34 jobs found

About the role This is a fantastic opportunity to join Southern Water's Cyber Risk & Assurance team, the organisation's second line of defence within the wider Cyber Security function. As a Cyber Risk & Assurance Analyst, you'll play a central role in helping the business understand, manage and reduce cyber risk across critical operations. You'll be responsible for developing and improving cyber risk insights in your area of specialism, driving process and tooling enhancements, and supporting stakeholders across Technology, Legal and the wider business. This is a role for someone who enjoys tackling complex problems, breaking them down into actionable solutions, and collaborating with a wide range of experts. You'll also act as a trusted advisor helping colleagues understand cyber threats, risks and controls, and supporting the wider team in embedding strong cyber risk management practices across Southern Water. What you will be responsible for: You will conduct complex cyber risk assessments, strengthen key controls, deliver clear risk insights, and drive improvements across cyber domains - all while building collaborative relationships across Technology, Security, Legal and the business. Key Responsibilities Maintain an up-to-date understanding of the cyber threat landscape, relevant regulations (including NIS1/NIS2 and GDPR), and emerging risks. Lead, plan and perform complex cyber risk assessments aligned to industry-recognised frameworks, testing the design and effectiveness of cyber controls. Produce high-quality risk assessment reports with clear, actionable conclusions that support timely risk-based decision-making. Identify and deliver improvements across domains such as identity & access management, application security, endpoint security, and network security. Work closely with stakeholders across Security, Technology, Legal, Internal Audit and the wider business to assess control gaps, prioritise remediation actions and track progress to completion. Build strong working relationships across teams to influence, support and strengthen cyber risk management practices. Drive process improvements and enhancements across the Cyber Risk & Assurance function. Additional requirements specific to the role Will work closely with both technical teams and non-technical stakeholders, requiring an ability to communicate complex concepts clearly. Must be comfortable operating in an environment with regulatory, operational and cyber security obligations. Occasional engagement with internal or external audit teams may be required. What you'll bring to the role: Essential Degree-level education or equivalent experience. Strong knowledge of cyber security and information security control best practice. Proven experience in cyber security, risk management or security assessment (10+ years, or advanced degree with 8+ years). In-depth understanding of key frameworks such as NIST (800-37, 800-30, 800-53), ISO 27001/27005, SOC 2, PCI or MITRE ATT&CK. Solid understanding of cloud models, application security, vulnerability and patch management. Experience in regulated and/or unionised environments. Excellent communication skills with the ability to simplify complex findings for senior management. Strong attention to detail and a proactive, positive, innovative mindset. Desirable GRC or security certifications (e.g., CISSP, CISM, CRISC, CISA, GCFE, GSEC, CCSP). Experience with cyber risk modelling (e.g., CyberCube, RMS, Cyence). Hands-on experience with frameworks such as ISO 27001, NIST CSF, NCSC CAF or CIS Controls. Understanding of ICS/OT environments. Southern Water is at the forefront of transforming Britain's water industry, investing significantly to enhance resilience, sustainability, and service excellence. With £7.8bn planned investment for 2025-30, this is an unparalleled opportunity to join a business committed to delivering a generational shift in the way water services are managed. You will be joining at a time of significant change, working alongside a highly skilled leadership team with a clear vision for the future. We offer an environment where senior professionals can make a meaningful impact, influence major strategic decisions, and drive long-term value creation . At Southern Water, we believe diverse perspectives drive innovation. If you're passionate about making a positive impact and think you can bring value to our team, we'd love to hear from you-even if you don't tick every box. Your unique skills and experiences could be exactly what we need. Our Commitment to Diversity We welcome applicants from all backgrounds, identities, and experiences. We do not discriminate based on race, ethnicity, gender, sexual orientation, age, disability, religion, or any other protected characteristic. If you need reasonable adjustments during the recruitment process, please let us know. Additional information: In line with Southern Water's security requirements, successful candidates will be required to provide evidence of their identity, eligibility to work in the UK, criminal record check (DBS) and verification of their employment and/or education history for the past three years. Appointment to this role is subject to the successful completion of all preemployment checks, including security vetting. Please note that if a candidate does not meet the required security standards or fails to pass the vetting process, Southern Water reserves the right to withdraw the offer of employment. Some positions may also require higher levels of security vetting, which may involve providing additional documentation.

Head of Cyber Security Permanent £88,000-£97,000 London (Hybrid - 2 days onsite) 30 days holiday + 8% pension + other benefits A leading regulatory organisation is seeking an experienced Head of Cyber Security to provide strategic leadership and direction across its cyber and information security function.This is a senior, cross-functional leadership role responsible for shaping and delivering a comprehensive cyber security strategy, ensuring organisational resilience against evolving cyber threats while enabling secure digital innovation. The Role You will lead the development and implementation of a forward-thinking cyber security strategy, ensuring systems, data, and services are protected through robust controls, governance, and risk management practices.Working closely with senior stakeholders, you will act as the organisation's subject matter expert on cyber security, providing clear, actionable advice on risks, threats, and mitigation strategies. Key Responsibilities Define and deliver the organisation-wide cyber security strategy and roadmap Establish and evolve the cyber security operating model, including team structure Develop and implement security policies, standards, and best practices Provide expert advice to senior leadership on cyber risk and resilience Lead cyber risk identification, assessment, and mitigation activities Oversee security architecture to ensure alignment with wider technology strategy Drive continuous improvement through security assessments, testing, and reporting Ensure effective incident detection, response, and recovery capabilities Lead vulnerability management and remediation across all technology environments Oversee third-party security testing, including penetration testing and phishing simulations Promote a strong cyber security culture through training and awareness initiatives Monitor and report on threat intelligence trends and emerging risks About You You will be a strategic and influential cyber security leader with a strong track record of operating at senior level within complex organisations. Key Skills & Experience Proven experience developing and delivering cyber security strategies Strong understanding of security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical risks to non-technical stakeholders Experience influencing senior leadership and driving organisation-wide change Desirable Professional certifications such as CISSP, CISM, or CISO Experience within regulated or public sector environments Leadership & Behaviours Strong decision-making in high-risk, high-impact environments Ability to lead with purpose and set strategic direction Excellent communication and stakeholder engagement skills Focus on delivering measurable outcomes and organisational resilience Additional Information Hybrid working: 2 days per week in London 30 days annual leave 8% pension contribution + other benefits Participation in an on-call rota may be required Morgan Hunt is a multi-award-winning recruitment business for interim, contract and temporary recruitment and acts as an Employment Agency in relation to permanent vacancies. Morgan Hunt is an equal opportunities employer. Job suitability is assessed on merit in accordance with the individual's skills, qualifications and abilities to perform the relevant duties required in a particular role.

Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. The Role: This role is part of our Public Safety Solutions Business Unit. The Information Security Manager is accountable for the organisation's information security strategy, governance, and compliance, ensuring the protection of systems and data that support UK public sector and emergency service operations. The role is critical in ensuring that services remain secure, resilient, and available, recognising the operational importance and potential impact on frontline emergency response. Key Responsibilities: Security Leadership & Assurance Own and be accountable for the organisation's overall security posture, ensuring alignment with business objectives and public sector expectations. Lead the implementation, maintenance, and continuous improvement of the ISMS in line with ISO/IEC 27001. Maintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls. Develop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity. Provide regular assurance reporting to senior leadership and stakeholders. Risk Management & Compliance Own and maintain the Security Risk Register, ensuring risks are identified, assessed, and managed in line with organisational risk appetite. Conduct and support risk assessments, internal audits, and external certification activities. Ensure compliance with relevant UK regulatory and security requirements, including GDPR and guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause analysis, and remediation. Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication. Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers). Service Resilience & Operational Security Ensure security is embedded in the design and operation of services supporting emergency response. Work closely with operational and technical teams to maintain high levels of system availability and resilience. Support business continuity and disaster recovery planning, testing, and continuous improvement. Security Awareness & Culture Develop and deliver targeted security awareness and training programmes. Promote a strong security culture, ensuring all staff understand their responsibilities in protecting critical services. Stakeholder Engagement Act as a trusted advisor to senior leadership, operational teams, and external stakeholders. Support engagement with public sector customers, providing assurance on security controls and practices. Collaborate with suppliers and partners to ensure security requirements are met across the supply chain. Qualifications & Skills: Proven experience in an information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials / Cyber Essentials Plus certification. Experience managing security risks, incidents, audits, and compliance activities in operational environments. Ability to balance strategic leadership with hands-on delivery in a small organisation. Strong understanding of service resilience, availability, and risk in mission-critical systems. Excellent communication skills, with the ability to engage both technical and non-technical stakeholders. By submitting an application to Saab UK, you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.

Senior Security & Technology Consultants Location: Warton, UK (On-Site - 5 Days per Week) Clearance Required: Valid MOD DV (Mandatory) Engagement Type: Contract (Inside IR35) Day Rate: 500 - 900 per day (dependent on role and experience) Overview We are seeking experienced Security & Technology Professionals to support critical programmes in a secure defence environment. These roles span architecture, assurance, operations, and technical delivery disciplines and require individuals who can operate effectively within highly regulated, mission-critical settings. All positions are based full-time on-site in Warton (5 days per week) and require candidates to hold a current and valid MOD DV clearance at the time of application. Scope of Opportunities We are hiring across multiple security and technology disciplines, including: Security Architects Security Assurers Information Security Consultants SOC Analysts OT Architects Cross Domain SMEs IT Administrators Service Managers Product Security Managers Penetration Testing Specialists Technical Project / Programme Managers Key Responsibilities (Role Dependent) Security Architecture & Design Define and review secure architectures across enterprise IT and OT environments. Act as technical authority for secure system design and implementation. Lead threat modelling, risk assessments, and security design reviews. Ensure compliance with defence security standards and secure-by-design principles. Security Assurance & Governance Deliver independent security assurance across programmes. Support accreditation activities and compliance reviews. Develop and maintain security documentation, standards, and risk registers. Security Operations & SOC Monitor, analyse, and respond to security events and incidents. Strengthen detection, response, and resilience capabilities. Support vulnerability management and remediation activities. OT & Cross Domain Security Provide expertise in Operational Technology environments. Design and assure secure cross-domain solutions and data transfer mechanisms. Evaluate network segregation and high-assurance controls. Penetration Testing & Vulnerability Management Conduct or oversee penetration testing engagements. Assess vulnerabilities and validate remediation strategies. Support red/blue team activities where required. Service & Product Security Embed security into live service management processes. Act as Product Security lead across development lifecycles. Integrate DevSecOps controls and secure SDLC practices. Technical Delivery & Programme Support Manage security-focused technical workstreams. Provide governance reporting to senior stakeholders. Translate technical risks into business impact and mitigation plans. Essential Requirements Valid and transferable MOD DV clearance (mandatory). Availability to work on-site in Warton, 5 days per week. Strong background in one or more of the listed security disciplines. Experience working in secure, defence, or highly regulated environments. Relevant certifications (e.g., CISSP, CISM, TOGAF, CREST, cloud certifications).

GC144: IT Project Manager Location: Fairford Salary: £55,000 pa Overview: First Military Recruitment are currently seeking an IT Project Manager on behalf of our client. We strongly encourage applications from ex-military personnel; however, all candidates will be considered. The successful candidate will help shape and deliver our client s vision and strategy through robust financial and technical planning. Strategic Contribution: Shape and deliver the Company s vision and strategy through robust financial and technological planning. Capability: Build and maintain first-class Finance and IT capabilities that support our client and their associated entities. Financial Leadership: Direct and manage the Company s finances, including budgeting, forecasting, and stewardship of assets. Reporting & Insight: Develop and sustain accurate and timely financial, operational and KPI reporting, supporting decision-making across the business. IT Systems & Software: Oversee the selection, implementation, and lifecycle management of core business systems and software, ensuring they are fit-for-purpose, secure, and deliver value. Cybersecurity & Data Integrity: Protect the organisation s digital assets and data through appropriate governance, controls, and compliance measures. Operational Environment: Create a business and IT environment that protects and optimises the Company s assets financial, physical, and digital. People & Culture: Support the development of a corporate culture and value set that empowers and protects employees and volunteers. Stakeholder Engagement: Foster effective communication and collaboration with internal and external customers, suppliers, and partners. Team Development: Recruit, support, develop, and manage the performance of a high-performing Finance & IT team. Continuous Improvement: Demonstrate, confirm, and review Finance and IT tasks, processes, and deliverables to drive efficiency and innovation. Responsibilities: Leading on the design and implementation of the Company IT and Comms planning, including for Business Continuity. Project Managing all Company and event IT projects including feasibility assessments, system updates, upgrades, risk management, laydown plans and contingency plans. Project manage the IT infrastructure installation of their events. Developing and implementing IT policy and best practice guides for the organisation. Overseeing the training for new and existing staff and, if required, volunteers on systems and software. Ensuring software licensing laws are followed and in place. Lead on GDPR Policy and Practices for the Group. Cybersecurity: Conducting regular system audits and checks on network and data security, ensuring backup procedures are adequate, organising regular penetration testing and following up on recommended actions. Identifying, proposing, and delivering on opportunities to improve and update software and systems. Designing and delivering, in conjunction with the HR Manager, training programs and workshops for staff and volunteers. Lead on appropriate usage of AI within the business. Manage the external stakeholder relationship with all IT providers including Allow Me. Management of IP Telephony. Lead a team including volunteers, employees and suppliers and consultants to plan and deliver the event infrastructure. Responsible for the Infrastructure Continual Improvement Process within IT&C. Competencies: Education: A Level or equivalent standard of education (desirable). Knowledge: Experience working in IT operations. Experience in Cisco configuration (or alternative). Excellent project management skills and strong ability to prioritize. Strong critical thinking and decision-making skills. Experience leading and managing event/greenfield site IT projects. Stakeholder management. IT infrastructure and operations best practices including security, network and systems administration, databases and data storage systems, and phone systems. Skills: Leadership and Management (essential) Verbal communication (essential) Organisation and time management (essential) Ability to work under pressure and to tight deadlines (essential) Numerate and literate with attention to detail (essential) Relationship management (essential) Negotiation skills (essential) Qualities: Trust Safety Innovation Excellence Team Spirit GC144: IT Project Manager Location: Fairford Salary: £55,000 pa

We are searching for an experienced Software Tester / Quality Assurance Engineer for an extremely exciting technology and data-focussed business based near to Exeter, Devon. Please note, this role is a hybrid role , and you are required in the office a minimum of 2-days per week , therefore you MUST live within a commutable distance of the Exeter office to be considered for the role. In this role will be defining and driving quality assurance strategies across their software development lifecycle, and you will be responsible for ensuring that QA best practices, automation, and modern testing methodologies are embedded into their delivery processes to produce reliable, secure, and high-quality software. In this role you will: - Define and implement QA strategies, ensuring alignment with industry best practices and company objectives. Drive the adoption of test automation, CI/CD integration, and modern testing methodologies to improve efficiency and reliability. Establish and enforce coding and testing standards to maintain high-quality software delivery. Lead risk-based testing approaches, prioritizing critical functionalities and system stability. Collaborate with developers, architects, and product teams to embed quality throughout the software development lifecycle. Oversee performance, security, and usability testing to proactively identify potential issues before release. Monitor and analyse QA metrics to continuously improve testing effectiveness and software quality. Ensure cross-team collaboration, keeping quality and information security at the heart of the business by working closely with security, DevOps, and compliance teams. Mentor and support QA apprentices, providing structured guidance, hands-on coaching, and development opportunities to build foundational testing skills and career progression. Collaborate with the wider team to ensure ISO27001, Cyber Essentials, and other information security framework documentation, controls, and compliance requirements are maintained and embedded within quality and delivery processes. To be a success in the role you require a mixture of the following skills and experience: - Extensive experience working in a Quality Assurance or Software Testing role within a modern software development environment. Hands-on experience with test automation and integrating testing into CI/CD pipelines. Experience working in Agile development teams and collaborating closely with developers and product teams. Experience leading or influencing QA practices, standards, or strategies across teams or projects. Experience identifying and managing quality risks throughout the software development lifecycle. Experience mentoring or supporting junior QA engineers and/or apprentices. Experience with performance, security, and non-functional testing. Exposure to information security frameworks such as ISO27001 or Cyber Essentials. Experience working in regulated or compliance-driven environments. Relevant QA or testing certifications (e.g. ISTQB or equivalent). Knowledge of modern software testing principles, QA strategies, and the software development lifecycle, including Agile and CI/CD practices. Knowledge of test automation frameworks, tools, and approaches, and how to integrate them effectively into delivery pipelines. Skilled in designing and executing risk-based testing strategies to prioritise critical functionality and system stability. Skilled in analysing QA metrics and test outcomes to drive continuous improvement in quality and testing effectiveness. Skilled in collaborating with cross-functional teams, including development, product, DevOps, and security, to embed quality early and consistently. Skilled in identifying, reporting, and communicating quality risks clearly to both technical and non-technical stakeholders. Able to demonstrate strong ownership and accountability for quality outcomes across teams and releases. Experience of promoting continuous improvement, learning, and adoption of modern testing methodologies and tools. The role comes with an excellent benefits package which includes, 25 days holiday + bank holidays, Private Medical Insurance, Life Insurance, Income Protection, Cycle to Work Scheme, Eye Tests and more. To be considered for this opportunity you MUST have the Right to Work in the UK long-term as sponsorship is NOT available with this client. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.

We are searching for an experienced Software Quality Assurance Engineer / Software Tester for an extremely exciting technology and data-focussed business based near to Exeter, Devon. Please note, this role is a hybrid role , and you are required in the office a minimum of 2-days per week , therefore you MUST live within a commutable distance of the Exeter office to be considered for the role. In this role will be defining and driving quality assurance strategies across their software development lifecycle, and you will be responsible for ensuring that QA best practices, automation, and modern testing methodologies are embedded into their delivery processes to produce reliable, secure, and high-quality software. In this role you will: - Define and implement QA strategies, ensuring alignment with industry best practices and company objectives. Drive the adoption of test automation, CI/CD integration, and modern testing methodologies to improve efficiency and reliability. Establish and enforce coding and testing standards to maintain high-quality software delivery. Lead risk-based testing approaches, prioritizing critical functionalities and system stability. Collaborate with developers, architects, and product teams to embed quality throughout the software development lifecycle. Oversee performance, security, and usability testing to proactively identify potential issues before release. Monitor and analyse QA metrics to continuously improve testing effectiveness and software quality. Ensure cross-team collaboration, keeping quality and information security at the heart of the business by working closely with security, DevOps, and compliance teams. Mentor and support QA apprentices, providing structured guidance, hands-on coaching, and development opportunities to build foundational testing skills and career progression. Collaborate with the wider team to ensure ISO27001, Cyber Essentials, and other information security framework documentation, controls, and compliance requirements are maintained and embedded within quality and delivery processes. To be a success in the role you require a mixture of the following skills and experience: - Extensive experience working in a Quality Assurance or Software Testing role within a modern software development environment. Hands-on experience with test automation and integrating testing into CI/CD pipelines. Experience working in Agile development teams and collaborating closely with developers and product teams. Experience leading or influencing QA practices, standards, or strategies across teams or projects. Experience identifying and managing quality risks throughout the software development lifecycle. Experience mentoring or supporting junior QA engineers and/or apprentices. Experience with performance, security, and non-functional testing. Exposure to information security frameworks such as ISO27001 or Cyber Essentials. Experience working in regulated or compliance-driven environments. Relevant QA or testing certifications (e.g. ISTQB or equivalent). Knowledge of modern software testing principles, QA strategies, and the software development lifecycle, including Agile and CI/CD practices. Knowledge of test automation frameworks, tools, and approaches, and how to integrate them effectively into delivery pipelines. Skilled in designing and executing risk-based testing strategies to prioritise critical functionality and system stability. Skilled in analysing QA metrics and test outcomes to drive continuous improvement in quality and testing effectiveness. Skilled in collaborating with cross-functional teams, including development, product, DevOps, and security, to embed quality early and consistently. Skilled in identifying, reporting, and communicating quality risks clearly to both technical and non-technical stakeholders. Able to demonstrate strong ownership and accountability for quality outcomes across teams and releases. Experience of promoting continuous improvement, learning, and adoption of modern testing methodologies and tools. The role comes with an excellent benefits package which includes, 25 days holiday + bank holidays, Private Medical Insurance, Life Insurance, Income Protection, Cycle to Work Scheme, Eye Tests and more. To be considered for this opportunity you MUST have the Right to Work in the UK long-term as sponsorship is NOT available with this employer! Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.

Systems Architect - Building Controls Alecto Recruitment works closely with a UK leading building management systems provider who has been established for over 20 years. They are specialists within building controls along with having a dedicated master system integrator division to their business. Due to continued growth, they are looking to hire an experienced Systems architect / Smart Solutions Engineer. Role Overview As a Smart Solutions Engineer, you'll play a pivotal role in designing and implementing integrated smart building solutions for large-scale commercial projects. You'll collaborate with clients, vendors, and internal teams to ensure seamless integration across various building systems, delivering solutions that are secure, scalable, and aligned with our clients' objectives. Key Responsibilities Integrated Systems Design: Develop and oversee the design of integrated solutions encompassing BMS, lighting, HVAC, and other building systems using protocols such as BACnet, Modbus, DALI, OPC, and MQTT. Device Qualification: Conduct rigorous testing of system devices, ensuring compliance with cybersecurity standards and verifying robust network capabilities. Asset Naming Conventions: Ensure adherence to asset naming standards, such as Building Device Naming Standards (BDNS) across all projects. Building Information Modelling: Implement and manage semantic building data models using standards like Software Solutions Collaboration: Work closely with our internal software engineering team to define requirements for integrations, data management and enhanced capabilities. Essential Qualifications & Experience Minimum 5 years experience in Smart Buildings Industry. Strong understanding of Building Systems such as BMS, Lighting Controls, Access Control, etc. Proficiency with open protocols such as BACnet and Modbus. Good understanding of IT/OT networks and network cybersecurity principles. Experience with semantic building data modelling standards (BRICK, Haystack, DBO). Hands-on experience with controller systems, preferably Tridium Niagara. Salary / Benefits: 55,000 - 60,000 Car Allowance 25 Days Holiday + Bank Holidays Pension Private Healthcare INDBMS

Smart Solutions Engineer Alecto Recruitment works closely with a UK leading building management systems provider who has been established for over 20 years. They are specialists within building controls along with having a dedicated master system integrator division to their business. Due to continued growth, they are looking to hire an experienced Systems architect / Smart Solutions Engineer. Role Overview As a Smart Solutions Engineer, you'll play a pivotal role in designing and implementing integrated smart building solutions for large-scale commercial projects. You'll collaborate with clients, vendors, and internal teams to ensure seamless integration across various building systems, delivering solutions that are secure, scalable, and aligned with our clients' objectives. Key Responsibilities Integrated Systems Design: Develop and oversee the design of integrated solutions encompassing BMS, lighting, HVAC, and other building systems using protocols such as BACnet, Modbus, DALI, OPC, and MQTT. Device Qualification: Conduct rigorous testing of system devices, ensuring compliance with cybersecurity standards and verifying robust network capabilities. Asset Naming Conventions: Ensure adherence to asset naming standards, such as Building Device Naming Standards (BDNS) across all projects. Building Information Modelling: Implement and manage semantic building data models using standards like Software Solutions Collaboration: Work closely with our internal software engineering team to define requirements for integrations, data management and enhanced capabilities. Essential Qualifications & Experience Minimum 5 years experience in Smart Buildings Industry. Strong understanding of Building Systems such as BMS, Lighting Controls, Access Control, etc. Proficiency with open protocols such as BACnet and Modbus. Good understanding of IT/OT networks and network cybersecurity principles. Experience with semantic building data modelling standards (BRICK, Haystack, DBO). Hands-on experience with controller systems, preferably Tridium Niagara. Salary / Benefits: 55,000 - 65,000 Car Allowance 25 Days Holiday + Bank Holidays Pension Private Healthcare INDBMS

Location: King s Cross, London Salary: £50,000 per annum Reports To: IT Director Industry: Scientific organisation Are you an experienced IT professional with a passion for infrastructure, security, and systems reliability? A Scientific organisation based in King s Cross is seeking an IT Infrastructure Engineer to join its growing technology team. This is an exciting opportunity to work with cutting-edge systems and play a key role in maintaining and securing a complex IT environment that supports operations worldwide. About the Role As an IT Infrastructure Engineer, you ll take responsibility for maintaining and improving the company s physical and virtual IT systems. You ll work closely with colleagues in the infrastructure team to ensure systems remain secure, patched, and optimised, while supporting the organisation s digital transformation and cloud initiatives. Key Responsibilities Maintain and patch the Windows Server and PC estate (Windows 7 11 and Server ). Manage antivirus and malware systems, investigating and resolving security alerts. Ensure data integrity through reliable backup configuration, testing, and disaster recovery processes. Administer and monitor Active Directory, Azure Entra, and Intune environments. Manage compliance policies, conditional access, and mobile device management. Work with third-party providers supporting SIEM and threat analytics systems. Lead on implementing IT security best practices, standards, and access controls. Support infrastructure and security projects, including system upgrades and migrations. Create and maintain technical documentation and standard operating procedures. Provide timely response to incidents, escalating where appropriate. About You You re an analytical, proactive IT professional with a strong grasp of infrastructure, networking, and cybersecurity principles. You enjoy problem-solving, working collaboratively, and ensuring that systems run efficiently and securely. Essential Skills & Experience Proven 10 years experience in IT infrastructure, desktop, or systems support. Strong technical knowledge of Microsoft operating systems (Windows client and server). Hands-on experience with Active Directory, Intune, and Azure Entra. Familiarity with antivirus, backup, and monitoring solutions. Excellent written and verbal communication skills. Highly organised, methodical, and capable of managing multiple priorities. Desirable Relevant IT or security certifications (e.g. Microsoft, CompTIA, Cisco). Experience managing hybrid or cloud-based environments. What s on Offer Salary of £50,000 per annum plus competitive benefits Flexible working arrangements. Opportunities for ongoing professional development and certification. A collaborative, forward-thinking environment within a global consultancy. The chance to work with advanced technology in a role that truly makes an impact. If you re ready to take the next step in your IT career and play a key role in securing and optimising infrastructure for a leading global consultancy, apply now .

The Role Role Summary As the strategic architect of the Group s security services, the Head of Security Services shapes and delivers a unified vision for cyber security across a global, federated enterprise and 85+ businesses grouped into 10 divisions. Reporting into the Group Chief Information Security Officer (CISO), this leader is responsible for overseeing day-to-day operational cyber security capabilities, ensuring robust, efficient, and coordinated first and second line security operations that protect the Group s people, systems, and data from cyber-attacks. By setting the direction for security services, championing the adoption of centralised capabilities, and driving continuous innovation, this role ensures that the security operations are robust, adaptive, and future-ready. With oversight of daily technical security functions and a relentless focus on operational excellence, the Head of Security Services builds and empowers high-performing teams to deliver 24/7 threat detection, rapid incident response, and proactive risk management. This includes ownership of security controls, security testing, tech assurance and vulnerability and threat management, and incident response across the organisation. Collaboration is at the heart of this position. By working across the GCS Leadership Team, with business and technology stakeholders, and with industry experts to align strategy, share intelligence, and drive a single, cohesive approach to security services, this leader ensures the Group not only meets but sets the benchmark for security services in a dynamic digital world. Role Responsibilities/Accountabilities Key Responsibilities: Strategic Leadership & Vision • Establish a costed strategic vision for security services across the Group s global, federated enterprise. • Evangelist for adoption of central services and drives alignment to a single security services vision. • Define, maintain, and regularly review the security services service catalogue and SLAs, clearly articulating what good looks like. • Integrates AI and modernises security operations using latest technologies. • Ensure security operations support organisational resilience and disaster recovery objectives. • Collaborate across verticals with the GCS Leadership Team. Operations & Service Delivery • Oversee daily operations of technical security functions, working collaboratively with the SOCs to provide 24/7 visibility and threat detection ensuring services are resilient, risk-aware, and aligned with business needs. • Regularly review and modernise SOC processes, technologies, and talent. • Partner with MSSPs and build solid vendor relationships to deliver the security strategy. • Define and collect metrics/KPIs, regularly reporting to leadership on SOC events/incidents and overall effectiveness. • Review metrics at a group level and adjust services strategy accordingly. • Management of the security technology stack and continuous improvement of services. Incident Response & Threat Management • Serve as incident commander (including on-call), leading cyber incident response activities. • Lead on cyber incident response activities and contributing to incident management activities by advising on incident identification, assessment, classification, escalation, investigation, mitigation, monitoring and reporting to help ensure cyber incidents are managed in a timely and effectively manner to limit impact. • Drive the development of threat management, threat modelling and identification of new threat vectors by keeping up to date with industry activity and methodology, to help ensure key assets are protected. • Lead threat hunts to proactively discover potential compromises. • Lead and coordinate red teaming, penetration testing, and exercising to assess and enhance the quality of services delivered by SOCs. • Red/purple teaming to ensure standard of services testing quality of services delivered by various SOCs. • Exercise incident response capabilities. Threat Intelligence & Tech Assurance and Vulnerability Management • Drive the development of threat management, threat modelling, and identification of new threat vectors. • Maintain up-to-date awareness of cyber threat intelligence and emerging attack vectors, always evaluating the materiality of the threat. • Liaise with industry experts and update strategy in line with the threat landscape. • Lead a threat-led, risk-based vulnerability management programme, ensuring timely remediation in collaboration with IT. • Own insider threat and data loss prevention (DLP) initiatives. • Lead the emergency patching vulnerability management programme ensuring threat-led and risk-based prioritisation, along with collaboration with IT for timely remediation. • Own and manage key security controls ensuring they are deployed, tuned, and monitored effectively across cloud and on-premise assets, along with managing the vendors that are responsible for supporting the Group. Team Leadership & Performance • Lead a high-performing team of cyber and project professionals, driving strategy, innovation, and continuous improvement across protection capabilities including SOC, Security Engineering, Technical Assurance and Vulnerability Management. • Manage team performance and cost base, making informed financial decisions and supporting portfolio-level investment planning. • Provide technical leadership and act as a subject matter expert on information security best practices. Collaboration & Stakeholder Engagement • Collaborate across the GCS Leadership Team and with cross-functional stakeholders. • Work with Head of Manufacturing / OT security to align security operations elements in manufacturing. • Collaborate with cross-functional stakeholders to assess and mitigate risk, while maintaining a forward-looking roadmap for cyber capabilities. Experience, Knowledge, Skills & Attributes Essential • A certification such as CISSP CISM, GIAC, or equivalent. University Degree qualified in an engineering discipline ideally with Cyber Security Engineering, Computer Science, Information Technology, or Computer and Electronics engineering. • Prior experience of building security teams and a global delivery operations support model. • Demonstrable experience of building and running a technical assurance function. • Demonstrable knowledge of industry standards such as NIST and ISO27001. Knowledge of relevant regulations such as GDPR, NIS2, and EU AI. • Exceptional analytical and decision-making abilities during BAU and incidents. • Experience in leading cybersecurity incidents, implementing response procedures, and driving continuous improvements, and optimising security tools and technologies to enhance operational efficiency. • Hands-on experience in threat detection and prevention, including expertise in SIEM, EDR, firewall management, or similar security technologies. • Ability to build relationships and engage with all levels of management, communicating complex technical issues to a range of audiences. • Experience of managing service level agreements, commercial engagements, and supporting procurement with contract negotiations. • Demonstrable experience in designing, enhancing, and implementing security processes and policies. • Strong project management and leadership skills with the ability to prioritise both operational and project demands. Desirable • Experience of operating within federated environments or within an IT Service Management Provider / Consultancy • Experience managing external supplier relationships to secure the best value and service

Introduction Saab UK is part of Scandinavia's largest defence company, bringing together the best of Swedish and British innovation. Saab offers world-leading solutions and services in defence, aviation, space, and civil security to keep people and society safe. Our UK presence has been growing at pace, meaning we can offer a wide range of opportunities for personal fulfilment and career growth. We currently employ over 600 people across eight sites in the UK, and our specialisations include software engineering, underwater robotics, radars, AI, and armed forces training. The Role: This role is part of our Public Safety Solutions Business Unit. The Information Security Manager is accountable for the organisation's information security strategy, governance, and compliance, ensuring the protection of systems and data that support UK public sector and emergency service operations. The role is critical in ensuring that services remain secure, resilient, and available, recognising the operational importance and potential impact on frontline emergency response. Key Responsibilities: Security Leadership & Assurance Own and be accountable for the organisation's overall security posture, ensuring alignment with business objectives and public sector expectations. Lead the implementation, maintenance, and continuous improvement of the ISMS in line with ISO/IEC 27001. Maintain Cyber Essentials Plus certification, ensuring ongoing compliance with technical controls. Develop and maintain the Security Management Plan, with a focus on resilience, availability, and service continuity. Provide regular assurance reporting to senior leadership and stakeholders. Risk Management & Compliance Own and maintain the Security Risk Register, ensuring risks are identified, assessed, and managed in line with organisational risk appetite. Conduct and support risk assessments, internal audits, and external certification activities. Ensure compliance with relevant UK regulatory and security requirements, including GDPR and guidance from the National Cyber Security Centre. Work with internal teams and suppliers to implement proportionate and effective security controls. Security Operations & Incident Management Act as the primary point of contact for security incidents, leading or coordinating response activities. Take a hands-on role in incident investigation, root cause analysis, and remediation. Ensure that incident response processes are aligned to the operational needs of emergency service environments, including timely escalation and communication. Oversee vulnerability management, security testing, and remediation activities, engaging third parties where required (e.g., CHECK providers). Service Resilience & Operational Security Ensure security is embedded in the design and operation of services supporting emergency response. Work closely with operational and technical teams to maintain high levels of system availability and resilience. Support business continuity and disaster recovery planning, testing, and continuous improvement. Security Awareness & Culture Develop and deliver targeted security awareness and training programmes. Promote a strong security culture, ensuring all staff understand their responsibilities in protecting critical services. Stakeholder Engagement Act as a trusted advisor to senior leadership, operational teams, and external stakeholders. Support engagement with public sector customers, providing assurance on security controls and practices. Collaborate with suppliers and partners to ensure security requirements are met across the supply chain. Qualifications & Skills: Proven experience in an information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials / Cyber Essentials Plus certification. Experience managing security risks, incidents, audits, and compliance activities in operational environments. Ability to balance strategic leadership with hands-on delivery in a small organisation. Strong understanding of service resilience, availability, and risk in mission-critical systems. Excellent communication skills, with the ability to engage both technical and non-technical stakeholders. By submitting an application to Saab UK, you consent to undertaking workforce screening activities that may include but are not limited to: Baseline Personnel Security checks, National Security Vetting, reference checks, verification of working rights and in all circumstances preferred candidates will be placed through a security interview.

About the opportunity Are you ready to launch a career in cyber security? Netcom Training s fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. Our learners have gone on to roles such as Cyber Security Analyst, Junior Penetration Tester, SOC Analyst, and IT Support, working with companies across tech, logistics, public services, and digital sectors. Complete the course and gain a guaranteed career support. helping you start your career protecting businesses, data, and digital systems. Course Details Start Date: 30/03 Duration: 14 weeks Format: Online, practical workshops Schedule: Mon-Thurs 6-9PM What you ll learn Cyber Principles: Understand core frameworks and security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills: Build the behaviours required for the modern cyber security workplace. Career Pathway Successful participants are guaranteed an interview with us or our network of UK-wide partners working with leading brands. Potential Roles: Trainee Cyber Security Analyst, SOC Analyst, Junior Information Security Officer. Starting Salaries: Typically £22,000 £35,000 (role dependent). Eligibility This is a government-funded opportunity. To apply, you must: Live in Greater Manchester. Be aged 19 or over. Earn below the gross annual wage cap of £32,400. Not currently be undertaking other government-funded training. Right to Work: You must have lived in the UK/EU for the last 3 years and have the right to work in the UK (Student/Graduate visas are not eligible). Cost This is a fully-funded course with no fees complete the training, gain essential cyber security skills.

Systems Engineer Aberdeen (Relocation will be considered) Hybrid Working (there will be time Offshore) Salary Experience Dependent Our client are a global leader within engineering and have sites across the globe. They are seeking a systems and controls engineer to join the process and controls part of the business. The company are a recognised top UK employer and can offer excellent career prospects. Responsibilities Systems Engineer Product & Customer Support: Deliver system updates and new products while collaborating with stakeholders; provide on-call support and site visits as needed. System Development & Maintenance: Update and maintain control system hardware/software, including design specs, test procedures, and scopes of work. Testing & Integration: Lead assurance, integration, and testing of system modules, ensuring smooth delivery and performance. Bid & Proposal Support: Assist in quotation preparation and identify potential sales leads through customer interactions. Technical Advisory: Advise clients on maintenance, site planning, operational methods, control strategies, and cybersecurity. Reporting & Communication: Compile site visit reports, ensure follow-up, and maintain effective communication with internal teams and clients. Challenges & Improvements: Balance shifting priorities, manage customer expectations, drive continuous improvement, and ensure access to resources when needed Qualification/Experience Systems Engineer Strong safety and integrity mindset Solid application background with knowledge of PLCs, SCADA, HMIs, industrial networks, and cybersecurity Willingness to learn, innovate, and work independently Flexible and willing to travel to customer sites Hands-on/practical experience Offshore certification - desirable Cybersecurity and functional safety awareness - desirable Understanding of process control and loop performance - desirable Benefits Systems Engineer Competitive salary 25 days annual leave plus bank holidays Competitive contributory pension scheme Life assurance Flexible benefits scheme (Includes options to buy/sell holidays, health checks, dental, eye care, gym memberships, cycle to work, gadget discounts and more) Internal mobility opportunities, mentorships & access to projects globally Employee Assistance Programme Generous employee referral scheme Private medical cover Paid overtime Generous bonus scheme For more information on this role, please contact Andrew Haddon on (phone number removed) or send a copy of your CV to (url removed) For details of other opportunities available within your chosen field please visit our website (url removed) Omega is an employment agency specialising in opportunities at all levels within the Engineering, Manufacturing, Aerospace, Automotive, Electronics, Defence, Scientific, Energy & Renewables and Tech sectors.

Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.

Ideas People Trust We're BDO. An accountancy and business advisory firm, providing the advice and solutions entrepreneurial organisations need to navigate today's changing world. We work with the companies that are Britain's economic engine - ambitious, entrepreneurially-spirited and high growth businesses that fuel the economy - and directly advise the owners and management teams that lead them. We'll broaden your horizons To ensure our services and applications are fit for the modern market, our IT team collaborates with every department. They develop, they explore and they implement the new ideas helping us to change the future of accounting, tax and business consulting. But, just as importantly, they maintain the tech that keeps us advancing. By testing and adopting the future of financial technical solutions, they find new and exciting ways to drive us forward. And you could too. In an IT role at BDO, you'll become part of a team that act as the backbone for our business. No matter who you are or what your skillset is, we'll give you the training and support you need to achieve whatever you put your mind to. We'll help you succeed Leading organisations trust us because of the quality of our advice. That quality grows from a thorough understanding of their business, and that understanding comes from working closely with them and building long-lasting relationships. You'll be someone who is both comfortable working proactively and managing your own tasks, as well as confident collaborating with others and communicating regularly with senior managers, directors, and BDO's partners to help businesses effectively. You'll be encouraged to identify and draw attention to opportunities for enhancing our delivery and providing additional services to organisations we work with. We are seeking a highly motivated and experienced Lead Software Security Engineer to join our team. You will have a strong background in software development, security, and operations. This role is required to support the Digital Product Management team in embedding security requirements and best practices into new Digital Products and Services. You will work closely with the Digital Product Management and IT Security teams to establish and build the right security controls and quality state gates across the product lifecycle. This includes security tooling to manage these controls. In this busy and rewarding role, you'll also: Collaborate with software development teams to integrate security into the development lifecycle Own the cultural shift to a Security DevSecOps mindset Manage & implement security controls, tools, and processes to secure applications and infrastructure Monitor and respond to security incidents and threats in a timely manner Stay up-to-date with security trends and best practices to continuously improve security posture Automate security testing and deployment processes to ensure rapid and secure delivery of software Develop and maintain security documentation and training materials Develop and implement the product security strategy in alignment with organisational goals Integrate Application Security Tools within existing Development Processes Assist with the Planning & Execution of Application Penetration Tests Serve as a Subject Matter Expert (SME) in the field of Application Security Define security NFR's and ensure these are met Report on compliance with security standards You'll be someone with: Strong experience in software development and security Proficient in scripting languages such as Powershell, YAML, JASON, etc. Collaborate with development teams to integrate security best practices into the secure software development lifecycle (SDLC) and ensure products are built securely Oversee vulnerability management and remediation efforts, including leading responses to pen test findings and security assessments Experience conducting risk assessments and threat modelling for software development and advise where necessary Experience in software security design review Strong knowledge of Agile, DevSecOps, System Engineer and or equivalent Knowledge of security standards and secure development principles such as NCSC Secure Development & Deployment Guidance, OWASP, NIST Secure Software Development Framework (SSDF - 800-218), Microsoft Azure Secure Development best practices, ISO27001 Experience with Azure cloud infrastructure, particularly Azure PaaS service Experience with Azure DevOps, particularly CI/CD and backlog management Prepare and present regular security reports to senior management, ensuring compliance with security standards and regulations Expertise with security tools and familiarity with DevSecOps processes Bachelor's or Master's degree in Computer Science, Cybersecurity, or related field (preferable) You'll be able to be yourself; we'll recognise and value you for who you are and celebrate and reward your contributions to the business. We're committed to agile working, and we offer every colleague the opportunity to work in ways that suit you, your teams, and the task at hand. At BDO, we'll help you achieve your personal goals and career ambitions, and we have programmes, resources, and frameworks that provide clarity and structure around career development. We're in it together Mutual support and respect is one of BDO's core values and we're proud of our distinctive, people-centred culture. From informal success conversations to formal mentoring and coaching, we'll support you at every stage in your career, whatever your personal and professional needs. Our agile working framework helps us stay connected, bringing teams together where and when it counts so they can share ideas and help one another. At BDO, you'll always have access to the people and resources you need to do your best work. We know that collaboration is the key to creating value for the companies we work with and satisfying experiences for our colleagues, so we've invested in state-of-the-art collaboration spaces in our offices. BDO's people represent a wealth of knowledge and expertise, and we'll encourage you to build your network, work alongside others, and share your skills and experiences. With a range of multidisciplinary events and dedicated resources, you'll never stop learning at BDO. We're looking forward to the future At BDO, we help entrepreneurial businesses to succeed, fuelling the UK economy. Our success is powered by our people, which is why we're always finding new ways to invest in you. Across the UK thousands of unique minds continue to come together to help companies we work with to achieve their ambitions We've got a clear purpose, and we're confident in our future, because we're adapting and evolving to build on our strengths, ensuring we continue to find the right combination of global reach, integrity and expertise. We shape the future together with openness and clarity, because we believe in empowering people to think creatively about how we can do things better.

We're looking for Security Architect (2 headcounts) to shape and enhance the security architecture of our client's IT systems. You'll assess risks, model threats, and identify vulnerabilities while ensuring solutions align with "Secure by Design" principles, standards, and industry best practice. You will have the opportunity to propose strategy and strengthen cyber resilience across the organisation What you'll do: Design, implement, and enhance secure end-to-end IT solutions aligned with business objectives and risk appetite. Identify vulnerabilities, perform threat modelling, conduct risk assessments, and evaluate security controls. Ensure solutions comply with 'Secure by Design' principles, corporate policies, and industry frameworks. Assess vulnerabilities, lead risk mitigation, and ensure compliance with industry standards (ISO 27001, NIST, NCSC). Contribute to security design documentation, options papers, and client presentations. Collaborate across 1st, 2nd, and 3rd lines of defense on cyber risk, compliance, and governance. Create and present design documentation, options papers, risk assessments, and stakeholder briefings. Contribute to reference architectures, established patterns, principles, and security guidelines. Monitor emerging cyber threats, analyze risks, and lead mitigation plans. Collaborate with partners, suppliers, and internal lines of defense to ensure compliance and governance. Continuously assess and improve processes, controls, and reporting to enable informed, risk-based decisions. What you'll bring: Strong knowledge of networking, cloud security (AWS/Azure), and modern security concepts. Familiarity with vulnerability management, penetration testing, and security frameworks. Experience with security standards (ISO 27001/27002/27017/27018). Minimum 5 years in cybersecurity, with certifications like CISSP, CISM, CCSP, or CRISC preferred. Eligible to work in the UK and have SC Security Clearance . Team-oriented, detail-focused, excellent communicator, self-motivated, and persuasive. Robert Walters Operations Limited is an employment business and employment agency and welcomes applications from all candidates

Cyber Security - Secure by Design Consultant (Contract) London 680 per day 6-month initial contract (with strong potential to go permanent) Deerfoot Recruitment is working with a leading financial services organisation to recruit a Secure by Design Consultant to join their IT Risk, Security & Control function in London. This is a 6-month contract paying 680 per day (Inside IR35) , with a high likelihood of converting to a permanent role. The successful candidate will play a key role in delivering secure-by-design assessments across technology projects, ensuring compliance with IT security policies and industry standards. You will work closely with senior stakeholders, providing assurance on cybersecurity controls, identifying risks, and recommending actions to strengthen the organisation's security posture. Key responsibilities include: Conducting IT security assessments across infrastructure, cloud, applications, and service operations projects. Reviewing and testing security controls to ensure operating effectiveness. Documenting risks, gaps, and recommendations for remediation. Supporting project teams to embed security requirements from the outset. Engaging with senior stakeholders and providing clear, actionable reporting. Skills & experience sought: Strong background in IT Security, Cyber Assurance, or IT Audit. Hands-on knowledge across areas such as governance, IAM, threat management, vulnerability management, and incident response. Good understanding of security frameworks (e.g. ISO27001, NIST, PCI-DSS, SOX). Experience engaging with senior stakeholders within complex environments. Relevant certifications (CISSP, CISM, CISA, CRISC) desirable. This is an exciting opportunity to join a high-performing cyber security team within a global financial services organisation, with genuine long-term career potential. Deerfoot Recruitment Solutions Ltd is a leading independent tech recruitment consultancy in the UK. For every CV sent to clients, we donate 1 to The Born Free Foundation. We are a Climate Action Workforce in partnership with Ecologi. If this role isn't right for you, explore our referral reward program with payouts at interview and placement milestones. Visit our website for details. Deerfoot Recruitment Solutions Ltd acts as an Employment Business in relation to this vacancy.

GCP Cloud Engineer 2 Month contract initially Based: Hybrid/Sheffield or Birmingham or Edinburgh (Max 3 days p/w onsite) Rate: £Market rates p/d (via Umbrella company) We have a great opportunity with a world leading organisation where you will be provided with all of the support and development to succeed. A progressive organisation where you can really make a difference. We a great opportunity for a GCP Cloud Engineer to join the team. We have an excellent opportunity for a seasoned GCP Cloud Engineer to aid in the development of services on Public Cloud Platforms. Utilise your Cloud Engineering expertise and DevOps skills across GCP to deploy and configure robust Back End services, automate infrastructure, and employ CSP native services. This role offers the chance to work on impactful systems within a secure, high-availability setting at a leading global financial institution. Key Responsibilities: * Deploying, configuring and securing Back End REST API services using CSP native services. * Deploying, configuring and securing containerised application runtimes using Infrastructure as Code. * Building and maintaining CI/CD pipelines in collaboration with DevOps and Security teams, focusing on traceability and regulatory controls. * Managing, monitoring, and optimising cloud infrastructure across GCP, ensuring performance, resilience, cost-efficiency, and data security. * Collaborating closely with infrastructure, architecture, and cybersecurity teams to meet internal risk, compliance, and governance requirements. * Supporting live systems, conducting root cause analysis, fixing bugs and implementing solutions for incidents and performance bottlenecks. Key Skills & Experience: * A background in Cloud Engineering with infrastructure experience. * Over 5 years of development experience, focusing on large-scale, distributed systems. * Hands-on experience with GCP, including CSP native services, networking, IAM, databases (PostgreSQL) and cost optimization. Experience with other cloud providers such as AWS is advantageous. * Proven experience with DevOps practices, including Infrastructure as Code (eg, Terraform), CI/CD tools (eg, Jenkins, GitLab CI), and containerization. * A strong understanding of security principles in cloud and enterprise systems. * Familiarity with audit and compliance considerations in regulated industries, particularly finance or banking. * Excellent written and verbal communication skills, with the ability to convey complex information effectively to diverse audiences. * A successful track record of delivering complex projects and/or programmes, using appropriate techniques and tools to ensure and measure success. Essential Skills * Demonstrable experience of: o Public Cloud. o Infrastructure build and configurations for services including Compute, Storage, Networking. o Linux. o Relational and NoSQL databases. o Integration services such as messaging and streams. o Building RESTful API Services. o Containerisation, Kubernetes, serverless functions. o Microservices and distributed tracing. o Enterprise logging, monitoring, and alerting frameworks (eg, ELK, Splunk, Prometheus, Grafana). o Automation Scripting (using languages such as Terraform, Ansible etc.). * Experience with Continuous Integration (CI), Continuous Delivery (CD) and continuous testing tools. * Experience working within an Agile environment. * A good understanding of cryptography (authentication, data encryption). * The ability to quickly acquire new skills and tools. * Good non-functional testing experience. This is an excellent opportunity on a great project of work, If you are looking for your next exciting opportunity, apply now for your CV to reach me directly, we will respond as soon as possible. LA International is a HMG approved ICT Recruitment and Project Solutions Consultancy, operating globally from the largest single site in the UK as an IT Consultancy or as an Employment Business & Agency depending upon the precise nature of the work, for security cleared jobs or non-clearance vacancies, LA International welcome applications from all sections of the community and from people with diverse experience and backgrounds. Award Winning LA International, winner of the Recruiter Awards for Excellence, Best IT Recruitment Company, Best Public Sector Recruitment Company and overall Gold Award winner, has now secured the most prestigious business award that any business can receive, The Queens Award for Enterprise: International Trade, for the second consecutive period.

Bilfinger UK is a leading engineering and maintenance provider, supporting customers across the chemical & petrochemical, nuclear, oil & gas, pharmaceuticals & biopharma, power & energy, utilities, renewables and food & beverage markets. We enhance the efficiency of assets, ensuring a high level of availability and reducing maintenance costs. We have extensive experience in offshore and onshore facilities; specialising in asset management services throughout all life cycle phases from consulting, engineering, manufacturing, assembly, operations, maintenance, and decommissioning. This commitment is delivered by an experienced and highly competent workforce of over 4,500 employees operating from 14 offices in strategic industrial hubs, upholding the highest standards of safety, compliance and quality. Role: As part of our continued growth in OT Cyber Security, we are looking for an experienced, committed and enthusiastic Principal OT Cyber Security Engineer to join our Automation team. The Principal OT Cyber Security Engineer will: Lead OT cyber security project lifecycle activities to deliver secure by design Industrial Automation and Control Systems Be responsible for developing and supporting the growth of our OT cyber security consultancy services Manage continuous improvement of Bilfinger UK's OT Cyber Security Management System (CSMS) The Principal OT Cyber Security Engineer will take full responsibility for the successful delivery of cyber security projects (technical, quality, time and cost elements). The ideal candidate will demonstrate a growth mindset, bring innovative and bleeding edge solutions to address complex challenges and have the ability to develop new ideas, processes and systems in an evolving OT cyber security landscape. Key Activities: Working co-operatively with the OT Cyber Security Manager, Technical Managers, Project Managers and engineering teams across a variety of Automation projects you will: Lead OT cyber security project lifecycle activities to deliver secure by design IACS: Facilitate and conduct ISA-62443-3-2 based cyber security risk assessments to define risk based OT cyber security requirements Create defence in depth, segmented system architectures Develop secure by design IACS to meet client requirements including documenting OT cyber security requirements and specifications Implement OT cyber security controls and countermeasures including: Hardening of BIOS/UEFI, virtual environments and operating systems to recognised industry standards, guidelines and best practices Network security including segmentation and boundary protection through managed switches, firewalls and remote access solutions e.g. Stratix, Fortinet etc. Cyber security applications for industrial control system environments: Host Intrusion Detection (HIDS) Malware detection and protection i.e. Endpoint Detection and Response (EDR) Network Intrusion Detection (IDS) Network monitoring Security Information and Event Management (SIEM) Support Project Managers with the planning and execution of OT cyber security aspects of projects to ensure they meet the time, cost and quality required by our clients Responsible for developing and supporting the growth of our OT cyber security consultancy services by: Evaluating new OT cyber security consultancy offerings and establishing our approach Conducting OT cyber security gap assessments of procedural and technological controls against relevant frameworks and standards e.g. National Cyber Security Centre (NCSC) Cyber Assessment Framework (CAF), ISA / IEC 62443 suite, OG86 etc. Carrying out a wide variety of site and desktop based vulnerability assessments on clients brown field IACS Support clients in the creation and development of their own CSMS artefacts including policies, procedures, guidelines, specification and work instructions etc. Manage continuous improvement of Bilfinger UK's OT Cyber Security Management System Support further development of cyber security documentation including policies, procedures and specifications Grow out OT cyber security partner ecosystem Ensure policies, procedures and specifications are being followed on projects by providing OT cyber security technical supervision and quality assurance through project surveillance e.g. design review, informal audits etc. Promote and maintain high level of security hygiene within Bilfinger UK Automation department Promote and facilitate OT cyber security knowledge sharing and learning from experience through, for example, internal training, lunch and learns, standardisation, best practices etc. Attend and represent Bilfinger UK at industry OT cyber security groups and events Contribute to the continuous professional development of the team by providing technical leadership and mentoring of junior engineers Support Business Development team on opportunities including at client meetings, presentations/demonstrations, solutions optioneering etc. Support Proposals team on technical solutions optioneering, bid production and technically reviewing bids Help develop and foster relationships and partnerships with control system OEM/vendor OT cyber security teams and OT cyber security solution providers Provide health and safety leadership by example Skills & Experience: At least 5 years of practical engineering experience in the application of OT cyber security to PLC, DCS, RTU, SCADA and HMI systems in at least one of Bilfinger UK's key sectors. Experience of the design, specification, implementation, testing and commissioning of security solutions, controls and countermeasures for OT/IACS environments. This should include: Hardening of BIOS/UEFI, virtual environments and operating systems to recognised industry standards, guidelines and best practices Network security including segmentation and boundary protection through managed switches, firewalls and remote access solutions e.g. Stratix, Fortinet etc. Cyber security applications for industrial control system environments: Host Intrusion Detection (HIDS) Malware detection and protection i.e. Endpoint Detection and Response (EDR) Network Intrusion Detection (IDS) Network monitoring Security Information and Event Management (SIEM) Practitioner of the ISA/IEC 62443 suite of standards, with particular focus on -2-1, 2-4, 3-2 and 3-3. Experience working in or for System Integrator, Operators of Essential Services (OES) or Critical National Infrastructure (CNI) organisations Broad technical knowledge of a variety of control system Original Equipment Manufacturers (OEMs) e.g. AVEVA, Rockwell Automation, Siemens, Schneider etc. Experience of industrial networking protocols e.g. CIP, DNP3, Modbus, PROFINET, IEC 61850, PRP, REP Experience of working within and supporting the continuous improvement of a Quality Management System (QMS) Qualifications: A degree or HND/HNC in Electronic/Electrical Engineering, Computer Science or other relevant engineering discipline Professionally registered engineer or working towards professional registration Relevant OT cyber security certification e.g.: ISA/IEC 62443 Cyber Security Expert Global Information Assurance Certification (GIAC) Global Industrial Cyber Security Professional Certification (GISCP) If you wish to speak to a member of the recruitment team, please contact . Bilfinger UK Limited Engineering Permanent Professional Bilfinger Engineering