper investigation. Understanding of threat modeling, detection engineering , or purple teaming is a plus. Not a 100% match? No worries! Airbus supports your personal growth with custom development solutions. HOW WE CAN SUPPORT YOU Many of our staff work flexibly in many different ways, including part-time. Please talk to us at the interview about the flexibility you need and we'll always do our best to accommodate your request. Please let us know if you need us to make any adjustments for the selection process - you can share this with your Talent Acquisition Partner if you are invited to interview. Examples may include (but not exclusive to) accessible facilities; auxiliary aids; room layout, etc. Any information disclosed will be treated in the strictest confidence. As a Disability Confident Employer, Airbus UK will offer an interview to any applicant that considers themselves to have a disability or long-term condition and meets the minimum criteria of the role (as set out in the job advert). To 'opt in', just select the option during your application submission and our Talent Acquisition team will contact you. :MF1 This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation and sustainable growth. Company: AIRBUS Defence and Space Limited Employment Type: Permanent - Experience Level: Professional Job Family: Cyber Security By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus. Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief. Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to . At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.

Lead SOC Analyst, Cyber Security Ops, SC or DV Security Cleared is required by our government client based near Milton Keynes, Bucks, East Midlands. Commutable from Northampton, Peteborough, Bedford, North London. Hybird working. 3 days a week on site Daily Rate 560 OUTSIDE of IR35-plus on-call Working in a DV (Developed Vetting) security cleared environment, you will hold DV or SC Security Clearance or be eligible to undertake. Essential Skills/Experience Experience of working with SIEM and IPS within a SOC environment. Knowledge of Cyber Security Operations Understanding of Cyber Threats Advanced IT skills. Relevant Cyber Security Analyst experience and certification. Ability to produce clear security investigation documentation. Good Analytical skills with the ability to manipulate, interrogate and analyses large data sets Strong team working and interpersonal skills To work alongside an existing team of Cyber Engineers and Cyber Analysts within an established Security Operations Centre, Duties briefly consist of: Monitor, triage and investigate Security Alerts on the protective monitoring platforms to identify Security Incidents Understand and interpret a variety of system logs and reports for potential intrusions, security threats or breaches of policy; write Security Incident reports and report to senior stakeholders and customers. Lead team on approaches used to investigate incidents and decide required response; implement and/or oversee implementation of resolutions. Analyse Security Event Data/Security Alerts to support Customers in their response to Security IncidentsIn rotation with other Lead Analysts, represent the CSOC at meetings, provide advice to other areas of the business on new services and assess impact of proposed work. Maintain current knowledge of IT based threats and vulnerabilities in order to identify and report Real Time attacks and vulnerabilities on the FCDO Services network. Provide On Call services during out of hours periods for identified potential security alerts Mentor, train and manage task delivery of Practitioner Analyst >ensuring terms of the Service Level Agreement (SLA) are met. SmartSourcing are a Disability Confident Employer and we promote, celebrate and value diversity, we are committed to promoting equality and inclusion for all.

Job Description: SECURITY CLEARANCE: Must have or be able to obtain security clearance eligibility to access UK Ministry of Defence establishments, working within ITAR and Export Control restrictions LOCATION: Newport, South Wales, Portsmouth or Stevenage TYPE: Full time HOURS: 37. WHAT'S IN IT FOR YOU Financial Reward: Competitive salary, annual profit share, contributory pension, share options, car leasing scheme, free onsite parking, season ticket loan, tax-free technology scheme, discounted shopping and much more Work / Life Balance: 37 hour week, flexible working around core hours and Friday afternoons off, hybrid working, up to 2 additional days per month as TOIL, option to buy/sell holiday Personal Development: Personalised development plan, Airbus Leadership University and unlimited access to 10,000+ E-learning courses, internal mobility including international opportunities Health & Wellbeing: Wellbeing benefits (including 24/7 online GP and mental health support), Employee Assistance Programme, discounted family health / dental insurance / eye tests, cycle-to-work scheme Family and Caregiving: Life assurance, enhanced pay for maternity, paternity, adoption and shared parental leave and caregiving Inclusive Environment: Wellbeing room, Multi-faith room, Employee Representative Groups (Gender, LGBTQ+, International, Generational, Disability, Social & Cultural Diversity, Neurodiversity) Our world is changing. And so are we. From our commitment to zero-carbon flight ( ) to cleaning up space , sustainability is at the heart of our purpose . So what's your next change? Airbus Defense and Space is looking for a passionate and talented Cyber Security Detection & Automation Engineer to join our international Incident Response Team (CSIRT), in Newport, Portsmouth or Stevenage. A mission critical part for us in order to secure our world-class business. This is a technical, hands-on role that will work with a variety of security tools and technologies protecting our whole enterprise. You will be responsible for managing our Cyber Threat Intelligence (CTI) research and Threat Hunting activities, the entire lifecycle of our detection rules repository and SOC automation stack. You will be responsible for the technical evolution of our SOC blueprint and managing enhancement projects to integrate new features and solutions into our Security Operation Centers (SOC). This is a fantastic opportunity to join a team who live and breathe cyber security and to work for a company with great products and technologies around the globe. HOW YOU WILL CONTRIBUTE TO THE TEAM Threat Analysis - Leverage the organization's CTI provider as a strategic asset , not just a data source-integrating external intel with internal context to assess real impact and relevance. Conduct in-depth analysis of cyber threats (APT groups, malware campaigns, zero-days, etc.) and assess their relevance to Airbus operations, especially the aerospace and defense-related. Translate complex threat data into clear, actionable intelligence for technical and non-technical stakeholders. Produce regular and ad hoc threat intelligence reports , briefings, and dashboards tailored to specific business units or leadership needs. Threat Hunting - Proactively hunt for signs of adversary presence within enterprise environments using threat intelligence, telemetry, and hypothesis-driven methods. Design and execute structured threat hunting playbooks based on known TTPs (e.g., MITRE ATT&CK) and emerging threats, enabling consistent, repeatable hunts. Develop code-based playbooks (e.g., Jupyter Notebooks or Python scripts) that integrate threat intelligence, log sources, and detection logic-making them reusable by SOC, IR, and detection engineering teams. Collaborate with detection engineers to convert hunt findings into long-term detections and SIEM use cases , contributing to continuous monitoring improvements. Continuously refine and document hunt processes and hypotheses for knowledge sharing across cyber defense teams. Monitoring & Anticipation - Maintain situational awareness of the evolving threat landscape through open-source intelligence (OSINT), commercial feeds, dark web monitoring , and collaboration with national cybersecurity bodies. Detect and flag early indicators of potential cyber campaigns targeting aerospace or defense sectors. Assist in the development and fine-tuning of detection rules and alerts for monitoring security systems (e.g., SIEM, EDR). Contribute in the specification of telemetry log sources and data normalization for its processing in Cyber Detection. Develop tools and techniques to identify patterns and anomalies in network traffic, system logs, and application data that could indicate security incidents (Threat Hunting). Implement adversary emulation tests to assess the quality of the detection rules Stakeholder Engagement - Build relationships with external CTI peers in industry and government to share best practices, TTPs (tactics, techniques, procedures), and threat actor profiles . Ensure timely and accurate dissemination of threat data to internal stakeholders across the organization, including CISO-level reports. Rapid Response Enablement - Design and maintain workflows for the rapid delivery of intelligence to incident response and risk teams, enabling faster decision-making and containment. Support post-incident analysis by enriching forensic investigations with relevant threat intelligence context. ABOUT YOU Technical Skills - Understanding of security tools such as EDR, Windows Logging, firewalls, intrusion detection/prevention systems (IDS/IPS). Deep knowledge of Operating System insights (Windows/Linux). Experience with Python is a requirement, PowerShell/Bash are a plus. Understanding of DevOps, git Analytical Skills - Strong knowledge of threat actor tactics, techniques, and procedures (TTPs) and frameworks like MITRE ATT&CK , Kill Chain, and Diamond Model. Proficiency with SIEM tools (e.g., Splunk, ELK), threat intelligence platforms (e.g., MISP, ThreatConnect), and endpoint detection tools (e.g., EDR/XDR). Experience building code-based hunting or automation playbooks (e.g., Python, Jupyter Notebooks, PowerShell ). Familiarity with scripting or automation for IOC enrichment, API integrations , and telemetry analysis. Ability to correlate multiple data sources and pivot across logs, alerts, and CTI for deeper investigation. Understanding of threat modeling, detection engineering , or purple teaming is a plus. Not a 100% match? No worries! Airbus supports your personal growth with custom development solutions. HOW WE CAN SUPPORT YOU Many of our staff work flexibly in many different ways, including part-time. Please talk to us at the interview about the flexibility you need and we'll always do our best to accommodate your request. Please let us know if you need us to make any adjustments for the selection process - you can share this with your Talent Acquisition Partner if you are invited to interview. Examples may include (but not exclusive to) accessible facilities; auxiliary aids; room layout, etc. Any information disclosed will be treated in the strictest confidence. As a Disability Confident Employer, Airbus UK will offer an interview to any applicant that considers themselves to have a disability or long-term condition and meets the minimum criteria of the role (as set out in the job advert). To 'opt in', just select the option during your application submission and our Talent Acquisition team will contact you. :MF1 This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation and sustainable growth. Company: AIRBUS Defence and Space Limited Employment Type: Permanent - Experience Level: Professional Job Family: Cyber Security By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus. Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief. Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to . At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.

Job Description: SECURITY CLEARANCE: Must have or be able to obtain security clearance eligibility to access UK Ministry of Defence establishments, working within ITAR and Export Control restrictions LOCATION: Newport, South Wales, Portsmouth or Stevenage TYPE: Full time HOURS: 37. WHAT'S IN IT FOR YOU Financial Reward: Competitive salary, annual profit share, contributory pension, share options, car leasing scheme, free onsite parking, season ticket loan, tax-free technology scheme, discounted shopping and much more Work / Life Balance: 37 hour week, flexible working around core hours and Friday afternoons off, hybrid working, up to 2 additional days per month as TOIL, option to buy/sell holiday Personal Development: Personalised development plan, Airbus Leadership University and unlimited access to 10,000+ E-learning courses, internal mobility including international opportunities Health & Wellbeing: Wellbeing benefits (including 24/7 online GP and mental health support), Employee Assistance Programme, discounted family health / dental insurance / eye tests, cycle-to-work scheme Family and Caregiving: Life assurance, enhanced pay for maternity, paternity, adoption and shared parental leave and caregiving Inclusive Environment: Wellbeing room, Multi-faith room, Employee Representative Groups (Gender, LGBTQ+, International, Generational, Disability, Social & Cultural Diversity, Neurodiversity) Our world is changing. And so are we. From our commitment to zero-carbon flight ( ) to cleaning up space , sustainability is at the heart of our purpose . So what's your next change? Airbus Defense and Space is looking for a passionate and talented Cyber Security Detection & Automation Engineer to join our international Incident Response Team (CSIRT), in Newport, Portsmouth or Stevenage. A mission critical part for us in order to secure our world-class business. This is a technical, hands-on role that will work with a variety of security tools and technologies protecting our whole enterprise. You will be responsible for managing our Cyber Threat Intelligence (CTI) research and Threat Hunting activities, the entire lifecycle of our detection rules repository and SOC automation stack. You will be responsible for the technical evolution of our SOC blueprint and managing enhancement projects to integrate new features and solutions into our Security Operation Centers (SOC). This is a fantastic opportunity to join a team who live and breathe cyber security and to work for a company with great products and technologies around the globe. HOW YOU WILL CONTRIBUTE TO THE TEAM Threat Analysis - Leverage the organization's CTI provider as a strategic asset , not just a data source-integrating external intel with internal context to assess real impact and relevance. Conduct in-depth analysis of cyber threats (APT groups, malware campaigns, zero-days, etc.) and assess their relevance to Airbus operations, especially the aerospace and defense-related. Translate complex threat data into clear, actionable intelligence for technical and non-technical stakeholders. Produce regular and ad hoc threat intelligence reports , briefings, and dashboards tailored to specific business units or leadership needs. Threat Hunting - Proactively hunt for signs of adversary presence within enterprise environments using threat intelligence, telemetry, and hypothesis-driven methods. Design and execute structured threat hunting playbooks based on known TTPs (e.g., MITRE ATT&CK) and emerging threats, enabling consistent, repeatable hunts. Develop code-based playbooks (e.g., Jupyter Notebooks or Python scripts) that integrate threat intelligence, log sources, and detection logic-making them reusable by SOC, IR, and detection engineering teams. Collaborate with detection engineers to convert hunt findings into long-term detections and SIEM use cases , contributing to continuous monitoring improvements. Continuously refine and document hunt processes and hypotheses for knowledge sharing across cyber defense teams. Monitoring & Anticipation - Maintain situational awareness of the evolving threat landscape through open-source intelligence (OSINT), commercial feeds, dark web monitoring , and collaboration with national cybersecurity bodies. Detect and flag early indicators of potential cyber campaigns targeting aerospace or defense sectors. Assist in the development and fine-tuning of detection rules and alerts for monitoring security systems (e.g., SIEM, EDR). Contribute in the specification of telemetry log sources and data normalization for its processing in Cyber Detection. Develop tools and techniques to identify patterns and anomalies in network traffic, system logs, and application data that could indicate security incidents (Threat Hunting). Implement adversary emulation tests to assess the quality of the detection rules Stakeholder Engagement - Build relationships with external CTI peers in industry and government to share best practices, TTPs (tactics, techniques, procedures), and threat actor profiles . Ensure timely and accurate dissemination of threat data to internal stakeholders across the organization, including CISO-level reports. Rapid Response Enablement - Design and maintain workflows for the rapid delivery of intelligence to incident response and risk teams, enabling faster decision-making and containment. Support post-incident analysis by enriching forensic investigations with relevant threat intelligence context. ABOUT YOU Technical Skills - Understanding of security tools such as EDR, Windows Logging, firewalls, intrusion detection/prevention systems (IDS/IPS). Deep knowledge of Operating System insights (Windows/Linux). Experience with Python is a requirement, PowerShell/Bash are a plus. Understanding of DevOps, git Analytical Skills - Strong knowledge of threat actor tactics, techniques, and procedures (TTPs) and frameworks like MITRE ATT&CK , Kill Chain, and Diamond Model. Proficiency with SIEM tools (e.g., Splunk, ELK), threat intelligence platforms (e.g., MISP, ThreatConnect), and endpoint detection tools (e.g., EDR/XDR). Experience building code-based hunting or automation playbooks (e.g., Python, Jupyter Notebooks, PowerShell ). Familiarity with scripting or automation for IOC enrichment, API integrations , and telemetry analysis. Ability to correlate multiple data sources and pivot across logs, alerts, and CTI for deeper investigation. Understanding of threat modeling, detection engineering , or purple teaming is a plus. Not a 100% match? No worries! Airbus supports your personal growth with custom development solutions. HOW WE CAN SUPPORT YOU Many of our staff work flexibly in many different ways, including part-time. Please talk to us at the interview about the flexibility you need and we'll always do our best to accommodate your request. Please let us know if you need us to make any adjustments for the selection process - you can share this with your Talent Acquisition Partner if you are invited to interview. Examples may include (but not exclusive to) accessible facilities; auxiliary aids; room layout, etc. Any information disclosed will be treated in the strictest confidence. As a Disability Confident Employer, Airbus UK will offer an interview to any applicant that considers themselves to have a disability or long-term condition and meets the minimum criteria of the role (as set out in the job advert). To 'opt in', just select the option during your application submission and our Talent Acquisition team will contact you. :MF1 This job requires an awareness of any potential compliance risks and a commitment to act with integrity, as the foundation for the Company's success, reputation and sustainable growth. Company: AIRBUS Defence and Space Limited Employment Type: Permanent - Experience Level: Professional Job Family: Cyber Security By submitting your CV or application you are consenting to Airbus using and storing information about you for monitoring purposes relating to your application or future employment. This information will only be used by Airbus. Airbus is committed to achieving workforce diversity and creating an inclusive working environment. We welcome all applications irrespective of social and cultural background, age, gender, disability, sexual orientation or religious belief. Airbus is, and always has been, committed to equal opportunities for all. As such, we will never ask for any type of monetary exchange in the frame of a recruitment process. Any impersonation of Airbus to do so should be reported to . At Airbus, we support you to work, connect and collaborate more easily and flexibly. Wherever possible, we foster flexible working arrangements to stimulate innovative thinking.

We're seeking a Head of Technology Operations to lead a high-performing, multi-disciplinary team across infrastructure, cloud platform engineering (Azure), security, service management, and technical operations. Within this role, you will be managing internal managers and third-party resource. You ll play a key role in a fast-paced, tech-led company that delivers real-time data and broadcast services to global customers. In this role, you will: Own cloud operations across Azure and drive platform performance and cost optimisation Oversee security engineering, audits, pen testing, and compliance Lead change and incident management and support services (24/7) Manage end-user tech, corporate apps (e.g. ServiceNow, Salesforce), and software licensing Collaborate with exec leadership weekly to drive strategy and improvement We're looking for someone who: Proven experience in IT operational leadership roles Strong knowledge of Azure, DevOps/cloud engineering, and platform reliability Experience driving observability and monitoring strategies across large-scale services Good working knowledge of cybersecurity practices, frameworks (NIST, ISO 27001, Cyber Essentials), and audit processes Vendor, contract, and license management experience across software and infrastructure suppliers Skilled communicator with experience managing stakeholders across business and technical teams Budget responsibility and comfort presenting performance data and financial plans You ll influence everything from board-level reporting to hands-on platform improvements, and join a collaborative, culture where change is welcomed. Permanent opportunity Hybrid working 2x days Milton Keynes based per week, 1x day Central London based per week , 2x days working remotely. Salary - £120,000 - £140,000 + package Benefits Bonus up to 20%, pension contribution up to 10%, holiday buy and sell scheme + more! We are an equal opportunity recruitment company. This means we welcome applications from all suitably qualified people regardless of race, sex, disability, religion, sexual orientation or age. We are particularly invested in Neurodiversity inclusion and offer reasonable adjustments in the interview process. Reasonable adjustments are changes that we can make in the interview process if your disability puts you at a disadvantage compared with others who are not disabled. If you would benefit from a reasonable adjustment in your interview process, please call or email one of our recruiters.

CyberSecurity Operations Engineer We are excited to be recruiting for a Operations Engineers role working for an industry-leading cybersecurity company based in London, providing the opportunity to work remotely. Already well-established within the cyber-security sector, they have experienced rapid sales in 2023 & 2024, which has opened up several career opportunities for cybersecurity professionals. This role is working within the dynamic and varied Ops team delivering an excellent service to clients while offering a clear path for progression and an exciting career trajectory ahead. Location: Remote - Must be able to travel into London when needed Salary: £35,000 - £50,000 per annum Requirements for CyberSecurity Operations Engineer: Ideally, you will have at least one year of commercial experience in a client-facing role with a cybersecurity focus- i.e. Consultant, Account Manager, Customer Support, Service Delivery etc. This company values exceptional academics including a 2.1 or 1st class degree in Computer Science or CyberSecurity, or a closely related subject, from a top-ranked University You achieved at least AAA at A Level or equivalent UCAS points Strong knowledge within cybersecurity Good knowledge of network security Any experience in SOC beneficial Brilliant communication skills this role is going to involve interacting with both internal colleagues and external clients so this is key You love the idea of working for a dynamic start-up where you will gain a breadth of skills You are a hardworking, self-starter - this may sound cliche but given the start-up and remote nature of the role, these attributes are vital. You thrive on problem-solving and have a passion for technology Solid understanding of Microsoft Windows OS and Active Directory Responsibilities for CyberSecurity Operations Engineer: Working within Service Delivery in the Operations Team you will cover 3 main areas within the business and your time will be split between: Managing client relationships Working on Security Roadmaps for Clients Post-sales technical support & troubleshooting of issues IT administration and sysadmin SOC focussed projects What this offers: A highly varied and exciting role where you will learn many areas in the security and support domains A clear-cut career path in a fast growing company where opportunities are in abundance A close-knit, supportive team Fully remote work Applications: If you would like to apply for this unique opportunity, we would love to hear from you. Please send an up-to-date CV via the relevant link. We're committed to creating an inclusive and accessible recruitment process. If you require reasonable adjustments for your application or during the review process, please highlight this by emailing (if this email address has been removed by the job-board, full details for contact are available on our website). RedTech Recruitment Ltd focus on finding roles for Engineers and Scientists . Even if the above role isn t of interest, please visit our website to see our other opportunities. We are an equal-opportunity employer and value diversity at RedTech. We do not discriminate on the basis of race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

The Cybersecurity team, within the IT department, is responsible for information and Cybersecurity. Responsibilities include information and cybersecurity risk management, and ensuring compliance to CAA, NIS and ISO27001 standards. The team also works closely with our majority shareholders, and partners, such as retailers, ground handlers, as well as suppliers, to ensure a joined-up approach to information and cyber security. We are seeking a highly skilled and motivated IT Cyber Security Engineer, with a passion for protecting digital assets against cyber threats, to join our dynamic team. The successful candidate will have a strong technical background and a thorough understanding of IT systems, which is essential for effectively securing our infrastructure, systems, and networks. Expertise in information security, risk management and compliance is essential, as is a commitment to defending against cyber threats and integrating security across all layers of our IT environment to protect organisational data and technology. This role focuses on detecting, investigating, and responding to cybersecurity threats and incidents, while also managing BAU security tasks, ongoing maintenance, supporting projects, and assisting with regulatory compliance to encourage continual enhancement of our IT security environment. Key responsibilities and accountabilities: Endpoint monitoring and analysis. Malware analysis and forensics research. Understanding/ differentiation of intrusion attempts and false positives. Lead investigations into security breaches, incidents, or suspicious activities and provide incident reports to stakeholders. Enforce security policies, procedures, and guidelines for all IT systems and operations. Provide recommendations for improving security practices to meet evolving regulatory and organisational needs. Vulnerability identification & mitigation/remediation. Advise incident responders & other teams on cybersecurity threats. Triage security events and incidents and apply containment and mitigation/remediation strategies. Collaborate with other IT teams to ensure seamless security integration with infrastructure, applications, and services. Maintain comprehensive documentation related to security configurations, incident reports, audits, and compliance activities. Proactively monitor the performance of systems and make regular routine inspections of installed equipment, and take corrective avoidance actions to prevent wider problems. Function as the point of escalation for the Service Desk for security-related tickets. Analysis of weekly vulnerability scans and update relevant records. Incident readiness and handling as part of the Computer Security Incident Response team (CSIRT). Monitor and analyse security logs from various systems (including SIEM) and network devices to identify potential threats and vulnerabilities. Knowledge, skills & experience required: Essential Bachelor's degree in computer science, Information Technology, Cyber Security, or a related field. 5+ years of experience in cybersecurity, with a strong understanding of network protocols and security tools. A well-organised and structured approach to work planning, time allocation to tasks, and a flexible approach to daily routines to deliver the desired results. An ambition to constantly learn new skills and develop knowledge, with an understanding that study time outside of working hours may be required for career development. Credible knowledge/experience of Microsoft Windows operating systems, Active Directory, Exchange Server, Group policies, TCP/IP, DNS, DHCP and MS Azure/EntraID. Capable of effectively multi-tasking, prioritising work, and managing competing interests. Capable of analysing information technology logs and events sources preferred. Working knowledge of data storage systems, data backup and restoration methods. Understanding of cybersecurity tooling, its purpose and functionality (Anti-Malware, IDS/IPS, Web and Email Gateways, security analysis tools, web security tools, next generation firewalls/UTMs) A collaborator with excellent work ethic, communication skills and a professional who maintains customer-service based approach. Ability to work independently while managing support to a high standard. Strong problem-solving and analytical skills, with the ability to work under pressure. Contribute credibly to IT department's delivery of SLAs and other support targets. Ability to analyse vulnerabilities, threats, designs, architectures, procedures, and ability to produce reports and communicate security intelligence. Advanced knowledge of computer forensics; legal, government and jurisprudence as they relate to cybersecurity. Knowledge of Cloud computing, computer network defence, identity management, privileged access management, incident management and network security. Extensive experience within a NOC/SOC environment. Desirable IT certifications such as CompTIA A+, Network+ Cyber certifications such as CISM, CISA, CEH, or CompTIA Security+ Understanding of regulatory frameworks and industry standards (e.g., NIS, NIST, ISO 27001, GDPR). Experience in scripting or programming languages including PowerShell for automating security tasks. Person Specification: Communication. Structures and conveys information and ideas effectively. Communicates to ensure they are understood by others, that they understand others and share information with colleagues at all levels. Customer Focus. Understands what the customer needs and then works to exceed their expectations and meeting their individual needs. Achieving results. Knows what needs to be achieved by when. Anticipates obstacles. Motivates self and others to overcome barriers and achieve results. Personal Responsibility & Credibility. Take personal responsibility for making things happen and achieving results, working with their line manager. Displays commitment, accountability and conscientiousness. Planning & organising. Identifies a goal and puts in place a sequence of steps to ensure priorities are delivered on time. Team Focus. Develops effective working relationships inside and outside traditional boundaries to achieve organisational goals. Connect2Employment is a trading style of Luton & Kent Commercial Services LLP - A joint venture between Luton Borough Council & Commercial Services Kent Ltd. Connect2Employment is an equal opportunities Employment Agency & Business. It positively encourages applications from all suitably qualified and eligible candidates.

Role: Cyber Security Engineer Location: Leeds, West Yorkshire Salary: £55,000 - £70,000 PLUS 25 Days Holiday, Vendor Certifications, International Travel, Private Pension About the Company: Our client, a global leader in Sustainability Consulting, is looking for a Cyber Security Engineer to join their growing Information Security Team. This exciting role provides an opportunity to shape and strengthen security practices across the organization. If you are passionate about cybersecurity, have a strong technical background, and thrive in a fast-paced environment, we want to hear from you. Position Overview: As a Cyber Security Engineer, you will collaborate with the IT Security Team to advise, develop, and maintain security processes and policies. Your expertise will guide the organization in enhancing security capabilities across its global infrastructure. This role offers a chance to make a real impact by ensuring the integrity and resilience of the company s IT environment against evolving cyber threats. Key Responsibilities: Support incident management and security response efforts, providing expertise to address and resolve security incidents quickly and effectively. Perform regular security checks, including daily, weekly, and monthly monitoring of systems and resolving any identified vulnerabilities. Assist with compliance checks, ensure security standards are adhered to, and investigate exceptions to ensure adherence to policies. Contribute to the development and enhancement of security policies, processes, and procedures to maintain robust security across all systems. Identify and evaluate security risks, providing proactive solutions to strengthen the organization s security posture. Participate in testing and improving disaster recovery (DR) plans to ensure system resilience and continuity in the event of an attack or failure. Essential Skills & Experience: At least 2 years of hands-on experience in information security or IT infrastructure within an enterprise environment. Familiarity with security standards such as ISO 27001, Cyber Essentials, GDPR, and Data Protection Act. Experience with Microsoft O365 Security solutions and network security operations. Understanding of security testing principles, including vulnerability scanning, risk identification, and mitigation. Knowledge of security auditing and security incident response processes. Experience with event and log analysis to monitor and assess security risks. Solid understanding of Disaster Recovery (DR) and Business Continuity principles. Excellent communication skills, with the ability to explain complex security concepts to non-technical stakeholders in a clear, accessible manner. How to Apply: If you're an experienced Cyber Security Engineer looking to make an impact in a global organisation, apply now.

Our client, a growing enterprise seeking to enhance its IT operations, is looking for an experienced Senior Infrastructure & Security Engineer to take ownership of 3rd-line infrastructure and cybersecurity support. This hands-on role requires deep technical competency, project experience, and a proactive attitude, ensuring stability, security, and efficiency in the company s IT environment. As part of IT Operations, you will collaborate with stakeholders and lead efforts to design, build, and implement solution architecture. The company is shifting toward a more mature enterprise IT framework, leveraging Microsoft 365 and Azure (with AWS experience as a nice-to-have). Key Responsibilities Provide 3rd-line infrastructure and security support, ensuring system reliability and cybersecurity best practices. Design and implement cloud-based and on-premise IT solutions, supporting Azure and Microsoft 365 environments. Collaborate with 1st and 2nd line engineers, offering mentorship and technical leadership. Drive solution design, IT operations, and network security in an enterprise-level setting. Oversee Active Directory (AD) conversion, ensuring seamless integration into the IT environment. Work within a customer-facing role, ensuring IT systems align with business needs. Participate in infrastructure transformation initiatives, aligning with enterprise-level standards. Ensure compliance with cybersecurity and regulatory frameworks while implementing risk mitigation strategies. Key Requirements Proven experience in senior infrastructure and security engineering roles. Strong technical competency in cloud and cybersecurity, ideally within an enterprise or SME environment. Hands-on expertise with Microsoft 365, Azure, and networking (AWS is a plus). Experience in solution architecture, IT operations, and infrastructure design. Practical experience in cybersecurity, system design, and infrastructure architecture. Capable of rolling up sleeves and leading projects from conception to implementation. A background working with large-scale IT environments, such as KPMG or other enterprise-level settings. If you're an experienced Infrastructure & Security Engineer with a passion for hands-on technical work and solution architecture, we d love to hear from you!

Nexperia is one of the world s leaders in essential semiconductors and aspires to become a $10b turnover business by 2030. This ambition can be achieved through our next-generation technologies, ongoing improvement in manufacturing sustainability, state-of-the-art facilities, and, most importantly, investing in our people. We are expanding our site IT Management team following a recent promotion by hiring a Factory IT Manager to lead IT-related operations in a high-volume, fast-paced semiconductor manufacturing site. What our Factory IT Manager will do: Nexperia Manchester employs over 1000 people across Production, Engineering, and site support services, working together to produce over 14,000 semiconductors each week. Reporting to the Head of Front-end Manufacturing IT, the Factory IT Manager will lead and manage all IT operations within the wafer fabrication facility. This includes tool interfaces, factory automation, manufacturing execution systems, and data infrastructure. As well as being responsible for ensuring 24/7 uptime of the factory IT systems, you will also drive transformation initiatives, whilst maintaining cybersecurity and compliance within the factory environment. This position offers a rare opportunity to make an impact within IT operations at one of the UK s largest semiconductor manufacturing sites, whilst inspiring a growing team of IT professionals. Key responsibilities will also include: Leading and managing all IT operations within the wafer fabrication facility, including tool interfaces, factory automation, Manufacturing Execution Systems, and Data Infrastructure Collaborating with Fab Operations, including Engineering and Production teams, to support production demand and optimize system uptime Ensuring the reliability, availability, and performance of IT systems critical to fab manufacturing processes (e.g., MES, SPC, APC, Factory Bus, SECS/GEM interfaces, Plant Maintenance) Managing and coordinating factory IT projects, including upgrades, migrations, new tool integration, and system improvements Developing and implementing IT standards, procedures, and documentation to support fab operations and industry compliance (e.g., ISO, VDA, or SEMI standards) Driving digital innovation and automation initiatives, including the use of Artificial Intelligence and Machine Learning for Predictive Maintenance, Yield Optimization, and Smart Factory Solutions, including interfacing with Robotics Ensuring cybersecurity best practices are enforced across all fab-connected systems Overseeing vendor relationships, service contracts, and Factory IT support staff or contractors on-site, including a dedicated Factory Systems Support team (CIM), Operational Technology Engineers, Data Engineers, and Web Developer Monitoring and reporting on system performance, availability, and incident response metrics Providing leadership in incident management and root cause analysis for system-related issues, while also ensuring effective change control procedures for all changes introduced to the factory (ITIL) Managing and leading a team of eight IT professionals with growth plans What the Factory IT Manager will need: Essential requirements: Bachelor s degree in Computer Science, Information Technology, Electrical Engineering, related field, or relevant industrial experience 7+ years of IT experience in a manufacturing or semiconductor environment, with at least 3 years in a leadership role In-depth knowledge of factory manufacturing systems, including MES (e.g., FACTORYworks, Camstar, or proprietary), Tool Automation, SECS/GEM protocols, Plant Maintenance (Xsite), APC/SPC systems Experience in managing mission-critical IT infrastructure in a 24/7 operational environment Strong understanding of IT networking, databases (SQL, Oracle), server (Windows, Linux), storage systems, and virtualization Familiarity with cybersecurity frameworks and regulatory compliance relevant to semiconductor manufacturing Excellent problem-solving, project management, and communication skills Ability to lead cross-functional teams and manage multiple priorities in a high-pressure environment Ability to work on-site full-time with occasional travel to other sites Ability to work in the United Kingdom without the need for visa sponsorship Desirable requirements: Knowledge of Industry 4.0 technologies and implementation experience ITIL or relevant technical certifications Prior experience in a Semiconductor Wafer Fab is a strong plus, but not essential What your benefits will include: Remuneration & Reward Base salary of £60,000-£90,000 (DOE), Annual Incentive Plan of up to 24% , excellent contributory pension scheme of up to 9% , Electric Vehicle Salary Sacrifice Scheme, recognition rewards scheme, income protection, 12 x salary life assurance, long term incentive plans (DOE) and more. Health & Wellbeing 33 days annual leave including bank holidays, flexible benefits scheme, enhanced sick pay, on-site medical centre, virtual GP benefit, subsidised canteen, employee assistance programme, retail and entertainment reductions, and a variety of sports and social clubs. Professional Development Possibility for funded academic support up to PhD level, employee goal setting and development plans, huge growth potential both internally and globally within the business, opportunity to contribute and work with cutting-edge technologies. Corporate Social Responsibility & Sustainability A global commitment to becoming carbon neutral by 2035, working with suppliers who embrace and comply with the Nexperia Supplier Code of Conduct, and paid time off for every employee to support charitable work. Diversity, Equity, and Inclusion Corporate members of Neurodiversity in Business and a Disability Confident Employer. Dedicated Employee Resource Groups for Neuroinclusion, the LGBTQ+ community, and Women in Nexperia, with a commitment to increase women in management positions to 30% by 2030. Be Part of Something Bigger.

Senior Application Security Consultant 5 Months 585 per day (Inside IR35) 1-2 days per week on site in London The Application Security Consultant will support the increasing demand for Information Security skills across Group Functions. With an ability to review existing applications and also engage on new services being offered, this role is critical to advising on how we embed security into our business operations. This role will also play a key role in realising our Security Improvement programme across a number of our business areas and will require effective communication with a wide range of colleagues both technical and non-technical. Principal accountabilities: 1. Security Design - Ensure projects consider security in the design by setting security needs and requirements to ensure alignment to L&G Security Policies and Standards, participating in Technology or Supplier selection as a security SME and applying threat and initial risk assessment approaches to select appropriate controls. Work with the Group wide Security Improvement Programme to ensure Group Functions services align with current Security requirements. 2. Security Assessment - Review the design of in-flight or existing services to conduct risk assessments, identify and articulate security gaps against L&G Security Policies and Standards. For gaps identify the related risks and potential options for management - articulate options to system or business owners. 3. Security Advice and Guidance - Be a source of expert Information Security advice, both to projects (i.e. consulting with architects or developers) and in an ad-hoc manner (responding to user queries) working closely with key stakeholders and business leaders to ensure security issues are understood and reviewing existing systems and services to prioritise security improvement activities. 4 Security Advocacy - Represent the Group Functions Security team to senior business stakeholders. Identify areas where the Security team, and wider IT team, can add additional benefit and support business ambitions 5 Security Representation - Represent the Group Functions IT team in interactions with the wider L&G Group and Security Improvement project, such as sitting on Steering Groups or Customer Engagement Workshops and ensure Group Functions interests are input and requests for input are passed to the correct teams 6. Security Maturity - Actively work to improve the Group Functions IT Security Maturity and Capability. Suggest enhancements to processes, update or establish procedures where required. 7. Treating Customers Fairly (TCF) - Ensure that all customers/stakeholders are treated fairly in line with Legal & General's principles on Customer Experience, Employee Engagement, Continuous Improvement and TCF policy. Qualifications- Appropriate security qualifications and memberships (e.g. CISSP, etc.) are desirable, but not essential or demonstrable equivalent experience. Knowledge- Information Security broadly, knowledge of Access Control security, transportation security, secure architecture principles, cryptography and operational controls (such as back-ups, resilient design, anti-virus) are essential Knowledge of Threat modelling, control frameworks and Risk assessment techniques (such as ISO2700x, COBIT, COSO, ITIL and NIST Cyber Security Framework) is desirable Knowledge of Cloud Security practices is desirable Experience in the following areas would be beneficial- Security Design in projects (setting requirements, reviewing architecture) Risk assessment and control selection Critical review of products / vendors from a security perspective Experience of communicating to senior stakeholders in straightforward terms Dealing with ad-hoc user queries, where the role holder may not be an SME, and providing guidance in line with Security principles and seeking support from colleagues Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.

Cybersecurity Infrastructure Engineer Location: Milton Keynes or Birmingham (Hybrid Working) Role: Permanent Salary: Competitive based on experience An exciting opportunity has arisen to join one of the UK's leading electrical and digital infrastructure distribution groups, supporting their internal IT operations as a Cybersecurity Infrastructure Engineer. Working as part of a wider IT team, you will be responsible for designing, implementing, and maintaining secure IT infrastructure across both on-premises and cloud environments, with a focus on resilience against cyber threats. This is a hybrid role, with the primary office location being either Milton Keynes or Birmingham. You will be expected to attend the office on a weekly basis. Key Responsibilities Provide security-by-design input into the design, build, and maintenance of the company's on-premise and cloud infrastructure. Implement and maintain security measures to protect systems against cyber threats. Assist in planning and deploying group-wide security initiatives. Respond to and coordinate actions for security incidents raised by local IT, the Group Cyber Security Team, and the Security Operations Centre (SOC). Identify and mitigate vulnerabilities, including those related to physical security. Maintain and enhance the security posture of servers for both existing and new applications, on-premise and in Azure cloud environments. Monitor and manage vulnerability scanning tools, address findings, and coordinate remediation efforts with infrastructure and development teams. Support the development, testing, and annual validation of disaster recovery and backup plans. Create and maintain up-to-date security documentation. Act swiftly and collaboratively in the event of a cyber incident, ensuring optimal recovery. Stay current with emerging threats and technological advancements in cybersecurity. Prepare for and manage annual penetration testing in collaboration with external vendors. Adhere to all Health & Safety policies and procedures. Actively participate in the Security Steering Group and other relevant group-level meetings. Maintain and report on security-related items within the risk register. To Be Considered for This Role, You Will Need: Cybersecurity Experience: Demonstrated experience in implementing and managing security controls across hybrid environments. Familiarity with endpoint protection, threat detection, and vulnerability management tools. Incident Response & Problem Solving: Ability to respond swiftly and effectively to security incidents. Skilled in structured analysis and incident remediation to ensure rapid recovery. Threat Awareness & Risk Mitigation: Proficient in identifying vulnerabilities, assessing risks, and applying up-to-date security practices. Ability to defend against evolving cyber threats. Infrastructure Awareness: Solid understanding of core infrastructure components including servers, networks, and storage systems. Experience in supporting and securing both on-premise and cloud-based environments. Skills & Tools, Familiarity with the following tools is advantageous: Palo Alto, Microsoft Defender for Endpoint Tenable, Microsoft Sentinel, Zscaler, Tanium, Illumio Strong understanding of cybersecurity principles, including threat detection, firewalls, intrusion prevention systems, and encryption. Working knowledge of network protocols with the ability to interpret and troubleshoot connectivity and security issues across diverse environments. Awareness of data storage concepts (e.g., SAN, NAS) and secure data handling practices. Strong systematic thinking and problem-solving skills to assess risks, identify threats, and detect patterns or anomalies. Ability to collaborate effectively with cross-functional teams and stakeholders at both local and group levels. Clear and confident verbal communication skills, including the ability to explain technical information to non-technical audiences. Proficient in written communication, including technical documentation, reports, and presentations. Strong time management and organisational skills to balance multiple priorities and meet deadlines. Capable of managing competing demands and shifting priorities in line with business objectives. High attention to detail and a strong commitment to accuracy and quality. Resilient and composed under pressure, especially in high-demand or incident response scenarios. ECS Resource Group are an Equal Opportunity Employer, for more information please click the following link: (url removed) In accordance with the Equality Act 2010, if you require an alternative form of application please click the following link: Flexible Application Process - (url removed)/work/flexible-application-process

Senior IT Support Engineer, 2nd Line/3rd Line Location: Bristol Salary Range: £30000- 50000 + Benefits Your Role: Lead, Troubleshoot, Enable As our Senior IT Support Engineer , you'll be the escalation expert-leading on all things infrastructure and supporting mission-critical systems. You'll be managing everything from Windows desktops and Servers to cloud integrations and enterprise networking, ensuring impeccable uptime and operational excellence. Core Responsibilities: Windows Desktop & Server Management : Covering ADDS, DHCP, DNS, File Services, RDS, IIS; user provisioning, server buildout, and troubleshooting. Virtualisation : Design, deploy, and manage with VMware ESXi/vCentre and Hyper-V; clustering is a strong advantage Backup & DR : Champion backup strategies and disaster recovery operations-Veeam or equivalent. Cloud & M365/Azure : Own administration of Microsoft 365, Azure, and Intune. Scripting & Automation : Build and adapt scripts in PowerShell and other languages to automate processes. Networking & Security : Configure Routers, VLANs, ACLs, VPN/IPsec tunnels, wireless with RADIUS, VOIP systems, and Firewalls (Sophos XG/Cisco). Cross-Platform Systems : Support Linux (patching, security), MacOS (JumpCloud, ACMT), SQL Server, and IOS. Mentorship & Projects : Lead migrations, deliver junior staff coaching, contribute to IT strategy and documentation. You'll Stand Out With: Certifications: MSCE, VMware VCP, Cisco, Apple ACMT, and ITIL V3/V4. Cloud migration/project experience (Azure, Oracle, M365, server-to-cloud). Experience with AutoTask, Datto RMM, and Cyber Essentials compliance. Containerisation know-how (Docker, Kubernetes). Excellent communication skills and proven leadership potential with an interest in stepping up to Team Lead roles What We Offer: Growth & Recognition : Structured training, certification support, and career progression. Modern Work Environment : Collaborative culture, flexible working, and access to the latest tools and platforms. Impact & Influence : Be central to key infrastructure projects and security initiatives that shape our future success. Competitive Package : Strong base salary, performance bonuses, healthcare, and pension plan. People Source Consulting Ltd is acting as an Employment Agency in relation to this vacancy. People Source specialise in technology recruitment across niche markets including Information Technology, Digital TV, Digital Marketing, Project and Programme Management, SAP, Digital and Consumer Electronics, Air Traffic Management, Management Consultancy, Business Intelligence, Manufacturing, Telecoms, Public Sector, Healthcare, Finance and Oil & Gas.

The Role: As we accelerate our digital-first strategy, robust, reliable, and secure IT operations are more critical than ever. We re looking for a dynamic and visionary Head of IT Operations to lead the charge. Reporting directly to the IT Director, you ll be the senior custodian of live services, infrastructure, and end-user computing across the enterprise. This is a high-impact leadership role where you ll own the operational landscape from incident response and capacity planning to supplier performance and cyber resilience. Your mission? To ensure technology consistently enables business growth, regulatory compliance, and an outstanding colleague experience. What You ll Be Doing: As Head of IT Operations, you ll shape and sustain a high-performance IT environment that delivers secure, reliable, and business-aligned services. Your key responsibilities will include: • Driving Operational Excellence: Ensure IT systems run optimally, on time, and within budget delivering seamless support to internal teams and external customers. • Future-Proofing Technology: Lead the evolution of IT capabilities with scalable, resilient platforms that support long-term growth. • Capacity Planning & Service Quality: Own service performance metrics and embed proactive capacity planning across infrastructure and services. • Proactive Issue Resolution: Lead root-cause analysis, implement preventive controls, and champion continuous service improvement. • Service Management Governance: Oversee ITIL processes and support internal audits with robust systems and policies. • Incident & Change Leadership: Manage incidents and changes efficiently, providing strategic oversight on high-priority issues. • Financial Stewardship: Plan and manage Opex/Capex budgets, track spend, and identify cost-saving opportunities. You ll also lead on: • Cybersecurity Operations: Partner with our vCISO to manage 24 7 monitoring, vulnerability management, and secure-by-design principles. • Supplier & Contract Management: Oversee MSPs, cloud, and hardware partners, ensuring value-for-money and service excellence. • Asset & Licensing Management: Maintain accurate software and hardware inventories, optimising licensing models. • Continuous Improvement: Champion automation, self-service, and data-driven reporting to enhance service delivery. • Leadership & Culture: Mentor a multi-disciplinary team, foster psychological safety, and act as a trusted advisor to senior stakeholders. What We re Looking For: We re seeking a strategic leader with a passion for operational excellence and a proven track record in IT service delivery. You ll bring: Experience & Expertise • 5+ years in a senior IT operations, service management, or IT director role. • Proven ownership of 24 7 production environments with >99.9% availability. • Strong experience managing multi-vendor ecosystems and regulated environments. • Deep technical knowledge of enterprise infrastructure, networking, DR, IAM, and cybersecurity tooling. Education & Certifications • Bachelor s degree (or higher) in Computer Science, Information Systems, Engineering, or related field. • MBA or postgraduate qualification (desirable). • ITIL v4 Managing Professional or ITIL Expert (mandatory). • Certifications in ISO 27001, COBIT, Microsoft Azure, Lean Six Sigma, Prince2, or SAFe Agilist. Leadership & Communication • Gravitas to influence regulators and auditors. • Exceptional stakeholder management and communication skills. • Commercial acumen for budgeting, vendor negotiation, and TCO optimisation. • A data-driven, continuous-improvement mindset with a passion for mentoring high-performing teams. Why choose Agria Pet: Agria Pet Insurance is one of the UK's leading specialist pet insurance providers. We only provide lifetime insurance for animals, so truly understand and care about our customers and their beloved pets - especially as most of our team are pet parents, and we're all animal-lovers. Our passion for pets means that we are trusted by The Royal Kennel Club, Lloyds and many other significant affinity partners to provide lifetime pet insurance in their names. Working closely with animal welfare organisations, vets and breeders, gives us deep insight on what's best for pets. And we give back too - including supporting hundreds of animal rescues, protecting over 100,000 rescued animals, and through donations of over £2m to animal charities. We are a strong, growing business, having doubled our GWP in the last 5 years, with a supportive ethos and family feel. We became one of the UK s Best Workplaces in 2023, 2024 and again in 2025, we have the top 4 slots on Which? Best Buy pet insurance and we are extremely proud to be the only carbon negative pet insurer in the UK. What we offer: • 25 days annual leave which increases with service, plus bank holidays • Opportunity to buy/sell up to 5 days annual leave per calendar year • Pension and Life Assurance scheme • Access to 25% off insuring your pet with Agria. Friends and family are also entitled to a discount too • We aim to support the health and wellbeing of all our colleagues so you ll have access to a Health Cash Plan, mental health support and health and wellbeing platforms, including Headspace

Role: IT Systems Engineer Location: North Lancaster, Lancashire Type: Full-time, On-site Salary: 30,000 - 36,000 DOE About the Company Established in the 1970s, this family-founded organisation has grown into a globally recognised brand, known for delivering high-quality, design-led solutions across a range of industries. With operations spanning the UK, North America, and Australia, and a network of international partners, the company supports a diverse client base that includes creative professionals, contractors, and end users. Company Values Rooted in strong family values and a longstanding tradition of craftsmanship, the business is built on a foundation of integrity, reliability, and a passion for continuous improvement. Their people-first culture reflects a commitment to excellence in both service and delivery, with a clear emphasis on quality, innovation, and collaboration. Role We're looking for a hands-on IT Systems Engineer to support and enhance the day-to-day running of our technology infrastructure and business systems. Acting as the go-to person for internal tech support across our UK and North America sites, you'll play a vital role in ensuring users are well-supported and that our systems remain efficient, secure, and up to date. This is a proactive, varied position combining IT support, systems administration, project delivery, and supplier management. Responsibilities Be the first line of support for all IT and system-related queries from internal users. Maintain and troubleshoot hardware, software, and networks across the business. Coordinate and manage IT support needs across multiple locations. Support infrastructure, systems, and service projects-end to end. Track and analyse support issues to spot trends and suggest improvements. Ensure timely issue resolution, escalating where appropriate. Carry out regular maintenance, upgrades, and lifecycle management of IT assets. Monitor system and network performance; assist with firewall and endpoint security maintenance. Manage vendor relationships for hardware, software, and IT services. Deliver system onboarding and training to new starters. Help evolve IT systems and processes that support the wider business. Maintain detailed internal documentation and user guides. Your experience Strong understanding of Windows OS and Microsoft 365. Comfortable working with switches, routers, and firewalls. A grasp of core cybersecurity principles and common tools (e.g., antivirus, encryption). Knowledge of networking protocols including TCP/IP, DNS, DHCP, VPN. Confident communicator with solid customer service skills. Able to balance multiple priorities in a busy, fast-moving environment. A solutions-focused mindset and a proactive attitude. Previous experience in IT support or systems coordination. Familiarity with ERP and CRM platforms is a plus. Solid knowledge of PC hardware and software. A full UK driving licence (some travel required). In Technology Group Ltd is acting as an Employment Agency in relation to this vacancy.

INFRASTRUCTURE ENGINEER - EPSOM, SURREY (ONSITE) IMPORTANT: This role is fully office-based in Epsom. Candidates must be located near Epsom or able to commute daily. Please do not apply if this isn't feasible for you. Must be eligible to work in the UK. THE ROLE Mid-level Infrastructure Engineer needed for an established software company in Epsom. Perfect for tech professionals looking to advance their career in a stable yet innovative environment. WHAT YOU'LL DO Manage Microsoft 365 suite including Exchange, SharePoint, and Teams Configure and maintain network infrastructure (firewalls, routers, switches) Administer Windows Server (2022, 2019, 2016) and Linux environments Support Hyper-V virtualization platforms Implement and monitor cybersecurity protocols and compliance Configure email deliverability systems (SPF, DKIM, DMARC) Provide expert IT support across the organization Maintain technical documentation and asset registers WHAT YOU'LL NEED 3-5 years hands-on experience in IT infrastructure Strong knowledge of Microsoft 365 and Windows Server environments Experience with enterprise-grade firewalls (e.g., SonicWall) Hyper-V virtualization expertise Cybersecurity best practices knowledge Exceptional problem-solving abilities Relevant IT certifications (Microsoft, Cisco, CompTIA) desirable WHAT'S IN IT FOR YOU Clear career progression path (Senior Engineer ? Operations Manager ? Director) Competitive salary Professional development and certifications Collaborative work environment Health insurance (from second year) Pension scheme DETAILS Hours: 9am-6pm, Monday-Friday Start Date: ASAP Up to 40k depending on Experince Apply now to join a thriving tech team in the heart of Epsom!

Senior Cyber Security Engineer Are you a passionate Cyber Security Engineer with hands-on experience in deploying Microsoft security solutions and supporting clients with robust threat protection strategies? This is a unique opportunity to join a well-established, award winning Managed Services Provider (MSP), known for its strong reputation in the UK tech market, to help deliver cutting-edge security solutions This role is ideal for someone who thrives in a fast-paced, client focused environment, is technically strong across Microsoft Security products, and wants to be part of a growing Cyber Security function embedded in a collaborative and ambitious team. As a Cyber Security Engineer you will be Technically hands-on and confident working across client-facing and internal delivery environments and be passionate about cyber security innovation and best practices. To be considered for this role you must have A minimum 2 years experience in a Cyber Security role (ideally within an MSP or consultancy environment) Excellent knowledge of Microsoft Defender suite including: XDR, Microsoft Defender for Endpoint, Business, Cloud , Cloud Apps, Office 365, including Endpoint Detection and Response. Good experience of Microsoft Sentinel (SIEM) Knowledge of Azure firewalls Networking and firewall solutions expertise with the like of (Cisco Meraki, Fortinet, Ubiquiti. WatchGuard) Vulnerability management tool expertise (Tenable, Qualys) Email security solutions Knowledge (Mimecast, Egress) A Working understanding of Microsoft 365 Cloud Technologies and their threat landscape Familiarity with SOC operations, threat detection, incident response, and security analytics As a Cyber security Engineer you should have one or more of SC-200 - Microsoft Certified: Security Operations Analyst Associate SC-300 - Microsoft Certified: Identity and Access Administrator Associate AZ-500 - Microsoft Certified: Azure Security Engineer Associate OSCP - Offensive Security Certified Professional CEH, CISSP, CompTIA Security+ are beneficial but not essential. Reporting into the PMO and Senior Executives you will: Assist in delivering Cyber Essentials and Cyber Essentials Plus (CE & CE+) audits, ensuring clients meet security compliance standards Provide escalation support for complex cyber incidents raised by the internal SOC team Perform technical vulnerability remediation, threat analysis, and reporting Conduct Microsoft 365 and Cloud Security assessments to identify gaps and secure client environments Carry out offensive security and web application assessments (including penetration testing support) Collaborate with the CISO and Security Team to support pre- sales activities, assist with client onboarding and deliver professional security consultations Onboard clients into key security platforms and ensure a smooth transition to managed services Support wider project delivery, working closely with the Project Management Office My client are investors in people an will invest in your career progression in a growing security team This is a great opportunity to work directly with a CISO and senior leadership on critical client projects in a business that will expose to a wide range of industries, clients, and technologies If you re looking to step into a high-impact role where your technical skills, client focus, and security knowledge are truly valued - this could be your next big move.

Network Design Engineer Contract: Six Months Location: Heathrow Day Rate: 450 Per Day - Inside IR35 Job Profile As a Network Designer/Implementation Engineer working within Airport Infrastructure, you will play a key role in designing, implementing, and maintaining cutting-edge network and communication systems essential for the smooth operation of modern airports. Your responsibilities will include creating and deploying solutions across various platforms, such as Networking, Telecommunications, CCTV, WLAN, OTN, Radio, and emerging technologies like 5G. Responsibilities Network Design & Implementation: Develop comprehensive network designs, focusing on reliability, scalability, and future growth. Implement network infrastructure. Work on fiber-optic and structured cabling solutions. Telecommunications: Design and implement telecom systems, ensuring efficient communication within the airport. Manage telephony, VoIP, and emergency communication systems. CCTV and Security Systems: Design and deploy large-scale IP-based CCTV surveillance systems across the airport. Ensure systems comply with security standards and regulations. OTN (Optical Transport Network): Support and manage high-capacity data transport networks using OTN for scalable airport operations. Radio Communication: Implement and support radio systems (UHF/VHF), including for air traffic control and emergency services. Compliance & Security: Ensure all systems adhere to the highest security standards, safeguarding critical airport operations. Maintain compliance with industry regulations, such as ICAO standards. Collaboration & Documentation: Collaborate with airport authorities, contractors, and vendors to deliver end-to-end solutions. Maintain detailed documentation of designs, configurations, and implementation procedures. Training Recommendations Candidates with Minimum Requirements: If they have Network/Telecoms background, further development, the following training areas will be provided: CCTV Surveillance Systems (IP cameras, VMS integration). Wireless Networking (WLAN and 5G): Advanced training in wireless design, high-density Wi-Fi solutions, and 5G infrastructure. OTN and Fiber Optic Communication: Training in Optical Transport Network technology, fiber cabling standards, and deployment. Radio Systems (UHF/VHF): Comprehensive training on air traffic control and emergency communication systems. Airport-Specific Compliance and Security: Training on ICAO standards, aviation security requirements, and mission-critical system designs. Work on next-gen technologies such as 5G, IoT, and advanced cybersecurity in one of the most dynamic and complex infrastructure environments. ECS Recruitment Group Ltd is acting as an Employment Business in relation to this vacancy.