Overview Title of role - Network SRE - DC - Network WAN Location - London Onsite Employment Type - Contract - 6 Months Job Description Job Description: Senior Network SRE (London) Role Overview: We are seeking a highly experienced Senior Network Site Reliability Engineer (SRE) to join our global network operations team. This role is critical in ensuring the reliability, scalability, and performance of our network infrastructure. You will lead incident responses, troubleshoot complex issues, and drive automation initiatives to maintain world-class network services. Required Skills Minimum 10 years' hands-on experience in network engineering and operations. Deep expertise in routing, switching, firewalling, and wireless across multiple vendors. Strong troubleshooting skills, including overlay/underlay network understanding. Proficiency in Linux/Unix environments. Experience with automation and monitoring platforms. Ability to work independently, set technical direction, and mentor others. Tools Netbox/Nautobot Prometheus / VictoriaMetrics Salt Networking (either one of the following) EVPN Segment routing (although suitable MPLS depth on resume acceptable) Key Responsibilities Lead Incident Management: Own and resolve critical network incidents, manage outages, and provide expert guidance during high-pressure situations. Advanced Troubleshooting: Diagnose and resolve complex issues across routing, switching, firewalling, and wireless domains. Technical Leadership: Set technical direction, mentor junior engineers, and foster a culture of operational excellence. 24/7 Operations: Participate in a shift-based model to ensure continuous availability of critical network services. Multi-Vendor Expertise: Operate across diverse environments including Arista, Cisco, Cumulus, Spectrum Ethernet, InfiniBand, Palo Alto, Check Point, Mist, Aruba, A10, Netscaler, and F5. Security & Segmentation: Support network segmentation, policy enforcement, and VPN solutions (GlobalProtect, AnyConnect). Automation & Observability: Utilize tools like Grafana, Big Panda, ServiceNow, ITMP, syslog, Splunk, Salt, Ansible, and Prometheus to enhance monitoring and automation. Innovation Projects: Collaborate on wireless design and AI cluster deployments to support cutting-edge initiatives. Preferred Skills Experience with InfiniBand and AI cluster deployments. Familiarity with network asset management systems (e.g., Nautobot). Wireless design experience with Cisco, Mist, Aruba.
06/06/2026
Full time
Overview Title of role - Network SRE - DC - Network WAN Location - London Onsite Employment Type - Contract - 6 Months Job Description Job Description: Senior Network SRE (London) Role Overview: We are seeking a highly experienced Senior Network Site Reliability Engineer (SRE) to join our global network operations team. This role is critical in ensuring the reliability, scalability, and performance of our network infrastructure. You will lead incident responses, troubleshoot complex issues, and drive automation initiatives to maintain world-class network services. Required Skills Minimum 10 years' hands-on experience in network engineering and operations. Deep expertise in routing, switching, firewalling, and wireless across multiple vendors. Strong troubleshooting skills, including overlay/underlay network understanding. Proficiency in Linux/Unix environments. Experience with automation and monitoring platforms. Ability to work independently, set technical direction, and mentor others. Tools Netbox/Nautobot Prometheus / VictoriaMetrics Salt Networking (either one of the following) EVPN Segment routing (although suitable MPLS depth on resume acceptable) Key Responsibilities Lead Incident Management: Own and resolve critical network incidents, manage outages, and provide expert guidance during high-pressure situations. Advanced Troubleshooting: Diagnose and resolve complex issues across routing, switching, firewalling, and wireless domains. Technical Leadership: Set technical direction, mentor junior engineers, and foster a culture of operational excellence. 24/7 Operations: Participate in a shift-based model to ensure continuous availability of critical network services. Multi-Vendor Expertise: Operate across diverse environments including Arista, Cisco, Cumulus, Spectrum Ethernet, InfiniBand, Palo Alto, Check Point, Mist, Aruba, A10, Netscaler, and F5. Security & Segmentation: Support network segmentation, policy enforcement, and VPN solutions (GlobalProtect, AnyConnect). Automation & Observability: Utilize tools like Grafana, Big Panda, ServiceNow, ITMP, syslog, Splunk, Salt, Ansible, and Prometheus to enhance monitoring and automation. Innovation Projects: Collaborate on wireless design and AI cluster deployments to support cutting-edge initiatives. Preferred Skills Experience with InfiniBand and AI cluster deployments. Familiarity with network asset management systems (e.g., Nautobot). Wireless design experience with Cisco, Mist, Aruba.
Your Mission Your mission is to build and scale the infrastructure that powers fast, reliable and secure global payments at NALA. You'll help create resilient systems, developer platforms and cloud foundations that enable engineering teams to ship confidently at high velocity. Your Responsibilities in this Role Build and improve the cloud infrastructure powering NALA and Rafiki, ensuring high availability, scalability and security across our systems. Improve developer experience through automation, self serve tooling and infrastructure as code practices that increase engineering velocity. Own and evolve our observability, incident response and reliability practices to minimise downtime and improve system performance. Partner closely with product and engineering teams to support new services, migrations and platform improvements across the business. Strengthen our security posture by implementing best practices across networking, access controls, secrets management and production environments. Continuously improve CI/CD pipelines and deployment workflows to enable safe, fast and reliable releases. Must-have requirements Experience building and operating production infrastructure on AWS (preferably), GCP or similar cloud platforms. Strong experience with Infrastructure as Code tools such as Terraform. Experience managing containerised workloads using ECS and Docker in production environments. Strong hands on experience operating and scaling infrastructure components such as Kafka, Redis and managed relational databases like RDS. Strong understanding of networking, security, observability and distributed systems fundamentals. Experience improving CI/CD pipelines and deployment automation in fast moving engineering teams. Comfortable debugging production issues and participating in incident response in high availability environments. Clear communication skills and the ability to work closely with software engineers across multiple teams. Nice to have requirements Experience working in fintech, payments or other regulated environments. Experience building internal developer platforms or self serve infrastructure tooling. Experience supporting SOC2, ISO27001 or similar compliance initiatives. Success in the role looks like 3-Month Metrics Successfully onboarded into NALA's infrastructure stack, deployment workflows and engineering processes. Delivered meaningful improvements to infrastructure reliability, deployment speed or observability tooling. Built strong working relationships with engineering teams and actively supported platform and production needs. 6-Month Metrics Reduced operational bottlenecks through automation and infrastructure improvements that measurably improve developer velocity. Improved platform reliability, monitoring coverage and incident response processes across critical systems. Played a key role in scaling infrastructure to support increasing transaction volumes and product expansion. Benefits 27 Days Off Plus UK Bank Holidays: Take the time to decompress. Working at a startup is hard! Birthday Leave: Celebrate your special day with a bonus day off to take off in that month. Enhanced Parental Leave: We offer 16 weeks of full pay for the primary caregiver and 4 weeks of full pay for the secondary caregiver (After a 6-month probationary period) Enhanced Pension: Salary sacrifice pension scheme via Penfold giving you flexibility and control on how you save for your future! Global Workspace: Get access to WeWork locations worldwide. Learning Budget: Fuel your growth with $1000 annually for learning and development. Sarabi: Themed snacks and Friday lunch focused on building great working relationships with the team. Monthly Socials: Join fun social events every month for great times. Free Coffee: Enjoy barista-style coffee at your fingertips.
06/06/2026
Full time
Your Mission Your mission is to build and scale the infrastructure that powers fast, reliable and secure global payments at NALA. You'll help create resilient systems, developer platforms and cloud foundations that enable engineering teams to ship confidently at high velocity. Your Responsibilities in this Role Build and improve the cloud infrastructure powering NALA and Rafiki, ensuring high availability, scalability and security across our systems. Improve developer experience through automation, self serve tooling and infrastructure as code practices that increase engineering velocity. Own and evolve our observability, incident response and reliability practices to minimise downtime and improve system performance. Partner closely with product and engineering teams to support new services, migrations and platform improvements across the business. Strengthen our security posture by implementing best practices across networking, access controls, secrets management and production environments. Continuously improve CI/CD pipelines and deployment workflows to enable safe, fast and reliable releases. Must-have requirements Experience building and operating production infrastructure on AWS (preferably), GCP or similar cloud platforms. Strong experience with Infrastructure as Code tools such as Terraform. Experience managing containerised workloads using ECS and Docker in production environments. Strong hands on experience operating and scaling infrastructure components such as Kafka, Redis and managed relational databases like RDS. Strong understanding of networking, security, observability and distributed systems fundamentals. Experience improving CI/CD pipelines and deployment automation in fast moving engineering teams. Comfortable debugging production issues and participating in incident response in high availability environments. Clear communication skills and the ability to work closely with software engineers across multiple teams. Nice to have requirements Experience working in fintech, payments or other regulated environments. Experience building internal developer platforms or self serve infrastructure tooling. Experience supporting SOC2, ISO27001 or similar compliance initiatives. Success in the role looks like 3-Month Metrics Successfully onboarded into NALA's infrastructure stack, deployment workflows and engineering processes. Delivered meaningful improvements to infrastructure reliability, deployment speed or observability tooling. Built strong working relationships with engineering teams and actively supported platform and production needs. 6-Month Metrics Reduced operational bottlenecks through automation and infrastructure improvements that measurably improve developer velocity. Improved platform reliability, monitoring coverage and incident response processes across critical systems. Played a key role in scaling infrastructure to support increasing transaction volumes and product expansion. Benefits 27 Days Off Plus UK Bank Holidays: Take the time to decompress. Working at a startup is hard! Birthday Leave: Celebrate your special day with a bonus day off to take off in that month. Enhanced Parental Leave: We offer 16 weeks of full pay for the primary caregiver and 4 weeks of full pay for the secondary caregiver (After a 6-month probationary period) Enhanced Pension: Salary sacrifice pension scheme via Penfold giving you flexibility and control on how you save for your future! Global Workspace: Get access to WeWork locations worldwide. Learning Budget: Fuel your growth with $1000 annually for learning and development. Sarabi: Themed snacks and Friday lunch focused on building great working relationships with the team. Monthly Socials: Join fun social events every month for great times. Free Coffee: Enjoy barista-style coffee at your fingertips.
Transport Practice Managing Consultant Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Reporting To: Gary Cannon Description Role: Cyber Security Aviation Lead (Global Transport) Locations: Cheltenham, Manchester or London - Hybrid/Global Remit We are seeking a highly skilled Cyber Security Aviation Lead to join our Global Transport Practice. This role will serve as the subject matter expert (SME) for aviation cyber security, covering operational technology (OT), safety critical aviation systems, and regulatory standards across the global aviation ecosystem. You will play a pivotal role in shaping NCC Group's aviation offerings, supporting delivery, mentoring colleagues, engaging clients, and driving growth in the aviation market. While aviation is the primary focus, the role also offers opportunities to work across rail, maritime, and automotive with full support from the wider transport team. This is a client facing, collaborative, and technically hands on role suited to someone with solid aviation cyber experience who can also support business development activities. Key Responsibilities Aviation Cyber Security Leadership Act as the global aviation cyber security SME, providing expert knowledge of: Part IS and other aviation specific security frameworks ISA/IEC 62443 requirements and application to aviation OT Penetration testing techniques relevant to OT and aviation systems Avionics, airport infrastructure, ground systems, airline operational technologies Lead and oversee cyber engagements within the aviation ecosystem, including: Airports, ANSPs, MNO, airlines, OEMs, ground handling, avionics suppliers Safety critical OT networks and mission critical control systems Technical Delivery Perform and/or lead: OT penetration testing Threat modelling and risk assessments Security architecture review for aviation technologies Compliance assessments and gap analyses (Part IS, 62443, NIS2 where applicable) Oversee technical quality, ensuring best in class delivery to clients. Business Development & Practice Growth Support the creation and refinement of NCC Group's aviation services and propositions. Work with business development teams to: Identify opportunities Create proposals Participate in client meetings and presentations Represent NCC Group at aviation cyber conferences, industry forums, and working groups. Collaboration & Cross-Transport Support Operate as part of the wider Global Transport Practice, contributing to multi modal cyber projects. When required (and with team support), step into cyber roles in: Rail Maritime Automotive Work closely with colleagues across geographies to develop integrated cyber security solutions. Knowledge Sharing & Mentoring Coach and mentor internal consultants on aviation cyber security concepts, systems, and regulations. Develop internal guidance, training materials, and workbooks/playbooks. Promote a collaborative, high performance culture. Client Engagement Act as a trusted advisor to stakeholders at all levels. Ensure exceptional client experience through clear communication, professionalism, and delivery excellence. Build long term relationships with global aviation customers. Skills, Knowledge and Expertise Essential Experience & Skills Proven experience in the aviation ecosystem, such as working with: Airports Airlines OEMs Avionics manufacturers ANSPs Strong understanding of aviation operational technologies and safety critical systems. Knowledge of: Part IS ISA/IEC 62443 OT networks, architectures, and protocols Security risk assessment in safety critical environments Hands on cyber security experience, such as: Penetration testing (OT preferred) Threat modelling Incident response Architecture review Comfortable providing client facing advisory services. Experience working in or with regulated environments. Ability to simplify complex cyber concepts for diverse audiences. Desirable Skills Certifications (one or more): GICSP, CISSP, CISM, CRT/OSCP, CISA, CCSFP, 62443 certificates, CREST Background in engineering, avionics, or airport operations. Experience with NIS/NIS2, EASA, FAA, ICAO cyber requirements. Experience contributing to sales or pre sales cycles. Benefits What do we offer in return? We have a high performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
06/06/2026
Full time
Transport Practice Managing Consultant Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Reporting To: Gary Cannon Description Role: Cyber Security Aviation Lead (Global Transport) Locations: Cheltenham, Manchester or London - Hybrid/Global Remit We are seeking a highly skilled Cyber Security Aviation Lead to join our Global Transport Practice. This role will serve as the subject matter expert (SME) for aviation cyber security, covering operational technology (OT), safety critical aviation systems, and regulatory standards across the global aviation ecosystem. You will play a pivotal role in shaping NCC Group's aviation offerings, supporting delivery, mentoring colleagues, engaging clients, and driving growth in the aviation market. While aviation is the primary focus, the role also offers opportunities to work across rail, maritime, and automotive with full support from the wider transport team. This is a client facing, collaborative, and technically hands on role suited to someone with solid aviation cyber experience who can also support business development activities. Key Responsibilities Aviation Cyber Security Leadership Act as the global aviation cyber security SME, providing expert knowledge of: Part IS and other aviation specific security frameworks ISA/IEC 62443 requirements and application to aviation OT Penetration testing techniques relevant to OT and aviation systems Avionics, airport infrastructure, ground systems, airline operational technologies Lead and oversee cyber engagements within the aviation ecosystem, including: Airports, ANSPs, MNO, airlines, OEMs, ground handling, avionics suppliers Safety critical OT networks and mission critical control systems Technical Delivery Perform and/or lead: OT penetration testing Threat modelling and risk assessments Security architecture review for aviation technologies Compliance assessments and gap analyses (Part IS, 62443, NIS2 where applicable) Oversee technical quality, ensuring best in class delivery to clients. Business Development & Practice Growth Support the creation and refinement of NCC Group's aviation services and propositions. Work with business development teams to: Identify opportunities Create proposals Participate in client meetings and presentations Represent NCC Group at aviation cyber conferences, industry forums, and working groups. Collaboration & Cross-Transport Support Operate as part of the wider Global Transport Practice, contributing to multi modal cyber projects. When required (and with team support), step into cyber roles in: Rail Maritime Automotive Work closely with colleagues across geographies to develop integrated cyber security solutions. Knowledge Sharing & Mentoring Coach and mentor internal consultants on aviation cyber security concepts, systems, and regulations. Develop internal guidance, training materials, and workbooks/playbooks. Promote a collaborative, high performance culture. Client Engagement Act as a trusted advisor to stakeholders at all levels. Ensure exceptional client experience through clear communication, professionalism, and delivery excellence. Build long term relationships with global aviation customers. Skills, Knowledge and Expertise Essential Experience & Skills Proven experience in the aviation ecosystem, such as working with: Airports Airlines OEMs Avionics manufacturers ANSPs Strong understanding of aviation operational technologies and safety critical systems. Knowledge of: Part IS ISA/IEC 62443 OT networks, architectures, and protocols Security risk assessment in safety critical environments Hands on cyber security experience, such as: Penetration testing (OT preferred) Threat modelling Incident response Architecture review Comfortable providing client facing advisory services. Experience working in or with regulated environments. Ability to simplify complex cyber concepts for diverse audiences. Desirable Skills Certifications (one or more): GICSP, CISSP, CISM, CRT/OSCP, CISA, CCSFP, 62443 certificates, CREST Background in engineering, avionics, or airport operations. Experience with NIS/NIS2, EASA, FAA, ICAO cyber requirements. Experience contributing to sales or pre sales cycles. Benefits What do we offer in return? We have a high performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
Valarian Technologies is a dual-use technology company building critical tools to safeguard the future in an era of evolving global security challenges. We're rethinking security beyond traditional military domains, addressing asymmetric threats that impact our technological advantage, economic strength, and democratic institutions. We build Acra - the platform foundation for everything we do as a dual-use technology company. The platform's name, rooted in the Greek word for citadel (or, fortress), reflects the design and purpose of our infrastructure agnostic secure enclaves: protecting critical data. Some of the government and commercial workflows include increased operational resiliency for mission critical systems and functions; enabling organizations to more quickly and widely adopt emerging technologies while ensuring the integrity of their intellectual property; information flow during disaster response scenarios, and zero trust / least privilege environments for M&A, attorney client privileged communications, etc. And we've only scratched the surface. At our core, we're driven by a shared mission and a belief in making a tangible impact on our world. Whether you join our London HQ or the wider global organisation, you'll be a part of collaborative, high performing teams, creating cutting edge software, platforms, and infrastructure. The Role In this role, you will help build and operate the backend and platform services behind ACRA: our secure Kubernetes platform for controlled compute, data governance, and AI driven security operations. You will work mainly in Go, building services across backend engineering, Kubernetes, platform infrastructure, and security. This includes systems designed for reliability, scale, and security from the start, including how AI can help define, enforce, and reason about security controls. You will join a focused engineering team that values ownership, direct feedback, and support. You will start with clear areas of work, then take on more autonomy over services and platform direction as you build context. This is a strong fit for someone who wants to become excellent across backend, platform, Kubernetes, and security, and help build a serious security platform from an early stage. What you'll do Develop backend services, APIs, and platform components using Go. Own services from design and implementation through testing, deployment, and production monitoring. Work with Docker, Kubernetes, CI/CD, GitOps, and secrets management. Build platform features for workload isolation, policy enforcement, audit logging, and identity aware communication. Design event driven distributed systems for resilience and scalability. Improve metrics, logging, tracing, and incident response. Work with engineering and product teams to turn requirements into technical solutions. Own specific platform areas and contribute independently. Improve how the team reviews code, deploys changes, and learns from incidents. What we are looking for Backend engineering experience, with some exposure to Go. Experience building APIs, backend services, or microservices. Experience working with Docker and containers. Experience deploying to, developing on, or building with Kubernetes. Understanding of CI/CD pipelines and deployment workflows. Familiarity with GitOps, Argo, container registries, secrets, or deployment security. Understanding of event driven architecture, asynchronous workflows, or distributed systems. System design knowledge around reliability, scalability, observability, and failure handling. Ability to debug issues across applications, services, and infrastructure. Interest in why the platform is being built, not just what needs to be implemented. Ownership, curiosity, and ability to work independently. Willingness to learn across backend, platform, infrastructure, and DevOps. Nice to have Security, regulated, or high trust environments such as defence, government, fintech, healthcare, critical infrastructure, or sovereign cloud. Kubernetes security areas such as zero trust, workload isolation, identity aware systems, network policy, service mesh, or policy enforcement. Platform security practices such as secrets management, supply chain security, admission control, auditability, and operational evidence. Observability and operations, including metrics, logs, traces, alerting, incident response, and debugging production systems. Experience in startup, platform, infrastructure, or product engineering environments with broad ownership. You do not need to have worked with all of these. They are areas you may learn and build with us. Benefits Equity - because you have the right to own what you're building A competitive salary - because we value your unique skills Employer pension contributions - because you deserve a secure future Hybrid work setup - because everyone has different needs Rewarding company retreats and meetups that respect your work/life balance - because we love getting to know each other! Life at Valarian Our culture is built on inclusivity, compassion and flexibility - we want everyone to be empowered to achieve their goals at Valarian. The world is changing, and so is our way of working. If you want to join us in the London office - it's quite nice! - you're welcome to; and if you'd prefer to work remotely, that's fine too. And as we build elegant solutions to simplify the complexities of business collaboration, we also simplify work life: contribute wherever and whenever allows you to be your best self. We trust each other to consistently raise the bar, and we challenge each other to continually reach new heights. Valarian Technologies Limited is an equal opportunity employer and welcomes applications from individuals regardless of race, colour, religion, sex, sexual orientation, gender, identity or expression, national origin, age, disability, genetic information, marital status, veteran, amnesty, or any other legally protected characteristic. We are committed to ensuring a fair and inclusive recruitment process and providing employment opportunities to all applicants. Decision recruitment, hiring, and employment are based solely on qualifications, skills, and experience relevant to the job requirements.
06/06/2026
Full time
Valarian Technologies is a dual-use technology company building critical tools to safeguard the future in an era of evolving global security challenges. We're rethinking security beyond traditional military domains, addressing asymmetric threats that impact our technological advantage, economic strength, and democratic institutions. We build Acra - the platform foundation for everything we do as a dual-use technology company. The platform's name, rooted in the Greek word for citadel (or, fortress), reflects the design and purpose of our infrastructure agnostic secure enclaves: protecting critical data. Some of the government and commercial workflows include increased operational resiliency for mission critical systems and functions; enabling organizations to more quickly and widely adopt emerging technologies while ensuring the integrity of their intellectual property; information flow during disaster response scenarios, and zero trust / least privilege environments for M&A, attorney client privileged communications, etc. And we've only scratched the surface. At our core, we're driven by a shared mission and a belief in making a tangible impact on our world. Whether you join our London HQ or the wider global organisation, you'll be a part of collaborative, high performing teams, creating cutting edge software, platforms, and infrastructure. The Role In this role, you will help build and operate the backend and platform services behind ACRA: our secure Kubernetes platform for controlled compute, data governance, and AI driven security operations. You will work mainly in Go, building services across backend engineering, Kubernetes, platform infrastructure, and security. This includes systems designed for reliability, scale, and security from the start, including how AI can help define, enforce, and reason about security controls. You will join a focused engineering team that values ownership, direct feedback, and support. You will start with clear areas of work, then take on more autonomy over services and platform direction as you build context. This is a strong fit for someone who wants to become excellent across backend, platform, Kubernetes, and security, and help build a serious security platform from an early stage. What you'll do Develop backend services, APIs, and platform components using Go. Own services from design and implementation through testing, deployment, and production monitoring. Work with Docker, Kubernetes, CI/CD, GitOps, and secrets management. Build platform features for workload isolation, policy enforcement, audit logging, and identity aware communication. Design event driven distributed systems for resilience and scalability. Improve metrics, logging, tracing, and incident response. Work with engineering and product teams to turn requirements into technical solutions. Own specific platform areas and contribute independently. Improve how the team reviews code, deploys changes, and learns from incidents. What we are looking for Backend engineering experience, with some exposure to Go. Experience building APIs, backend services, or microservices. Experience working with Docker and containers. Experience deploying to, developing on, or building with Kubernetes. Understanding of CI/CD pipelines and deployment workflows. Familiarity with GitOps, Argo, container registries, secrets, or deployment security. Understanding of event driven architecture, asynchronous workflows, or distributed systems. System design knowledge around reliability, scalability, observability, and failure handling. Ability to debug issues across applications, services, and infrastructure. Interest in why the platform is being built, not just what needs to be implemented. Ownership, curiosity, and ability to work independently. Willingness to learn across backend, platform, infrastructure, and DevOps. Nice to have Security, regulated, or high trust environments such as defence, government, fintech, healthcare, critical infrastructure, or sovereign cloud. Kubernetes security areas such as zero trust, workload isolation, identity aware systems, network policy, service mesh, or policy enforcement. Platform security practices such as secrets management, supply chain security, admission control, auditability, and operational evidence. Observability and operations, including metrics, logs, traces, alerting, incident response, and debugging production systems. Experience in startup, platform, infrastructure, or product engineering environments with broad ownership. You do not need to have worked with all of these. They are areas you may learn and build with us. Benefits Equity - because you have the right to own what you're building A competitive salary - because we value your unique skills Employer pension contributions - because you deserve a secure future Hybrid work setup - because everyone has different needs Rewarding company retreats and meetups that respect your work/life balance - because we love getting to know each other! Life at Valarian Our culture is built on inclusivity, compassion and flexibility - we want everyone to be empowered to achieve their goals at Valarian. The world is changing, and so is our way of working. If you want to join us in the London office - it's quite nice! - you're welcome to; and if you'd prefer to work remotely, that's fine too. And as we build elegant solutions to simplify the complexities of business collaboration, we also simplify work life: contribute wherever and whenever allows you to be your best self. We trust each other to consistently raise the bar, and we challenge each other to continually reach new heights. Valarian Technologies Limited is an equal opportunity employer and welcomes applications from individuals regardless of race, colour, religion, sex, sexual orientation, gender, identity or expression, national origin, age, disability, genetic information, marital status, veteran, amnesty, or any other legally protected characteristic. We are committed to ensuring a fair and inclusive recruitment process and providing employment opportunities to all applicants. Decision recruitment, hiring, and employment are based solely on qualifications, skills, and experience relevant to the job requirements.
IT Operations Platforms and Security Lead This role requires excellent management of a small team in IT along with managing stakeholders and vendors. You must be hands on technically in IT Infrastructure. The IT Operational Platform and Security Lead is responsible for overseeing the organisation's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third party platforms that support global business operations and the associated applications estate. The role requires a proactive leader who can drive IT operational excellence, manage security risks, focus on continual service improvement, drive transformational delivery projects, and work effectively with internal stakeholders and third party vendors to deliver a high quality Global IT services. Working in line with the Architecture defined IT principle of a 'buy before build' environment, the individual will need to ensure that outsourced and cloud based services are robust, cost effective, and aligned with business needs and the Strategic IT vision. They will also play a key role in enhancing cybersecurity, protecting data and systems, driving transformative operational change, enhancing IT processes and ensuring compliance with governance bodies and industry regulations. Due to the nature of the role, complexity Security, Compliance & Risk Management Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. Oversee the adoption of zero trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets. Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge. Microsoft AD (Entra), Server and SQL experience. O365 administration and design. Global Software Patching and estate management via Intune. Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience. Software Defined Networking (Cisco, Meraki, Versa). Key Skills Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD WAN, DNS security, endpoint protection, and cloud security controls. IT Service Management & Automation: Experience implementing ITIL based service management, automating operational tasks, and optimising service delivery. IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. Supplier & Vendor Management: Experience managing third party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost effectiveness. Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Problem Solving & Decision Making: Capable of making informed decisions and resolving complex IT issues in a fast paced environment. Stakeholder Engagement: Ability to communicate effectively with technical and non technical stakeholders, including senior leadership and business users. Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security first approach. Summary of Skills Required: Global Enterprise level Infrastructure Management position for the last 5 years. Global team management (human resources, strategic delivery, operational service, audit lead for Infra, budget ). Key - 3rd party operational infrastructure vendor management - i.e management of managed service partners. Migration of Legacy VM based estates to SaaS and Cloud services platforms. Legacy tech to Azure knowledge/experience. Prior to the last 5 years, a technical infrastructure engineering level background, working on Windows Server, AD , SQL environments, Firewalls/SDWAN, and Networks (WAN &/or LAN). The Client is based in the City of London. This is a hybrid position with 3 days in the office. The salary for this role will be in the range £85K - £100K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.
06/06/2026
Full time
IT Operations Platforms and Security Lead This role requires excellent management of a small team in IT along with managing stakeholders and vendors. You must be hands on technically in IT Infrastructure. The IT Operational Platform and Security Lead is responsible for overseeing the organisation's IT operations, ensuring the stability, continuity, security, and efficiency of its technology platforms within a global commercial insurance environment. While Microsoft technologies (Microsoft 365, Azure, Exchange Online) form a core part of the infrastructure, the role also encompasses broader enterprise IT systems, multi layered networking, security, data management, and third party platforms that support global business operations and the associated applications estate. The role requires a proactive leader who can drive IT operational excellence, manage security risks, focus on continual service improvement, drive transformational delivery projects, and work effectively with internal stakeholders and third party vendors to deliver a high quality Global IT services. Working in line with the Architecture defined IT principle of a 'buy before build' environment, the individual will need to ensure that outsourced and cloud based services are robust, cost effective, and aligned with business needs and the Strategic IT vision. They will also play a key role in enhancing cybersecurity, protecting data and systems, driving transformative operational change, enhancing IT processes and ensuring compliance with governance bodies and industry regulations. Due to the nature of the role, complexity Security, Compliance & Risk Management Define and enforce cloud security policies, identity management, and access controls to protect systems, networks, and data. Oversee the adoption of zero trust security principles to enhance protection across cloud platforms. Manage identity and access management (IAM) in a cloud first environment, including Azure AD, MFA, Conditional Access, SSO, and Privileged Access Management (PAM). Lead threat monitoring, detection, and response using cloud native security solutions such as Microsoft Defender, Sentinel, and SIEM platforms. Ensure compliance with cloud security frameworks and regulatory requirements (ISO 27001, NIST, GDPR, SOC2, FCA). Conduct regular security risk assessments, penetration tests, and vulnerability management across cloud services. Oversee endpoint security, cloud network and API security for robust protection across all assets. Define, manage and maintain accurate DR and BCP plans for the infrastructure area with biannual tests. Technical Experience Microsoft Azure Infrastructure design and administration, including topology, Azure networking, services, and component knowledge. Microsoft AD (Entra), Server and SQL experience. O365 administration and design. Global Software Patching and estate management via Intune. Firewall (Azure, CheckPoint and Cloudflare), DNS, VPN, WIFI and Local Area Network design & administration experience. Software Defined Networking (Cisco, Meraki, Versa). Key Skills Microsoft 365 & Azure: Strong experience managing Microsoft 365 (Exchange, SharePoint, Teams), Azure cloud infrastructure, and security tools such as Microsoft Defender and Sentinel. Security & Compliance: Deep knowledge of security frameworks (ISO 27001, NIST, CIS), compliance requirements (GDPR, SOC2), and risk management best practices. Identity & Access Management (IAM): Expertise in Azure AD, MFA, Conditional Access, Single Sign On (SSO), and Privileged Access Management (PAM). Threat Management & Incident Response: Ability to detect, respond to, and mitigate cyber threats using SIEM, endpoint security, and vulnerability management tools. Networking & Infrastructure Security: Understanding of firewalls, VPNs, SD WAN, DNS security, endpoint protection, and cloud security controls. IT Service Management & Automation: Experience implementing ITIL based service management, automating operational tasks, and optimising service delivery. IT Operations & Service Continuity: Ability to ensure IT systems are highly available, resilient, and fit for purpose, with a strong focus on business continuity and disaster recovery. Supplier & Vendor Management: Experience managing third party IT vendors, MSPs, and SaaS providers, ensuring service levels, performance, and cost effectiveness. Project Leadership & Change Management: Ability to lead technology projects, system upgrades, and platform migrations, ensuring smooth execution and minimal business disruption. Process Improvement & Automation: Strong analytical mindset to identify inefficiencies, automate workflows, and enhance security controls. Problem Solving & Decision Making: Capable of making informed decisions and resolving complex IT issues in a fast paced environment. Stakeholder Engagement: Ability to communicate effectively with technical and non technical stakeholders, including senior leadership and business users. Resilience & Adaptability: Comfortable working in an evolving technology landscape, with a proactive and security first approach. Summary of Skills Required: Global Enterprise level Infrastructure Management position for the last 5 years. Global team management (human resources, strategic delivery, operational service, audit lead for Infra, budget ). Key - 3rd party operational infrastructure vendor management - i.e management of managed service partners. Migration of Legacy VM based estates to SaaS and Cloud services platforms. Legacy tech to Azure knowledge/experience. Prior to the last 5 years, a technical infrastructure engineering level background, working on Windows Server, AD , SQL environments, Firewalls/SDWAN, and Networks (WAN &/or LAN). The Client is based in the City of London. This is a hybrid position with 3 days in the office. The salary for this role will be in the range £85K - £100K plus Benefits. Do send your CV to us in Word format along with your salary and notice period.
Job Description The Senior SRE/DevOps Engineer role sits within Arm's Global Storage team, supporting large scale storage platforms used by engineering and HPC workloads across on premises and cloud environments. This role focuses on making storage platforms reliable, observable, and easier to operate. It includes reducing manual work through automation, building practical tooling, and helping teams use storage services effectively at scale. Working with colleagues across multiple regions, the role contributes to resolving issues, addressing root causes, and maintaining stable, well performing systems that support Arm's technology development. Responsibilities Maintain the reliability, availability, and performance of storage platforms used by engineering teams. Contribute to incident response, investigation, and problem resolution. Apply service reliability measures such as SLOs and SLIs where appropriate. Build and maintain infrastructure using Terraform and Ansible. Develop automation and Python based tools to support operations and system insight. Use AI based tooling to assist with monitoring, anomaly detection, and analysis. Develop simple agent based workflows to support operational decision making. Enhance monitoring and alerting to provide clear visibility of system behaviour. Work with engineering and security teams to maintain secure and well managed systems. Maintain accurate documentation and share knowledge across the team. Required Skills and Experience Experience working with production systems using DevOps or similar engineering practices. Experience with Infrastructure as Code tools such as Terraform or configuration tools such as Ansible. Ability to develop automation or tooling using a programming language such as Python. Experience supporting reliable and scalable systems in an operational environment. Nice To Have Skills and Experience Experience with large scale storage platforms (file or object) or HPC environments! Familiarity with AWS, GCP, or Azure. Exposure to CI/CD or Git based workflows. Experience using or integrating AI/ML or agent based tooling in operations. Understanding of identity, access control, and security practices. Experience with platforms such as LakeFS! Awareness of service management approaches (e.g., ITIL). In Return With Arm's growth trajectory, you'll have clear opportunities to develop your career, take on new challenges, and make a real impact on our continued success. Please note that no relocation package is available for this role. If skilled worker sponsorship is required, Arm will meet costs associated with sponsorship for the employer only. All fees associated with the individual's application e.g. visa application fee and Immigration Health Surcharge, will be the responsibility of the successful candidate. Accommodations at Arm At Arm, we want to build extraordinary teams. If you need an adjustment or an accommodation during the recruitment process, please email . To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation or adjustment requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud, or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process. Hybrid Working at Arm Arm's approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team's needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you. Equal Opportunities at Arm Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don't discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
06/06/2026
Full time
Job Description The Senior SRE/DevOps Engineer role sits within Arm's Global Storage team, supporting large scale storage platforms used by engineering and HPC workloads across on premises and cloud environments. This role focuses on making storage platforms reliable, observable, and easier to operate. It includes reducing manual work through automation, building practical tooling, and helping teams use storage services effectively at scale. Working with colleagues across multiple regions, the role contributes to resolving issues, addressing root causes, and maintaining stable, well performing systems that support Arm's technology development. Responsibilities Maintain the reliability, availability, and performance of storage platforms used by engineering teams. Contribute to incident response, investigation, and problem resolution. Apply service reliability measures such as SLOs and SLIs where appropriate. Build and maintain infrastructure using Terraform and Ansible. Develop automation and Python based tools to support operations and system insight. Use AI based tooling to assist with monitoring, anomaly detection, and analysis. Develop simple agent based workflows to support operational decision making. Enhance monitoring and alerting to provide clear visibility of system behaviour. Work with engineering and security teams to maintain secure and well managed systems. Maintain accurate documentation and share knowledge across the team. Required Skills and Experience Experience working with production systems using DevOps or similar engineering practices. Experience with Infrastructure as Code tools such as Terraform or configuration tools such as Ansible. Ability to develop automation or tooling using a programming language such as Python. Experience supporting reliable and scalable systems in an operational environment. Nice To Have Skills and Experience Experience with large scale storage platforms (file or object) or HPC environments! Familiarity with AWS, GCP, or Azure. Exposure to CI/CD or Git based workflows. Experience using or integrating AI/ML or agent based tooling in operations. Understanding of identity, access control, and security practices. Experience with platforms such as LakeFS! Awareness of service management approaches (e.g., ITIL). In Return With Arm's growth trajectory, you'll have clear opportunities to develop your career, take on new challenges, and make a real impact on our continued success. Please note that no relocation package is available for this role. If skilled worker sponsorship is required, Arm will meet costs associated with sponsorship for the employer only. All fees associated with the individual's application e.g. visa application fee and Immigration Health Surcharge, will be the responsibility of the successful candidate. Accommodations at Arm At Arm, we want to build extraordinary teams. If you need an adjustment or an accommodation during the recruitment process, please email . To note, by sending us the requested information, you consent to its use by Arm to arrange for appropriate accommodations. All accommodation or adjustment requests will be treated with confidentiality, and information concerning these requests will only be disclosed as necessary to provide the accommodation. Although this is not an exhaustive list, examples of support include breaks between interviews, having documents read aloud, or office accessibility. Please email us about anything we can do to accommodate you during the recruitment process. Hybrid Working at Arm Arm's approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing. We believe in bringing people together face to face to enable us to work at pace, whilst recognizing the value of flexibility. Within that framework, we empower groups/teams to determine their own hybrid working patterns, depending on the work and the team's needs. Details of what this means for each role will be shared upon application. In some cases, the flexibility we can offer is limited by local legal, regulatory, tax, or other considerations, and where this is the case, we will collaborate with you to find the best solution. Please talk to us to find out more about what this could look like for you. Equal Opportunities at Arm Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues. We are a diverse organization of dedicated and innovative individuals, and don't discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Role Summary As a Senior Threat Analyst - Tier I on our Managed Detection and Response (MDR) team, you will provide best in class monitoring, detection, and response services to proactively defend customer environments before attacks prevail. You will work alongside and contribute to a team of cyber threat hunters, incident response analysts, engineers, and ethical hackers by using enterprise, log analysis and endpoint collection systems to facilitate investigations, identification, and neutralization of cyber threats. What You Will Do Monitor, investigate, and respond to alerts generated by the Sophos security stack (including EDR/XDR capabilities) Lead and mentor Tier I Analysts through escalated cases, ensuring thorough and accurate investigation practices. Perform end to end analysis on suspicious activity to assess scope, impact, and risk Identify and respond to cyber threats across customer environments using approved playbooks and tooling Accurately document findings, investigative steps, and outcomes in the MDR case management platform Conduct threat hunting to identify potential threats throughout the MDR customer base Investigate phishing emails, suspicious binaries, and behavioral anomalies Support detection tuning by identifying recurring false positives and suggesting improvements Stay informed on threat actor behaviors, MITRE ATT&CK techniques, and Sophos threat research updates Proactively research emerging IOCs, active exploits, and vulnerabilities to stay ahead of evolving threats Contribute to internal knowledge bases, documentation, and continuous improvement initiatives Participate in shift rotations and ensure timely, detailed handovers between global teams Provide detection and response support for active security incidents Manage case workflows: create cases, track progress, and follow up with clients until resolution Engage with clients via chat, phone, and tickets as part of case handling Assist with developing and refining Security Operations processes, playbooks, and tooling feedback What You Will Bring Essential 3+ years of hands on experience in a Security Operations Center (SOC), Managed Detection and Response (MDR) environment, or cybersecurity focused IT role Proficient in the use of endpoint and network security tools (e.g., EDR, IDS/IPS, malware detection platforms) with the ability to validate and triage complex alerts Working knowledge of Windows operating systems (both workstation and server), with additional experience in Linux (Ubuntu, Debian, RedHat) or macOS environments Ability to interpret and analyze Windows event logs and other telemetry data Understanding of core network concepts including TCP/IP, protocols, routing, and traffic analysis Demonstrated experience contributing to real time incident response efforts and threat investigations Exposure to threat hunting methodologies and an understanding of attacker behavior and patterns Experience handling active threats, including containment, mitigation, and recovery efforts during security incidents Familiar with techniques such as persistence, privilege escalation, lateral movement, and defense evasion, and able to identify these in real world environments Familiarity with common incident response workflows and security operations processes Strong analytical thinking and troubleshooting skills, with attention to detail in investigations and case documentation Excellent communication skills, with the ability to clearly explain findings to both technical and non technical audiences Customer first mindset with professionalism and a focus on service excellence Must thrive within a team environment as well as on an individual basis Natural curiosity and willingness to learn in a fast paced, ever changing threat landscape A passion for cybersecurity, continuous improvement, and staying current on threat trends Bachelor's degree in information technology, Computer Science, Cybersecurity or related field, or equivalent practical experience Ability to communicate in English Willingness to participate in shift work including nights, weekends and holidays (our MDR service is 24x7x365) Desirable Familiarity with the MITRE ATT&CK framework and its application in detection and response Experience working with SIEM platforms and managing enterprise security telemetry Ability to write and interpret SQL queries for data analysis and investigation Experience with OSQuery and scripting skills, particularly in PowerShell Relevant and practical cybersecurity certifications (e.g., GSEC, GCIA, GCIH, PEN-200, Security Blue Team L1, TCM Academy SOC L1, or similar) We're proud of the diverse and inclusive environment we have at Sophos, and we're committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know.
06/06/2026
Full time
Role Summary As a Senior Threat Analyst - Tier I on our Managed Detection and Response (MDR) team, you will provide best in class monitoring, detection, and response services to proactively defend customer environments before attacks prevail. You will work alongside and contribute to a team of cyber threat hunters, incident response analysts, engineers, and ethical hackers by using enterprise, log analysis and endpoint collection systems to facilitate investigations, identification, and neutralization of cyber threats. What You Will Do Monitor, investigate, and respond to alerts generated by the Sophos security stack (including EDR/XDR capabilities) Lead and mentor Tier I Analysts through escalated cases, ensuring thorough and accurate investigation practices. Perform end to end analysis on suspicious activity to assess scope, impact, and risk Identify and respond to cyber threats across customer environments using approved playbooks and tooling Accurately document findings, investigative steps, and outcomes in the MDR case management platform Conduct threat hunting to identify potential threats throughout the MDR customer base Investigate phishing emails, suspicious binaries, and behavioral anomalies Support detection tuning by identifying recurring false positives and suggesting improvements Stay informed on threat actor behaviors, MITRE ATT&CK techniques, and Sophos threat research updates Proactively research emerging IOCs, active exploits, and vulnerabilities to stay ahead of evolving threats Contribute to internal knowledge bases, documentation, and continuous improvement initiatives Participate in shift rotations and ensure timely, detailed handovers between global teams Provide detection and response support for active security incidents Manage case workflows: create cases, track progress, and follow up with clients until resolution Engage with clients via chat, phone, and tickets as part of case handling Assist with developing and refining Security Operations processes, playbooks, and tooling feedback What You Will Bring Essential 3+ years of hands on experience in a Security Operations Center (SOC), Managed Detection and Response (MDR) environment, or cybersecurity focused IT role Proficient in the use of endpoint and network security tools (e.g., EDR, IDS/IPS, malware detection platforms) with the ability to validate and triage complex alerts Working knowledge of Windows operating systems (both workstation and server), with additional experience in Linux (Ubuntu, Debian, RedHat) or macOS environments Ability to interpret and analyze Windows event logs and other telemetry data Understanding of core network concepts including TCP/IP, protocols, routing, and traffic analysis Demonstrated experience contributing to real time incident response efforts and threat investigations Exposure to threat hunting methodologies and an understanding of attacker behavior and patterns Experience handling active threats, including containment, mitigation, and recovery efforts during security incidents Familiar with techniques such as persistence, privilege escalation, lateral movement, and defense evasion, and able to identify these in real world environments Familiarity with common incident response workflows and security operations processes Strong analytical thinking and troubleshooting skills, with attention to detail in investigations and case documentation Excellent communication skills, with the ability to clearly explain findings to both technical and non technical audiences Customer first mindset with professionalism and a focus on service excellence Must thrive within a team environment as well as on an individual basis Natural curiosity and willingness to learn in a fast paced, ever changing threat landscape A passion for cybersecurity, continuous improvement, and staying current on threat trends Bachelor's degree in information technology, Computer Science, Cybersecurity or related field, or equivalent practical experience Ability to communicate in English Willingness to participate in shift work including nights, weekends and holidays (our MDR service is 24x7x365) Desirable Familiarity with the MITRE ATT&CK framework and its application in detection and response Experience working with SIEM platforms and managing enterprise security telemetry Ability to write and interpret SQL queries for data analysis and investigation Experience with OSQuery and scripting skills, particularly in PowerShell Relevant and practical cybersecurity certifications (e.g., GSEC, GCIA, GCIH, PEN-200, Security Blue Team L1, TCM Academy SOC L1, or similar) We're proud of the diverse and inclusive environment we have at Sophos, and we're committed to ensuring equality of opportunity. We believe that diversity, combined with excellence, builds a better Sophos, so we encourage applicants who can contribute to the diversity of our team. All applicants will be treated in a fair and equal manner and in accordance with the law regardless of gender, sex, gender reassignment, marital status, race, religion or belief, color, age, military veteran status, disability, pregnancy, maternity or sexual orientation. We want to give you every opportunity to show us your best self, so if there are any adjustments we could make to the recruitment and selection process to support you, please let us know.
Transport Practice Managing Consultant Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Reporting To: Gary Cannon Description Role: Cyber Security Aviation Lead (Global Transport) Locations: Cheltenham, Manchester or London - Hybrid/Global Remit We are seeking a highly skilled Cyber Security Aviation Lead to join our Global Transport Practice. This role will serve as the subject matter expert (SME) for aviation cyber security, covering operational technology (OT), safety critical aviation systems, and regulatory standards across the global aviation ecosystem. You will play a pivotal role in shaping NCC Group's aviation offerings, supporting delivery, mentoring colleagues, engaging clients, and driving growth in the aviation market. While aviation is the primary focus, the role also offers opportunities to work across rail, maritime, and automotive with full support from the wider transport team. This is a client facing, collaborative, and technically hands on role suited to someone with solid aviation cyber experience who can also support business development activities. Key Responsibilities Aviation Cyber Security Leadership Act as the global aviation cyber security SME, providing expert knowledge of: Part IS and other aviation specific security frameworks ISA/IEC 62443 requirements and application to aviation OT Penetration testing techniques relevant to OT and aviation systems Avionics, airport infrastructure, ground systems, airline operational technologies Lead and oversee cyber engagements within the aviation ecosystem, including: Airports, ANSPs, MNO, airlines, OEMs, ground handling, avionics suppliers Safety critical OT networks and mission critical control systems Technical Delivery Perform and/or lead: OT penetration testing Threat modelling and risk assessments Security architecture review for aviation technologies Compliance assessments and gap analyses (Part IS, 62443, NIS2 where applicable) Oversee technical quality, ensuring best in class delivery to clients. Business Development & Practice Growth Support the creation and refinement of NCC Group's aviation services and propositions. Work with business development teams to: Identify opportunities Create proposals Participate in client meetings and presentations Represent NCC Group at aviation cyber conferences, industry forums, and working groups. Collaboration & Cross-Transport Support Operate as part of the wider Global Transport Practice, contributing to multi modal cyber projects. When required (and with team support), step into cyber roles in: Rail Maritime Automotive Work closely with colleagues across geographies to develop integrated cyber security solutions. Knowledge Sharing & Mentoring Coach and mentor internal consultants on aviation cyber security concepts, systems, and regulations. Develop internal guidance, training materials, and workbooks/playbooks. Promote a collaborative, high performance culture. Client Engagement Act as a trusted advisor to stakeholders at all levels. Ensure exceptional client experience through clear communication, professionalism, and delivery excellence. Build long term relationships with global aviation customers. Skills, Knowledge and Expertise Essential Experience & Skills Proven experience in the aviation ecosystem, such as working with: Airports Airlines OEMs Avionics manufacturers ANSPs Strong understanding of aviation operational technologies and safety critical systems. Knowledge of: Part IS ISA/IEC 62443 OT networks, architectures, and protocols Security risk assessment in safety critical environments Hands on cyber security experience, such as: Penetration testing (OT preferred) Threat modelling Incident response Architecture review Comfortable providing client facing advisory services. Experience working in or with regulated environments. Ability to simplify complex cyber concepts for diverse audiences. Desirable Skills Certifications (one or more): GICSP, CISSP, CISM, CRT/OSCP, CISA, CCSFP, 62443 certificates, CREST Background in engineering, avionics, or airport operations. Experience with NIS/NIS2, EASA, FAA, ICAO cyber requirements. Experience contributing to sales or pre sales cycles. Benefits What do we offer in return? We have a high performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
06/06/2026
Full time
Transport Practice Managing Consultant Department: Cyber Services and Capabilities Employment Type: Full Time Location: GBR London Reporting To: Gary Cannon Description Role: Cyber Security Aviation Lead (Global Transport) Locations: Cheltenham, Manchester or London - Hybrid/Global Remit We are seeking a highly skilled Cyber Security Aviation Lead to join our Global Transport Practice. This role will serve as the subject matter expert (SME) for aviation cyber security, covering operational technology (OT), safety critical aviation systems, and regulatory standards across the global aviation ecosystem. You will play a pivotal role in shaping NCC Group's aviation offerings, supporting delivery, mentoring colleagues, engaging clients, and driving growth in the aviation market. While aviation is the primary focus, the role also offers opportunities to work across rail, maritime, and automotive with full support from the wider transport team. This is a client facing, collaborative, and technically hands on role suited to someone with solid aviation cyber experience who can also support business development activities. Key Responsibilities Aviation Cyber Security Leadership Act as the global aviation cyber security SME, providing expert knowledge of: Part IS and other aviation specific security frameworks ISA/IEC 62443 requirements and application to aviation OT Penetration testing techniques relevant to OT and aviation systems Avionics, airport infrastructure, ground systems, airline operational technologies Lead and oversee cyber engagements within the aviation ecosystem, including: Airports, ANSPs, MNO, airlines, OEMs, ground handling, avionics suppliers Safety critical OT networks and mission critical control systems Technical Delivery Perform and/or lead: OT penetration testing Threat modelling and risk assessments Security architecture review for aviation technologies Compliance assessments and gap analyses (Part IS, 62443, NIS2 where applicable) Oversee technical quality, ensuring best in class delivery to clients. Business Development & Practice Growth Support the creation and refinement of NCC Group's aviation services and propositions. Work with business development teams to: Identify opportunities Create proposals Participate in client meetings and presentations Represent NCC Group at aviation cyber conferences, industry forums, and working groups. Collaboration & Cross-Transport Support Operate as part of the wider Global Transport Practice, contributing to multi modal cyber projects. When required (and with team support), step into cyber roles in: Rail Maritime Automotive Work closely with colleagues across geographies to develop integrated cyber security solutions. Knowledge Sharing & Mentoring Coach and mentor internal consultants on aviation cyber security concepts, systems, and regulations. Develop internal guidance, training materials, and workbooks/playbooks. Promote a collaborative, high performance culture. Client Engagement Act as a trusted advisor to stakeholders at all levels. Ensure exceptional client experience through clear communication, professionalism, and delivery excellence. Build long term relationships with global aviation customers. Skills, Knowledge and Expertise Essential Experience & Skills Proven experience in the aviation ecosystem, such as working with: Airports Airlines OEMs Avionics manufacturers ANSPs Strong understanding of aviation operational technologies and safety critical systems. Knowledge of: Part IS ISA/IEC 62443 OT networks, architectures, and protocols Security risk assessment in safety critical environments Hands on cyber security experience, such as: Penetration testing (OT preferred) Threat modelling Incident response Architecture review Comfortable providing client facing advisory services. Experience working in or with regulated environments. Ability to simplify complex cyber concepts for diverse audiences. Desirable Skills Certifications (one or more): GICSP, CISSP, CISM, CRT/OSCP, CISA, CCSFP, 62443 certificates, CREST Background in engineering, avionics, or airport operations. Experience with NIS/NIS2, EASA, FAA, ICAO cyber requirements. Experience contributing to sales or pre sales cycles. Benefits What do we offer in return? We have a high performance culture which is balanced evenly with world class well being initiatives and benefits: Flexible Working: Balance your work and personal life with our flexible working options. Generous Holiday Allowance: Enjoy 25 days of holiday, plus bank holidays, with the option to buy up to 5 additional days of annual leave. Medicash & Critical Illness Scheme Financial & Investment Benefits: Enjoy peace of mind with our Pension, Life Assurance, and Share Save Scheme. Community & Volunteering Programmes: Make a difference in your community with our volunteering opportunities. Green Car Scheme: Drive green and save money with our eco friendly car scheme. Cycle Scheme: Stay fit and healthy with our cycle to work scheme. Special Time Off: Take time off for those big moments in life, like getting married/entering into a civil partnership, becoming a grandparent, and welcoming home a new pet. Family Planning: Benefit from our generous maternity and paternity leave, as well as time off and support for those undergoing fertility treatments.
OT Cyber Security ManagerApplylocations: UK - Watford: POL - Wroclawtime type: Full timeposted on: Posted Todayjob requisition id: R90659 Life. Unlimited. At Smith+Nephew we design and manufacture technology that takes the limits off living.Are you passionate about securing the technologies that power modern manufacturing? This is a rare opportunity to lead and shape global OT cybersecurity strategy in a highly regulated, purpose driven medical technology environment. You will play a critical role in protecting operations that directly impact patient outcomes while enabling innovation and digital transformation across our global manufacturing network. What will you be doing?You will take ownership of our global OT cybersecurity programme, setting the direction and ensuring it is embedded into how our manufacturing technologies are designed, operated and supported. Working at the intersection of cybersecurity, IT, engineering and manufacturing, you will guide a diverse set of stakeholders to manage risk while maintaining operational continuity.Day to day, you will define governance, lead risk management activities and provide technical oversight across OT environments, ensuring alignment with leading standards such as IEC 62443 and NIST frameworks. You will collaborate closely with OT architecture and engineering teams, influencing design decisions and supporting secure modernisation initiatives across manufacturing sites.You will also act as the cybersecurity lead for major OT projects, ensuring security by design is applied from the outset. In parallel, you will coordinate incident response activities, ensuring rapid and effective handling of OT security events. Through strong partnerships across regions and functions, you will embed cybersecurity into everyday operations, creating a consistent and sustainable global approach. What will you need to be successful?Success in this role comes from your ability to combine strategic leadership with deep technical understanding, while influencing across a complex global environment.You will bring: Strong experience in OT or industrial cybersecurity within manufacturing or critical infrastructure environments, with a clear understanding of ICS technologies and risks Proven ability to lead programmes and influence across engineering, IT and business stakeholders without direct control of implementation teams Solid knowledge of recognised frameworks such as IEC 62443, NIST SP , NIST CSF and ISO standards Experience leading teams and developing capability while fostering collaboration, accountability and continuous improvementYou will be someone who can communicate clearly at all levels, build trust quickly and guide decision making in situations where operational risk, compliance and innovation must all be carefully balanced. You. Unlimited. We believe in creating the greatest good for society. Our Strongest investments are in our people and patients we serve. Inclusion & Belonging: Committed to Welcoming, Celebrating and Thriving on Inclusion and Belonging, Learn more about our Employee Inclusion Groups on our website Your Future: Generous annual bonus, life insurance Work/Life Balance: Flexible Vacation and Time Off, Paid Holidays and Paid Volunteering Hours, so we can give back to our communities! Your Wellbeing: Private Health and Dental plans, multisport card/my benefit platform and much more. Flexibility: Hybrid Working Model (For most professional roles). Training: Hands-On, Team-Customised, Mentorship, subsidies for language classes, certifications and postgraduate studies connected by joining our Talent Community.We're more than just a company - we're a community! Follow us on LinkedIn to see how we support and empower our employees and patients every day. Check us out on Glassdoor for a glimpse behind the scenes and a sneak peek into You. Unlimited. , life, culture, and benefits at S+N.Explore our website and learn more about our mission, our team, and the opportunities we offer. About UsSmith+Nephew is a global medical technology company. We design and manufacture technology that takes the limits off living. We support healthcare professionals to return their patients to health and mobility, helping them to perform at their fullest potential.From our first employee and founder, T.J. Smith, to our team today, it's our people who make Smith+Nephew a unique place. Yes, we love to innovate and develop exciting technologies, and we offer competitive salaries and progressive benefits. But it's our culture - of Care, Collaboration and Courage - that really sets us apart. Through a spirit of ownership and can-do attitude we work together to win. We're a company of people who care about each other, about our customers and their patients, and about our communities. Together, we fulfill our shared purpose of Life Unlimited.
06/06/2026
Full time
OT Cyber Security ManagerApplylocations: UK - Watford: POL - Wroclawtime type: Full timeposted on: Posted Todayjob requisition id: R90659 Life. Unlimited. At Smith+Nephew we design and manufacture technology that takes the limits off living.Are you passionate about securing the technologies that power modern manufacturing? This is a rare opportunity to lead and shape global OT cybersecurity strategy in a highly regulated, purpose driven medical technology environment. You will play a critical role in protecting operations that directly impact patient outcomes while enabling innovation and digital transformation across our global manufacturing network. What will you be doing?You will take ownership of our global OT cybersecurity programme, setting the direction and ensuring it is embedded into how our manufacturing technologies are designed, operated and supported. Working at the intersection of cybersecurity, IT, engineering and manufacturing, you will guide a diverse set of stakeholders to manage risk while maintaining operational continuity.Day to day, you will define governance, lead risk management activities and provide technical oversight across OT environments, ensuring alignment with leading standards such as IEC 62443 and NIST frameworks. You will collaborate closely with OT architecture and engineering teams, influencing design decisions and supporting secure modernisation initiatives across manufacturing sites.You will also act as the cybersecurity lead for major OT projects, ensuring security by design is applied from the outset. In parallel, you will coordinate incident response activities, ensuring rapid and effective handling of OT security events. Through strong partnerships across regions and functions, you will embed cybersecurity into everyday operations, creating a consistent and sustainable global approach. What will you need to be successful?Success in this role comes from your ability to combine strategic leadership with deep technical understanding, while influencing across a complex global environment.You will bring: Strong experience in OT or industrial cybersecurity within manufacturing or critical infrastructure environments, with a clear understanding of ICS technologies and risks Proven ability to lead programmes and influence across engineering, IT and business stakeholders without direct control of implementation teams Solid knowledge of recognised frameworks such as IEC 62443, NIST SP , NIST CSF and ISO standards Experience leading teams and developing capability while fostering collaboration, accountability and continuous improvementYou will be someone who can communicate clearly at all levels, build trust quickly and guide decision making in situations where operational risk, compliance and innovation must all be carefully balanced. You. Unlimited. We believe in creating the greatest good for society. Our Strongest investments are in our people and patients we serve. Inclusion & Belonging: Committed to Welcoming, Celebrating and Thriving on Inclusion and Belonging, Learn more about our Employee Inclusion Groups on our website Your Future: Generous annual bonus, life insurance Work/Life Balance: Flexible Vacation and Time Off, Paid Holidays and Paid Volunteering Hours, so we can give back to our communities! Your Wellbeing: Private Health and Dental plans, multisport card/my benefit platform and much more. Flexibility: Hybrid Working Model (For most professional roles). Training: Hands-On, Team-Customised, Mentorship, subsidies for language classes, certifications and postgraduate studies connected by joining our Talent Community.We're more than just a company - we're a community! Follow us on LinkedIn to see how we support and empower our employees and patients every day. Check us out on Glassdoor for a glimpse behind the scenes and a sneak peek into You. Unlimited. , life, culture, and benefits at S+N.Explore our website and learn more about our mission, our team, and the opportunities we offer. About UsSmith+Nephew is a global medical technology company. We design and manufacture technology that takes the limits off living. We support healthcare professionals to return their patients to health and mobility, helping them to perform at their fullest potential.From our first employee and founder, T.J. Smith, to our team today, it's our people who make Smith+Nephew a unique place. Yes, we love to innovate and develop exciting technologies, and we offer competitive salaries and progressive benefits. But it's our culture - of Care, Collaboration and Courage - that really sets us apart. Through a spirit of ownership and can-do attitude we work together to win. We're a company of people who care about each other, about our customers and their patients, and about our communities. Together, we fulfill our shared purpose of Life Unlimited.
At a glance: Location: Cambridge In-office expectation: 2 days per week initially Employment type: Permanent Salary: £60,000 - £70,000 Why this role exists: Security at Redgate is a hands on engineering discipline. This role exists to design, build, and operate security controls that protect our people, products, and customers. About Redgate Redgate brings together people who want to do their best work in an environment built on trust, accountability, and collaboration. We build solutions that help data professionals securely manage the data and databases that their organizations depend on - a space that's only becoming more critical as systems scale, data regulations increase, and AI adoption accelerates. Why join our security team? Broad, meaningful scope - Working across our cloud & physical infrastructure, alongside our development teams and ISO27001-aligned information security group, you'll be working to bring on new vendors, assess risk, and fix vulnerabilities. Genuinely modern challenges - From AI governance and shadow IT to supply chain risk and secure by design engineering, tackle relevant problems across a fast moving global software business. A team that grows you - Work in a hands on team tackling a diverse set of challenges, developing your career and investing in your future. About the role As a Cyber Security Engineer at Redgate, you'll: Design, build, and operate security controls across infrastructure and applications. Investigate issues hands on, sometimes outside office hours, when things genuinely matter. Work closely with engineers and business teams to enable secure delivery. Work alongside our commercial teams to give our customers the confidence to securely deploy our products. What makes you a great fit Hands on security engineering or security operations experience. Strong IAM knowledge at protocol level (OAuth 2.0, SAML, OIDC) - you've debugged implementations, not just read about it. Experience with Infrastructure as Code (ideally Terraform) and use of automation. Familiarity with secure SDLC practices, version control, and peer review. Experience conducting vendor security reviews and third party risk assessments. Practical vulnerability management experience - you're used to judging the real-world risks, not just looking at baseline CVSS scores. Incident response experience, including investigation, remediation, and root cause analysis. Working knowledge of Microsoft Sentinel, Defender, and KQL. A background in sys admin or engineering that gives you intuition for how systems actually fail. A mindset that security exists to enable the business. Comfortable using AI tools as part of your daily work. Strong communication skills with both technical and non technical audiences. What we offer Salary range: £60,000 - £70,000. Hybrid working: home and Cambridge office. Monthly wellbeing allowance and generous paid time off. Genuine investment in learning, development, and career progression. Private health insurance. Link to full benefits page. Equal Employment Opportunity We believe that people do their best work in an environment built on respect, fairness, and trust - and that diverse perspectives lead to better outcomes. Redgate is an equal opportunity employer, and we make hiring decisions based on skill, potential, and alignment with our values.
06/06/2026
Full time
At a glance: Location: Cambridge In-office expectation: 2 days per week initially Employment type: Permanent Salary: £60,000 - £70,000 Why this role exists: Security at Redgate is a hands on engineering discipline. This role exists to design, build, and operate security controls that protect our people, products, and customers. About Redgate Redgate brings together people who want to do their best work in an environment built on trust, accountability, and collaboration. We build solutions that help data professionals securely manage the data and databases that their organizations depend on - a space that's only becoming more critical as systems scale, data regulations increase, and AI adoption accelerates. Why join our security team? Broad, meaningful scope - Working across our cloud & physical infrastructure, alongside our development teams and ISO27001-aligned information security group, you'll be working to bring on new vendors, assess risk, and fix vulnerabilities. Genuinely modern challenges - From AI governance and shadow IT to supply chain risk and secure by design engineering, tackle relevant problems across a fast moving global software business. A team that grows you - Work in a hands on team tackling a diverse set of challenges, developing your career and investing in your future. About the role As a Cyber Security Engineer at Redgate, you'll: Design, build, and operate security controls across infrastructure and applications. Investigate issues hands on, sometimes outside office hours, when things genuinely matter. Work closely with engineers and business teams to enable secure delivery. Work alongside our commercial teams to give our customers the confidence to securely deploy our products. What makes you a great fit Hands on security engineering or security operations experience. Strong IAM knowledge at protocol level (OAuth 2.0, SAML, OIDC) - you've debugged implementations, not just read about it. Experience with Infrastructure as Code (ideally Terraform) and use of automation. Familiarity with secure SDLC practices, version control, and peer review. Experience conducting vendor security reviews and third party risk assessments. Practical vulnerability management experience - you're used to judging the real-world risks, not just looking at baseline CVSS scores. Incident response experience, including investigation, remediation, and root cause analysis. Working knowledge of Microsoft Sentinel, Defender, and KQL. A background in sys admin or engineering that gives you intuition for how systems actually fail. A mindset that security exists to enable the business. Comfortable using AI tools as part of your daily work. Strong communication skills with both technical and non technical audiences. What we offer Salary range: £60,000 - £70,000. Hybrid working: home and Cambridge office. Monthly wellbeing allowance and generous paid time off. Genuine investment in learning, development, and career progression. Private health insurance. Link to full benefits page. Equal Employment Opportunity We believe that people do their best work in an environment built on respect, fairness, and trust - and that diverse perspectives lead to better outcomes. Redgate is an equal opportunity employer, and we make hiring decisions based on skill, potential, and alignment with our values.
United Kingdom - London; United Kingdom - Southampton What's the role all about? The ideal candidate will be responsible for designing, implementing, and maintaining security measures to protect our organization's computer systems, networks, and SaaS products. This role requires a hands on approach to identifying vulnerabilities, implementing solutions, and staying abreast of the latest security trends and technologies. The Senior Information Security Engineer will collaborate closely with cross functional teams to ensure the confidentiality, integrity, and availability of our systems and data. How will you make an impact? Security Tooling: Deploy, maintain, integrate, and perform initial configuration of security tools. Vulnerability Management: Coordinate and conduct regular security assessments, penetration testing, and vulnerability scans to identify and address security weaknesses proactively. Incident Response: Lead incident response efforts to promptly detect, analyze, and mitigate security incidents and breaches. Develop and maintain incident response plans and procedures. Security Operations: Monitor security logs and alerts, investigate suspicious activities, and respond to security events in real time. Implement and maintain security tools and technologies to enhance our security posture. Identity and Access Management: Manage user access controls, authentication mechanisms, and identity management systems to ensure appropriate levels of access and privilege. Have you got what it takes? At least 5 years of experience in information security, with a focus on hands on security engineering and operations. In-depth knowledge of networking protocols, operating systems, and cloud technologies. Strong understanding of security principles, practices, and frameworks (PCI, NIST, ISO 27001). Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Experience with public cloud security, specifically AWS, Azure, and Google Cloud Platform (GCP). You will have an advantage if you also have: Relevant certifications such as CISSP, CISM, CEH, or cloud specific certifications (AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer) are highly desirable. What's in it for you? Join an ever growing, market disrupting, global company where teams work in a fast paced, collaborative, and creative environment. As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. At NICE, we work according to the NICE FLEX hybrid model, which enables maximum flexibility: 2 days working from the office and 3 days of remote work each week. Naturally, office days focus on face to face meetings, where teamwork and collaborative thinking generate innovation, new ideas, and a vibrant, interactive atmosphere. Requisition ID: 10996 Reporting into: Damon Hefner, Manager Information Security Role Type: Individual Contributor NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.
06/06/2026
Full time
United Kingdom - London; United Kingdom - Southampton What's the role all about? The ideal candidate will be responsible for designing, implementing, and maintaining security measures to protect our organization's computer systems, networks, and SaaS products. This role requires a hands on approach to identifying vulnerabilities, implementing solutions, and staying abreast of the latest security trends and technologies. The Senior Information Security Engineer will collaborate closely with cross functional teams to ensure the confidentiality, integrity, and availability of our systems and data. How will you make an impact? Security Tooling: Deploy, maintain, integrate, and perform initial configuration of security tools. Vulnerability Management: Coordinate and conduct regular security assessments, penetration testing, and vulnerability scans to identify and address security weaknesses proactively. Incident Response: Lead incident response efforts to promptly detect, analyze, and mitigate security incidents and breaches. Develop and maintain incident response plans and procedures. Security Operations: Monitor security logs and alerts, investigate suspicious activities, and respond to security events in real time. Implement and maintain security tools and technologies to enhance our security posture. Identity and Access Management: Manage user access controls, authentication mechanisms, and identity management systems to ensure appropriate levels of access and privilege. Have you got what it takes? At least 5 years of experience in information security, with a focus on hands on security engineering and operations. In-depth knowledge of networking protocols, operating systems, and cloud technologies. Strong understanding of security principles, practices, and frameworks (PCI, NIST, ISO 27001). Experience with security tools such as SIEM, IDS/IPS, endpoint protection, and penetration testing tools. Experience with public cloud security, specifically AWS, Azure, and Google Cloud Platform (GCP). You will have an advantage if you also have: Relevant certifications such as CISSP, CISM, CEH, or cloud specific certifications (AWS Certified Security - Specialty, Microsoft Certified: Azure Security Engineer Associate, Google Professional Cloud Security Engineer) are highly desirable. What's in it for you? Join an ever growing, market disrupting, global company where teams work in a fast paced, collaborative, and creative environment. As the market leader, every day at NICE is a chance to learn and grow, and there are endless internal career opportunities across multiple roles, disciplines, domains, and locations. At NICE, we work according to the NICE FLEX hybrid model, which enables maximum flexibility: 2 days working from the office and 3 days of remote work each week. Naturally, office days focus on face to face meetings, where teamwork and collaborative thinking generate innovation, new ideas, and a vibrant, interactive atmosphere. Requisition ID: 10996 Reporting into: Damon Hefner, Manager Information Security Role Type: Individual Contributor NICE is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, age, sex, marital status, ancestry, neurotype, physical or mental disability, veteran status, gender identity, sexual orientation or any other category protected by law.
At Engine by Starling, we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software as a service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back office processes that have helped achieve Starling's success. We draw upon our experience as knowledgeable bankers, and best in class technologists to become the chosen option for these banks, and preferred partners for leading consultancies. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for someone who will be excited by the potential for Engine's technology to transform banking in different markets around the world. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role To support our rapid growth, we are looking for talented engineers to join our foundational in house SecOps team. This is a "Full Stack" security role: you will move beyond traditional monitoring to develop and operate our security capabilities. We are looking for engineers who are masters of automation but remain grounded in analyst fundamentals. You should have a keen interest in leveraging AI and Large Language Models (LLMs) to reduce SOC toil - using AI to summarise complex alerts, auto generate YARA L detections, or build intelligent playbooks to stay ahead of modern threats. Responsibilities Security Monitoring & Alert Triage: Active Monitoring: Monitor security alerts and events generated by the SecOps platform and integrated cloud security tools. Triage & Analysis: Perform deep diving analysis of security incidents and anomalies, accurately distinguishing between true positives and false positives. Prioritisation: Manage the incident queue, prioritising alerts based on severity, potential impact, and business criticality. Detection Engineering & Automation (IaC): Detection as Code: Design and maintain sophisticated detection logic using YARA L. Manage the lifecycle of these rules and configurations using IaC principles for version control. SOAR Extension: Lead the automation of response playbooks. You will write and extend SOAR capabilities using Python, creating custom integrations and "Managers" to connect SecOps with internal APIs. Tool Optimisation: Identify opportunities for automation to streamline operations and contribute to the continuous tuning and maintenance of SOC tools. Incident Response & Investigation: End to End Investigation: Investigate incidents thoroughly, leveraging logs from platforms, endpoints, and applications mapped to the Unified Data Model (UDM). Incident Lifecycle: Lead containment, eradication, and recovery efforts in collaboration with Security and Technology teams. Documentation: Maintain comprehensive records of incident details, findings, and remediation steps to ensure a high standard of auditability. Collaboration & Threat Intelligence: Group Collaboration: Work closely with the Group SOC team to align on global security standards and coordinate response efforts during cross entity incidents. Threat Hunting: Stay informed about the latest cyber threats and cloud specific vulnerabilities, conducting proactive threat hunting activities using available telemetry. Qualifications 3+ years of experience in a SOC or SecOps Engineering role, with a strong background in both alert triage and security engineering. Proficiency in Python: Ability to write clean code to automate workflows or interact with security APIs. Cloud Fluency: Experience with security monitoring and incident response in cloud environments (AWS/GCP/Azure). Infrastructure as Code: Familiarity with managing security configurations through Git based workflows. Framework Knowledge: Strong understanding of attack vectors and the MITRE ATT&CK framework. Education: A degree in a cyber related field or relevant certifications (e.g., CompTIA Security+, CySA+, GCIH) is beneficial. Interview Process Stage 1 - 45 minutes technical interview Stage 2 - Take home task Stage 3 - 60 minutes with Team Members Stage 4 - Final with CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4 your salary & group income protection Private Medical Insurance with VitalityHealth, including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Engine by Starling and Starling will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
06/06/2026
Full time
At Engine by Starling, we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software as a service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back office processes that have helped achieve Starling's success. We draw upon our experience as knowledgeable bankers, and best in class technologists to become the chosen option for these banks, and preferred partners for leading consultancies. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for someone who will be excited by the potential for Engine's technology to transform banking in different markets around the world. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role To support our rapid growth, we are looking for talented engineers to join our foundational in house SecOps team. This is a "Full Stack" security role: you will move beyond traditional monitoring to develop and operate our security capabilities. We are looking for engineers who are masters of automation but remain grounded in analyst fundamentals. You should have a keen interest in leveraging AI and Large Language Models (LLMs) to reduce SOC toil - using AI to summarise complex alerts, auto generate YARA L detections, or build intelligent playbooks to stay ahead of modern threats. Responsibilities Security Monitoring & Alert Triage: Active Monitoring: Monitor security alerts and events generated by the SecOps platform and integrated cloud security tools. Triage & Analysis: Perform deep diving analysis of security incidents and anomalies, accurately distinguishing between true positives and false positives. Prioritisation: Manage the incident queue, prioritising alerts based on severity, potential impact, and business criticality. Detection Engineering & Automation (IaC): Detection as Code: Design and maintain sophisticated detection logic using YARA L. Manage the lifecycle of these rules and configurations using IaC principles for version control. SOAR Extension: Lead the automation of response playbooks. You will write and extend SOAR capabilities using Python, creating custom integrations and "Managers" to connect SecOps with internal APIs. Tool Optimisation: Identify opportunities for automation to streamline operations and contribute to the continuous tuning and maintenance of SOC tools. Incident Response & Investigation: End to End Investigation: Investigate incidents thoroughly, leveraging logs from platforms, endpoints, and applications mapped to the Unified Data Model (UDM). Incident Lifecycle: Lead containment, eradication, and recovery efforts in collaboration with Security and Technology teams. Documentation: Maintain comprehensive records of incident details, findings, and remediation steps to ensure a high standard of auditability. Collaboration & Threat Intelligence: Group Collaboration: Work closely with the Group SOC team to align on global security standards and coordinate response efforts during cross entity incidents. Threat Hunting: Stay informed about the latest cyber threats and cloud specific vulnerabilities, conducting proactive threat hunting activities using available telemetry. Qualifications 3+ years of experience in a SOC or SecOps Engineering role, with a strong background in both alert triage and security engineering. Proficiency in Python: Ability to write clean code to automate workflows or interact with security APIs. Cloud Fluency: Experience with security monitoring and incident response in cloud environments (AWS/GCP/Azure). Infrastructure as Code: Familiarity with managing security configurations through Git based workflows. Framework Knowledge: Strong understanding of attack vectors and the MITRE ATT&CK framework. Education: A degree in a cyber related field or relevant certifications (e.g., CompTIA Security+, CySA+, GCIH) is beneficial. Interview Process Stage 1 - 45 minutes technical interview Stage 2 - Take home task Stage 3 - 60 minutes with Team Members Stage 4 - Final with CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4 your salary & group income protection Private Medical Insurance with VitalityHealth, including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Engine by Starling and Starling will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Menlo Security's mission is enabling the world to connect, communicate and collaborate securely without compromise. COVID-19 has made our mission all the more real. We support customers across various enterprises including Fortune 500 companies, 9/10 of the largest global banks and the Department of Defense. The world has fundamentally changed. We are growing from 400 employees into the next phase of our journey, and we need passionate talent filled with empathy and agility. The right candidate for the job is ethical, hyper organized, fanatical about seeing things through to completion, service oriented, and humble enough to take feedback and coaching yet confident enough to provide feedback and coaching. Menlo is well funded for growth and our investors are second to none. They include Vista Equity Partners, General Catalyst, JPMC, American Express, HSBC, and Ericsson Ventures. Job Overview The Senior Security Engineer is responsible for protecting the organisation's digital assets, infrastructure, and data through the design, implementation, and maintenance of security systems and controls. This role involves managing security tools, conducting risk assessments, responding to incidents, and ensuring adherence to applicable security standards and frameworks. The successful candidate will work closely with teams across Menlo to embed security best practices across all technology initiatives, supporting the organisation's security posture and resilience. Key Responsibilities Security Operations & Monitoring Monitor and manage the SIEM platform and security alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (Crowdstrike) to ensure comprehensive endpoint protection across the organisation. Lead incident response activities, including investigation, containment, remediation, and post incident analysis. Vulnerability & Risk Management Manage the vulnerability management programme, including scanning, prioritisation, and coordination of remediation efforts. Conduct risk assessments and develop risk mitigation strategies in collaboration with stakeholders. Implement and maintain CIS Benchmarks and similar baselines across systems and infrastructure to ensure secure configurations. Identity, Access & SaaS Security Configure and manage identity and access management (IAM) solutions, ensuring appropriate access controls are in place. Oversee SaaS security posture, including configuration reviews, access governance, and data protection controls. Manage data loss prevention technologies (Code42, Google Workspace) to protect sensitive information and ensure compliance with data handling policies. Security Engineering & Automation Develop and implement automation to improve security operations efficiency and reduce manual workload. Support network security initiatives, ensuring secure architecture and appropriate controls are maintained. Evaluate and contribute to AI security initiatives, ensuring appropriate controls for AI/MCP systems and emerging technologies. Policy, Process & Advisory Develop, document, and maintain security policies, standards, and procedures. Provide security guidance and consultancy to IT and other Menlo teams on projects and initiatives. Stay current with emerging threats, vulnerabilities, and security technologies to continuously improve the organisation's security posture. Qualifications The successful candidate will have some combination of the following education and experience: Bachelor's degree in Cybersecurity, Computer Science, or Information Technology, Relevant certifications (CISSP, CCSP, Security+, or similar), and/or Minimum of 3-5 years' experience in security engineering or adjacent roles. Hands on experience with SIEM platforms, EDR solutions (ideally Crowdstrike), and vulnerability management tools. Experience with IAM solutions, SaaS security, and data protection tools. Strong understanding of networking concepts, protocols, and security architecture. Experience with security automation and scripting required. Strong understanding of cloud security concepts is beneficial. Excellent analytical, problem solving, and communication skills. Working Conditions Full time position with occasional out of hours support coverage as required. Hybrid working arrangement with in office presence required 1-2 days per week. MSGL-I4 Why Menlo? Our culture is collaborative, inclusive, and fun! We have five core values: Stay Aligned, Get It Done, Customer Empathy, Think Creatively and Help Each Other Out. We believe in open communication, supporting new ideas, and sharing a mutual mindset of what we're aiming to achieve together. There are tremendous opportunities to take initiative, implement new ideas, and have a hand in building a legacy. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. TO ALL AGENCIES: Please, no phone calls or emails to any employee of Menlo Security outside of the Talent organization. Menlo Security's policy is to only accept resumes from agencies via Ashby (ATS). Agencies must have a valid services agreement executed and must have been assigned by the Talent team to a specific requisition. Any resume submitted outside of this process will be deemed the sole property of Menlo Security. In the event a candidate submitted outside of this policy is hired, no fee or payment will be paid.
06/06/2026
Full time
Menlo Security's mission is enabling the world to connect, communicate and collaborate securely without compromise. COVID-19 has made our mission all the more real. We support customers across various enterprises including Fortune 500 companies, 9/10 of the largest global banks and the Department of Defense. The world has fundamentally changed. We are growing from 400 employees into the next phase of our journey, and we need passionate talent filled with empathy and agility. The right candidate for the job is ethical, hyper organized, fanatical about seeing things through to completion, service oriented, and humble enough to take feedback and coaching yet confident enough to provide feedback and coaching. Menlo is well funded for growth and our investors are second to none. They include Vista Equity Partners, General Catalyst, JPMC, American Express, HSBC, and Ericsson Ventures. Job Overview The Senior Security Engineer is responsible for protecting the organisation's digital assets, infrastructure, and data through the design, implementation, and maintenance of security systems and controls. This role involves managing security tools, conducting risk assessments, responding to incidents, and ensuring adherence to applicable security standards and frameworks. The successful candidate will work closely with teams across Menlo to embed security best practices across all technology initiatives, supporting the organisation's security posture and resilience. Key Responsibilities Security Operations & Monitoring Monitor and manage the SIEM platform and security alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (Crowdstrike) to ensure comprehensive endpoint protection across the organisation. Lead incident response activities, including investigation, containment, remediation, and post incident analysis. Vulnerability & Risk Management Manage the vulnerability management programme, including scanning, prioritisation, and coordination of remediation efforts. Conduct risk assessments and develop risk mitigation strategies in collaboration with stakeholders. Implement and maintain CIS Benchmarks and similar baselines across systems and infrastructure to ensure secure configurations. Identity, Access & SaaS Security Configure and manage identity and access management (IAM) solutions, ensuring appropriate access controls are in place. Oversee SaaS security posture, including configuration reviews, access governance, and data protection controls. Manage data loss prevention technologies (Code42, Google Workspace) to protect sensitive information and ensure compliance with data handling policies. Security Engineering & Automation Develop and implement automation to improve security operations efficiency and reduce manual workload. Support network security initiatives, ensuring secure architecture and appropriate controls are maintained. Evaluate and contribute to AI security initiatives, ensuring appropriate controls for AI/MCP systems and emerging technologies. Policy, Process & Advisory Develop, document, and maintain security policies, standards, and procedures. Provide security guidance and consultancy to IT and other Menlo teams on projects and initiatives. Stay current with emerging threats, vulnerabilities, and security technologies to continuously improve the organisation's security posture. Qualifications The successful candidate will have some combination of the following education and experience: Bachelor's degree in Cybersecurity, Computer Science, or Information Technology, Relevant certifications (CISSP, CCSP, Security+, or similar), and/or Minimum of 3-5 years' experience in security engineering or adjacent roles. Hands on experience with SIEM platforms, EDR solutions (ideally Crowdstrike), and vulnerability management tools. Experience with IAM solutions, SaaS security, and data protection tools. Strong understanding of networking concepts, protocols, and security architecture. Experience with security automation and scripting required. Strong understanding of cloud security concepts is beneficial. Excellent analytical, problem solving, and communication skills. Working Conditions Full time position with occasional out of hours support coverage as required. Hybrid working arrangement with in office presence required 1-2 days per week. MSGL-I4 Why Menlo? Our culture is collaborative, inclusive, and fun! We have five core values: Stay Aligned, Get It Done, Customer Empathy, Think Creatively and Help Each Other Out. We believe in open communication, supporting new ideas, and sharing a mutual mindset of what we're aiming to achieve together. There are tremendous opportunities to take initiative, implement new ideas, and have a hand in building a legacy. All qualified applicants will receive consideration for employment without regard to race, sex, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. TO ALL AGENCIES: Please, no phone calls or emails to any employee of Menlo Security outside of the Talent organization. Menlo Security's policy is to only accept resumes from agencies via Ashby (ATS). Agencies must have a valid services agreement executed and must have been assigned by the Talent team to a specific requisition. Any resume submitted outside of this process will be deemed the sole property of Menlo Security. In the event a candidate submitted outside of this policy is hired, no fee or payment will be paid.
Chief Information Security Officer (CISO), Belfast Belfast, Northern Ireland, United Kingdom Join TRG Screen: Building World-Class Teams. One Expert at a Time. Are you ready to be part of a dynamic team at the forefront of subscription spend management innovation? At TRG Screen, we're not just redefining how organizations manage their subscription expenses - we're shaping the future of the industry. With cutting edge solutions and a commitment to excellence, we empower businesses around the globe to optimize their subscription investments and drive sustainable growth. Join us in our mission to revolutionize subscription management and make a meaningful impact on the way businesses access and utilize critical information. At TRG Screen, your talent and ambition will find a home, where opportunities for growth and advancement abound. About TRG Screen TRG Screen is the leading provider of market data and subscription management technology and automation solutions, tailored to the unique needs of financial institutions and legal firms. Our integrated suite of solutions includes market data and subscription spend management, usage management, compliance reporting, and comprehensive managed services, which hundreds of clients worldwide use to remove cumbersome and inaccurate manual processes and gain control over market data and subscription costs at scale. For more than 25 years, TRG Screen has enabled businesses who rely on market data to monitor and strategically manage spending and usage of data and information services, including market data, research, software licenses, consulting and other necessary corporate expenses. TRG Screen solutions give decisionmakers full transparency into subscription spend and usage, enabling them to proactively manage subscription costs at scale, conduct more informed vendor negotiations, improve governance, and avoid unnecessary spending on these mission critical business services. TRG Screen is headquartered in New York City, with offices in Europe and Asia, as well as a 24x7 client support center in Bangalore, India. TRG Screen is a portfolio company of Vista Equity Partners, one of the world's largest and most respected private equity firms. The Role We are seeking a strategic and hands on Chief Information Security Officer (CISO) to lead and evolve the security function at TRG Screen, a global provider of market data and technology cost management solutions serving leading financial institutions including banks, asset managers, and hedge funds. The role spans both internal security - corporate IT policies, controls, and a remote workforce across the US, EU, UK, and India - and external security, protecting the products and solutions we deliver to clients. Reporting to the CTO and working closely with the Head of IT/Operations, the CISO will operate across a complex infrastructure encompassing AWS, Azure, and on premises data centres. This is a high impact role with genuine ownership - you will set the security agenda for a growing global business, with the mandate and senior leadership backing to build the function on your own terms. The timing is significant: we are actively embedding AI into our products and operations, making this an opportunity to define how we approach AI security from the ground up, in a sector where data protection and client trust are paramount. Key Responsibilities Security Strategy & Governance Define and execute the company's information security strategy, roadmap, policies, and standards Define and enforce internal IT security policies, covering endpoint security, access management, and controls suited to a remote, globally distributed workforce Maintain and build upon our existing certifications (ISO 27001, SOC 2 Type II), and drive expansion of SOC 2 coverage across our full product portfolio Ensure compliance with GDPR and applicable data protection regulations across our EU and global client base, and support the organisation's future pathway toward ISO 42001 for AI governance Application & Product Security Partner with Engineering to embed security into the software development lifecycle (SDLC) Provide guidance on secure architecture and development planning Oversee vulnerability management and remediation efforts Own the external security posture of our client facing products and solutions, ensuring security is embedded from design through to deployment AI Security Define and implement a framework for securing AI powered features and capabilities embedded within our products, including the security of AI agents, models, and associated infrastructure Govern the safe and compliant use of AI tools internally, including copilots and AI agents used by our workforce Client & Operational Security Oversee security aspects of client support operations, ensuring strong controls and responsiveness Act as a key escalation point for security related client matters Support customer audits, security questionnaires, and due diligence processes Identify, assess, and manage security risks across the business Lead incident response planning and execution Continuously improve detection and response capabilities Act as a trusted advisor to the CTO and broader executive leadership on security risks, strategy, and emerging threats Work in close partnership with the Head of IT/Operations, and collaborate across Product, Engineering, and Client teams globally to align security priorities with business objectives Build and scale security awareness across the organisation, including a remote and globally distributed workforce Grow and shape the security function over time, with the opportunity to build out direct reports as the function matures What We're Looking For 7-12 years of experience in information security, with demonstrated senior leadership (e.g., CISO, Director, or Head of Security) within a SaaS or technology environment Strong understanding of application security and secure software development Strong working knowledge of compliance frameworks including ISO 27001 and SOC 2, with hands on experience managing or achieving these certifications; solid understanding of GDPR compliance across multiple jurisdictions Strong communication skills with the ability to engage both technical and non technical stakeholders Experience securing complex, multi cloud environments (AWS and Azure) alongside on premises data centre infrastructure Awareness of AI security practices and risks, including securing AI powered product features and governing internal AI tool usage Based in or with easy access to the US East Coast or UK/Ireland, comfortable leading remote teams across the US, EU, UK, and India, and willing to travel periodically to our offices in New York, London, or Belfast Join TRG Screen and unlock your potential in an environment where innovation thrives, opportunities abound, and your contributions make a difference. We are an equal opportunities employer. We recognise and value the power of diversity in our workplace and are committed to being an employer of choice for everyone. We welcome and encourage applicants from all backgrounds. All applications for employment are considered strictly on the basis of merit. At TRG Screen, we understand that diverse and inclusive teams are not just beneficial, they are essential to our success. We recognize that embracing diverse perspectives, backgrounds, and experiences fosters innovation, enhances problem solving capabilities, and drives better business outcomes. By cultivating a culture of inclusion where every voice is heard and valued, we empower our world class teams to thrive, excel, and drive positive change. We are proud of our diverse workforce and are dedicated to creating a safe and welcoming environment for all employees. People from various ethnicities, ages, genders, and abilities are encouraged to apply.
06/06/2026
Full time
Chief Information Security Officer (CISO), Belfast Belfast, Northern Ireland, United Kingdom Join TRG Screen: Building World-Class Teams. One Expert at a Time. Are you ready to be part of a dynamic team at the forefront of subscription spend management innovation? At TRG Screen, we're not just redefining how organizations manage their subscription expenses - we're shaping the future of the industry. With cutting edge solutions and a commitment to excellence, we empower businesses around the globe to optimize their subscription investments and drive sustainable growth. Join us in our mission to revolutionize subscription management and make a meaningful impact on the way businesses access and utilize critical information. At TRG Screen, your talent and ambition will find a home, where opportunities for growth and advancement abound. About TRG Screen TRG Screen is the leading provider of market data and subscription management technology and automation solutions, tailored to the unique needs of financial institutions and legal firms. Our integrated suite of solutions includes market data and subscription spend management, usage management, compliance reporting, and comprehensive managed services, which hundreds of clients worldwide use to remove cumbersome and inaccurate manual processes and gain control over market data and subscription costs at scale. For more than 25 years, TRG Screen has enabled businesses who rely on market data to monitor and strategically manage spending and usage of data and information services, including market data, research, software licenses, consulting and other necessary corporate expenses. TRG Screen solutions give decisionmakers full transparency into subscription spend and usage, enabling them to proactively manage subscription costs at scale, conduct more informed vendor negotiations, improve governance, and avoid unnecessary spending on these mission critical business services. TRG Screen is headquartered in New York City, with offices in Europe and Asia, as well as a 24x7 client support center in Bangalore, India. TRG Screen is a portfolio company of Vista Equity Partners, one of the world's largest and most respected private equity firms. The Role We are seeking a strategic and hands on Chief Information Security Officer (CISO) to lead and evolve the security function at TRG Screen, a global provider of market data and technology cost management solutions serving leading financial institutions including banks, asset managers, and hedge funds. The role spans both internal security - corporate IT policies, controls, and a remote workforce across the US, EU, UK, and India - and external security, protecting the products and solutions we deliver to clients. Reporting to the CTO and working closely with the Head of IT/Operations, the CISO will operate across a complex infrastructure encompassing AWS, Azure, and on premises data centres. This is a high impact role with genuine ownership - you will set the security agenda for a growing global business, with the mandate and senior leadership backing to build the function on your own terms. The timing is significant: we are actively embedding AI into our products and operations, making this an opportunity to define how we approach AI security from the ground up, in a sector where data protection and client trust are paramount. Key Responsibilities Security Strategy & Governance Define and execute the company's information security strategy, roadmap, policies, and standards Define and enforce internal IT security policies, covering endpoint security, access management, and controls suited to a remote, globally distributed workforce Maintain and build upon our existing certifications (ISO 27001, SOC 2 Type II), and drive expansion of SOC 2 coverage across our full product portfolio Ensure compliance with GDPR and applicable data protection regulations across our EU and global client base, and support the organisation's future pathway toward ISO 42001 for AI governance Application & Product Security Partner with Engineering to embed security into the software development lifecycle (SDLC) Provide guidance on secure architecture and development planning Oversee vulnerability management and remediation efforts Own the external security posture of our client facing products and solutions, ensuring security is embedded from design through to deployment AI Security Define and implement a framework for securing AI powered features and capabilities embedded within our products, including the security of AI agents, models, and associated infrastructure Govern the safe and compliant use of AI tools internally, including copilots and AI agents used by our workforce Client & Operational Security Oversee security aspects of client support operations, ensuring strong controls and responsiveness Act as a key escalation point for security related client matters Support customer audits, security questionnaires, and due diligence processes Identify, assess, and manage security risks across the business Lead incident response planning and execution Continuously improve detection and response capabilities Act as a trusted advisor to the CTO and broader executive leadership on security risks, strategy, and emerging threats Work in close partnership with the Head of IT/Operations, and collaborate across Product, Engineering, and Client teams globally to align security priorities with business objectives Build and scale security awareness across the organisation, including a remote and globally distributed workforce Grow and shape the security function over time, with the opportunity to build out direct reports as the function matures What We're Looking For 7-12 years of experience in information security, with demonstrated senior leadership (e.g., CISO, Director, or Head of Security) within a SaaS or technology environment Strong understanding of application security and secure software development Strong working knowledge of compliance frameworks including ISO 27001 and SOC 2, with hands on experience managing or achieving these certifications; solid understanding of GDPR compliance across multiple jurisdictions Strong communication skills with the ability to engage both technical and non technical stakeholders Experience securing complex, multi cloud environments (AWS and Azure) alongside on premises data centre infrastructure Awareness of AI security practices and risks, including securing AI powered product features and governing internal AI tool usage Based in or with easy access to the US East Coast or UK/Ireland, comfortable leading remote teams across the US, EU, UK, and India, and willing to travel periodically to our offices in New York, London, or Belfast Join TRG Screen and unlock your potential in an environment where innovation thrives, opportunities abound, and your contributions make a difference. We are an equal opportunities employer. We recognise and value the power of diversity in our workplace and are committed to being an employer of choice for everyone. We welcome and encourage applicants from all backgrounds. All applications for employment are considered strictly on the basis of merit. At TRG Screen, we understand that diverse and inclusive teams are not just beneficial, they are essential to our success. We recognize that embracing diverse perspectives, backgrounds, and experiences fosters innovation, enhances problem solving capabilities, and drives better business outcomes. By cultivating a culture of inclusion where every voice is heard and valued, we empower our world class teams to thrive, excel, and drive positive change. We are proud of our diverse workforce and are dedicated to creating a safe and welcoming environment for all employees. People from various ethnicities, ages, genders, and abilities are encouraged to apply.
Required Skills Java typescript aws ec2 lambda DynamoDB IaC AWS CDK BackEnd Job Summary Back End Development Engineer - Contract (12 months) London Onsite - Global Big 4/FAANG We're hiring an experiencedBack End Engineerto work on large scale, cloud nativeedge and gateway platformshandling high throughput, security critical traffic. This is a Senior Back End Engineer role focused on keeping a prominentGlobal Video platformfast, reliable, and secure at massive scale, requiring strong experience with distributed systems, AWS, and production environments. What you'll do Build and operate backend services and AWS infrastructure Improve availability, performance, and operational efficiency Take part in on call and incident response Key skills JavaandTypeScript AWS(EC2, Lambda, DynamoDB, NLB, ElastiCache) Generative AIFluency Distributed systems,networking fundamentals Infrastructure as code / IaC(AWS CDK) Production operationsexperience Why apply Mission critical systems at scale with a Global brand High ownership, real impact project 12 month initial contract This is a 12 month maternity cover contract that can extend, working on a huge name in global media and video. The role is an onsite role, 5 days per week in London (City/Shoreditch) working within a team of experts
05/06/2026
Full time
Required Skills Java typescript aws ec2 lambda DynamoDB IaC AWS CDK BackEnd Job Summary Back End Development Engineer - Contract (12 months) London Onsite - Global Big 4/FAANG We're hiring an experiencedBack End Engineerto work on large scale, cloud nativeedge and gateway platformshandling high throughput, security critical traffic. This is a Senior Back End Engineer role focused on keeping a prominentGlobal Video platformfast, reliable, and secure at massive scale, requiring strong experience with distributed systems, AWS, and production environments. What you'll do Build and operate backend services and AWS infrastructure Improve availability, performance, and operational efficiency Take part in on call and incident response Key skills JavaandTypeScript AWS(EC2, Lambda, DynamoDB, NLB, ElastiCache) Generative AIFluency Distributed systems,networking fundamentals Infrastructure as code / IaC(AWS CDK) Production operationsexperience Why apply Mission critical systems at scale with a Global brand High ownership, real impact project 12 month initial contract This is a 12 month maternity cover contract that can extend, working on a huge name in global media and video. The role is an onsite role, 5 days per week in London (City/Shoreditch) working within a team of experts
2nd Line Security Analyst Bath Hybrid working - 2-3 days a week £Competitive + Progression into Leadership + A Healthy Training and Development Budget + 25 Days Annual Leave + Bank Holidays + Matched Pension (5-9%) + Hybrid Working Excellent opportunity for a 2nd Line Security Analyst / EUC Security Analyst or similar to join a company offering a career path into leadership, a great benefits package, and a very healthy training and development budget. This company are a market-leading global engineering business going through an exciting period of change and growth. As part of this, they are continuing to invest heavily in their Cyber Security teams globally, making this a great opportunity to join a business where you can make a real impact and progress your career. In this role you will serve as a key escalation point for the 1st Line team, supporting the identification, containment, and remediation of threats across the End User Compute estate. You will investigate issues such as malware, phishing, unauthorised access, and endpoint vulnerabilities, while working closely with wider security and infrastructure teams to support patching, remediation, and secure device configuration. The ideal candidate will have experience in a similar security or EUC-focused support role, with knowledge of endpoint vulnerability remediation, patch management, and Microsoft-based environments. Candidates with exposure to tools such as Intune, SCCM, Qualys, Entra ID, Microsoft Defender, Microsoft 365, and Active Directory will be of particular interest. Any experience supporting Cyber Essentials Plus, ISO 27001, or similar security standards would also be beneficial. This is a fantastic opportunity to join a business offering a very healthy training and development budget, an excellent benefits package, and progression all the way up to Global Team Leadership. The Role: 2nd Line Security Analyst / EUC Security Analyst position Incident response, containment, and remediation across endpoint environments Work closely with 1st and 3rd line teams to resolve and upscale security issues where needed Hybrid working - 2-3 days a week onsite The Person: Experience within a similar security, EUC, or 2nd line support position Good understanding of endpoint security, remediation, and Microsoft environments Exposure to tools such as Intune, SCCM, Qualys, Entra ID, Defender, Microsoft 365, and Active Directory Looking for progression and commutable to Bath Reference Number: BBBH269570 Salary advertised is the bracket available for this position. The actual salary paid will be dependent on your level of experience, qualifications and skill set and will be decided by our client, the employer. Rise are not responsible or liable for any hiring decisions made by the end client. We are an equal opportunities company and welcome applications from all suitable candidates.
05/06/2026
Full time
2nd Line Security Analyst Bath Hybrid working - 2-3 days a week £Competitive + Progression into Leadership + A Healthy Training and Development Budget + 25 Days Annual Leave + Bank Holidays + Matched Pension (5-9%) + Hybrid Working Excellent opportunity for a 2nd Line Security Analyst / EUC Security Analyst or similar to join a company offering a career path into leadership, a great benefits package, and a very healthy training and development budget. This company are a market-leading global engineering business going through an exciting period of change and growth. As part of this, they are continuing to invest heavily in their Cyber Security teams globally, making this a great opportunity to join a business where you can make a real impact and progress your career. In this role you will serve as a key escalation point for the 1st Line team, supporting the identification, containment, and remediation of threats across the End User Compute estate. You will investigate issues such as malware, phishing, unauthorised access, and endpoint vulnerabilities, while working closely with wider security and infrastructure teams to support patching, remediation, and secure device configuration. The ideal candidate will have experience in a similar security or EUC-focused support role, with knowledge of endpoint vulnerability remediation, patch management, and Microsoft-based environments. Candidates with exposure to tools such as Intune, SCCM, Qualys, Entra ID, Microsoft Defender, Microsoft 365, and Active Directory will be of particular interest. Any experience supporting Cyber Essentials Plus, ISO 27001, or similar security standards would also be beneficial. This is a fantastic opportunity to join a business offering a very healthy training and development budget, an excellent benefits package, and progression all the way up to Global Team Leadership. The Role: 2nd Line Security Analyst / EUC Security Analyst position Incident response, containment, and remediation across endpoint environments Work closely with 1st and 3rd line teams to resolve and upscale security issues where needed Hybrid working - 2-3 days a week onsite The Person: Experience within a similar security, EUC, or 2nd line support position Good understanding of endpoint security, remediation, and Microsoft environments Exposure to tools such as Intune, SCCM, Qualys, Entra ID, Defender, Microsoft 365, and Active Directory Looking for progression and commutable to Bath Reference Number: BBBH269570 Salary advertised is the bracket available for this position. The actual salary paid will be dependent on your level of experience, qualifications and skill set and will be decided by our client, the employer. Rise are not responsible or liable for any hiring decisions made by the end client. We are an equal opportunities company and welcome applications from all suitable candidates.
SOC Engineer required for global legal firm. You will be responsible for advancing the maturity of the SIEM platform alongside other strategic security solutions, working closely with internal teams to improve the organisation's overall security posture. This position focuses on onboarding new log sources, optimising data pipelines, developing advanced detection use cases, and strengthening overall security monitoring and response. It's an excellent opportunity for a security professional who enjoys building scalable, high-performing SOC environments and driving continuous improvement. The Role This role also involves contributing to security service improvements and core operational processes, including incident, change, and problem management, as well as supporting the design, implementation, and review of security controls. There may occasionally be a requirement to support out-of-hours changes or respond to critical security incidents. Key Responsibilities SIEM Engineering & Optimisation Enhance and optimise SIEM performance, coverage, and detection fidelity Assess and improve SIEM architecture, including ingestion pipelines, parsing, and correlation logic Implement automation and orchestration (SOAR) to streamline response activities Log Source Onboarding & Integration Identify and onboard new log sources across cloud, network, endpoint, and application environments Develop custom parsers, connectors, and ingestion playbooks Collaborate with internal teams and vendors to ensure reliable, high-quality telemetry Detection Engineering Design and implement detection use cases aligned to MITRE ATT&CK and threat intelligence Build and tune correlation rules, anomaly detections, dashboards, and alerting workflows Continuously refine detections to reduce false positives and improve effectiveness SOC & Incident Response Support Partner with SOC analysts to validate and improve detection logic Support investigations through advanced SIEM queries and data analysis Act as a subject matter expert on complex security incidents Documentation & Governance Maintain clear documentation of data models, integrations, and detection logic Ensure alignment with security standards, controls, and compliance requirements Skills & Experience Technical Expertise Hands on experience with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, Elastic, ArcSight, LogRhythm, or Exabeam Strong understanding of log formats (JSON, syslog, XML, CEF) and ingestion methods (APIs, Kafka, Event Hubs, agents) Experience in detection engineering, threat modelling, and attacker behaviour analysis Proven ability to build and tune correlation rules, dashboards, and alerts Familiarity with SOAR tools and automation workflows Security Knowledge Solid understanding of networking, Windows/Linux systems, cloud platforms (Azure, AWS, GCP), identity systems, and endpoint security tools Knowledge of MITRE ATT&CK, cyber kill chain, and threat hunting techniques Requirements Degree (Level 4+) in a computing-related subject or equivalent experience Background across IT infrastructure and information security roles Relevant certifications (eg GIAC, SC-200/SC-100, CISSP, SSCP, CSIS) Strong Scripting skills (Python, PowerShell, PowerApps) Excellent communication skills with the ability to engage stakeholders at all levels Proactive, self driven approach with strong analytical capability Desirable Experience Data Loss Prevention (DLP) Secure remote access solutions Network security technologies Threat intelligence and open-source security tools Experience with SaaS, IaaS, PaaS, and DaaS environments Business continuity and disaster recovery planning Knowledge of data privacy regulations
05/06/2026
Full time
SOC Engineer required for global legal firm. You will be responsible for advancing the maturity of the SIEM platform alongside other strategic security solutions, working closely with internal teams to improve the organisation's overall security posture. This position focuses on onboarding new log sources, optimising data pipelines, developing advanced detection use cases, and strengthening overall security monitoring and response. It's an excellent opportunity for a security professional who enjoys building scalable, high-performing SOC environments and driving continuous improvement. The Role This role also involves contributing to security service improvements and core operational processes, including incident, change, and problem management, as well as supporting the design, implementation, and review of security controls. There may occasionally be a requirement to support out-of-hours changes or respond to critical security incidents. Key Responsibilities SIEM Engineering & Optimisation Enhance and optimise SIEM performance, coverage, and detection fidelity Assess and improve SIEM architecture, including ingestion pipelines, parsing, and correlation logic Implement automation and orchestration (SOAR) to streamline response activities Log Source Onboarding & Integration Identify and onboard new log sources across cloud, network, endpoint, and application environments Develop custom parsers, connectors, and ingestion playbooks Collaborate with internal teams and vendors to ensure reliable, high-quality telemetry Detection Engineering Design and implement detection use cases aligned to MITRE ATT&CK and threat intelligence Build and tune correlation rules, anomaly detections, dashboards, and alerting workflows Continuously refine detections to reduce false positives and improve effectiveness SOC & Incident Response Support Partner with SOC analysts to validate and improve detection logic Support investigations through advanced SIEM queries and data analysis Act as a subject matter expert on complex security incidents Documentation & Governance Maintain clear documentation of data models, integrations, and detection logic Ensure alignment with security standards, controls, and compliance requirements Skills & Experience Technical Expertise Hands on experience with SIEM platforms such as Splunk, Microsoft Sentinel, QRadar, Elastic, ArcSight, LogRhythm, or Exabeam Strong understanding of log formats (JSON, syslog, XML, CEF) and ingestion methods (APIs, Kafka, Event Hubs, agents) Experience in detection engineering, threat modelling, and attacker behaviour analysis Proven ability to build and tune correlation rules, dashboards, and alerts Familiarity with SOAR tools and automation workflows Security Knowledge Solid understanding of networking, Windows/Linux systems, cloud platforms (Azure, AWS, GCP), identity systems, and endpoint security tools Knowledge of MITRE ATT&CK, cyber kill chain, and threat hunting techniques Requirements Degree (Level 4+) in a computing-related subject or equivalent experience Background across IT infrastructure and information security roles Relevant certifications (eg GIAC, SC-200/SC-100, CISSP, SSCP, CSIS) Strong Scripting skills (Python, PowerShell, PowerApps) Excellent communication skills with the ability to engage stakeholders at all levels Proactive, self driven approach with strong analytical capability Desirable Experience Data Loss Prevention (DLP) Secure remote access solutions Network security technologies Threat intelligence and open-source security tools Experience with SaaS, IaaS, PaaS, and DaaS environments Business continuity and disaster recovery planning Knowledge of data privacy regulations
Cyber Incident Manager page is loaded Cyber Incident Managerlocations: United Kingdom, Edinburgh, SC, Freertime type: Full timeposted on: Posted Yesterdayjob requisition id: R261049 About Analog Devices Analog Devices, Inc. (NASDAQ: ) is a global semiconductor leader that bridges the physical and digital worlds to enable breakthroughs at the Intelligent Edge. ADI combines analog, digital, and software technologies into solutions that help drive advancements in digitized factories, mobility, and digital healthcare, combat climate change, and reliably connect humans and the world. With revenue of more than $9 billion in FY24 and approximately 24,000 people globally, ADI ensures today's innovators stay Ahead of What's Possible(TM). Learn more at and on and .# Cyber Incident Manager Location: UK (hybrid) Role Overview We're looking for a Cyber Incident Manager who brings calm, speed, and precision to high stakes security events. At Analog Devices, you'll play a central role in our end to end cyber incident response-protecting operations, safeguarding intellectual property, and upholding the trust our customers place in us. You will take command when it matters most. You'll act as Incident Commander across the full lifecycle using ADI's SANS based process and severity model, ensuring disciplined execution from detection to recovery. You'll lead cyber incidents, run the Incident Action Group (IAG), and drive rapid containment, recovery, and high quality post incident reviews. You'll own clear communication, maintain legal privilege, ensure record keeping, and work closely with legal, engineering, and cross functional partners. Ultimately, you'll raise our incident response maturity and strengthen resilience-fast and with lasting impact. Key Responsibilities Own incident communications: run executive updates and stakeholder calls per ADIs Comms & Escalation Matrix; produce concise executive summaries and impact assessments. Stand up and run the Incident Action Group (IAG); set strategy, assign workstreams, and steer decisions at pace. Operate within the incident case management platform to ensure real time logging, status, actions and decisions are captured and auditable. Orchestrate SOC, IR retainer, legal and engineering to deliver containment, focused monitoring, and durable remediation. Operate to NIST aligned IR practices and ADI governance; align evidence and timelines to other applicable obligations (e.g., sectoral regulators). When appropriate, maintain legal privilege throughout investigations using ADI's privilege guidance and approved channels. Partner with SOC and Threat Intel to apply MITRE ATT&CK mapping, enable proactive detection, and reduce dwell time. Drive post incident reviews (PIRs), root cause analysis and action plans; track MTTD/MTTR, severity distributions and regulatory timelines. Be a pivotal part of tabletops and simulations; evolve playbooks to reflect new tactics, cloud patterns and control gaps. Essential experience 5+ years leading cyber incidents and complex intrusions (SOC/IR/major incident command) in global enterprise environments. Mastery of incident lifecycle execution (SANS six steps), evidence handling, and cross functional coordination. Strong grasp of SIEM/EDR (e.g., Microsoft Sentinel, Defender, Splunk) and cloud incident patterns (Azure/AWS). Clear, executive level communication-translating technical impact into business risk and decisions. Nice to have certifications GCIH, GCFA/GCFR, GCTI, CISSP, CCSP, CISM; UK CREST credentials welcome but not essential Work with cutting-edge security tools and technologies in a dynamic, innovative environment. Play a meaningful role in shaping and strengthening the security posture of a global enterprise. Competitive salary, benefits, and continuous professional development opportunities. A collaborative culture that values integrity, innovation, and work-life balance. For positions requiring access to technical data, Analog Devices, Inc. may have to obtain export licensing approval from the U.S. Department of Commerce - Bureau of Industry and Security and/or the U.S. Department of State - Directorate of Defense Trade Controls. As such, applicants for this position - except US Citizens, US Permanent Residents, and protected individuals as defined by 8 U.S.C. 1324b(a)(3) - may have to go through an export licensing review process. Analog Devices is an equal opportunity employer. We foster a culture where everyone has an opportunity to succeed regardless of their race, color, religion, age, ancestry, national origin, social or ethnic origin, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, parental status, disability, medical condition, genetic information, military or veteran status, union membership, and political affiliation, or any other legally protected group. Job Req Type: ExperiencedRequired Travel: Yes, 10% of the timeShift Type: 1st Shift/Days
05/06/2026
Full time
Cyber Incident Manager page is loaded Cyber Incident Managerlocations: United Kingdom, Edinburgh, SC, Freertime type: Full timeposted on: Posted Yesterdayjob requisition id: R261049 About Analog Devices Analog Devices, Inc. (NASDAQ: ) is a global semiconductor leader that bridges the physical and digital worlds to enable breakthroughs at the Intelligent Edge. ADI combines analog, digital, and software technologies into solutions that help drive advancements in digitized factories, mobility, and digital healthcare, combat climate change, and reliably connect humans and the world. With revenue of more than $9 billion in FY24 and approximately 24,000 people globally, ADI ensures today's innovators stay Ahead of What's Possible(TM). Learn more at and on and .# Cyber Incident Manager Location: UK (hybrid) Role Overview We're looking for a Cyber Incident Manager who brings calm, speed, and precision to high stakes security events. At Analog Devices, you'll play a central role in our end to end cyber incident response-protecting operations, safeguarding intellectual property, and upholding the trust our customers place in us. You will take command when it matters most. You'll act as Incident Commander across the full lifecycle using ADI's SANS based process and severity model, ensuring disciplined execution from detection to recovery. You'll lead cyber incidents, run the Incident Action Group (IAG), and drive rapid containment, recovery, and high quality post incident reviews. You'll own clear communication, maintain legal privilege, ensure record keeping, and work closely with legal, engineering, and cross functional partners. Ultimately, you'll raise our incident response maturity and strengthen resilience-fast and with lasting impact. Key Responsibilities Own incident communications: run executive updates and stakeholder calls per ADIs Comms & Escalation Matrix; produce concise executive summaries and impact assessments. Stand up and run the Incident Action Group (IAG); set strategy, assign workstreams, and steer decisions at pace. Operate within the incident case management platform to ensure real time logging, status, actions and decisions are captured and auditable. Orchestrate SOC, IR retainer, legal and engineering to deliver containment, focused monitoring, and durable remediation. Operate to NIST aligned IR practices and ADI governance; align evidence and timelines to other applicable obligations (e.g., sectoral regulators). When appropriate, maintain legal privilege throughout investigations using ADI's privilege guidance and approved channels. Partner with SOC and Threat Intel to apply MITRE ATT&CK mapping, enable proactive detection, and reduce dwell time. Drive post incident reviews (PIRs), root cause analysis and action plans; track MTTD/MTTR, severity distributions and regulatory timelines. Be a pivotal part of tabletops and simulations; evolve playbooks to reflect new tactics, cloud patterns and control gaps. Essential experience 5+ years leading cyber incidents and complex intrusions (SOC/IR/major incident command) in global enterprise environments. Mastery of incident lifecycle execution (SANS six steps), evidence handling, and cross functional coordination. Strong grasp of SIEM/EDR (e.g., Microsoft Sentinel, Defender, Splunk) and cloud incident patterns (Azure/AWS). Clear, executive level communication-translating technical impact into business risk and decisions. Nice to have certifications GCIH, GCFA/GCFR, GCTI, CISSP, CCSP, CISM; UK CREST credentials welcome but not essential Work with cutting-edge security tools and technologies in a dynamic, innovative environment. Play a meaningful role in shaping and strengthening the security posture of a global enterprise. Competitive salary, benefits, and continuous professional development opportunities. A collaborative culture that values integrity, innovation, and work-life balance. For positions requiring access to technical data, Analog Devices, Inc. may have to obtain export licensing approval from the U.S. Department of Commerce - Bureau of Industry and Security and/or the U.S. Department of State - Directorate of Defense Trade Controls. As such, applicants for this position - except US Citizens, US Permanent Residents, and protected individuals as defined by 8 U.S.C. 1324b(a)(3) - may have to go through an export licensing review process. Analog Devices is an equal opportunity employer. We foster a culture where everyone has an opportunity to succeed regardless of their race, color, religion, age, ancestry, national origin, social or ethnic origin, sex, sexual orientation, gender, gender identity, gender expression, marital status, pregnancy, parental status, disability, medical condition, genetic information, military or veteran status, union membership, and political affiliation, or any other legally protected group. Job Req Type: ExperiencedRequired Travel: Yes, 10% of the timeShift Type: 1st Shift/Days
The Deputy CISO is the CISO's principal delegate and second in command, accountable for day to day execution of the global cyber security program, team leadership and for elevating security influence across the enterprise. The role ensures cohesive strategy, robust operations, and clear business alignment in a complex logistics environment, including WMS/TMS platforms and warehouse robotics, IoT, and OT. The Deputy CISO strengthens succession planning, executive decision making, and senior business partnering across the organisation. Operates in a global role, based at either of our UK corporate HQs (London or Northampton). Key Responsibilities Support the CISO in translating the enterprise risk appetite into an actionable, outcome driven security strategy; and support the multi year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure "secure by default" across cloud, application, data, identity, and infrastructure landscapes. Establish IDAM function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24 7 detection, response, threat hunting), DFIR, purple team/assurance, ransomware preparedness, and crisis playbooks. Maintain executive incident communications, regulator notifications, and post incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive secure by design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment. Business Partnering & PMO Ensure the Business Partnering function embeds security in product/platform roadmaps and regional operations (Americas/EMEA/APAC). Oversee the InfoSec PMO: portfolio selection, prioritization, benefits tracking, and transparent delivery reporting to business and technology leaders. Provide day to day management of InfoSec senior leaders (four directors/senior directors) and their teams; build succession paths, mentorship, and leadership development. Sponsor Security Awareness & Culture programs and executive engagement; promote inclusive, high performance behaviors. The role has enterprise wide accountability for the execution of the global cyber security program, ensuring effective risk management, operational resilience, and alignment with business strategy. It influences executive decision making, enterprise risk posture, and regulatory outcomes across a complex global logistics environment. You will operate in a complex and evolving threat landscape, requiring continuous improvement of security processes, tooling, and operating models. You will address ambiguous and high impact challenges across technology, risk, and business domains with enterprise wide implications. The role engages extensively with the CISO, regulators, and senior business and technology leaders. It is responsible for executive level incident communications, regulatory engagement, and influencing security outcomes across regions and functions. You will provide leadership to senior InfoSec leaders and their teams, supporting performance, development, and succession planning across the global security organisation. Experience and Qualifications Required 15+ years in information security with progressive leadership; 8+ years leading multi disciplinary teams across SecOps/IR, GRC, Engineering/Architecture and Business Partnering. Demonstrated success interfacing with boards/executive committees; executive incident leadership and public/regulatory communications. Deep experience in either GRC or technical cyber security. Experience in managing and leading global cross functional and cross regional tech teams. Experience in Continuous improvement, Six Sigma or other improvement tools to drive business performance and create value. Strong understanding and maturing of IT operating models in matrixed, global environments. Demonstrated success in driving technology standardization and transformation programs. Bachelor's degree in computer science, engineering, or a related field; advanced degree preferred. CISSP (or CISM). Other security certifications. Travel requirement - up to 20%. GXO is an equal opportunity employer. We celebrate, support and thrive on diversity and are committed to creating an inclusive environment for all employees. We believe that diversity and inclusion in our business is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are an Armed Forces friendly organisation and Disability Confident Leader as part of the Disability Confident Scheme (GIS) and actively welcome applications from people with disabilities.
05/06/2026
Full time
The Deputy CISO is the CISO's principal delegate and second in command, accountable for day to day execution of the global cyber security program, team leadership and for elevating security influence across the enterprise. The role ensures cohesive strategy, robust operations, and clear business alignment in a complex logistics environment, including WMS/TMS platforms and warehouse robotics, IoT, and OT. The Deputy CISO strengthens succession planning, executive decision making, and senior business partnering across the organisation. Operates in a global role, based at either of our UK corporate HQs (London or Northampton). Key Responsibilities Support the CISO in translating the enterprise risk appetite into an actionable, outcome driven security strategy; and support the multi year roadmap and quarterly OKRs. Chair the executive security governance forums and drive enterprise security governance mechanisms. Architecture & Engineering Oversee Security Architecture and Engineering; ensure "secure by default" across cloud, application, data, identity, and infrastructure landscapes. Establish IDAM function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24 7 detection, response, threat hunting), DFIR, purple team/assurance, ransomware preparedness, and crisis playbooks. Maintain executive incident communications, regulator notifications, and post incident improvements. Act as escalation point for any security related service failures or major incidents. Threat and Vulnerability Management Support the TVM team in continuously reducing vulnerability levels in the organisation. Recommend procedural improvements and reporting to drive constant improvement. Drive secure by design into applications and ensure all applications and the wider estate are sufficiently tested for signs of vulnerability. Governance, Risk & Compliance (GRC) Ensure audit readiness, control effectiveness (key SOX/ITGC, NIST/ISO mappings), and remediation governance; lead policy lifecycle and attestations. Oversee the enterprise risk process (RCSA, KRIs), executive reporting, and board risk briefings. Improve third party risk management (carriers, 4PL/3PL partners, SaaS/IaaS providers) and regulatory alignment. Business Partnering & PMO Ensure the Business Partnering function embeds security in product/platform roadmaps and regional operations (Americas/EMEA/APAC). Oversee the InfoSec PMO: portfolio selection, prioritization, benefits tracking, and transparent delivery reporting to business and technology leaders. Provide day to day management of InfoSec senior leaders (four directors/senior directors) and their teams; build succession paths, mentorship, and leadership development. Sponsor Security Awareness & Culture programs and executive engagement; promote inclusive, high performance behaviors. The role has enterprise wide accountability for the execution of the global cyber security program, ensuring effective risk management, operational resilience, and alignment with business strategy. It influences executive decision making, enterprise risk posture, and regulatory outcomes across a complex global logistics environment. You will operate in a complex and evolving threat landscape, requiring continuous improvement of security processes, tooling, and operating models. You will address ambiguous and high impact challenges across technology, risk, and business domains with enterprise wide implications. The role engages extensively with the CISO, regulators, and senior business and technology leaders. It is responsible for executive level incident communications, regulatory engagement, and influencing security outcomes across regions and functions. You will provide leadership to senior InfoSec leaders and their teams, supporting performance, development, and succession planning across the global security organisation. Experience and Qualifications Required 15+ years in information security with progressive leadership; 8+ years leading multi disciplinary teams across SecOps/IR, GRC, Engineering/Architecture and Business Partnering. Demonstrated success interfacing with boards/executive committees; executive incident leadership and public/regulatory communications. Deep experience in either GRC or technical cyber security. Experience in managing and leading global cross functional and cross regional tech teams. Experience in Continuous improvement, Six Sigma or other improvement tools to drive business performance and create value. Strong understanding and maturing of IT operating models in matrixed, global environments. Demonstrated success in driving technology standardization and transformation programs. Bachelor's degree in computer science, engineering, or a related field; advanced degree preferred. CISSP (or CISM). Other security certifications. Travel requirement - up to 20%. GXO is an equal opportunity employer. We celebrate, support and thrive on diversity and are committed to creating an inclusive environment for all employees. We believe that diversity and inclusion in our business is critical to our success as a global company, and we seek to recruit, develop and retain the most talented people from a diverse candidate pool. We are an Armed Forces friendly organisation and Disability Confident Leader as part of the Disability Confident Scheme (GIS) and actively welcome applications from people with disabilities.
The Company Capital Markets Gateway LLC (CMG) is a fintech focused on equity capital markets, transforming global ECM through data, technology, and connectivity. The CMG platform is used by nearly 150 buy side firms representing $40 trillion in AUM and 22 global investment banks. The Role CMG is looking for a Site Reliability Engineer (SRE) with a strong focus on monitoring, observability, and alerting to ensure the reliability, performance, and scalability of our infrastructure and applications. You will design, implement, and maintain monitoring solutions to provide visibility into system health and performance, proactively detect anomalies, and reduce incident response time. Our Engineering Team The CMG engineering team consists of domain experts who work collaboratively within a culture of cross domain knowledge sharing. Responsibilities Monitoring & Observability Design, implement, and maintain monitoring and observability solutions using tools like Prometheus, Grafana Stack (Loki/Grafana/Tempo/Alert Manager), Datadog, and OpenTelemetry. Define and implement SLOs, SLIs, and error budgets to measure system reliability. Develop and optimize dashboards, alerts, and reports for system performance and business metrics. Alerting & Incident Management Design actionable alerting strategies to minimize noise and improve MTTR. Integrate alerting systems with Jira. Establish and refine runbooks for on call teams to handle alerts efficiently. Empower teams to ensure observability coverage and incident response practices. Performance Optimization Analyze system performance metrics, identify bottlenecks, and implement optimizations to improve system efficiency, scalability, and cost-effectiveness. Help conduct load testing and capacity planning to ensure systems can handle peak traffic loads. Automation and Tooling Identify opportunities for automation and develop tools to streamline operational processes, such as fail over, configuration management, and monitoring. Implement monitoring and alerting systems within automations to detect and resolve issues proactively. Collaboration and Communication Collaborate closely with cross functional teams, including software engineers, operations, and infrastructure teams, to understand system requirements, provide technical guidance, and drive solutions. Communicate effectively to stakeholders about system changes, incidents, and improvements. Foment and spread SRE principles and practices across the company. Qualifications Must be based in Latin America English level - C1 or C2 Proven experience as a Site Reliability Engineer or a similar role. Proficiency in logging, metrics, and tracing frameworks (DataDog, Loki, Prometheus, OpenTelemetry). Experience with cloud platforms (Azure preferred) and infrastructure-as-code tools (e.g., Terraform). Strong programming and scripting skills (Python, Bash). Proficiency in containerization technologies and orchestration tools (Docker, Kubernetes). Understanding of Linux based systems, networking, and security principles related to containerized applications. Strong problem solving and troubleshooting skills, with a passion for identifying and resolving complex technical issues. Excellent communication and collaboration abilities. Ability to thrive in a fast paced, constantly evolving environment. Experience with PostgreSQL monitoring and optimization (Optional/Nice to have). Our Tech Stack Azure as an infrastructure provider. We are reviewing secondary cloud options. Docker + Kubernetes for microservice orchestration using Istio service mesh. PostgreSQL for relational db, ElasticSearch for indexing, Redis for caching. DataDog, Grafana and OpenTelemetry for observability. GitHub for version control and CI (with our own runners). CD: Harness and FluxCD. Terraform and Terragrunt as IaC. Python and Bash for scripting infrastructure. React - we are all in on React - we maintain multiple single page React apps. TypeScript - 99% of our codebase is TypeScript. Latest .NET version for our backend services. GraphQL - our standard for API communication is GraphQL served by our .NET back end. Our Values We innovate with purpose We focus on outcomes vs. output We believe diverse and inclusive teams fuel innovation We are humble yet candid We do right by the customer What We Offer Equity Unlimited PTO (28 days including bank holidays plus additional paid leave) Comprehensive benefits program managed by Globalization Partners Premium life and income protection Top private medical and dental insurance Employee Assistance Program (EAP) Pension contributions Hybrid work environment (initially remote until office setup is complete) Education reimbursement Continuous learning opportunities Employee referral bonus Parental leave CMG embraces our ongoing commitment to building a culture reflecting the people, perspectives, and passions it represents. We will accept nothing less than equity, inclusion, and belonging for all. With the only constant in life being change, we will always listen, learn, and improve for the betterment of our teams, customers, and communities. CMG is proud to be an Equal Opportunity Employer.
05/06/2026
Full time
The Company Capital Markets Gateway LLC (CMG) is a fintech focused on equity capital markets, transforming global ECM through data, technology, and connectivity. The CMG platform is used by nearly 150 buy side firms representing $40 trillion in AUM and 22 global investment banks. The Role CMG is looking for a Site Reliability Engineer (SRE) with a strong focus on monitoring, observability, and alerting to ensure the reliability, performance, and scalability of our infrastructure and applications. You will design, implement, and maintain monitoring solutions to provide visibility into system health and performance, proactively detect anomalies, and reduce incident response time. Our Engineering Team The CMG engineering team consists of domain experts who work collaboratively within a culture of cross domain knowledge sharing. Responsibilities Monitoring & Observability Design, implement, and maintain monitoring and observability solutions using tools like Prometheus, Grafana Stack (Loki/Grafana/Tempo/Alert Manager), Datadog, and OpenTelemetry. Define and implement SLOs, SLIs, and error budgets to measure system reliability. Develop and optimize dashboards, alerts, and reports for system performance and business metrics. Alerting & Incident Management Design actionable alerting strategies to minimize noise and improve MTTR. Integrate alerting systems with Jira. Establish and refine runbooks for on call teams to handle alerts efficiently. Empower teams to ensure observability coverage and incident response practices. Performance Optimization Analyze system performance metrics, identify bottlenecks, and implement optimizations to improve system efficiency, scalability, and cost-effectiveness. Help conduct load testing and capacity planning to ensure systems can handle peak traffic loads. Automation and Tooling Identify opportunities for automation and develop tools to streamline operational processes, such as fail over, configuration management, and monitoring. Implement monitoring and alerting systems within automations to detect and resolve issues proactively. Collaboration and Communication Collaborate closely with cross functional teams, including software engineers, operations, and infrastructure teams, to understand system requirements, provide technical guidance, and drive solutions. Communicate effectively to stakeholders about system changes, incidents, and improvements. Foment and spread SRE principles and practices across the company. Qualifications Must be based in Latin America English level - C1 or C2 Proven experience as a Site Reliability Engineer or a similar role. Proficiency in logging, metrics, and tracing frameworks (DataDog, Loki, Prometheus, OpenTelemetry). Experience with cloud platforms (Azure preferred) and infrastructure-as-code tools (e.g., Terraform). Strong programming and scripting skills (Python, Bash). Proficiency in containerization technologies and orchestration tools (Docker, Kubernetes). Understanding of Linux based systems, networking, and security principles related to containerized applications. Strong problem solving and troubleshooting skills, with a passion for identifying and resolving complex technical issues. Excellent communication and collaboration abilities. Ability to thrive in a fast paced, constantly evolving environment. Experience with PostgreSQL monitoring and optimization (Optional/Nice to have). Our Tech Stack Azure as an infrastructure provider. We are reviewing secondary cloud options. Docker + Kubernetes for microservice orchestration using Istio service mesh. PostgreSQL for relational db, ElasticSearch for indexing, Redis for caching. DataDog, Grafana and OpenTelemetry for observability. GitHub for version control and CI (with our own runners). CD: Harness and FluxCD. Terraform and Terragrunt as IaC. Python and Bash for scripting infrastructure. React - we are all in on React - we maintain multiple single page React apps. TypeScript - 99% of our codebase is TypeScript. Latest .NET version for our backend services. GraphQL - our standard for API communication is GraphQL served by our .NET back end. Our Values We innovate with purpose We focus on outcomes vs. output We believe diverse and inclusive teams fuel innovation We are humble yet candid We do right by the customer What We Offer Equity Unlimited PTO (28 days including bank holidays plus additional paid leave) Comprehensive benefits program managed by Globalization Partners Premium life and income protection Top private medical and dental insurance Employee Assistance Program (EAP) Pension contributions Hybrid work environment (initially remote until office setup is complete) Education reimbursement Continuous learning opportunities Employee referral bonus Parental leave CMG embraces our ongoing commitment to building a culture reflecting the people, perspectives, and passions it represents. We will accept nothing less than equity, inclusion, and belonging for all. With the only constant in life being change, we will always listen, learn, and improve for the betterment of our teams, customers, and communities. CMG is proud to be an Equal Opportunity Employer.
