# Cyber Security Platform Engineer - Microsoft - LondonIT/Information/Cyber SecurityRef:198 Date Posted: Monday 25 May 2026LinkedInFacebookXTitle: Cyber Security Platform Engineer - MicrosoftReference No: 2161Company: FTSE 100Reports to Security Platform Engineering ManagerLocation: LondonWorking Pattern 37.5 hours per week, Monday - Friday. Location: London/Peterborough, with potential travel to divisional sites as required by advisory engagements (hybrid working arrangements in place).Salary: £59,000 - £72,000Benefits Bupa, Matched pension contributions. The Role Group Cyber Security Overview The Group Cyber Security (GCS) team is responsible for managing cyber risk appropriately across) the Group and has recently refreshed its cyber strategy, with a renewed focus on embedding cyber security as part of the culture and DNA. This is a highly federated business model spanning 11 divisions and over 50 countries, and the cyber strategy has been designed to build materially improved security capabilities whilst working with a divisional focus.It is an exciting time to join GCS. We are in a period of significant investment, with a multi-year transformation programme under way to build new security capabilities at pace. GCS is responsible for setting the Group cyber standard, measuring compliance against it across all the businesses, and delivering a portfolio of centrally managed security services that divisions can rely on.The Security Platform Engineering function is central to that portfolio - responsible for ensuring that the security tools the organisation invests in are deeply understood, expertly configured, continuously improved, and consistently delivering their intended security and business value. Microsoft is the most strategically significant security platform, and the uplift and optimisation of the Microsoft security estate is one of the most consequential engineering challenges in the GCS transformation programme. Role Summary Reporting to the Security Platform Engineering Manager, the Cyber Security Platform Engineer - Microsoft is the Group dedicated technical authority for the Microsoft security platform. The role carries implied ownership of the full Microsoft security stack: the M365 Defender suite, the security-relevant capabilities of Microsoft Entra ID (conditional access, Privileged Identity Management, access packages, and least privilege), Intune, and the foundational configuration of the Microsoft 365 and Azure environments on which all of these depend. This is a role that extends beyond BAU platform management: a significant part of the initial mandate is to critically assess the current state of the Microsoft estate - spanning E3, Active Directory, Entra ID, Intune, and existing Defender deployments - identify the gaps against vendor-recommended best practice and the Group cyber standard, and build a prioritised strategy and plan to close them.This role is the primary technical owner of that relationship on the GCS side - working directly with the Microsoft team to prioritise, plan, and drive the E5 deployment across the estate, and ensuring that the professional services and engineering resources available are directed at the highest-value activities. The role must navigate the realities of the federated organisation with skill: delivery will depend on partnership with divisional IT teams, and getting there will require excellent stakeholder management, a clear change communication approach, and an absolute commitment to end-user experience. Zero tolerance for avoidable downtime is not a preference - it is a non-negotiable operating constraint.The role works in close partnership with the Cyber Architecture Manager, the Group CTO function, the IT Frameworks Director, Assurance leads, Divisional Security Leads, and the Identity Transformation team. It shares the defining mindset of the whole platform engineering function: genuine passion for the Microsoft platform, curiosity about its full capability, and the drive to get to a secure, consistent, vendor-recommended configuration as quickly and as safely as possible. Role Responsibilities / Accountabilities Microsoft Estate Assessment, Gap Analysis & Strategy • Conduct a structured, critical assessment of the current Microsoft security estate, covering Active Directory, Microsoft Entra ID, Intune, M365 (E3 and current Defender deployments), and Azure security configuration; benchmark the current state against Microsoft's secure score recommendations, vendor best practice, and the Group cyber technical standard, and produce a clear, evidence-based gap analysis.• Develop a prioritised Microsoft security uplift strategy and delivery plan that sequences remediation and enhancement activity by risk reduction impact, operational feasibility, and alignment with the E5 migration roadmap; ensure the plan is realistic for federated environment and has clear milestones, owners, and success criteria.• Maintain the Microsoft security uplift plan as a live document; track progress against milestones, report status to the Security Platform Engineering Manager, and adapt the plan to the Groups environment, the threat landscape, and the Microsoft product roadmap evolve. Microsoft Defender Platform Ownership & Engineering • Own the technical configuration, ongoing engineering, and operational health of the full M365 Defender suite, including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender for Office 365, and Microsoft Sentinel integration; maintain configurations to the approved baseline and drive continuous improvement against vendor-recommended configuration.• Work closely with the SOC to tune Defender configurations for effective detection and response; adjust detection rules, custom detection queries, and alert thresholds in response to SOC operational feedback, ensuring analysts receive high-fidelity, actionable alerts with minimal noise.• Develop and maintain detailed configuration documentation, runbooks, and change records for all Defender workloads; ensure configuration state is consistently documented, version-controlled, and auditable. Entra ID Security & Identity Controls • Own the security configuration of Microsoft Entra ID across the Group; take implied technical ownership of the security-relevant Entra capabilities including Conditional Access policy design and enforcement, Privileged Identity Management (PIM), access packages and entitlement management, Identity Protection, and the application of least privilege principles across the directory.• Work with the Cyber Architecture Manager, the IT Frameworks Director, and Assurance leads to ensure that GCS policies - including BYOD, remote access, and privilege management policies - are correctly and completely manifested in Entra Conditional Access policies and Intune device compliance rules; maintain a clear mapping between policy intent and platform configuration.• Support the Active Directory to Entra ID modernisation journey; identify legacy AD configurations and hybrid identity risks that need to be addressed as part of the E5 migration, and work with the Identity Transformation team to ensure Entra security configuration activity is co-ordinated with the broader identity programme.• Own the Intune security configuration, maintain device compliance policies, configuration profiles, and security baselines; ensure Intune is configured to enforce the Group endpoint security standard and provides accurate device compliance data to Entra Conditional Access and the Defender estate. E5 Migration, ECIF Engagement & Microsoft Relationship • Act as GCS's primary technical liaison to the Microsoft ECIF (Engineering Co-Investment Fund) team; plan, prioritise, and drive the E5 deployment programme in partnership with the ECIF team, ensuring that Microsoft engineering resources are directed at the highest-value activities and that the Organisation is getting the maximum benefit from the co-investment engagement.• Manage the technical relationship with Microsoft across the security and identity platform; maintain active engagement with Microsoft technical account management, product specialists, and engineering teams; use the account relationship to gain early access to roadmap briefings, preview features, escalation paths, and best-practice guidance relevant to the organisations environment.• Plan and manage the technical delivery of E5 capability rollout across the divisions; sequence deployment activity to maximise early security value, sequence it safely within the change management constraints, and ensure each phase is fully tested, documented, and supported before moving to the next.• Maintain accurate records of Microsoft licence entitlements, feature adoption, and E5 deployment progress; ensure the Group is consuming the capabilities it is paying for, and provide the Security Platform Engineering Manager with clear, up-to-date visibility of licence utilisation and deployment status.• Policy Manifestation, Standards Alignment & Assurance• Translate Group cyber technical standards and security policies into enforceable Microsoft platform configurations; maintain a clear, auditable mapping between each policy requirement and its implementation in Defender, Entra, Intune, or other Microsoft controls, and ensure divergence is identified and remediated promptly.• Work closely with the Director of Cyber Assurance and Assurance leads to support controls assessment of the Microsoft estate; provide technical evidence of configuration compliance, investigate gaps identified through continuous controls monitoring (including Axonius), and drive remediation of control failures to closure . click apply for full job details
23/06/2026
Full time
# Cyber Security Platform Engineer - Microsoft - LondonIT/Information/Cyber SecurityRef:198 Date Posted: Monday 25 May 2026LinkedInFacebookXTitle: Cyber Security Platform Engineer - MicrosoftReference No: 2161Company: FTSE 100Reports to Security Platform Engineering ManagerLocation: LondonWorking Pattern 37.5 hours per week, Monday - Friday. Location: London/Peterborough, with potential travel to divisional sites as required by advisory engagements (hybrid working arrangements in place).Salary: £59,000 - £72,000Benefits Bupa, Matched pension contributions. The Role Group Cyber Security Overview The Group Cyber Security (GCS) team is responsible for managing cyber risk appropriately across) the Group and has recently refreshed its cyber strategy, with a renewed focus on embedding cyber security as part of the culture and DNA. This is a highly federated business model spanning 11 divisions and over 50 countries, and the cyber strategy has been designed to build materially improved security capabilities whilst working with a divisional focus.It is an exciting time to join GCS. We are in a period of significant investment, with a multi-year transformation programme under way to build new security capabilities at pace. GCS is responsible for setting the Group cyber standard, measuring compliance against it across all the businesses, and delivering a portfolio of centrally managed security services that divisions can rely on.The Security Platform Engineering function is central to that portfolio - responsible for ensuring that the security tools the organisation invests in are deeply understood, expertly configured, continuously improved, and consistently delivering their intended security and business value. Microsoft is the most strategically significant security platform, and the uplift and optimisation of the Microsoft security estate is one of the most consequential engineering challenges in the GCS transformation programme. Role Summary Reporting to the Security Platform Engineering Manager, the Cyber Security Platform Engineer - Microsoft is the Group dedicated technical authority for the Microsoft security platform. The role carries implied ownership of the full Microsoft security stack: the M365 Defender suite, the security-relevant capabilities of Microsoft Entra ID (conditional access, Privileged Identity Management, access packages, and least privilege), Intune, and the foundational configuration of the Microsoft 365 and Azure environments on which all of these depend. This is a role that extends beyond BAU platform management: a significant part of the initial mandate is to critically assess the current state of the Microsoft estate - spanning E3, Active Directory, Entra ID, Intune, and existing Defender deployments - identify the gaps against vendor-recommended best practice and the Group cyber standard, and build a prioritised strategy and plan to close them.This role is the primary technical owner of that relationship on the GCS side - working directly with the Microsoft team to prioritise, plan, and drive the E5 deployment across the estate, and ensuring that the professional services and engineering resources available are directed at the highest-value activities. The role must navigate the realities of the federated organisation with skill: delivery will depend on partnership with divisional IT teams, and getting there will require excellent stakeholder management, a clear change communication approach, and an absolute commitment to end-user experience. Zero tolerance for avoidable downtime is not a preference - it is a non-negotiable operating constraint.The role works in close partnership with the Cyber Architecture Manager, the Group CTO function, the IT Frameworks Director, Assurance leads, Divisional Security Leads, and the Identity Transformation team. It shares the defining mindset of the whole platform engineering function: genuine passion for the Microsoft platform, curiosity about its full capability, and the drive to get to a secure, consistent, vendor-recommended configuration as quickly and as safely as possible. Role Responsibilities / Accountabilities Microsoft Estate Assessment, Gap Analysis & Strategy • Conduct a structured, critical assessment of the current Microsoft security estate, covering Active Directory, Microsoft Entra ID, Intune, M365 (E3 and current Defender deployments), and Azure security configuration; benchmark the current state against Microsoft's secure score recommendations, vendor best practice, and the Group cyber technical standard, and produce a clear, evidence-based gap analysis.• Develop a prioritised Microsoft security uplift strategy and delivery plan that sequences remediation and enhancement activity by risk reduction impact, operational feasibility, and alignment with the E5 migration roadmap; ensure the plan is realistic for federated environment and has clear milestones, owners, and success criteria.• Maintain the Microsoft security uplift plan as a live document; track progress against milestones, report status to the Security Platform Engineering Manager, and adapt the plan to the Groups environment, the threat landscape, and the Microsoft product roadmap evolve. Microsoft Defender Platform Ownership & Engineering • Own the technical configuration, ongoing engineering, and operational health of the full M365 Defender suite, including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender for Office 365, and Microsoft Sentinel integration; maintain configurations to the approved baseline and drive continuous improvement against vendor-recommended configuration.• Work closely with the SOC to tune Defender configurations for effective detection and response; adjust detection rules, custom detection queries, and alert thresholds in response to SOC operational feedback, ensuring analysts receive high-fidelity, actionable alerts with minimal noise.• Develop and maintain detailed configuration documentation, runbooks, and change records for all Defender workloads; ensure configuration state is consistently documented, version-controlled, and auditable. Entra ID Security & Identity Controls • Own the security configuration of Microsoft Entra ID across the Group; take implied technical ownership of the security-relevant Entra capabilities including Conditional Access policy design and enforcement, Privileged Identity Management (PIM), access packages and entitlement management, Identity Protection, and the application of least privilege principles across the directory.• Work with the Cyber Architecture Manager, the IT Frameworks Director, and Assurance leads to ensure that GCS policies - including BYOD, remote access, and privilege management policies - are correctly and completely manifested in Entra Conditional Access policies and Intune device compliance rules; maintain a clear mapping between policy intent and platform configuration.• Support the Active Directory to Entra ID modernisation journey; identify legacy AD configurations and hybrid identity risks that need to be addressed as part of the E5 migration, and work with the Identity Transformation team to ensure Entra security configuration activity is co-ordinated with the broader identity programme.• Own the Intune security configuration, maintain device compliance policies, configuration profiles, and security baselines; ensure Intune is configured to enforce the Group endpoint security standard and provides accurate device compliance data to Entra Conditional Access and the Defender estate. E5 Migration, ECIF Engagement & Microsoft Relationship • Act as GCS's primary technical liaison to the Microsoft ECIF (Engineering Co-Investment Fund) team; plan, prioritise, and drive the E5 deployment programme in partnership with the ECIF team, ensuring that Microsoft engineering resources are directed at the highest-value activities and that the Organisation is getting the maximum benefit from the co-investment engagement.• Manage the technical relationship with Microsoft across the security and identity platform; maintain active engagement with Microsoft technical account management, product specialists, and engineering teams; use the account relationship to gain early access to roadmap briefings, preview features, escalation paths, and best-practice guidance relevant to the organisations environment.• Plan and manage the technical delivery of E5 capability rollout across the divisions; sequence deployment activity to maximise early security value, sequence it safely within the change management constraints, and ensure each phase is fully tested, documented, and supported before moving to the next.• Maintain accurate records of Microsoft licence entitlements, feature adoption, and E5 deployment progress; ensure the Group is consuming the capabilities it is paying for, and provide the Security Platform Engineering Manager with clear, up-to-date visibility of licence utilisation and deployment status.• Policy Manifestation, Standards Alignment & Assurance• Translate Group cyber technical standards and security policies into enforceable Microsoft platform configurations; maintain a clear, auditable mapping between each policy requirement and its implementation in Defender, Entra, Intune, or other Microsoft controls, and ensure divergence is identified and remediated promptly.• Work closely with the Director of Cyber Assurance and Assurance leads to support controls assessment of the Microsoft estate; provide technical evidence of configuration compliance, investigate gaps identified through continuous controls monitoring (including Axonius), and drive remediation of control failures to closure . click apply for full job details
Technical Architect (Microsoft 365/Azure) Department: Architecture Employment Type: Permanent - Full Time Location: Hybrid Description Hello. Welcome to Wanstor! At Wanstor, we've been delivering award-winning IT solutions for over 22 years, and we're proud to keep growing year after year. Today, our team is over 200 strong, filled with talented professionals passionate about technology. Wanstor stands at the forefront of the industry with a full portfolio of high-quality services. From our award-winning managed services to our robust data and development capabilities, networking and infrastructure expertise, and unparalleled security solutions, Wanstor is renowned in the market for excellence. Our strong customer references provide a solid foundation for your success. If you're looking for a place where your skills can thrive and grow, you'll feel right at home here! We're looking for a Senior Technical Architect to join our fantastic team. You will be responsible for driving the architecture, design, and successful delivery of Microsoft 365 and Azure based Modern Work and Security solutions, with emphasis on Defender, Purview, Sentinel, Intune, and Conditional Access. Additionally, you will champion AI and Microsoft Copilot adoption, integration, and value realisation across enterprise scenarios. What You'll Do Lead solution architecture and delivery across Microsoft 365 and Azure environments, focusing on productivity, compliance, and tenant security services such as Defender, Conditional Access and Intune Support the Sales team on complex solution design and act as the SME for M365 questions and solutions Work hands-on supporting configuration, automation, and troubleshooting to ensure successful delivery of customer projects. Provide technical leadership to delivery teams, guiding engineers and consultants through implementation challenges and helping projects stay on track. Collaborate with project managers and stakeholders to ensure technical decisions align with project goals, governance standards, and customer requirements. Step into complex or escalated scenarios, such as tenant migrations or integrations, providing clear direction and technical confidence to both internal teams and customers. Coach and mentor more junior engineers, helping them progress delivery work and adopt best practices. Contribute to continuous improvement across architecture standards, documentation, and delivery processes. Engage directly with customers when needed, explaining technical concepts clearly and confidently. Develop and maintain technical artefacts such as architecture diagrams, deployment runbooks, and operational handover materials. What You'll Need Proven experience delivering Microsoft 365 and Azure solutions across security, compliance, and identity domains. Strong hands-on skills in configuration, scripting, and automation within the Microsoft ecosystem. Ability to diagnose and resolve complex technical challenges, particularly in multi-tenant or hybrid environments. Experience guiding delivery teams, supporting project recovery, and driving technical outcomes under pressure. Clear communication skills - able to engage confidently with customers and internal teams when required. Familiarity with Microsoft Modern Work solutions, licensing models, and CSP operational processes. A collaborative, problem-solving mindset with a commitment to high-quality delivery and continuous improvement. Curiosity and enthusiasm for the Microsoft platform, staying current with evolving technologies such as AI and best practices. Desirable Certifications Microsoft 365 Certified: Administrator Expert Microsoft Certified: Azure AI Fundamentals Microsoft Certified: Azure Administrator Associate Microsoft Certified: Copilot for Microsoft 365 (or equivalent Copilot enablement credentials) Other relevant certifications such as SC-200/SC-300/SC-400 or AZ-305 remain advantageous. What You'll Love Generous Time Off: Enjoy 24 days of annual leave, increasing by 1 day each year up to 28 days, plus Bank Holidays. Continuous Learning: Participate in regular lunch and learn sessions with both internal and external speakers. Personal Development: Take advantage of 5 paid days annually to pursue new skills or knowledge. Volunteer Opportunities: Contribute to your community with 2 paid volunteer days each year. Team Spirit: Join a friendly team and engage in various social events organised throughout the year.
22/06/2026
Full time
Technical Architect (Microsoft 365/Azure) Department: Architecture Employment Type: Permanent - Full Time Location: Hybrid Description Hello. Welcome to Wanstor! At Wanstor, we've been delivering award-winning IT solutions for over 22 years, and we're proud to keep growing year after year. Today, our team is over 200 strong, filled with talented professionals passionate about technology. Wanstor stands at the forefront of the industry with a full portfolio of high-quality services. From our award-winning managed services to our robust data and development capabilities, networking and infrastructure expertise, and unparalleled security solutions, Wanstor is renowned in the market for excellence. Our strong customer references provide a solid foundation for your success. If you're looking for a place where your skills can thrive and grow, you'll feel right at home here! We're looking for a Senior Technical Architect to join our fantastic team. You will be responsible for driving the architecture, design, and successful delivery of Microsoft 365 and Azure based Modern Work and Security solutions, with emphasis on Defender, Purview, Sentinel, Intune, and Conditional Access. Additionally, you will champion AI and Microsoft Copilot adoption, integration, and value realisation across enterprise scenarios. What You'll Do Lead solution architecture and delivery across Microsoft 365 and Azure environments, focusing on productivity, compliance, and tenant security services such as Defender, Conditional Access and Intune Support the Sales team on complex solution design and act as the SME for M365 questions and solutions Work hands-on supporting configuration, automation, and troubleshooting to ensure successful delivery of customer projects. Provide technical leadership to delivery teams, guiding engineers and consultants through implementation challenges and helping projects stay on track. Collaborate with project managers and stakeholders to ensure technical decisions align with project goals, governance standards, and customer requirements. Step into complex or escalated scenarios, such as tenant migrations or integrations, providing clear direction and technical confidence to both internal teams and customers. Coach and mentor more junior engineers, helping them progress delivery work and adopt best practices. Contribute to continuous improvement across architecture standards, documentation, and delivery processes. Engage directly with customers when needed, explaining technical concepts clearly and confidently. Develop and maintain technical artefacts such as architecture diagrams, deployment runbooks, and operational handover materials. What You'll Need Proven experience delivering Microsoft 365 and Azure solutions across security, compliance, and identity domains. Strong hands-on skills in configuration, scripting, and automation within the Microsoft ecosystem. Ability to diagnose and resolve complex technical challenges, particularly in multi-tenant or hybrid environments. Experience guiding delivery teams, supporting project recovery, and driving technical outcomes under pressure. Clear communication skills - able to engage confidently with customers and internal teams when required. Familiarity with Microsoft Modern Work solutions, licensing models, and CSP operational processes. A collaborative, problem-solving mindset with a commitment to high-quality delivery and continuous improvement. Curiosity and enthusiasm for the Microsoft platform, staying current with evolving technologies such as AI and best practices. Desirable Certifications Microsoft 365 Certified: Administrator Expert Microsoft Certified: Azure AI Fundamentals Microsoft Certified: Azure Administrator Associate Microsoft Certified: Copilot for Microsoft 365 (or equivalent Copilot enablement credentials) Other relevant certifications such as SC-200/SC-300/SC-400 or AZ-305 remain advantageous. What You'll Love Generous Time Off: Enjoy 24 days of annual leave, increasing by 1 day each year up to 28 days, plus Bank Holidays. Continuous Learning: Participate in regular lunch and learn sessions with both internal and external speakers. Personal Development: Take advantage of 5 paid days annually to pursue new skills or knowledge. Volunteer Opportunities: Contribute to your community with 2 paid volunteer days each year. Team Spirit: Join a friendly team and engage in various social events organised throughout the year.
We are excited to announce a new opportunity for a Senior Infrastructure & Network Systems Engineer to join our Head Office team in Enfield. This role is essential to secure the design and operation of our hybrid on-prem and cloud infrastructure. Our commitment to equal opportunities ensures we value diversity. Salary: £40,000 - 80,000 per year Requirements Proficient in Linux and Windows Server 2016+ administration Experience with Proxmox virtualization Familiarity with Reverse Proxy Web Server Management Knowledge of Application Proxy Gateway Experience with cloud and hybrid server environments Understanding of ITIL frameworks and MDM platforms Proficient in Microsoft 365 and Exchange (Online / Hybrid) Experience with IIS and secure web server hosting Knowledge of identity integration (Knox, Intune, Azure AD / Entra ID) Experience with TrueNAS administration Knowledge of file services (SMB, NFS, iSCSI) Proficient in backup and recovery using Veeam systems Understanding of RADIUS authentication and policy generation Knowledge of PKI and server certificate management Experience with cross-platform identity integration Ability to design and segment networks Familiarity with Cisco and Ubiquiti hardware Knowledge of VPNs, secure connectivity, and access control Experience with Kubernetes cluster operations Knowledge of persistent storage integration Familiarity with certificate-based authentication Understanding of Zero Trust and defense-in-depth principles Knowledge of network and identity security, server and platform hardening Experience with monitoring, logging, and incident response Familiarity with ISO 27001 aligned practices CompTIA Network+ certification Vendor-agnostic networking skills Proficient in Linux, Windows, M365, and Cloud technologies Experience in customer-facing engineering (CE+) Responsibilities Secure design and operation of hybrid on-prem and cloud infrastructure Provide technical support to internal colleagues and management Manage Linux and Windows Server 2016+ environments Oversee Proxmox virtualization activities Ensure effective reverse proxy web server management Support application proxy gateway operations Manage cloud and hybrid server environments Implement ITIL frameworks and MDM platforms Administer Microsoft 365 and Exchange (Online / Hybrid) Oversee IIS and secure web server hosting Manage identity integration solutions (Knox, Intune, Azure AD / Entra ID) Administer TrueNAS storage systems Manage file services including SMB, NFS, and iSCSI Handle backup and recovery processes using Veeam systems Oversee RADIUS authentication and policy generation Manage PKI and server certificate operations Implement cross-platform identity integration solutions Design and segment network infrastructures Work with Cisco and Ubiquiti hardware Manage VPNs and secure connectivity solutions Operate Kubernetes clusters and manage persistent storage Implement certificate-based authentication mechanisms Apply cybersecurity principles to network and identity security Perform monitoring, logging, and incident response activities Ensure compliance with ISO 27001 aligned practices Technologies Azure Cloud Cisco Hardware Support ITIL Kubernetes Linux Microsoft 365 Network NFS Security SMB Veeam Web Windows Office 365 DevOps
21/06/2026
Full time
We are excited to announce a new opportunity for a Senior Infrastructure & Network Systems Engineer to join our Head Office team in Enfield. This role is essential to secure the design and operation of our hybrid on-prem and cloud infrastructure. Our commitment to equal opportunities ensures we value diversity. Salary: £40,000 - 80,000 per year Requirements Proficient in Linux and Windows Server 2016+ administration Experience with Proxmox virtualization Familiarity with Reverse Proxy Web Server Management Knowledge of Application Proxy Gateway Experience with cloud and hybrid server environments Understanding of ITIL frameworks and MDM platforms Proficient in Microsoft 365 and Exchange (Online / Hybrid) Experience with IIS and secure web server hosting Knowledge of identity integration (Knox, Intune, Azure AD / Entra ID) Experience with TrueNAS administration Knowledge of file services (SMB, NFS, iSCSI) Proficient in backup and recovery using Veeam systems Understanding of RADIUS authentication and policy generation Knowledge of PKI and server certificate management Experience with cross-platform identity integration Ability to design and segment networks Familiarity with Cisco and Ubiquiti hardware Knowledge of VPNs, secure connectivity, and access control Experience with Kubernetes cluster operations Knowledge of persistent storage integration Familiarity with certificate-based authentication Understanding of Zero Trust and defense-in-depth principles Knowledge of network and identity security, server and platform hardening Experience with monitoring, logging, and incident response Familiarity with ISO 27001 aligned practices CompTIA Network+ certification Vendor-agnostic networking skills Proficient in Linux, Windows, M365, and Cloud technologies Experience in customer-facing engineering (CE+) Responsibilities Secure design and operation of hybrid on-prem and cloud infrastructure Provide technical support to internal colleagues and management Manage Linux and Windows Server 2016+ environments Oversee Proxmox virtualization activities Ensure effective reverse proxy web server management Support application proxy gateway operations Manage cloud and hybrid server environments Implement ITIL frameworks and MDM platforms Administer Microsoft 365 and Exchange (Online / Hybrid) Oversee IIS and secure web server hosting Manage identity integration solutions (Knox, Intune, Azure AD / Entra ID) Administer TrueNAS storage systems Manage file services including SMB, NFS, and iSCSI Handle backup and recovery processes using Veeam systems Oversee RADIUS authentication and policy generation Manage PKI and server certificate operations Implement cross-platform identity integration solutions Design and segment network infrastructures Work with Cisco and Ubiquiti hardware Manage VPNs and secure connectivity solutions Operate Kubernetes clusters and manage persistent storage Implement certificate-based authentication mechanisms Apply cybersecurity principles to network and identity security Perform monitoring, logging, and incident response activities Ensure compliance with ISO 27001 aligned practices Technologies Azure Cloud Cisco Hardware Support ITIL Kubernetes Linux Microsoft 365 Network NFS Security SMB Veeam Web Windows Office 365 DevOps
One of the UK's leading entertainment groups (hospitality, leisure) requires a Senior Network & Infrastructure Engineer is a senior technical role within the Group IT Operations function, focused primarily on supporting and maintaining the infrastructure estate The role is responsible for delivering 2nd Line infrastructure support, maintenance, patching, troubleshooting whilst seeking proactive operational improvement. The successful candidate will act as a key technical SME across Microsoft Azure, Microsoft 365, Networking, Switching, Firewalls, Wi-Fi and Zscaler environments, ensuring systems remain secure, available, supported and aligned to group standards and operational processes This role combines operational support, technical administration and infrastructure project delivery, requiring strong troubleshooting capability, a proactive mindset and excellent collaboration skills across local territory teams, shared services and third-party supplier Responsibilities Key Accountabilities Infrastructure Operations & Support Provide senior-level 2nd line support, including investigation, troubleshooting, and resolution of infrastructure and network incidents across multi-site environments. Proactively monitor, maintain, and optimise infrastructure performance through health checks, patching, and continuous improvement activities. Support and maintain enterprise infrastructure platforms, including: Microsoft Azure and Microsoft 365 Entra ID (Azure AD) Networking, switching, Firewalls, DNS/DHCP Wi-Fi Remote access technologies (ZCC, Global Protect) Ensure infrastructure availability, reliability, and performance across cinema and office environments. Identify and remediate potential issues proactively before business impact occurs. Participate in major incident response, including technical troubleshooting and escalation support. Cloud & Microsoft Platform Administration Administer and support Microsoft Azure services and cloud-hosted infrastructure. Support Microsoft 365 services, including but not limited to: Exchange Online Teams SharePoint Online Intune OneDrive Microsoft Defender Manage identity and access processes within Entra ID. Contribute to cloud governance, security hardening, and compliance initiatives. Collaborate with Group Security and Shared Services teams to implement best practices across cloud and endpoint environments. Networking & Connectivity Provide senior-level support for enterprise networking across multi-site environments. Support and troubleshoot LAN, WAN, Wi-Fi, DNS, and secure access services. Support Zscaler SASE environments and associated network security controls. Work collaboratively with third-party network and telecom providers. Assist with network upgrades, refreshes, and optimisation initiatives. Projects Support infrastructure and cloud transformation initiatives across UK&I and the wider group. Contribute technical expertise to deployment, migration, and integration projects. Drive standardisation of infrastructure services and operational processes across territories. Support implementation of new tools, monitoring platforms, and automation capabilities. Participate in testing, change implementation, and release activities. Service Management & Governance Lead and contribute to major incident management, including coordination, resolution, stakeholder communication, and root cause analysis (RCA). This includes support out of hours being on call/on duty for approximately one week of every month. Operate within ITIL-aligned service management processes, including: Incident Management Problem Management Change Management Request Fulfilment Ensure all tickets, escalations, and technical activities meet agreed SLA targets. Support continual service improvement and preventative actions for recurring issues. Participate in on-call support rota (approximately one week per month). Technical Knowledge & Experience MS Office (all packages including M365) Azure Intune All OS levels Windows desktops and laptops MDM (mobile device management for mobile phones and tablet devices) Windows server support VMWARE SQL Server (management and housekeeping) LAN, WAN & TCP/IP (desirable) Physical networking infrastructure (Cat 5e/6 & fibre desirable) PC, Server & Laptop build and repair AD integrations and management Monitoring of all core systems using in-house tools Service desk call logging This is a wonderful opportunity to work for one of the UK's leading entertainment groups (house hold name) The role offers between £50-60K basic + package + bons and is based in the West London office Mon - Thur with Friday WFH. A very exciting brand and opportunity
19/06/2026
Full time
One of the UK's leading entertainment groups (hospitality, leisure) requires a Senior Network & Infrastructure Engineer is a senior technical role within the Group IT Operations function, focused primarily on supporting and maintaining the infrastructure estate The role is responsible for delivering 2nd Line infrastructure support, maintenance, patching, troubleshooting whilst seeking proactive operational improvement. The successful candidate will act as a key technical SME across Microsoft Azure, Microsoft 365, Networking, Switching, Firewalls, Wi-Fi and Zscaler environments, ensuring systems remain secure, available, supported and aligned to group standards and operational processes This role combines operational support, technical administration and infrastructure project delivery, requiring strong troubleshooting capability, a proactive mindset and excellent collaboration skills across local territory teams, shared services and third-party supplier Responsibilities Key Accountabilities Infrastructure Operations & Support Provide senior-level 2nd line support, including investigation, troubleshooting, and resolution of infrastructure and network incidents across multi-site environments. Proactively monitor, maintain, and optimise infrastructure performance through health checks, patching, and continuous improvement activities. Support and maintain enterprise infrastructure platforms, including: Microsoft Azure and Microsoft 365 Entra ID (Azure AD) Networking, switching, Firewalls, DNS/DHCP Wi-Fi Remote access technologies (ZCC, Global Protect) Ensure infrastructure availability, reliability, and performance across cinema and office environments. Identify and remediate potential issues proactively before business impact occurs. Participate in major incident response, including technical troubleshooting and escalation support. Cloud & Microsoft Platform Administration Administer and support Microsoft Azure services and cloud-hosted infrastructure. Support Microsoft 365 services, including but not limited to: Exchange Online Teams SharePoint Online Intune OneDrive Microsoft Defender Manage identity and access processes within Entra ID. Contribute to cloud governance, security hardening, and compliance initiatives. Collaborate with Group Security and Shared Services teams to implement best practices across cloud and endpoint environments. Networking & Connectivity Provide senior-level support for enterprise networking across multi-site environments. Support and troubleshoot LAN, WAN, Wi-Fi, DNS, and secure access services. Support Zscaler SASE environments and associated network security controls. Work collaboratively with third-party network and telecom providers. Assist with network upgrades, refreshes, and optimisation initiatives. Projects Support infrastructure and cloud transformation initiatives across UK&I and the wider group. Contribute technical expertise to deployment, migration, and integration projects. Drive standardisation of infrastructure services and operational processes across territories. Support implementation of new tools, monitoring platforms, and automation capabilities. Participate in testing, change implementation, and release activities. Service Management & Governance Lead and contribute to major incident management, including coordination, resolution, stakeholder communication, and root cause analysis (RCA). This includes support out of hours being on call/on duty for approximately one week of every month. Operate within ITIL-aligned service management processes, including: Incident Management Problem Management Change Management Request Fulfilment Ensure all tickets, escalations, and technical activities meet agreed SLA targets. Support continual service improvement and preventative actions for recurring issues. Participate in on-call support rota (approximately one week per month). Technical Knowledge & Experience MS Office (all packages including M365) Azure Intune All OS levels Windows desktops and laptops MDM (mobile device management for mobile phones and tablet devices) Windows server support VMWARE SQL Server (management and housekeeping) LAN, WAN & TCP/IP (desirable) Physical networking infrastructure (Cat 5e/6 & fibre desirable) PC, Server & Laptop build and repair AD integrations and management Monitoring of all core systems using in-house tools Service desk call logging This is a wonderful opportunity to work for one of the UK's leading entertainment groups (house hold name) The role offers between £50-60K basic + package + bons and is based in the West London office Mon - Thur with Friday WFH. A very exciting brand and opportunity
Security Architect page is loaded Security Architectlocations: Homeworker - UK: London: Belfast: Birminghamtime type: Full timeposted on: Posted Todayjob requisition id: JR\_17093# Join Kainos and Shape the FutureAt Kainos, we're problem solvers, innovators, and collaborators - driven by a shared mission to create real impact. Whether we're transforming digital services for millions, delivering cutting-edge Workday solutions, or pushing the boundaries of technology, we do it together.We believe in a people-first culture , where your ideas are valued, your growth is supported, and your contributions truly make a difference. Here, you'll be part of a diverse, ambitious team that celebrates creativity and collaboration. Join us and be part of something bigger. MAIN PURPOSE OF THE ROLE & RESPONSIBILITIES IN THE BUSINESS:As a Security Architect (Consultant) in Kainos, you'll be responsible for the design and application of good security practices in the platforms and services we build for our customers. You'll work with Agile delivery teams to develop good security practices throughout the software development journey. You'll learn about and apply new technologies and approaches, with talented colleagues who will help you develop and grow. You'll share knowledge and help educate people - both customers and Kainos team members. You'll manage, coach and develop a small number of staff, with a focus on managing employee performance and assisting in their career development. You'll also provide direction and leadership for your team as you solve challenging problems together. MINIMUM (ESSENTIAL) REQUIREMENTS • Experience in the secure design and delivery of new cloud services and solutions. • Experience in identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability. • Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR).• Deep architectural xxperience in one of the following specialisms: AI/ML Security/Cloud/M365/DevSecOps Security Architecture • Experience in application architecture, software development and/or infrastructure architecture.• Clear communication with technical and non-technical audiences• Experience mentoring engineers and architects • Experience testing the security of software and infrastructure using appropriate security tools. • Experience with Continuous Security, Continuous Integration and Continuous Delivery techniques. • Experience of network security (e.g. OSI, TCP/IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS). • We are passionate about developing people - a demonstrated ability in managing, mentoring and coaching members of your team and wider community is important • Excellent communication skills, with the ability to convey security complexities to audiences of various technical abilities (e.g. senior stakeholders, development teams). DESIRABLE • Experience of Identity management and authentication/authorisation products and patterns.• Industry experience in Public /Commercial/Defence/Healthcare Sector(s) • End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management. • Penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent) • Experience leading security engineers and other junior members of staff• Involvement across the full security lifecycle# Embracing our differences At Kainos, we believe in the power of diversity, equity and inclusion. We are committed to building a team that is as diverse as the world we live in, where everyone is valued, respected, and given an equal chance to thrive. We actively seek out talented people from all backgrounds, regardless of age, race, ethnicity, gender, sexual orientation, religion, disability, or any other characteristic that makes them who they are. We also believe every candidate deserves a level playing field. Our friendly talent acquisition team is here to support you every step of the way, so if you require any accommodations or adjustments, we encourage you to reach out. We understand that everyone's journey is different, and by having a private conversation we can ensure that our recruitment process is tailored to your needs.At Kainos we use technology to solve real problems for our customers, overcome big challenges for businesses, and make people's lives easier. We build strong relationships with our customers and go beyond to change the way they work today and the impact they have tomorrow.Our two specialist practices, Digital Services and Workday, work globally for clients across healthcare, commercial and the public sector to make the world a little bit better, day by day.Our people love the exciting work, the cutting-edge technologies and the benefits we offer. That's why we've been ranked in the Sunday Times Top 100 Best Companies on numerous occasions.For more information, see .
19/06/2026
Full time
Security Architect page is loaded Security Architectlocations: Homeworker - UK: London: Belfast: Birminghamtime type: Full timeposted on: Posted Todayjob requisition id: JR\_17093# Join Kainos and Shape the FutureAt Kainos, we're problem solvers, innovators, and collaborators - driven by a shared mission to create real impact. Whether we're transforming digital services for millions, delivering cutting-edge Workday solutions, or pushing the boundaries of technology, we do it together.We believe in a people-first culture , where your ideas are valued, your growth is supported, and your contributions truly make a difference. Here, you'll be part of a diverse, ambitious team that celebrates creativity and collaboration. Join us and be part of something bigger. MAIN PURPOSE OF THE ROLE & RESPONSIBILITIES IN THE BUSINESS:As a Security Architect (Consultant) in Kainos, you'll be responsible for the design and application of good security practices in the platforms and services we build for our customers. You'll work with Agile delivery teams to develop good security practices throughout the software development journey. You'll learn about and apply new technologies and approaches, with talented colleagues who will help you develop and grow. You'll share knowledge and help educate people - both customers and Kainos team members. You'll manage, coach and develop a small number of staff, with a focus on managing employee performance and assisting in their career development. You'll also provide direction and leadership for your team as you solve challenging problems together. MINIMUM (ESSENTIAL) REQUIREMENTS • Experience in the secure design and delivery of new cloud services and solutions. • Experience in identifying security issues in existing system designs or products, including recommending sensible mitigations that balance cost, risk and usability. • Knowledge of security standards and regulations (e.g. NCSC, ISO, SoC, NIST, PCI, GDPR).• Deep architectural xxperience in one of the following specialisms: AI/ML Security/Cloud/M365/DevSecOps Security Architecture • Experience in application architecture, software development and/or infrastructure architecture.• Clear communication with technical and non-technical audiences• Experience mentoring engineers and architects • Experience testing the security of software and infrastructure using appropriate security tools. • Experience with Continuous Security, Continuous Integration and Continuous Delivery techniques. • Experience of network security (e.g. OSI, TCP/IP), web application security (e.g. OWASP) and cryptographic controls (e.g. PKI, TLS). • We are passionate about developing people - a demonstrated ability in managing, mentoring and coaching members of your team and wider community is important • Excellent communication skills, with the ability to convey security complexities to audiences of various technical abilities (e.g. senior stakeholders, development teams). DESIRABLE • Experience of Identity management and authentication/authorisation products and patterns.• Industry experience in Public /Commercial/Defence/Healthcare Sector(s) • End-to-end security involvement, including governance, risk and compliance, operational security, supply chain security and secure user management. • Penetration testing qualifications (e.g. OSCP, CREST, TIGER or equivalent) • Experience leading security engineers and other junior members of staff• Involvement across the full security lifecycle# Embracing our differences At Kainos, we believe in the power of diversity, equity and inclusion. We are committed to building a team that is as diverse as the world we live in, where everyone is valued, respected, and given an equal chance to thrive. We actively seek out talented people from all backgrounds, regardless of age, race, ethnicity, gender, sexual orientation, religion, disability, or any other characteristic that makes them who they are. We also believe every candidate deserves a level playing field. Our friendly talent acquisition team is here to support you every step of the way, so if you require any accommodations or adjustments, we encourage you to reach out. We understand that everyone's journey is different, and by having a private conversation we can ensure that our recruitment process is tailored to your needs.At Kainos we use technology to solve real problems for our customers, overcome big challenges for businesses, and make people's lives easier. We build strong relationships with our customers and go beyond to change the way they work today and the impact they have tomorrow.Our two specialist practices, Digital Services and Workday, work globally for clients across healthcare, commercial and the public sector to make the world a little bit better, day by day.Our people love the exciting work, the cutting-edge technologies and the benefits we offer. That's why we've been ranked in the Sunday Times Top 100 Best Companies on numerous occasions.For more information, see .
The role As Helsing's IT Support Lead, you will own the day to day delivery, performance, and experience of IT support across our European offices. You'll lead a distributed team of IT Support staff covering on site, on call, and triage responsibilities, making sure every Helsing employee gets fast, high quality help, and that every ticket improves our service the next time around. You will be hands on with Jira Service Management, fluent in using data to drive decisions, and an early adopter of AI agents and automation to scale the team's impact without scaling headcount linearly. You'll set the standard for what great internal IT feels like at Helsing for both the staff we support and the IT engineers doing the supporting directly enabling the engineers, AI specialists, and program managers building capabilities that protect our democracies. The day to day Own the daily operating rhythm of IT Support: ticket prioritisation, queue health, SLAs, and ensuring the right issues are being worked on by the right people at the right time. Lead, coach, and develop a distributed team of IT Support Engineers across the UK and Germany, including on site staff, triage, and on call rotations. Design and manage rotas; on call, triage, and site coverage. Balancing fairness, coverage, and team wellbeing across multiple offices and time zones. Own IT's Jira Service Management as a product: queues, request types, workflows, automation rules, SLAs, forms, customer portals, and reporting. Define, maintain, and continuously improve escalation paths between L1/L2/L3 support, IT Engineering, Security, and external vendors, including clear ownership, response expectations, and communication standards during major incidents. Build and own the IT Support performance reporting layer: dashboards, KPIs (CSAT, time to resolution, first contact resolution, backlog age, escalation rates), trend analysis, and regular reporting to IT leadership and the wider business. Identify and deploy AI agents and automation (within Jira, M365, and our wider toolchain) to deflect repetitive tickets, accelerate triage, draft responses, and surface insights from ticket data. Continuously raise the bar on the end user support experience. Clear comms, fast resolutions, great self service, and a polished, consistent feel across every interaction. Equally raise the bar on the IT staff experience. Better tooling, clearer runbooks, sensible on call load, meaningful career growth, and protection from avoidable toil. Partner with IT Engineering to turn recurring issues into permanent fixes and with Security to ensure support processes meet our compliance and audit obligations. Own and evolve our internal IT knowledge base, runbooks, and self service content. You should apply if you Have 5+ years of experience in IT Support, including 2+ years leading or managing a support team in a fast paced environment. Are highly proficient with Jira Service Management, comfortable designing workflows, automations, SLAs, queues, and reporting, not just using them. Have a strong, demonstrable track record of running support as a data driven function, defining the right KPIs, building dashboards, and using metrics to drive real operational improvements. Have hands on experience deploying AI agents, chatbots, or automation to improve ticket deflection, triage, or response quality. Have managed rotas across on call, triage, and on site responsibilities, ideally across multiple locations or time zones. Have designed and operated clear escalation processes, including major incident handling and cross team coordination. Bring a customer first mindset paired with strong operational discipline - you care equally about user experience and team health. Are a strong communicator who can translate between end users, IT engineers, security, and senior leadership. Your personal values match ours: ownership, initiative, dedication to mission, speed, and inclusiveness. Feel strongly about the right of democracies to defend their sovereignty through the fielding of capabilities that bolster deterrence and decisive action. Nice to Have Experience administering Jira Service Management at scale, including integrations with Slack, M365, identity providers, and MDM tooling. Experience with AI tooling such as Atlassian Intelligence, Microsoft Copilot, or custom LLM based agents in a support context. Familiarity with ITIL or similar service management frameworks - used pragmatically, not dogmatically. Hands on background supporting macOS, Windows, iOS, M365 (Entra ID, Exchange, SharePoint), and MDM tools like Intune, Jamf, or JumpCloud. Experience working in a regulated environment (defence, government, finance) with associated audit and compliance requirements. Experience scaling an IT Support function inside a fast growing engineering organisation. Join Helsing and work with world leading experts in their fields Helsing's work is important. You'll be directly contributing to the protection of democratic countries while balancing both ethical and geopolitical concerns. The work is unique. We operate in a domain that has highly unusual technical requirements and constraints, and where robustness, safety, and ethical considerations are vital. You will face unique Engineering and AI challenges that make a meaningful impact in the world. Our work frequently takes us right up to the state of the art in technical innovation, be it reinforcement learning, distributed systems, generative AI, or deployment infrastructure. The defence industry is entering the most exciting phase of the technological development curve. Advances in our field are not incremental: Helsing is part of, and often leading, historic leaps forward. In our domain, success is a matter of order of magnitude improvements and novel capabilities. This means we take bets, aim high, and focus on big opportunities. Despite being a relatively young company, Helsing has already been selected for multiple significant government contracts. We actively encourage healthy, proactive, and diverse debate internally about what we do and how we choose to do it. Teams and individual engineers are trusted (and encouraged) to practise responsible autonomy and critical thinking, and to focus on outcomes, not conformity. At Helsing you will have a say in how we (and you!) work, the opportunity to engage on what does and doesn't work, and to take ownership of aspects of our culture that you care deeply about. What we offer Competitive salary and VSOP options Relocation support: up to €2,500 and 4 weeks temporary accommodation Learning: €500/£450 yearly allowance Health & wellness: gym membership and mental health support (Nilo.health) Social: regular company events and monthly social allowances Enhanced parental leave: 22 weeks fully paid for primary caregivers & 6 weeks for secondary caregivers Family support: 5 days of paid family emergency leave, 100% remote work option during pregnancy and phased return to work A hands on onboarding program (affectionately labelled "Infraduction"), in which you will be building tooling and applications to be used across the company. This is your opportunity to learn our tech stack, explore the company, and learn how we get things done - all whilst working with other engineering teams from day one (Specifically for engineering and AI). These are the core benefits across all locations, there may be additional benefits in certain locations. Equal Opportunity Employer Helsing is an equal opportunities employer. We are committed to equal employment opportunity regardless of race, religion, sexual orientation, age, marital status, disability or gender identity. Please do not submit personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, data concerning your health, or data concerning your sexual orientation. Helsing's Candidate Privacy and Confidentiality Regime can be found here.
18/06/2026
Full time
The role As Helsing's IT Support Lead, you will own the day to day delivery, performance, and experience of IT support across our European offices. You'll lead a distributed team of IT Support staff covering on site, on call, and triage responsibilities, making sure every Helsing employee gets fast, high quality help, and that every ticket improves our service the next time around. You will be hands on with Jira Service Management, fluent in using data to drive decisions, and an early adopter of AI agents and automation to scale the team's impact without scaling headcount linearly. You'll set the standard for what great internal IT feels like at Helsing for both the staff we support and the IT engineers doing the supporting directly enabling the engineers, AI specialists, and program managers building capabilities that protect our democracies. The day to day Own the daily operating rhythm of IT Support: ticket prioritisation, queue health, SLAs, and ensuring the right issues are being worked on by the right people at the right time. Lead, coach, and develop a distributed team of IT Support Engineers across the UK and Germany, including on site staff, triage, and on call rotations. Design and manage rotas; on call, triage, and site coverage. Balancing fairness, coverage, and team wellbeing across multiple offices and time zones. Own IT's Jira Service Management as a product: queues, request types, workflows, automation rules, SLAs, forms, customer portals, and reporting. Define, maintain, and continuously improve escalation paths between L1/L2/L3 support, IT Engineering, Security, and external vendors, including clear ownership, response expectations, and communication standards during major incidents. Build and own the IT Support performance reporting layer: dashboards, KPIs (CSAT, time to resolution, first contact resolution, backlog age, escalation rates), trend analysis, and regular reporting to IT leadership and the wider business. Identify and deploy AI agents and automation (within Jira, M365, and our wider toolchain) to deflect repetitive tickets, accelerate triage, draft responses, and surface insights from ticket data. Continuously raise the bar on the end user support experience. Clear comms, fast resolutions, great self service, and a polished, consistent feel across every interaction. Equally raise the bar on the IT staff experience. Better tooling, clearer runbooks, sensible on call load, meaningful career growth, and protection from avoidable toil. Partner with IT Engineering to turn recurring issues into permanent fixes and with Security to ensure support processes meet our compliance and audit obligations. Own and evolve our internal IT knowledge base, runbooks, and self service content. You should apply if you Have 5+ years of experience in IT Support, including 2+ years leading or managing a support team in a fast paced environment. Are highly proficient with Jira Service Management, comfortable designing workflows, automations, SLAs, queues, and reporting, not just using them. Have a strong, demonstrable track record of running support as a data driven function, defining the right KPIs, building dashboards, and using metrics to drive real operational improvements. Have hands on experience deploying AI agents, chatbots, or automation to improve ticket deflection, triage, or response quality. Have managed rotas across on call, triage, and on site responsibilities, ideally across multiple locations or time zones. Have designed and operated clear escalation processes, including major incident handling and cross team coordination. Bring a customer first mindset paired with strong operational discipline - you care equally about user experience and team health. Are a strong communicator who can translate between end users, IT engineers, security, and senior leadership. Your personal values match ours: ownership, initiative, dedication to mission, speed, and inclusiveness. Feel strongly about the right of democracies to defend their sovereignty through the fielding of capabilities that bolster deterrence and decisive action. Nice to Have Experience administering Jira Service Management at scale, including integrations with Slack, M365, identity providers, and MDM tooling. Experience with AI tooling such as Atlassian Intelligence, Microsoft Copilot, or custom LLM based agents in a support context. Familiarity with ITIL or similar service management frameworks - used pragmatically, not dogmatically. Hands on background supporting macOS, Windows, iOS, M365 (Entra ID, Exchange, SharePoint), and MDM tools like Intune, Jamf, or JumpCloud. Experience working in a regulated environment (defence, government, finance) with associated audit and compliance requirements. Experience scaling an IT Support function inside a fast growing engineering organisation. Join Helsing and work with world leading experts in their fields Helsing's work is important. You'll be directly contributing to the protection of democratic countries while balancing both ethical and geopolitical concerns. The work is unique. We operate in a domain that has highly unusual technical requirements and constraints, and where robustness, safety, and ethical considerations are vital. You will face unique Engineering and AI challenges that make a meaningful impact in the world. Our work frequently takes us right up to the state of the art in technical innovation, be it reinforcement learning, distributed systems, generative AI, or deployment infrastructure. The defence industry is entering the most exciting phase of the technological development curve. Advances in our field are not incremental: Helsing is part of, and often leading, historic leaps forward. In our domain, success is a matter of order of magnitude improvements and novel capabilities. This means we take bets, aim high, and focus on big opportunities. Despite being a relatively young company, Helsing has already been selected for multiple significant government contracts. We actively encourage healthy, proactive, and diverse debate internally about what we do and how we choose to do it. Teams and individual engineers are trusted (and encouraged) to practise responsible autonomy and critical thinking, and to focus on outcomes, not conformity. At Helsing you will have a say in how we (and you!) work, the opportunity to engage on what does and doesn't work, and to take ownership of aspects of our culture that you care deeply about. What we offer Competitive salary and VSOP options Relocation support: up to €2,500 and 4 weeks temporary accommodation Learning: €500/£450 yearly allowance Health & wellness: gym membership and mental health support (Nilo.health) Social: regular company events and monthly social allowances Enhanced parental leave: 22 weeks fully paid for primary caregivers & 6 weeks for secondary caregivers Family support: 5 days of paid family emergency leave, 100% remote work option during pregnancy and phased return to work A hands on onboarding program (affectionately labelled "Infraduction"), in which you will be building tooling and applications to be used across the company. This is your opportunity to learn our tech stack, explore the company, and learn how we get things done - all whilst working with other engineering teams from day one (Specifically for engineering and AI). These are the core benefits across all locations, there may be additional benefits in certain locations. Equal Opportunity Employer Helsing is an equal opportunities employer. We are committed to equal employment opportunity regardless of race, religion, sexual orientation, age, marital status, disability or gender identity. Please do not submit personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, data concerning your health, or data concerning your sexual orientation. Helsing's Candidate Privacy and Confidentiality Regime can be found here.
La Fosse are currently partnered with a customer who are looking to hire an M365 Engineer into their team, on an initial 6 month contract. The requirement is a BAU role where I'm looking for an Engineer with experience across both endpoint management/W11 engineering, M365 including Teams and O365 (Word, Excel, PowerPoint, OneNote, Outlook) technologies, packaging and PowerShell, as well as being used to working in an operations role involving incidents, tasks and 3rd line troubleshooting. London based, 2-3 days a week onsite, initial 6 months and inside IR35. The specific duties for this role include, but are not limited to: A strong working knowledge of M365 including the various admin consoles used in the effective provision and administration of this SaaS offering. Strong expertise in securing hybrid Microsoft environments using Zero Trust principles, including Entra ID, Intune (MDM and Conditional Access), Defender for Endpoint, SSO, MFA and password less authentication (WHfB). Subject Matter Expert of Microsoft Intune including device enrolment and compliance, configuration and security policies, application deployment, update and feature management, zero-touch provisioning (AutoPilot and ESP) while ensuring alignment with security, governance, and user experience standards. 3rd line support for the Windows operating system and its software components, e.g., .Net Framework, Visual Studio Office Runtime and C++ redistributable. Familiarity with troubleshooting tools used in 3rd line support of Windows operating system e.g., Office SARA Tool, Fiddler, Wireshark, process Explorer and ProcDump. Application packaging experience, using ORCA, PSAppDeployToolkit (PSADT), PSExec, and DPInst to customise and repackage installers and produce MSI standard media for enterprise deployment via Microsoft Intune. PowerShell scripting skills. Provide 3rd line engineering support for O365 (Word, Excel, PowerPoint, Outlook, and OneNote), performing advanced diagnostics and root cause analysis across client configuration, add ins, profiles, connectivity, authentication, and service dependencies (SharePoint, OneDrive, Exchange Online) and driving resolution through close integration with endpoint, identity, and platform services. Administer Microsoft Teams as the firm's primary Unified Communications platform, including tenant and service configuration, governance and policy management, user and group enablement, collaboration and meeting features and integration dependencies. Fundamental experience of Core Networking components and their interdependencies (TCP/IP, DNS, DHCP, LAN, WAN, F5, Firewalls, Routers, Switches).
18/06/2026
Full time
La Fosse are currently partnered with a customer who are looking to hire an M365 Engineer into their team, on an initial 6 month contract. The requirement is a BAU role where I'm looking for an Engineer with experience across both endpoint management/W11 engineering, M365 including Teams and O365 (Word, Excel, PowerPoint, OneNote, Outlook) technologies, packaging and PowerShell, as well as being used to working in an operations role involving incidents, tasks and 3rd line troubleshooting. London based, 2-3 days a week onsite, initial 6 months and inside IR35. The specific duties for this role include, but are not limited to: A strong working knowledge of M365 including the various admin consoles used in the effective provision and administration of this SaaS offering. Strong expertise in securing hybrid Microsoft environments using Zero Trust principles, including Entra ID, Intune (MDM and Conditional Access), Defender for Endpoint, SSO, MFA and password less authentication (WHfB). Subject Matter Expert of Microsoft Intune including device enrolment and compliance, configuration and security policies, application deployment, update and feature management, zero-touch provisioning (AutoPilot and ESP) while ensuring alignment with security, governance, and user experience standards. 3rd line support for the Windows operating system and its software components, e.g., .Net Framework, Visual Studio Office Runtime and C++ redistributable. Familiarity with troubleshooting tools used in 3rd line support of Windows operating system e.g., Office SARA Tool, Fiddler, Wireshark, process Explorer and ProcDump. Application packaging experience, using ORCA, PSAppDeployToolkit (PSADT), PSExec, and DPInst to customise and repackage installers and produce MSI standard media for enterprise deployment via Microsoft Intune. PowerShell scripting skills. Provide 3rd line engineering support for O365 (Word, Excel, PowerPoint, Outlook, and OneNote), performing advanced diagnostics and root cause analysis across client configuration, add ins, profiles, connectivity, authentication, and service dependencies (SharePoint, OneDrive, Exchange Online) and driving resolution through close integration with endpoint, identity, and platform services. Administer Microsoft Teams as the firm's primary Unified Communications platform, including tenant and service configuration, governance and policy management, user and group enablement, collaboration and meeting features and integration dependencies. Fundamental experience of Core Networking components and their interdependencies (TCP/IP, DNS, DHCP, LAN, WAN, F5, Firewalls, Routers, Switches).
Join Avanade's Global Integrated Center of Excellence (ICOE) as a hands on AI Application Architect, helping design intelligent, agentic, cloud native applications. You will apply advanced AI techniques to accelerate every phase of the delivery lifecycle - from analysis and design to build, test, deploy, and operate - driving transformation across complex enterprise landscapes. Role Overview As part of the Application & Infrastructure SME team within the ICOE, you will focus on modern application architecture while pioneering the use of agentic AI in real delivery scenarios. You will collaborate closely with Avanade Regions on both direct and indirect deals, supporting them during solutioning phases as well as during critical delivery phases. Whether modernizing legacy systems or building solutions from scratch, you will apply agentic AI to transform how projects are executed end to end. This is a unique opportunity to influence Avanade's architecture direction, elevate engineering productivity, and lead high impact initiatives across Azure, AWS, and GCP. What you'll do Architect AI powered applications using autonomous and semi autonomous agentic frameworks. Apply AI agents across all delivery phases: analysis, design, build, test, deploy, and operations. Modernise legacy applications using agentic AI for discovery, transformation, and refactoring. Define end to end architectures integrating traditional software, LLMs, vector stores, and orchestration. Drive AI adoption within Avanade Regions, enabling AI driven solution roadmaps. Contribute to solution planning and design across multi disciplinary and multi cloud environments. Develop accelerators, reference architectures, and reusable assets for agentic AI patterns. Guide engineering, data, and DevOps teams on AI automation and pipeline integration. Travel occasionally for high value client engagements. Qualifications 12+ years of experience designing and developing enterprise scale applications. Strong foundation in software engineering including frontend, backend, APIs, data, and cloud architecture. Proven delivery experience applying agentic AI to modernize legacy systems or build new solutions. Hands on expertise with agentic AI frameworks such as AutoGen, Semantic Kernel, LangChain, or equivalents. Ability to apply AI agents across all phases of delivery: requirements, architecture, coding, testing, documentation, and deployment. Experience with LLMs, prompt engineering, RAG, vector databases, and orchestration patterns. Strong Azure expertise preferred, with hands on exposure to AWS and GCP. Experience integrating AI into distributed systems, microservices, APIs, and event driven architectures. DevOps and MLOps experience including CI/CD, IaC, automated testing, observability, and deployment automation. Familiarity with data engineering, ML models, Responsible AI, and enterprise governance. Ability to communicate complex AI concepts to both technical and executive audiences. Cloud, AI engineering, or architecture certifications are a plus. About You Passionate about AI with hands on experience applying agentic patterns in real delivery work. Comfortable working at the intersection of software engineering, AI, cloud, and automation. Clear communicator across technical and non technical stakeholders. Enjoy mentoring teams and raising overall AI engineering maturity. Continuously explore emerging AI frameworks, tools, and architectural approaches. Enjoy Your Career Opportunity to work for Microsoft's Global Alliance Partner of the Year (14 years running), with exceptional training (minimum 80 hours annually) and paid certifications. You will have access to global technical communities, a dedicated career advisor, and supportive colleagues who care about your success. Discover more benefits on Avanade's website. Additional Information Equal Employment Opportunity Statement All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Avanade is committed to providing veteran employment opportunities to our service men and women. Please read Avanade's Hiring and Privacy Statement for more information on how we process your data during the Recruiting and Hiring process. Main Responsibilities You'll participate in both presales and delivery activities. We strongly encourage acquiring experience on the job and use this experience in new proposals. Participate in a cross technical team, with different Avanade Spain areas proposing innovative solutions providing your knowledge and expertise to solve cross technology problems. Apply your expertise in design, propose and defend scalable, high reliable cloud ready solutions based on Azure value and meeting our customer needs. Apply your expertise in technical and consulting knowledge to advise clients on fit for purpose architectures, ensure nonfunctional requirements as well as evolving business needs. Work in projects that utilize Microsoft and latest front end technologies in distributed, highly scalable, robust and responsive architectures. Architect and deploy Azure solutions across the Azure platform using DevSecOps practices with Azure Pipelines or GitHub Actions. Deliver using Agile frameworks, paying special attention to code quality, delivery commitments and team leadership. Role Requirements English oral and written communication. Strong technical writing, presentation and training skills. Technical Requirements Microsoft Intune: Deep hands on experience with device compliance, application deployment, software updates, endpoint protection, and policy management. Device enrolment, corporate and personal BYOD device scenarios, automated provisioning for Windows, iOS, Android, including zero touch enrolments for iOS and Android platforms, web based device enrollment for iOS. Device configuration including creating custom configuration profiles. Shared and Kiosk device scenarios, Windows and mobile device platforms. Certificate deployments, PKCS and SCEP. Deploying VPN, email and Wi Fi profile. Device Compliance, including custom compliance and integration with Defender for Endpoint for device risk, ConfigMgr compliance. Compliance with Conditional Access. Assignment filters for managed apps and devices. Applications, store apps, M365 apps, Edge, LoB and Win32. Integration with Apple Business Manager and Google Play store. Intune Diagnostics. Using KQL to create custom reports from Log Analytics data. Connectors and tokens. Configuration Manager. Managed Google Play. Firmware over the air update. MDT connectors - (Windows Security and awareness of third party capabilities). Certificate connectors. Active Directory. eSIM configuration, awareness of platform specific limitations. Autopilot & Provisioning: Expertise in configuring and validating Windows Autopilot profiles, OEM provisioning, and troubleshooting deployment issues. Experience with all Autopilot deployment scenarios, user driven, pre provisioning, self deploying, Autopilot Reset and Autopilot for existing devices. Enrolment Status Page - configuration and experience troubleshooting.
16/06/2026
Full time
Join Avanade's Global Integrated Center of Excellence (ICOE) as a hands on AI Application Architect, helping design intelligent, agentic, cloud native applications. You will apply advanced AI techniques to accelerate every phase of the delivery lifecycle - from analysis and design to build, test, deploy, and operate - driving transformation across complex enterprise landscapes. Role Overview As part of the Application & Infrastructure SME team within the ICOE, you will focus on modern application architecture while pioneering the use of agentic AI in real delivery scenarios. You will collaborate closely with Avanade Regions on both direct and indirect deals, supporting them during solutioning phases as well as during critical delivery phases. Whether modernizing legacy systems or building solutions from scratch, you will apply agentic AI to transform how projects are executed end to end. This is a unique opportunity to influence Avanade's architecture direction, elevate engineering productivity, and lead high impact initiatives across Azure, AWS, and GCP. What you'll do Architect AI powered applications using autonomous and semi autonomous agentic frameworks. Apply AI agents across all delivery phases: analysis, design, build, test, deploy, and operations. Modernise legacy applications using agentic AI for discovery, transformation, and refactoring. Define end to end architectures integrating traditional software, LLMs, vector stores, and orchestration. Drive AI adoption within Avanade Regions, enabling AI driven solution roadmaps. Contribute to solution planning and design across multi disciplinary and multi cloud environments. Develop accelerators, reference architectures, and reusable assets for agentic AI patterns. Guide engineering, data, and DevOps teams on AI automation and pipeline integration. Travel occasionally for high value client engagements. Qualifications 12+ years of experience designing and developing enterprise scale applications. Strong foundation in software engineering including frontend, backend, APIs, data, and cloud architecture. Proven delivery experience applying agentic AI to modernize legacy systems or build new solutions. Hands on expertise with agentic AI frameworks such as AutoGen, Semantic Kernel, LangChain, or equivalents. Ability to apply AI agents across all phases of delivery: requirements, architecture, coding, testing, documentation, and deployment. Experience with LLMs, prompt engineering, RAG, vector databases, and orchestration patterns. Strong Azure expertise preferred, with hands on exposure to AWS and GCP. Experience integrating AI into distributed systems, microservices, APIs, and event driven architectures. DevOps and MLOps experience including CI/CD, IaC, automated testing, observability, and deployment automation. Familiarity with data engineering, ML models, Responsible AI, and enterprise governance. Ability to communicate complex AI concepts to both technical and executive audiences. Cloud, AI engineering, or architecture certifications are a plus. About You Passionate about AI with hands on experience applying agentic patterns in real delivery work. Comfortable working at the intersection of software engineering, AI, cloud, and automation. Clear communicator across technical and non technical stakeholders. Enjoy mentoring teams and raising overall AI engineering maturity. Continuously explore emerging AI frameworks, tools, and architectural approaches. Enjoy Your Career Opportunity to work for Microsoft's Global Alliance Partner of the Year (14 years running), with exceptional training (minimum 80 hours annually) and paid certifications. You will have access to global technical communities, a dedicated career advisor, and supportive colleagues who care about your success. Discover more benefits on Avanade's website. Additional Information Equal Employment Opportunity Statement All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process. Avanade is committed to providing veteran employment opportunities to our service men and women. Please read Avanade's Hiring and Privacy Statement for more information on how we process your data during the Recruiting and Hiring process. Main Responsibilities You'll participate in both presales and delivery activities. We strongly encourage acquiring experience on the job and use this experience in new proposals. Participate in a cross technical team, with different Avanade Spain areas proposing innovative solutions providing your knowledge and expertise to solve cross technology problems. Apply your expertise in design, propose and defend scalable, high reliable cloud ready solutions based on Azure value and meeting our customer needs. Apply your expertise in technical and consulting knowledge to advise clients on fit for purpose architectures, ensure nonfunctional requirements as well as evolving business needs. Work in projects that utilize Microsoft and latest front end technologies in distributed, highly scalable, robust and responsive architectures. Architect and deploy Azure solutions across the Azure platform using DevSecOps practices with Azure Pipelines or GitHub Actions. Deliver using Agile frameworks, paying special attention to code quality, delivery commitments and team leadership. Role Requirements English oral and written communication. Strong technical writing, presentation and training skills. Technical Requirements Microsoft Intune: Deep hands on experience with device compliance, application deployment, software updates, endpoint protection, and policy management. Device enrolment, corporate and personal BYOD device scenarios, automated provisioning for Windows, iOS, Android, including zero touch enrolments for iOS and Android platforms, web based device enrollment for iOS. Device configuration including creating custom configuration profiles. Shared and Kiosk device scenarios, Windows and mobile device platforms. Certificate deployments, PKCS and SCEP. Deploying VPN, email and Wi Fi profile. Device Compliance, including custom compliance and integration with Defender for Endpoint for device risk, ConfigMgr compliance. Compliance with Conditional Access. Assignment filters for managed apps and devices. Applications, store apps, M365 apps, Edge, LoB and Win32. Integration with Apple Business Manager and Google Play store. Intune Diagnostics. Using KQL to create custom reports from Log Analytics data. Connectors and tokens. Configuration Manager. Managed Google Play. Firmware over the air update. MDT connectors - (Windows Security and awareness of third party capabilities). Certificate connectors. Active Directory. eSIM configuration, awareness of platform specific limitations. Autopilot & Provisioning: Expertise in configuring and validating Windows Autopilot profiles, OEM provisioning, and troubleshooting deployment issues. Experience with all Autopilot deployment scenarios, user driven, pre provisioning, self deploying, Autopilot Reset and Autopilot for existing devices. Enrolment Status Page - configuration and experience troubleshooting.
Principal Security Engineer page is loaded Principal Security Engineerlocations: Bexhill: Leicestertime type: Full timeposted on: Posted Todayjob requisition id: We're a digital insurance provider with ambitious plans to become The Best and Biggest in the UK market. Over the past few years, we've made significant investments in our data and tech capabilities, particularly within our CIO function. Our CIO team is at the forefront of driving innovation and ensuring our technology infrastructure supports our ambitious goals. We've nurtured our 4Cs culture, fostering collaboration, creativity, and continuous improvement.We're proud of the journey we're on as a company and know that our continued success will rely on the contribution of our talented colleagues. The CIO team plays a crucial role in this journey, working on cutting-edge projects that enhance our digital presence and improve customer engagement.We provide insurance to nearly four million customers, but we know there's even bigger opportunity out there. The fact you're now reading this job advert means we've tempted you to find out more about - we really hope you like what you see, and you'll join us to share in the success of the exciting chapter that lies ahead.We understand some people may not apply for jobs unless they feel they tick every box. If you are excited about joining us and think you have some of what we are looking for, even if you're not 100% sure, we would love to hear from you. Our CIO team is always looking for passionate individuals who are eager to make a difference and contribute to our success. Job Details Promote a culture where we re-use more which allows us to optimise workflow efficiency and reduce duplication. Guide and coach teams on good security engineering practices and process improvements, helping to build capability and maturity across the organisation. Supports the team in delivering outcomes efficiently, by reducing manual execution. Ensure fast, reliable feedback loops are in place to enable fail-fast delivery and continuous improvement. Define and implement best practices and controls, ensuring adherence and enabling early detection of issues. Drive engagement and collaboration across Scrum Teams and the CIO community, leading the definition and adoption of best practices to enable faster, secure and more reliable delivery. Skills we would love you to have Extensive practical experience in IT Security working in an agile environment. Transformational leadership skills being able to influence decision making and implement new processes and procedures in support of the company's vision. Excellent mentoring skills to support direct reports in their ongoing development Proven experience in designing, implementing, and securing cloud environments, with a strong emphasis on Microsoft Azure services. In-depth knowledge of cloud security best practices, network security, identity and access management, encryption, and secure coding principles. Excellent problem-solving skills and the ability to analyse complex security issues and develop effective solutions. Strong communication and collaboration skills, with the ability to work effectively in cross-functional teams. Track record of successfully designing, building, and deploying scalable, secure, and highly available security infrastructures using Azure. Strong proficiency in leveraging data and advanced analytics to drive decision-making and continuously enhance security solutions. Tools & Technologies: Proficient knowledge of at least on agile methodology (eg Scrum, Kanban, SAFe)Familiar with backlog and test case management in a system of record such as Jira or Octane Expert knowledge using Cloud Technologies Strong understanding of regulatory compliance requirements (e.g. GDPR, ISO 27001, NIST) and experience implementing security controls to meet those requirements. Hands-on experience with Azure Kubernetes Service (AKS) and microservices architecture. Familiarity with DevSecOps methodologies and tools, enabling the seamless integration of security into the development process. Proficiency in Microsoft Defender security assessment tools, vulnerability scanning tools, and SIEM platforms. In-depth understanding of the Microsoft ecosystem, including hands-on experience with Firewalls, IDS/IPS, Load Balancers, Applications Gateways, Proxies, M365, EDR, KQL. Expertise in utilizing Azure DevOps to drive efficient and collaborative development processes, including the development of security solutions and updates in code. Unfortunately, we are unable to progress with candidates that require sponsorship at this time What we offer Join us and you'll find a different way of doing things. We call it the 4Cs. We focus on getting it right for our colleagues, customers, company, and community. As one of our colleagues, you'll be helping to drive our growth, so in return, we'll give you all the support, training and development you need. Not to mention plenty of recognition and rewards, and the scope to voice your ideas and put them into practice. Reward Salary - Attractive salary based on experience + car allowance (pay reviews also completed each year) Flexible Working - We champion a flexible and hybrid working approach so please speak to your recruiter to discuss in more detail, including days in the office and at home. Competitive Bonus Scheme - All colleagues are eligible for our annual 4Cs performance bonus, which is usually paid in March. The scheme is based on Hastings' performance against our business goals and your own personal performance. Physical Wellbeing - as a Band 4 colleague, Hastings pay for you to receive private medical Insurance (also known as PMI) This gives you flexibility and convenience to see a specialist or consultant and allows you to decide when and where you will be seen. Financial Wellbeing - As well as providing you with 4x your salary with our life assurance cover and income protection at no extra cost, pension contribution match up to 10%, we are proud to provide you with an AWARD WINNING package which includes - discounts and cashback at everyday retailers and on our own products, fee free independent mortgage advice, and free access to financial wellbeing support. Mental Wellbeing programme - At Hastings Direct we understand that mental health cannot not be scheduled, that's why we have a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24/7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs There's more! - 27 days annual leave + bank holidays, with the option to buy or sell one of your contracted weeks, access to our health care cash back plans, dental plans, discounted health assessments, Cycle to work and tech schemes, discounted and free onsite facilities, social events throughout the year and much more Our 4Cs principles are simple: we believe by creating the right culture for our colleagues and giving them the right tools to do their job, we'll deliver good outcomes for every customer, helping us to grow the company profitably and sustainably and allowing us to invest in the communities we serve.We deliver good outcomes for our customers every time by providing great products at the right price with our simple and straightforward service. We treat customers like we want to be treated - fairly, respectfully and with their best interests at heart.Hastings Group is an equal opportunities employer which means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion/belief, sexual orientation, gender reassignment or marital/family status. Please also
13/06/2026
Full time
Principal Security Engineer page is loaded Principal Security Engineerlocations: Bexhill: Leicestertime type: Full timeposted on: Posted Todayjob requisition id: We're a digital insurance provider with ambitious plans to become The Best and Biggest in the UK market. Over the past few years, we've made significant investments in our data and tech capabilities, particularly within our CIO function. Our CIO team is at the forefront of driving innovation and ensuring our technology infrastructure supports our ambitious goals. We've nurtured our 4Cs culture, fostering collaboration, creativity, and continuous improvement.We're proud of the journey we're on as a company and know that our continued success will rely on the contribution of our talented colleagues. The CIO team plays a crucial role in this journey, working on cutting-edge projects that enhance our digital presence and improve customer engagement.We provide insurance to nearly four million customers, but we know there's even bigger opportunity out there. The fact you're now reading this job advert means we've tempted you to find out more about - we really hope you like what you see, and you'll join us to share in the success of the exciting chapter that lies ahead.We understand some people may not apply for jobs unless they feel they tick every box. If you are excited about joining us and think you have some of what we are looking for, even if you're not 100% sure, we would love to hear from you. Our CIO team is always looking for passionate individuals who are eager to make a difference and contribute to our success. Job Details Promote a culture where we re-use more which allows us to optimise workflow efficiency and reduce duplication. Guide and coach teams on good security engineering practices and process improvements, helping to build capability and maturity across the organisation. Supports the team in delivering outcomes efficiently, by reducing manual execution. Ensure fast, reliable feedback loops are in place to enable fail-fast delivery and continuous improvement. Define and implement best practices and controls, ensuring adherence and enabling early detection of issues. Drive engagement and collaboration across Scrum Teams and the CIO community, leading the definition and adoption of best practices to enable faster, secure and more reliable delivery. Skills we would love you to have Extensive practical experience in IT Security working in an agile environment. Transformational leadership skills being able to influence decision making and implement new processes and procedures in support of the company's vision. Excellent mentoring skills to support direct reports in their ongoing development Proven experience in designing, implementing, and securing cloud environments, with a strong emphasis on Microsoft Azure services. In-depth knowledge of cloud security best practices, network security, identity and access management, encryption, and secure coding principles. Excellent problem-solving skills and the ability to analyse complex security issues and develop effective solutions. Strong communication and collaboration skills, with the ability to work effectively in cross-functional teams. Track record of successfully designing, building, and deploying scalable, secure, and highly available security infrastructures using Azure. Strong proficiency in leveraging data and advanced analytics to drive decision-making and continuously enhance security solutions. Tools & Technologies: Proficient knowledge of at least on agile methodology (eg Scrum, Kanban, SAFe)Familiar with backlog and test case management in a system of record such as Jira or Octane Expert knowledge using Cloud Technologies Strong understanding of regulatory compliance requirements (e.g. GDPR, ISO 27001, NIST) and experience implementing security controls to meet those requirements. Hands-on experience with Azure Kubernetes Service (AKS) and microservices architecture. Familiarity with DevSecOps methodologies and tools, enabling the seamless integration of security into the development process. Proficiency in Microsoft Defender security assessment tools, vulnerability scanning tools, and SIEM platforms. In-depth understanding of the Microsoft ecosystem, including hands-on experience with Firewalls, IDS/IPS, Load Balancers, Applications Gateways, Proxies, M365, EDR, KQL. Expertise in utilizing Azure DevOps to drive efficient and collaborative development processes, including the development of security solutions and updates in code. Unfortunately, we are unable to progress with candidates that require sponsorship at this time What we offer Join us and you'll find a different way of doing things. We call it the 4Cs. We focus on getting it right for our colleagues, customers, company, and community. As one of our colleagues, you'll be helping to drive our growth, so in return, we'll give you all the support, training and development you need. Not to mention plenty of recognition and rewards, and the scope to voice your ideas and put them into practice. Reward Salary - Attractive salary based on experience + car allowance (pay reviews also completed each year) Flexible Working - We champion a flexible and hybrid working approach so please speak to your recruiter to discuss in more detail, including days in the office and at home. Competitive Bonus Scheme - All colleagues are eligible for our annual 4Cs performance bonus, which is usually paid in March. The scheme is based on Hastings' performance against our business goals and your own personal performance. Physical Wellbeing - as a Band 4 colleague, Hastings pay for you to receive private medical Insurance (also known as PMI) This gives you flexibility and convenience to see a specialist or consultant and allows you to decide when and where you will be seen. Financial Wellbeing - As well as providing you with 4x your salary with our life assurance cover and income protection at no extra cost, pension contribution match up to 10%, we are proud to provide you with an AWARD WINNING package which includes - discounts and cashback at everyday retailers and on our own products, fee free independent mortgage advice, and free access to financial wellbeing support. Mental Wellbeing programme - At Hastings Direct we understand that mental health cannot not be scheduled, that's why we have a range of support to help you keep yourself well. We have the thrive mental health app, our colleague assistance programme available 24/7, our own, in-house mental health first aiders, support groups and a dedicated team to make sure we are covering your needs There's more! - 27 days annual leave + bank holidays, with the option to buy or sell one of your contracted weeks, access to our health care cash back plans, dental plans, discounted health assessments, Cycle to work and tech schemes, discounted and free onsite facilities, social events throughout the year and much more Our 4Cs principles are simple: we believe by creating the right culture for our colleagues and giving them the right tools to do their job, we'll deliver good outcomes for every customer, helping us to grow the company profitably and sustainably and allowing us to invest in the communities we serve.We deliver good outcomes for our customers every time by providing great products at the right price with our simple and straightforward service. We treat customers like we want to be treated - fairly, respectfully and with their best interests at heart.Hastings Group is an equal opportunities employer which means we treat people fairly. We welcome applications from all suitably skilled persons regardless of their gender, age, race, disability, ethnic background, religion/belief, sexual orientation, gender reassignment or marital/family status. Please also
AI ENGINEER - AZURE & C# .NET Up to £60,000.00 Home Based with occasional travel Are You An AI Engineer, a strong Software Engineer transitioning into AI, or perhaps a Data/Automation Engineer with some GenAI delivery experience? Do you have working knowledge of Azure OpenAI? Proficient in C#/.NET? Based in the UK with valid right to work? What You'll Be Doing We are seeking a capable and solutions focused AI Engineer to join our growing AI Team. This role blends Generative AI, Machine Learning (ML), Microsoft centric software engineering, and integration, and is suited to someone who has delivered AI powered solutions and is ready to deepen their expertise in an enterprise environment. You will work across Azure, M365, Copilot, Copilot Studio, Databricks, and modern engineering frameworks to deliver production grade AI services under agreed architecture and security standards. The role includes hands on experimentation and rapid proof of concept (PoC) development, with guidance from senior engineers on governance, risk, and best practice. You will help scale AI safely and sustainably across our property and legal services domain. We can offer the successful candidate mentorship from Senior AI colleagues, support in architecture and governance, and opportunity to deepen Azure AI / Copilot / ML expertise. Key Responsibilities AI & GenAI Engineering Build and enhance GenAI solutions using Azure OpenAI, Azure AI Services, and Copilot extensibility, following agreed patterns. Implement RAG architectures (vector retrieval, embeddings, prompt strategies) with secure LLM integrations. Build conversational assistants and workflow automations using Copilot Studio and the Power Platform. Contribute to experimentation, prototyping, and PoC development to evaluate AI capabilities and feasibility. Support evaluation and integration of third party AI tools or APIs where required, working with the team to meet governance and security requirements. Machine Leaning Engineering Develop and operationalise ML models with appropriate review and documentation. Translate prototypes into robust services, collaborating with engineering colleagues to meet non functional requirements. Create ML pipelines and automate lifecycle workflows using team tooling and standards. Assist with monitoring, optimisation, escalating risks and issues where appropriate. Microsoft Code-Based Development Build AI enabled services and APIs using .NET/C#, Azure Functions, and REST under guidance on patterns and quality. Use Visual Studio, VS Code, GitHub, and Azure DevOps for CI/CD. Contribute to deployments using infrastructure as code templates (e.g., Bicep or ARM), with support from senior engineers. Implement integrations with Logic Apps, Service Bus, and Event Grid using secure, approved patterns. Data, Engineering & Integration Work with data and AI platforms such as Databricks and Azure data services. Build and maintain pipelines for ML and LLM workloads, partnering with data engineering where needed. Integrate internal and external systems using secure authentication and authorisation approaches. Follow responsible AI, privacy, and security standards, contributing to risk assessment and documentation. Quality, Testing & Delivery Conduct evaluation, guardrail and regression testing. Document architectures, PoCs, and technical decisions. Collaborate with stakeholders to refine use cases and deliver solutions. Core Requirements Hands on experience building solutions with Azure AI Services and integrating them into applications and/or data solutions. Working knowledge of Azure OpenAI and common GenAI patterns (prompting, evaluation, basic RAG). Some experience with ML delivery (training, packaging, deployment, monitoring) in a live environment. Proficiency in C#/.NET plus SQL fundamentals. Understanding of vector search concepts (embeddings, chunking, retrieval) and secure API integration. Experience using Git based workflows and CI/CD pipelines (e.g., GitHub or Azure DevOps). Strong communication and problem solving skills, including clear technical documentation. Whilst not essential, we are especially keen to hear from candidates who demonstrate knowledge and experience in one or more of the following areas: Python, building RAG solutions end to end and improving answer quality; Copilot Studio connectors/actions and Power Platform ALM; Databricks, Fabric, or Azure ML in a delivery setting; working knowledge of infrastructure as code and cloud deployment practices; understanding of REST API design and microservices patterns; awareness of emerging agent patterns i.e., MCP/structured agentic architectures; and/or relevant certifications such as Azure AI Engineer Associate, Azure Data Scientist Associate, Power Platform Developer or Solution Architect, Databricks ML or Generative AI certifications, or Emerging AI and AI Solution certifications. Our People Simplify believes diversity brings benefits for our clients, our business and our people. This is why we are committed to being an inclusive employer and encourage applications from all suitable applicants irrespective of background, circumstances, age, disability, gender identity, ethnicity, religion or belief and sexual orientation.
13/06/2026
Full time
AI ENGINEER - AZURE & C# .NET Up to £60,000.00 Home Based with occasional travel Are You An AI Engineer, a strong Software Engineer transitioning into AI, or perhaps a Data/Automation Engineer with some GenAI delivery experience? Do you have working knowledge of Azure OpenAI? Proficient in C#/.NET? Based in the UK with valid right to work? What You'll Be Doing We are seeking a capable and solutions focused AI Engineer to join our growing AI Team. This role blends Generative AI, Machine Learning (ML), Microsoft centric software engineering, and integration, and is suited to someone who has delivered AI powered solutions and is ready to deepen their expertise in an enterprise environment. You will work across Azure, M365, Copilot, Copilot Studio, Databricks, and modern engineering frameworks to deliver production grade AI services under agreed architecture and security standards. The role includes hands on experimentation and rapid proof of concept (PoC) development, with guidance from senior engineers on governance, risk, and best practice. You will help scale AI safely and sustainably across our property and legal services domain. We can offer the successful candidate mentorship from Senior AI colleagues, support in architecture and governance, and opportunity to deepen Azure AI / Copilot / ML expertise. Key Responsibilities AI & GenAI Engineering Build and enhance GenAI solutions using Azure OpenAI, Azure AI Services, and Copilot extensibility, following agreed patterns. Implement RAG architectures (vector retrieval, embeddings, prompt strategies) with secure LLM integrations. Build conversational assistants and workflow automations using Copilot Studio and the Power Platform. Contribute to experimentation, prototyping, and PoC development to evaluate AI capabilities and feasibility. Support evaluation and integration of third party AI tools or APIs where required, working with the team to meet governance and security requirements. Machine Leaning Engineering Develop and operationalise ML models with appropriate review and documentation. Translate prototypes into robust services, collaborating with engineering colleagues to meet non functional requirements. Create ML pipelines and automate lifecycle workflows using team tooling and standards. Assist with monitoring, optimisation, escalating risks and issues where appropriate. Microsoft Code-Based Development Build AI enabled services and APIs using .NET/C#, Azure Functions, and REST under guidance on patterns and quality. Use Visual Studio, VS Code, GitHub, and Azure DevOps for CI/CD. Contribute to deployments using infrastructure as code templates (e.g., Bicep or ARM), with support from senior engineers. Implement integrations with Logic Apps, Service Bus, and Event Grid using secure, approved patterns. Data, Engineering & Integration Work with data and AI platforms such as Databricks and Azure data services. Build and maintain pipelines for ML and LLM workloads, partnering with data engineering where needed. Integrate internal and external systems using secure authentication and authorisation approaches. Follow responsible AI, privacy, and security standards, contributing to risk assessment and documentation. Quality, Testing & Delivery Conduct evaluation, guardrail and regression testing. Document architectures, PoCs, and technical decisions. Collaborate with stakeholders to refine use cases and deliver solutions. Core Requirements Hands on experience building solutions with Azure AI Services and integrating them into applications and/or data solutions. Working knowledge of Azure OpenAI and common GenAI patterns (prompting, evaluation, basic RAG). Some experience with ML delivery (training, packaging, deployment, monitoring) in a live environment. Proficiency in C#/.NET plus SQL fundamentals. Understanding of vector search concepts (embeddings, chunking, retrieval) and secure API integration. Experience using Git based workflows and CI/CD pipelines (e.g., GitHub or Azure DevOps). Strong communication and problem solving skills, including clear technical documentation. Whilst not essential, we are especially keen to hear from candidates who demonstrate knowledge and experience in one or more of the following areas: Python, building RAG solutions end to end and improving answer quality; Copilot Studio connectors/actions and Power Platform ALM; Databricks, Fabric, or Azure ML in a delivery setting; working knowledge of infrastructure as code and cloud deployment practices; understanding of REST API design and microservices patterns; awareness of emerging agent patterns i.e., MCP/structured agentic architectures; and/or relevant certifications such as Azure AI Engineer Associate, Azure Data Scientist Associate, Power Platform Developer or Solution Architect, Databricks ML or Generative AI certifications, or Emerging AI and AI Solution certifications. Our People Simplify believes diversity brings benefits for our clients, our business and our people. This is why we are committed to being an inclusive employer and encourage applications from all suitable applicants irrespective of background, circumstances, age, disability, gender identity, ethnicity, religion or belief and sexual orientation.
Role overview As a Service Desk Manager, you will work with a broad range of clients ensuring smooth delivery and maintenance of a portfolio of IT and Network products. You will take a proactive and calm approach to service escalations and troubleshooting with commercial sensitivity and acuity. The success of the role will allow Vorboss to grow and develop existing business and create long-term relationships with clients. You will own day-to-day operational performance, continuous improvement, and service governance, driving ticket quality, SLA achievement, incident reduction, customer satisfaction, and effective cross-functional coordination with NOC, Network Engineering, Field Services, Security, and Vendors. Leading your team, you will provide exceptional customer support on all of Vorboss's products. Key responsibilities Operational Leadership & Service Performance Lead the Service Desk to deliver consistent support across IT and ISP service portfolios. Own operational KPIs: SLA/XLA compliance, CSAT/XLA, reopen rates, escalations. Run daily operational rhythms (stand-ups, queue reviews, prioritisation, workload balancing). Ensure high-quality triage, diagnosis, resolution, and escalation using structured troubleshooting. Maintain a strong customer focus during high volume, peak periods, and service disruptions. Proactively identify risks and drive the implementation of the appropriate solution to reduce the likelihood of escalations and/or impact to the client. Ensure effective incident processes, including clear categorisation, prioritisation, communications, and escalation. Lead or coordinate Major Incidents for IT and ISP outages, ensuring rapid restoration, stakeholder updates, clear timelines and post-incident reviews (PIRs/RCA). Work closely with NOC and Network Engineering on outages, capacity issues, and recurring fault patterns. Ensure problems or incidents that arise and cannot be resolved by Vorboss resources are escalated to Vorboss management. People Management, Coaching & Capability Building Recruit, develop, coach, and retain a high-performing team. Conduct regular 1:1s, performance reviews, QA call/ticket assessments. Promote a culture of accountability, learning, and continuous improvement. Process Excellence (ITIL/Service Management) Own and improve processes including Incident, Request, Problem, Knowledge, Change enablement (as applicable), Service Catalogue and standard operating procedures. Drive improvements in ticket quality: categorisation, impact/urgency, troubleshooting notes, resolution codes, and documentation. Implement or enhance process through knowledge, automation, and self-service. Customer Experience & Stakeholder Management Act as the key operational point of contact for internal stakeholders and external customers where applicable, ensuring and establishing good relationships. Build strong working relationships with NOC, Network Ops, Security, Infrastructure, Product, Field teams, and vendors. Ensure communication is clear, timely, and appropriate especially during outages and complex escalations. Client satisfaction as a main objective. Produce monthly service performance reporting, including trends, root causes, and improvement plans. Identify recurring incidents and initiate Problem Management investigations. Deliver service improvement initiatives such as, knowledge base uplift, ticket deflection/self-service, automation, improved triage scripts, improved monitoring/alerting integration with NOC. Tooling, Governance & Compliance Ensure the effective configuration and usage of ITSM tools (e.g. Halo, ConnectWise). Maintain robust controls over access, data protection, auditability, and secure handling of customer information. Ensure procedures follow company policies and relevant compliance requirements (e.g., ISO27001-aligned controls, internal security standards). This list is not exhaustive, and the tasks assigned might increase as per company's needs. Operational ownership: holds the line on quality, process, and outcomes. Customer-first mindset: communicates clearly and follows through. Calm under pressure: confident leading during outages and high severity events. Continuous improvement: always looking for ways to reduce contacts and improve resolution. Collaborative leadership: builds strong cross-team partnerships. The right candidate Proven experience leading a Service Desk / Support Operations team in an IT and/or telecom/ISP environment. Strong working knowledge of ITSM/ITIL-aligned practices (Incident/Request/Problem/Knowledge), network basics (TCP/IP, DNS, DHCP, routing concepts, VPN, Wi Fi), ISP workflows (fault diagnostics, CPE, circuits, carrier escalations). Excellent people leadership skills: coaching, performance management, shift/roster planning. Strong customer handling skills-ability to manage escalations and difficult conversations calmly. Data-driven approach: ability to analyse trends and drive improvements. Experience in a 24x7 or multi-shift operational environment. Familiarity with monitoring tools and NOC workflows (e.g., Zabbix, PRTG, SolarWinds, Grafana). Exposure to structured Major Incident and Problem Management practices. Knowledge of M365, identity (Azure AD/Entra), endpoint management (Intune), and/or VoIP. We believe in taking care of our staff both mentally and physically and in order to support this we offer a range of benefits that youcan access. Employee Share Plan Company pension scheme. 25 days of annual leave allowance that increases with years served (excluding bank holidays). Access to Spill, ourmental health support partner. Cycle to workscheme. Half price gymmemberships through the healthcare provider. Free eye test. Hastee app, to help manage your salary and finances. Diversity, inclusion, and equal opportunities We aim to be an equal opportunities employer and we are determined to ensure that no applicant or employee receives less favourable treatment on the grounds of gender, age, disability, religion, belief, sexual orientation, marital status, or race, or is disadvantaged by conditions or requirements which cannot be shown to be justifiable. We aim to create a working environment free of bullying, harassment, victimisation, and unlawful discrimination, promoting dignity and respect for all, and where individual differences and the contributions of all staff are recognised and valued. This commitment includes training managers and all other employees about their rights and responsibilities under the equality, diversity, and inclusion policy. Responsibilities include staff conducting themselves to help the organisation provide equal opportunities in employment, and prevent bullying, harassment, victimisation, and unlawful discrimination. Vorboss promotes step-free access at our main headquarters, whilst taking into consideration physical barriers employees might face across all other sites.
13/06/2026
Full time
Role overview As a Service Desk Manager, you will work with a broad range of clients ensuring smooth delivery and maintenance of a portfolio of IT and Network products. You will take a proactive and calm approach to service escalations and troubleshooting with commercial sensitivity and acuity. The success of the role will allow Vorboss to grow and develop existing business and create long-term relationships with clients. You will own day-to-day operational performance, continuous improvement, and service governance, driving ticket quality, SLA achievement, incident reduction, customer satisfaction, and effective cross-functional coordination with NOC, Network Engineering, Field Services, Security, and Vendors. Leading your team, you will provide exceptional customer support on all of Vorboss's products. Key responsibilities Operational Leadership & Service Performance Lead the Service Desk to deliver consistent support across IT and ISP service portfolios. Own operational KPIs: SLA/XLA compliance, CSAT/XLA, reopen rates, escalations. Run daily operational rhythms (stand-ups, queue reviews, prioritisation, workload balancing). Ensure high-quality triage, diagnosis, resolution, and escalation using structured troubleshooting. Maintain a strong customer focus during high volume, peak periods, and service disruptions. Proactively identify risks and drive the implementation of the appropriate solution to reduce the likelihood of escalations and/or impact to the client. Ensure effective incident processes, including clear categorisation, prioritisation, communications, and escalation. Lead or coordinate Major Incidents for IT and ISP outages, ensuring rapid restoration, stakeholder updates, clear timelines and post-incident reviews (PIRs/RCA). Work closely with NOC and Network Engineering on outages, capacity issues, and recurring fault patterns. Ensure problems or incidents that arise and cannot be resolved by Vorboss resources are escalated to Vorboss management. People Management, Coaching & Capability Building Recruit, develop, coach, and retain a high-performing team. Conduct regular 1:1s, performance reviews, QA call/ticket assessments. Promote a culture of accountability, learning, and continuous improvement. Process Excellence (ITIL/Service Management) Own and improve processes including Incident, Request, Problem, Knowledge, Change enablement (as applicable), Service Catalogue and standard operating procedures. Drive improvements in ticket quality: categorisation, impact/urgency, troubleshooting notes, resolution codes, and documentation. Implement or enhance process through knowledge, automation, and self-service. Customer Experience & Stakeholder Management Act as the key operational point of contact for internal stakeholders and external customers where applicable, ensuring and establishing good relationships. Build strong working relationships with NOC, Network Ops, Security, Infrastructure, Product, Field teams, and vendors. Ensure communication is clear, timely, and appropriate especially during outages and complex escalations. Client satisfaction as a main objective. Produce monthly service performance reporting, including trends, root causes, and improvement plans. Identify recurring incidents and initiate Problem Management investigations. Deliver service improvement initiatives such as, knowledge base uplift, ticket deflection/self-service, automation, improved triage scripts, improved monitoring/alerting integration with NOC. Tooling, Governance & Compliance Ensure the effective configuration and usage of ITSM tools (e.g. Halo, ConnectWise). Maintain robust controls over access, data protection, auditability, and secure handling of customer information. Ensure procedures follow company policies and relevant compliance requirements (e.g., ISO27001-aligned controls, internal security standards). This list is not exhaustive, and the tasks assigned might increase as per company's needs. Operational ownership: holds the line on quality, process, and outcomes. Customer-first mindset: communicates clearly and follows through. Calm under pressure: confident leading during outages and high severity events. Continuous improvement: always looking for ways to reduce contacts and improve resolution. Collaborative leadership: builds strong cross-team partnerships. The right candidate Proven experience leading a Service Desk / Support Operations team in an IT and/or telecom/ISP environment. Strong working knowledge of ITSM/ITIL-aligned practices (Incident/Request/Problem/Knowledge), network basics (TCP/IP, DNS, DHCP, routing concepts, VPN, Wi Fi), ISP workflows (fault diagnostics, CPE, circuits, carrier escalations). Excellent people leadership skills: coaching, performance management, shift/roster planning. Strong customer handling skills-ability to manage escalations and difficult conversations calmly. Data-driven approach: ability to analyse trends and drive improvements. Experience in a 24x7 or multi-shift operational environment. Familiarity with monitoring tools and NOC workflows (e.g., Zabbix, PRTG, SolarWinds, Grafana). Exposure to structured Major Incident and Problem Management practices. Knowledge of M365, identity (Azure AD/Entra), endpoint management (Intune), and/or VoIP. We believe in taking care of our staff both mentally and physically and in order to support this we offer a range of benefits that youcan access. Employee Share Plan Company pension scheme. 25 days of annual leave allowance that increases with years served (excluding bank holidays). Access to Spill, ourmental health support partner. Cycle to workscheme. Half price gymmemberships through the healthcare provider. Free eye test. Hastee app, to help manage your salary and finances. Diversity, inclusion, and equal opportunities We aim to be an equal opportunities employer and we are determined to ensure that no applicant or employee receives less favourable treatment on the grounds of gender, age, disability, religion, belief, sexual orientation, marital status, or race, or is disadvantaged by conditions or requirements which cannot be shown to be justifiable. We aim to create a working environment free of bullying, harassment, victimisation, and unlawful discrimination, promoting dignity and respect for all, and where individual differences and the contributions of all staff are recognised and valued. This commitment includes training managers and all other employees about their rights and responsibilities under the equality, diversity, and inclusion policy. Responsibilities include staff conducting themselves to help the organisation provide equal opportunities in employment, and prevent bullying, harassment, victimisation, and unlawful discrimination. Vorboss promotes step-free access at our main headquarters, whilst taking into consideration physical barriers employees might face across all other sites.
Role Overview Halma has a complex environment consisting of an HQ organisation and 40+ individual companies. The Infrastructure Architect is a senior technical authority responsible for defining, governing and evolving infrastructure architecture across M365, Azure, Dynamics 365, Power Platform and on premises infrastructure. This role provides architectural direction, standards and assurance across the group. The Infrastructure Architect will ensure infrastructure platforms are secure, resilient, scalable and aligned to business and technology strategy, while enabling operating companies to adopt best practices consistently. The role will be reporting into the Head of Global Technology Services and works closely with senior technical leads to provide architectural oversight for major initiatives, migrations and transformations. Role Responsibilities Act as the design authority for enterprise infrastructure across M365, Azure, Dynamics 365, Power Platform and on premises environments. Define and maintain infrastructure principles, standards, reference designs and target roadmaps. Lead M365 tenant strategy and complex migrations, aligned to security, identity, compliance and operating models. Define Azure and hybrid architecture patterns aligned to the Azure Well-Architected Framework across cost, reliability, security, operations and performance. Oversee on premises infrastructure architecture, integration, lifecycle management and modernisation. Own architecture for business continuity, disaster recovery, backup and resilience across cloud and on premises environments. Advise operating companies on adopting new technologies and infrastructure solutions. Ensure architecture aligns with change control, governance and risk management. Maintain architectural documentation, including conceptual, logical and physical diagrams. Promote Infrastructure as Code and automation first principles using Terraform, Bicep or ARM for consistent deployments. Align infrastructure architecture with DevOps and platform engineering to enable CI/CD, standardised environments and faster delivery. Define and govern FinOps practices, including cost optimisation, usage governance, budgeting and forecasting across Azure and M365. Establish cost controls, including tagging, showback/chargeback and accountability across operating companies. Provide architectural guidance to balance cost, performance, scalability and resilience. Define infrastructure architecture for AI/ML workloads, advanced analytics and high-performance computing. Ensure platforms are AI ready with scalable compute, data integration, secure access and responsible AI controls. Evaluate emerging Microsoft capabilities, including Copilot and AI services, and define group wide adoption patterns. Promote AIOps to improve incident detection, automated remediation and operational insight. Stay current with technology trends, Microsoft roadmaps and emerging capabilities to inform future architecture decisions. Role Prerequisites Significant experience (typically 8+ years) in infrastructure, cloud or platform roles, including demonstrated time operating at an architectural or design authority level. Deep experience with Microsoft Azure and M365 in enterprise or global environments. Strong understanding of hybrid infrastructure, including on premises data centres, networking and identity integration. Experience supporting or integrating SaaS platforms such as Dynamics 365 and Power Platform from an infrastructure and security perspective. Proven experience defining architecture standards, patterns and governance in complex, multi company organisations. Strong knowledge of identity and access management technologies (Entra ID / Azure AD, Azure AD Connect, ADFS, federation, MFA and conditional access). Experience shaping and assuring infrastructure migrations and modernisation programmes. Proven ability to translate complex technical architecture into clear guidance for engineers, leaders and stakeholders. Preferred Certifications Microsoft Certified: Azure Solutions Architect Expert Professional Attributes Proven Architectural Leadership - Demonstrates strong systems thinking and architectural judgement, with the ability to balance strategic direction and pragmatic delivery. Able to guide engineers without becoming delivery dependent. Operational & Design Excellence - Experienced in operating within service oriented environments while elevating architecture maturity, consistency and resilience across platforms. Entrepreneurial "Can Do" Approach - Creative, resilient and outcome focused. Comfortable driving clarity in ambiguous or complex environments and finding practical paths forward. Commercial, Analytic & Strategic Mindset - Able to evaluate options, assess risk, define trade offs and influence decisions. Communicates confidently with technical and non technical stakeholders. Cultural Fit - Non political, collaborative, transparent and low ego. Builds trust at all levels of the organisation and acts as a calm, credible senior technical voice. Location This role is based in London with a hybrid working style, also includes additional project dependent travel requirements to our London office and to our operating companies in the UK and abroad.
10/06/2026
Full time
Role Overview Halma has a complex environment consisting of an HQ organisation and 40+ individual companies. The Infrastructure Architect is a senior technical authority responsible for defining, governing and evolving infrastructure architecture across M365, Azure, Dynamics 365, Power Platform and on premises infrastructure. This role provides architectural direction, standards and assurance across the group. The Infrastructure Architect will ensure infrastructure platforms are secure, resilient, scalable and aligned to business and technology strategy, while enabling operating companies to adopt best practices consistently. The role will be reporting into the Head of Global Technology Services and works closely with senior technical leads to provide architectural oversight for major initiatives, migrations and transformations. Role Responsibilities Act as the design authority for enterprise infrastructure across M365, Azure, Dynamics 365, Power Platform and on premises environments. Define and maintain infrastructure principles, standards, reference designs and target roadmaps. Lead M365 tenant strategy and complex migrations, aligned to security, identity, compliance and operating models. Define Azure and hybrid architecture patterns aligned to the Azure Well-Architected Framework across cost, reliability, security, operations and performance. Oversee on premises infrastructure architecture, integration, lifecycle management and modernisation. Own architecture for business continuity, disaster recovery, backup and resilience across cloud and on premises environments. Advise operating companies on adopting new technologies and infrastructure solutions. Ensure architecture aligns with change control, governance and risk management. Maintain architectural documentation, including conceptual, logical and physical diagrams. Promote Infrastructure as Code and automation first principles using Terraform, Bicep or ARM for consistent deployments. Align infrastructure architecture with DevOps and platform engineering to enable CI/CD, standardised environments and faster delivery. Define and govern FinOps practices, including cost optimisation, usage governance, budgeting and forecasting across Azure and M365. Establish cost controls, including tagging, showback/chargeback and accountability across operating companies. Provide architectural guidance to balance cost, performance, scalability and resilience. Define infrastructure architecture for AI/ML workloads, advanced analytics and high-performance computing. Ensure platforms are AI ready with scalable compute, data integration, secure access and responsible AI controls. Evaluate emerging Microsoft capabilities, including Copilot and AI services, and define group wide adoption patterns. Promote AIOps to improve incident detection, automated remediation and operational insight. Stay current with technology trends, Microsoft roadmaps and emerging capabilities to inform future architecture decisions. Role Prerequisites Significant experience (typically 8+ years) in infrastructure, cloud or platform roles, including demonstrated time operating at an architectural or design authority level. Deep experience with Microsoft Azure and M365 in enterprise or global environments. Strong understanding of hybrid infrastructure, including on premises data centres, networking and identity integration. Experience supporting or integrating SaaS platforms such as Dynamics 365 and Power Platform from an infrastructure and security perspective. Proven experience defining architecture standards, patterns and governance in complex, multi company organisations. Strong knowledge of identity and access management technologies (Entra ID / Azure AD, Azure AD Connect, ADFS, federation, MFA and conditional access). Experience shaping and assuring infrastructure migrations and modernisation programmes. Proven ability to translate complex technical architecture into clear guidance for engineers, leaders and stakeholders. Preferred Certifications Microsoft Certified: Azure Solutions Architect Expert Professional Attributes Proven Architectural Leadership - Demonstrates strong systems thinking and architectural judgement, with the ability to balance strategic direction and pragmatic delivery. Able to guide engineers without becoming delivery dependent. Operational & Design Excellence - Experienced in operating within service oriented environments while elevating architecture maturity, consistency and resilience across platforms. Entrepreneurial "Can Do" Approach - Creative, resilient and outcome focused. Comfortable driving clarity in ambiguous or complex environments and finding practical paths forward. Commercial, Analytic & Strategic Mindset - Able to evaluate options, assess risk, define trade offs and influence decisions. Communicates confidently with technical and non technical stakeholders. Cultural Fit - Non political, collaborative, transparent and low ego. Builds trust at all levels of the organisation and acts as a calm, credible senior technical voice. Location This role is based in London with a hybrid working style, also includes additional project dependent travel requirements to our London office and to our operating companies in the UK and abroad.
Infrastructure ArchitectApplylocations: Londontime type: Full timeposted on: Posted Todayjob requisition id: JR26\_000618Help grow a safer, cleaner, healthier future for everyone, every day. Role Overview Halma has a complex environment consisting of an HQ organisation and 40+ individual companies. The Infrastructure Architect is a senior technical authority responsible for defining, governing and evolving infrastructure architecture across M365, Azure, Dynamics 365, Power Platform and on premises infrastructure.This role provides architectural direction, standards and assurance across the group. The Infrastructure Architect will ensure infrastructure platforms are secure, resilient, scalable and aligned to business and technology strategy, while enabling operating companies to adopt best practices consistently.The role would be reporting into the Head of Global Technology Services and works closely with senior technical leads (Infrastructure, Cyber Security, Enterprise Applications and Digital Solutions) to provide architectural oversight for major initiatives, migrations and transformations. Role Responsibilities Act as the design authority for enterprise infrastructure across M365, Azure, Dynamics 365, Power Platform and on-premises environments. Define and maintain infrastructure principles, standards, reference designs and target roadmaps. Lead M365 tenant strategy and complex migrations, aligned to security, identity, compliance and operating models. Define Azure and hybrid architecture patterns aligned to the Azure Well-Architected Framework across cost, reliability, security, operations and performance. Oversee on-premises infrastructure architecture, integration, lifecycle management and modernisation. Own architecture for business continuity, disaster recovery, backup and resilience across cloud and on-premises environments. Advise operating companies on adopting new technologies and infrastructure solutions. Ensure architecture aligns with change control, governance and risk management. Maintain architectural documentation, including conceptual, logical and physical diagrams. Promote Infrastructure as Code and automation-first principles using Terraform, Bicep or ARM for consistent deployments. Align infrastructure architecture with DevOps and platform engineering to enable CI/CD, standardised environments and faster delivery. Define and govern FinOps practices, including cost optimisation, usage governance, budgeting and forecasting across Azure and M365. Establish cost controls, including tagging, showback/chargeback and accountability across operating companies. Provide architectural guidance to balance cost, performance, scalability and resilience. Define infrastructure architecture for AI/ML workloads, advanced analytics and high-performance computing. Ensure platforms are AI-ready with scalable compute, data integration, secure access and responsible AI controls. Evaluate emerging Microsoft capabilities, including Copilot and AI services, and define group-wide adoption patterns. Promote AIOps to improve incident detection, automated remediation and operational insight. Stay current with technology trends, Microsoft roadmaps and emerging capabilities to inform future architecture decisions. Role Prerequisites Significant experience (typically 8+ years) in infrastructure, cloud or platform roles, including demonstrated time operating at an architectural or design authority level. Deep experience with Microsoft Azure and M365 in enterprise or global environments. Strong understanding of hybrid infrastructure, including on premises data centres, networking and identity integration. Experience supporting or integrating SaaS platforms such as Dynamics 365 and Power Platform from an infrastructure and security perspective. Proven experience defining architecture standards, patterns and governance in complex, multi company organisations. Strong knowledge of identity and access management technologies (Entra ID / Azure AD, Azure AD Connect, ADFS, federation, MFA and conditional access). Experience shaping and assuring infrastructure migrations and modernisation programmes. Proven ability to translate complex technical architecture into clear guidance for engineers, leaders and stakeholders. Preferred Certifications Microsoft Certified: Azure Solutions Architect Expert Microsoft Certified: DevOps Engineer Expert Microsoft Certified: Azure Administrator Associate FinOps Certified Practitioner (or equivalent cloud cost management certification) TOGAF or equivalent enterprise architecture certification Professional attributes Proven Architectural Leadership - Demonstrates strong systems thinking and architectural judgement, with the ability to balance strategic direction and pragmatic delivery. Able to guide engineers without becoming delivery dependent. Operational & Design Excellence - Experienced in operating within service oriented environments while elevating architecture maturity, consistency and resilience across platforms. Entrepreneurial "Can Do" Approach - Creative, resilient and outcome focused. Comfortable driving clarity in ambiguous or complex environments and finding practical paths forward. Commercial, Analytic & Strategic Mindset - Able to evaluate options, assess risk, define trade offs and influence decisions. Communicates confidently with technical and non technical stakeholders. Cultural Fit - Non political, collaborative, transparent and low ego. Builds trust at all levels of the organisation and acts as a calm, credible senior technical voice. Location This role is based in London with a hybrid working style, also includes additional project-dependent travel requirements to our London office and to our operating companies in the UK and abroad.
10/06/2026
Full time
Infrastructure ArchitectApplylocations: Londontime type: Full timeposted on: Posted Todayjob requisition id: JR26\_000618Help grow a safer, cleaner, healthier future for everyone, every day. Role Overview Halma has a complex environment consisting of an HQ organisation and 40+ individual companies. The Infrastructure Architect is a senior technical authority responsible for defining, governing and evolving infrastructure architecture across M365, Azure, Dynamics 365, Power Platform and on premises infrastructure.This role provides architectural direction, standards and assurance across the group. The Infrastructure Architect will ensure infrastructure platforms are secure, resilient, scalable and aligned to business and technology strategy, while enabling operating companies to adopt best practices consistently.The role would be reporting into the Head of Global Technology Services and works closely with senior technical leads (Infrastructure, Cyber Security, Enterprise Applications and Digital Solutions) to provide architectural oversight for major initiatives, migrations and transformations. Role Responsibilities Act as the design authority for enterprise infrastructure across M365, Azure, Dynamics 365, Power Platform and on-premises environments. Define and maintain infrastructure principles, standards, reference designs and target roadmaps. Lead M365 tenant strategy and complex migrations, aligned to security, identity, compliance and operating models. Define Azure and hybrid architecture patterns aligned to the Azure Well-Architected Framework across cost, reliability, security, operations and performance. Oversee on-premises infrastructure architecture, integration, lifecycle management and modernisation. Own architecture for business continuity, disaster recovery, backup and resilience across cloud and on-premises environments. Advise operating companies on adopting new technologies and infrastructure solutions. Ensure architecture aligns with change control, governance and risk management. Maintain architectural documentation, including conceptual, logical and physical diagrams. Promote Infrastructure as Code and automation-first principles using Terraform, Bicep or ARM for consistent deployments. Align infrastructure architecture with DevOps and platform engineering to enable CI/CD, standardised environments and faster delivery. Define and govern FinOps practices, including cost optimisation, usage governance, budgeting and forecasting across Azure and M365. Establish cost controls, including tagging, showback/chargeback and accountability across operating companies. Provide architectural guidance to balance cost, performance, scalability and resilience. Define infrastructure architecture for AI/ML workloads, advanced analytics and high-performance computing. Ensure platforms are AI-ready with scalable compute, data integration, secure access and responsible AI controls. Evaluate emerging Microsoft capabilities, including Copilot and AI services, and define group-wide adoption patterns. Promote AIOps to improve incident detection, automated remediation and operational insight. Stay current with technology trends, Microsoft roadmaps and emerging capabilities to inform future architecture decisions. Role Prerequisites Significant experience (typically 8+ years) in infrastructure, cloud or platform roles, including demonstrated time operating at an architectural or design authority level. Deep experience with Microsoft Azure and M365 in enterprise or global environments. Strong understanding of hybrid infrastructure, including on premises data centres, networking and identity integration. Experience supporting or integrating SaaS platforms such as Dynamics 365 and Power Platform from an infrastructure and security perspective. Proven experience defining architecture standards, patterns and governance in complex, multi company organisations. Strong knowledge of identity and access management technologies (Entra ID / Azure AD, Azure AD Connect, ADFS, federation, MFA and conditional access). Experience shaping and assuring infrastructure migrations and modernisation programmes. Proven ability to translate complex technical architecture into clear guidance for engineers, leaders and stakeholders. Preferred Certifications Microsoft Certified: Azure Solutions Architect Expert Microsoft Certified: DevOps Engineer Expert Microsoft Certified: Azure Administrator Associate FinOps Certified Practitioner (or equivalent cloud cost management certification) TOGAF or equivalent enterprise architecture certification Professional attributes Proven Architectural Leadership - Demonstrates strong systems thinking and architectural judgement, with the ability to balance strategic direction and pragmatic delivery. Able to guide engineers without becoming delivery dependent. Operational & Design Excellence - Experienced in operating within service oriented environments while elevating architecture maturity, consistency and resilience across platforms. Entrepreneurial "Can Do" Approach - Creative, resilient and outcome focused. Comfortable driving clarity in ambiguous or complex environments and finding practical paths forward. Commercial, Analytic & Strategic Mindset - Able to evaluate options, assess risk, define trade offs and influence decisions. Communicates confidently with technical and non technical stakeholders. Cultural Fit - Non political, collaborative, transparent and low ego. Builds trust at all levels of the organisation and acts as a calm, credible senior technical voice. Location This role is based in London with a hybrid working style, also includes additional project-dependent travel requirements to our London office and to our operating companies in the UK and abroad.
Overview Title: Cyber Platform Engineer Reference No: 2160 Company: FTSE 100 Reports to: Security Platform Engineering Manager Location: London Working Pattern: 37.5 hours per week, Monday - Friday. Location: London/Peterborough, with potential travel to divisional sites as required by advisory engagements (hybrid working arrangements in place). Salary: £59,000 - £72,000 Benefits: Bupa, Matched pension contributions. The Role Group Cyber Security Overview The Group Cyber Security (GCS) team is responsible for managing cyber risk appropriately across the Group and has recently refreshed its cyber strategy, with a renewed focus on embedding cyber security as part of the culture and DNA. This is a highly federated business model spanning 11 divisions and over 50 countries, and the cyber strategy has been designed to build materially improved security capabilities whilst working with a divisional focus. It is an exciting time to join GCS. We are in a period of significant investment, with a multi-year transformation programme under way to build new security capabilities at pace. GCS is responsible for setting the Group cyber standard, measuring compliance against it across all the businesses, and delivering a portfolio of centrally managed security services that divisions can rely on. The Security Platform Engineering function is central to that portfolio - responsible for ensuring that the security tools the Group invests in are deeply understood, expertly configured, continuously improved, and consistently delivering their intended security and business value. Role Summary Reporting to the Security Platform Engineering Manager, the Cyber Platform Engineer is a hands-on technical specialist responsible for the day-to-day engineering, configuration, and operational health of one or more security platforms within the GCS portfolio. The role sits at the technical heart of the platform engineering function - doing the detailed, expert work that keeps the security tools performing at their best, configured to the right standards, and evolving in line with the Group's needs and the vendor's roadmap. The platforms in scope include Microsoft Defender (across the M365 Defender suite), Zscaler, Qualys, Abnormal Security, and Axonius. The Cyber Platform Engineer will typically own deep expertise in one or two of these platforms and maintain solid working knowledge across the others. The role shares the mindset that defines the whole function: genuine curiosity about the tools under its care, a desire to understand and exploit their full capability, and an instinct to identify where existing platform features can be applied creatively to address new problems rather than defaulting to new tooling. The Cyber Platform Engineer works closely with the SOC and security operations teams to ensure platforms are tuned for effective detection and response, and provides technical support and configuration guidance to divisional IT and security teams who are deploying or operating centrally managed platforms in their environments. Role Responsibilities / Accountabilities Platform Engineering & Technical Configuration Own the technical configuration and day-to-day engineering of assigned platforms within the GCS portfolio; maintain configurations to the approved baseline, apply updates and changes through the change management process, and ensure platform health is actively monitored and maintained. Develop and maintain detailed configuration documentation, runbooks, and change records for assigned platforms; ensure that configuration state is consistently documented, version-controlled, and auditable by the Security Platform Engineering Manager or by assurance functions. Utilising the Run team - Identify and implement improvements to platform configurations that improve security outcomes, reduce operational noise, or unlock additional capability; bring well-evidenced proposals to the Security Platform Engineering Manager for review before implementation. Maintain deep, current technical knowledge of assigned platforms; stay ahead of vendor releases, patch notes, and roadmap updates, and flag relevant developments to the Security Platform Engineering Manager with a view on their implications. Policy Configuration & Standards Alignment Translate Group cyber technical standards into platform-level policy configurations; ensure that policy settings in assigned platforms enforce the correct security controls, are consistently applied across all in-scope environments, and align with the Group cyber enterprise architecture. Identify and report divergence between the approved configuration baseline and the as-built state of assigned platforms; investigate root causes, assess risk, and work with the Security Platform Engineering Manager to agree and implement remediation. Provide technical configuration guidance to divisional IT and security teams deploying or operating centrally managed platforms in their environments; act as the technical point of contact for platform-specific queries, ensuring divisional implementations meet Group standards. SOC Support & Operational Tuning Work closely with the SOC and security operations teams to tune platform configurations for effective detection and response; adjust detection rules, alert thresholds, and data feeds in response to operational feedback, ensuring SOC analysts receive high-fidelity, actionable alerts. Act as the technical escalation point for platform-related operational issues raised by the SOC; diagnose platform problems, engage vendor support where required, and drive issues to resolution with minimal impact on SOC operational effectiveness. Develop and maintain platform integration configurations that connect assigned platforms to the SIEM, SOAR, and other operational tooling; ensure data feeds are reliable, well-formed, and provide the SOC with the visibility needed to detect and respond to threats effectively. Platform Capability Development & Innovation Actively explore the full capability of assigned platforms; identify licensable features, beta capabilities, and underused functionality that could improve the security posture, and bring well-structured proposals to the Security Platform Engineering Manager for consideration. Design and implement automation and integration workflows that improve the efficiency and effectiveness of platform operations; develop scripts, API integrations, and orchestration logic that reduce manual effort and enable platform capabilities to be delivered at scale. Support the delivery of platform deployments, upgrades, and new capability rollouts as part of the GCS transformation programme; plan and execute engineering work with precision, minimising disruption to the business and to SOC operations throughout. Vendor Engagement & Licence Management Maintain productive working relationships with vendor technical teams for assigned platforms; engage effectively with vendor support for issue resolution, participate in technical briefings and product roadmap sessions, and escalate product deficiencies through appropriate channels. Maintain accurate records of licence entitlements, feature adoption, and consumption for assigned platforms; flag any discrepancies, unused entitlements, or upcoming renewal milestones to the Security Platform Engineering Manager in a timely manner. Experience, Knowledge, Skills & Attributes Essential Experience 4+ years in a cyber security engineering or security operations technology role, with hands-on technical experience configuring and managing enterprise security platforms. Demonstrable, deep technical expertise in at least one platform from the portfolio - Microsoft Defender / M365 Defender suite, Zscaler, Qualys, Abnormal Security, or Axonius - including hands-on configuration, policy management, and operational tuning at enterprise scale. Experience working closely with a SOC or security operations team, with an understanding of how platform configuration decisions affect detection quality, alert fidelity, and analyst workflow. Experience maintaining configuration documentation and operating within a structured change management process for security platforms. Experience engaging with vendor technical support teams, logging and escalating issues effectively, and driving platform problems to resolution. Knowledge & Skills Genuine technical curiosity: the instinct to explore platforms beyond surface-level familiarity, understand their full capability depth, and think creatively about how features can be applied to solve real security problems. Strong working knowledge of the Microsoft security stack, including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender for Office 365, and M365 security policy configuration. Understanding of security platform integration patterns, including API connectivity, SIEM/SOAR data feeds, and log forwarding; practical experience implementing or maintaining at least one such integration. Ability to produce clear technical documentation - configuration records, runbooks, change requests - to a consistent and auditable standard. Qualifications Degree-level education in computer science, information security, or a related technical discipline; or equivalent professional experience. Vendor certification in at least one of the platforms in scope (e.g . click apply for full job details
09/06/2026
Full time
Overview Title: Cyber Platform Engineer Reference No: 2160 Company: FTSE 100 Reports to: Security Platform Engineering Manager Location: London Working Pattern: 37.5 hours per week, Monday - Friday. Location: London/Peterborough, with potential travel to divisional sites as required by advisory engagements (hybrid working arrangements in place). Salary: £59,000 - £72,000 Benefits: Bupa, Matched pension contributions. The Role Group Cyber Security Overview The Group Cyber Security (GCS) team is responsible for managing cyber risk appropriately across the Group and has recently refreshed its cyber strategy, with a renewed focus on embedding cyber security as part of the culture and DNA. This is a highly federated business model spanning 11 divisions and over 50 countries, and the cyber strategy has been designed to build materially improved security capabilities whilst working with a divisional focus. It is an exciting time to join GCS. We are in a period of significant investment, with a multi-year transformation programme under way to build new security capabilities at pace. GCS is responsible for setting the Group cyber standard, measuring compliance against it across all the businesses, and delivering a portfolio of centrally managed security services that divisions can rely on. The Security Platform Engineering function is central to that portfolio - responsible for ensuring that the security tools the Group invests in are deeply understood, expertly configured, continuously improved, and consistently delivering their intended security and business value. Role Summary Reporting to the Security Platform Engineering Manager, the Cyber Platform Engineer is a hands-on technical specialist responsible for the day-to-day engineering, configuration, and operational health of one or more security platforms within the GCS portfolio. The role sits at the technical heart of the platform engineering function - doing the detailed, expert work that keeps the security tools performing at their best, configured to the right standards, and evolving in line with the Group's needs and the vendor's roadmap. The platforms in scope include Microsoft Defender (across the M365 Defender suite), Zscaler, Qualys, Abnormal Security, and Axonius. The Cyber Platform Engineer will typically own deep expertise in one or two of these platforms and maintain solid working knowledge across the others. The role shares the mindset that defines the whole function: genuine curiosity about the tools under its care, a desire to understand and exploit their full capability, and an instinct to identify where existing platform features can be applied creatively to address new problems rather than defaulting to new tooling. The Cyber Platform Engineer works closely with the SOC and security operations teams to ensure platforms are tuned for effective detection and response, and provides technical support and configuration guidance to divisional IT and security teams who are deploying or operating centrally managed platforms in their environments. Role Responsibilities / Accountabilities Platform Engineering & Technical Configuration Own the technical configuration and day-to-day engineering of assigned platforms within the GCS portfolio; maintain configurations to the approved baseline, apply updates and changes through the change management process, and ensure platform health is actively monitored and maintained. Develop and maintain detailed configuration documentation, runbooks, and change records for assigned platforms; ensure that configuration state is consistently documented, version-controlled, and auditable by the Security Platform Engineering Manager or by assurance functions. Utilising the Run team - Identify and implement improvements to platform configurations that improve security outcomes, reduce operational noise, or unlock additional capability; bring well-evidenced proposals to the Security Platform Engineering Manager for review before implementation. Maintain deep, current technical knowledge of assigned platforms; stay ahead of vendor releases, patch notes, and roadmap updates, and flag relevant developments to the Security Platform Engineering Manager with a view on their implications. Policy Configuration & Standards Alignment Translate Group cyber technical standards into platform-level policy configurations; ensure that policy settings in assigned platforms enforce the correct security controls, are consistently applied across all in-scope environments, and align with the Group cyber enterprise architecture. Identify and report divergence between the approved configuration baseline and the as-built state of assigned platforms; investigate root causes, assess risk, and work with the Security Platform Engineering Manager to agree and implement remediation. Provide technical configuration guidance to divisional IT and security teams deploying or operating centrally managed platforms in their environments; act as the technical point of contact for platform-specific queries, ensuring divisional implementations meet Group standards. SOC Support & Operational Tuning Work closely with the SOC and security operations teams to tune platform configurations for effective detection and response; adjust detection rules, alert thresholds, and data feeds in response to operational feedback, ensuring SOC analysts receive high-fidelity, actionable alerts. Act as the technical escalation point for platform-related operational issues raised by the SOC; diagnose platform problems, engage vendor support where required, and drive issues to resolution with minimal impact on SOC operational effectiveness. Develop and maintain platform integration configurations that connect assigned platforms to the SIEM, SOAR, and other operational tooling; ensure data feeds are reliable, well-formed, and provide the SOC with the visibility needed to detect and respond to threats effectively. Platform Capability Development & Innovation Actively explore the full capability of assigned platforms; identify licensable features, beta capabilities, and underused functionality that could improve the security posture, and bring well-structured proposals to the Security Platform Engineering Manager for consideration. Design and implement automation and integration workflows that improve the efficiency and effectiveness of platform operations; develop scripts, API integrations, and orchestration logic that reduce manual effort and enable platform capabilities to be delivered at scale. Support the delivery of platform deployments, upgrades, and new capability rollouts as part of the GCS transformation programme; plan and execute engineering work with precision, minimising disruption to the business and to SOC operations throughout. Vendor Engagement & Licence Management Maintain productive working relationships with vendor technical teams for assigned platforms; engage effectively with vendor support for issue resolution, participate in technical briefings and product roadmap sessions, and escalate product deficiencies through appropriate channels. Maintain accurate records of licence entitlements, feature adoption, and consumption for assigned platforms; flag any discrepancies, unused entitlements, or upcoming renewal milestones to the Security Platform Engineering Manager in a timely manner. Experience, Knowledge, Skills & Attributes Essential Experience 4+ years in a cyber security engineering or security operations technology role, with hands-on technical experience configuring and managing enterprise security platforms. Demonstrable, deep technical expertise in at least one platform from the portfolio - Microsoft Defender / M365 Defender suite, Zscaler, Qualys, Abnormal Security, or Axonius - including hands-on configuration, policy management, and operational tuning at enterprise scale. Experience working closely with a SOC or security operations team, with an understanding of how platform configuration decisions affect detection quality, alert fidelity, and analyst workflow. Experience maintaining configuration documentation and operating within a structured change management process for security platforms. Experience engaging with vendor technical support teams, logging and escalating issues effectively, and driving platform problems to resolution. Knowledge & Skills Genuine technical curiosity: the instinct to explore platforms beyond surface-level familiarity, understand their full capability depth, and think creatively about how features can be applied to solve real security problems. Strong working knowledge of the Microsoft security stack, including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender for Office 365, and M365 security policy configuration. Understanding of security platform integration patterns, including API connectivity, SIEM/SOAR data feeds, and log forwarding; practical experience implementing or maintaining at least one such integration. Ability to produce clear technical documentation - configuration records, runbooks, change requests - to a consistent and auditable standard. Qualifications Degree-level education in computer science, information security, or a related technical discipline; or equivalent professional experience. Vendor certification in at least one of the platforms in scope (e.g . click apply for full job details
Microsoft Entra Specialist - M365 Messaging Administrator (AVP Level) Location: Knutsford, Radbroke Hall Function: Service Management - Global Operations Type: Permanent / Full time About the Role We're looking for a Microsoft Entra and M365 Messaging Specialist to join our global Operations team supporting mission critical collaboration and identity platforms. You'll act as a Subject Matter Expert (SME) across Entra ID, M365, Azure and modern collaboration technologies, ensuring stability, resilience and continuous improvement across a large scale, complex enterprise environment. You'll work alongside an 8 person team in Radbroke and collaborate with global peers, providing deep technical expertise, operational leadership and hands on problem solving for some of the bank's most critical services. What You'll Do Advanced Entra ID Administration - Lead identity, federation and integration activities across Entra ID and Entra Connect. M365 Messaging Support - Provide expert level support for Exchange Online, M365 tenant services and collaboration platforms. Platform Stability & Monitoring - Execute preventative maintenance, tune monitoring thresholds and enhance alerting to ensure issues are identified early. Automation & Efficiency - Identify opportunities to automate support tasks, reduce manual effort and improve operational resilience. Incident & Problem Management - Analyse logs, error messages and user reports to diagnose and resolve complex issues. Risk & Control Management - Identify risks, strengthen controls and contribute to policy and governance improvements. Cross Functional Collaboration - Partner with engineering, security, architecture and business aligned teams to support strategic initiatives. On Call & After Hours Support - Participate in global on call rotations and provide after hours support when required. What You Bring Strong Entra ID Expertise - Deep experience with Entra ID, Entra Connect, federation and identity integrations. Azure & M365 Platform Knowledge - Strong understanding of Azure AD/M365 architecture, configuration and operational support. Copilot & AI Tools - Experience with Copilot, Copilot Studio and AI agent capabilities. Messaging & Collaboration Skills - Hands on experience with Exchange Online and M365 tenant administration. API & Automation - Familiarity with Graph API, scripting or API driven automation. Backup & Resilience - Knowledge of Entra backup solutions (e.g., Rubrik). Experience working in large, complex, regulated environments with strong stakeholder engagement skills.
09/06/2026
Full time
Microsoft Entra Specialist - M365 Messaging Administrator (AVP Level) Location: Knutsford, Radbroke Hall Function: Service Management - Global Operations Type: Permanent / Full time About the Role We're looking for a Microsoft Entra and M365 Messaging Specialist to join our global Operations team supporting mission critical collaboration and identity platforms. You'll act as a Subject Matter Expert (SME) across Entra ID, M365, Azure and modern collaboration technologies, ensuring stability, resilience and continuous improvement across a large scale, complex enterprise environment. You'll work alongside an 8 person team in Radbroke and collaborate with global peers, providing deep technical expertise, operational leadership and hands on problem solving for some of the bank's most critical services. What You'll Do Advanced Entra ID Administration - Lead identity, federation and integration activities across Entra ID and Entra Connect. M365 Messaging Support - Provide expert level support for Exchange Online, M365 tenant services and collaboration platforms. Platform Stability & Monitoring - Execute preventative maintenance, tune monitoring thresholds and enhance alerting to ensure issues are identified early. Automation & Efficiency - Identify opportunities to automate support tasks, reduce manual effort and improve operational resilience. Incident & Problem Management - Analyse logs, error messages and user reports to diagnose and resolve complex issues. Risk & Control Management - Identify risks, strengthen controls and contribute to policy and governance improvements. Cross Functional Collaboration - Partner with engineering, security, architecture and business aligned teams to support strategic initiatives. On Call & After Hours Support - Participate in global on call rotations and provide after hours support when required. What You Bring Strong Entra ID Expertise - Deep experience with Entra ID, Entra Connect, federation and identity integrations. Azure & M365 Platform Knowledge - Strong understanding of Azure AD/M365 architecture, configuration and operational support. Copilot & AI Tools - Experience with Copilot, Copilot Studio and AI agent capabilities. Messaging & Collaboration Skills - Hands on experience with Exchange Online and M365 tenant administration. API & Automation - Familiarity with Graph API, scripting or API driven automation. Backup & Resilience - Knowledge of Entra backup solutions (e.g., Rubrik). Experience working in large, complex, regulated environments with strong stakeholder engagement skills.
Cloud Platform Engineer (Azure / Hybrid) Salary up to £65,000 Based in London (remote) The environment is hybrid moving toward fully cloud (Azure-led), with a small AWS footprint being phased out over the next 6 months. This role focuses on platform ownership, stability, security, and cost optimisation. Key Responsibilities Manage and maintain Azure and hybrid infrastructure Ensure system stability, performance, and security Support on-prem to cloud connectivity Monitor, troubleshoot, and resolve issues Drive cost optimisation across cloud environments Support data and integration services (ADF, Logic Apps, APIs) Implement and maintain security controls and access policies Contribute to automation and platform improvements Skills & Experience Experience as a Cloud / Azure / Infrastructure Engineer Strong Azure (IaaS, networking, identity, Entra ID) Hybrid experience (on-prem + cloud) Infrastructure background (Windows/Linux, AD, M365) Working knowledge of AWS Experience with security tools and controls Backup experience (Veeam or similar) Exposure to: ADF / Fabric Logic Apps / APIs Front Door / WAF / Nginx Please apply with your most recent updated CV! Please be aware this advert will remain open until the vacancy has been filled. Interviews will take place throughout this period, therefore we encourage you to apply early to avoid disappointment. Tate is acting as an Employment Business in relation to this vacancy. Tate is committed to promoting equal opportunities. To ensure that every candidate has the best experience with us, we encourage you to let us know if there are any adjustments we can make during the application or interview process. Your comfort and accessibility are our priority, and we are here to support you every step of the way. Additionally, we value and respect your individuality, and we invite you to share your preferred pronouns in your application.
09/06/2026
Full time
Cloud Platform Engineer (Azure / Hybrid) Salary up to £65,000 Based in London (remote) The environment is hybrid moving toward fully cloud (Azure-led), with a small AWS footprint being phased out over the next 6 months. This role focuses on platform ownership, stability, security, and cost optimisation. Key Responsibilities Manage and maintain Azure and hybrid infrastructure Ensure system stability, performance, and security Support on-prem to cloud connectivity Monitor, troubleshoot, and resolve issues Drive cost optimisation across cloud environments Support data and integration services (ADF, Logic Apps, APIs) Implement and maintain security controls and access policies Contribute to automation and platform improvements Skills & Experience Experience as a Cloud / Azure / Infrastructure Engineer Strong Azure (IaaS, networking, identity, Entra ID) Hybrid experience (on-prem + cloud) Infrastructure background (Windows/Linux, AD, M365) Working knowledge of AWS Experience with security tools and controls Backup experience (Veeam or similar) Exposure to: ADF / Fabric Logic Apps / APIs Front Door / WAF / Nginx Please apply with your most recent updated CV! Please be aware this advert will remain open until the vacancy has been filled. Interviews will take place throughout this period, therefore we encourage you to apply early to avoid disappointment. Tate is acting as an Employment Business in relation to this vacancy. Tate is committed to promoting equal opportunities. To ensure that every candidate has the best experience with us, we encourage you to let us know if there are any adjustments we can make during the application or interview process. Your comfort and accessibility are our priority, and we are here to support you every step of the way. Additionally, we value and respect your individuality, and we invite you to share your preferred pronouns in your application.
Triple Wimbledon champion Fred Perry founded his brand in 1952. He was the son of a cotton spinner, who played and fought his way through, always with style - and despite the establishment. Today, Fred Perry is a global community of over 370 employees, all inspired by the Laurel Wreath and what it represents PURPOSE This role blends project delivery, BAU support, cloud engineering, security, vendor management, documentation, and mentoring. It requires someone who can hit the ground running, communicate clearly, and operate with a high degree of professionalism. You will work across a variety of infrastructure, cloud, automation, networking, and security platforms, supporting both strategic initiatives and daily operational demands. The role includes leading assigned transformation projects, resolving advanced technical escalations, and driving continuous improvements across the IT estate. This position may require occasional out-of-hours work and limited travel across the UK, EU and US for project or operational needs. KEY RESPONSIBILITIES Technical Leadership & Project Delivery Lead and deliver infrastructure and cloud projects assigned to you, working collaboratively with other senior engineers, or stakeholders. Contribute to long-term architectural planning, providing input into future-state designs and technology direction. Propose modern solutions for modern technology needs, with a cloud first approach. Design, deploy, and support Microsoft 365 and Azure workloads, including identity, security, and collaboration solutions. Drive and support the implementation of Microsoft Copilot, including both end-user experience optimisation and administrative oversight. Work on initiatives involving AI automation, agent-based systems, and emerging Microsoft cloud technologies. Lead major infrastructure, cloud, and application migration projects within your allocated scope. Act as a senior escalation point for third-line issues through to full resolution. BAU Support & Operational Excellence Support daily IT operations across servers, networking, cloud services, identity platforms, and security tooling. Assist with general IT department needs, including hardware procurement, vendor coordination, and asset/licensing management. Ensure systems meet high standards of uptime, performance, and reliability. Follow ITIL-aligned processes, including change control, incident and problem management, and documentation standards. Networking & Infrastructure Support Troubleshoot and support core networking components (TCP/IP, DHCP, DNS, routing, VPN). Maintain secure, resilient connectivity across cloud and on-premises infrastructure. Security, Governance & Compliance Maintain a strong security-first mindset across all platforms and processes. Support governance requirements, including GDPR and PCI compliance. Contribute to audit readiness and ongoing security enhancements. Collaboration, Communication & Stakeholder Engagement Liaise with internal teams, clients, business stakeholders, and external vendors. Maintain strong communication and build collaborative relationships. Translate complex technical topics into clear, user-friendly language for non-technical audiences. Produce high-quality documentation, including standards, knowledgebase articles, and procedural guides. Mentoring & Team Leadership Mentor junior engineers in both technical and process-related areas. Support skills development, knowledge sharing, and best-practice adoption. Contribute to shaping technical standards and improving operational practices. Demonstrate professionalism, quality, and clarity in all interactions THE PERSON Self-starter with the ability to hit the ground running. Energetic, eager to learn, and motivated to improve systems and processes. Excellent written and spoken English; clear and confident communicator. Ability to manage multiple projects and tasks under tight timelines. People-focused, approachable, and able to build strong working relationships. High attention to detail, documentation quality, and operational accuracy. Keeps up-to-date with emerging technologies, cloud advancements, and industry best practices. At least 2-3 years' experience in a similar Senior / Third Line role. Ideally holding 2-3 of the following certifications: AZ-104, AZ-700, AZ-500, SC-200, MS-100 Additional beneficial certifications: ITIL Foundation, Security+, Jamf, Linux, M365, AI/Copilot certifications Desirable Experience Experience using APIs for systems integration or workflow automation. Building and supporting automation solutions using Azure Logic Apps. Experience with the Power Platform, especially Power Automate. Working within medium-to-large enterprise technology environments. Vendor management, procurement experience, and supplier engagement. Building documentation, technical standards, and internal knowledgebases. Exposure to DevOps tools, infrastructure automation, or CI/CD pipelines. HOURS We actively encourage our teams to have a good work/life balance and so we are pleased to offer flexible working shifts at Fred Perry HQ. Our core shift hours are from 10am - 4.30pm and so employees can choose to start and finish early, or start and finish late. (i.e. work 8:00am-4:30pm, or 10:00am-6:30pm etc). We also have 30-minute early finish on Fridays. As we continue to work in a more flexible way, the Head Office acts a brand hub, where we can all connect and collaborate with one another. This role is a mix of office based (London) and remote working. We will expect the employee to come into the office regularly for face-to-face meetings and to work alongside their team on collaborative projects. BENEFITS Annual performance-related bonus Competitive salary Generous staff discount and regular sample sales Generous pension scheme with 8.5% company contribution Option to buy an extra 5 days holiday annually Enhanced maternity and paternity packages Life insurance Private healthcare Cycle to work scheme Early finish Fridays Season ticket loan Additional benefits with long service 25 days annual leave plus Bank Holidays Annual Birthday vouchers EAP Social Events We actively welcome applications from people of all different backgrounds. Your CV will be submitted to hiring managers with all personal details hidden to ensure anonymity.
08/06/2026
Full time
Triple Wimbledon champion Fred Perry founded his brand in 1952. He was the son of a cotton spinner, who played and fought his way through, always with style - and despite the establishment. Today, Fred Perry is a global community of over 370 employees, all inspired by the Laurel Wreath and what it represents PURPOSE This role blends project delivery, BAU support, cloud engineering, security, vendor management, documentation, and mentoring. It requires someone who can hit the ground running, communicate clearly, and operate with a high degree of professionalism. You will work across a variety of infrastructure, cloud, automation, networking, and security platforms, supporting both strategic initiatives and daily operational demands. The role includes leading assigned transformation projects, resolving advanced technical escalations, and driving continuous improvements across the IT estate. This position may require occasional out-of-hours work and limited travel across the UK, EU and US for project or operational needs. KEY RESPONSIBILITIES Technical Leadership & Project Delivery Lead and deliver infrastructure and cloud projects assigned to you, working collaboratively with other senior engineers, or stakeholders. Contribute to long-term architectural planning, providing input into future-state designs and technology direction. Propose modern solutions for modern technology needs, with a cloud first approach. Design, deploy, and support Microsoft 365 and Azure workloads, including identity, security, and collaboration solutions. Drive and support the implementation of Microsoft Copilot, including both end-user experience optimisation and administrative oversight. Work on initiatives involving AI automation, agent-based systems, and emerging Microsoft cloud technologies. Lead major infrastructure, cloud, and application migration projects within your allocated scope. Act as a senior escalation point for third-line issues through to full resolution. BAU Support & Operational Excellence Support daily IT operations across servers, networking, cloud services, identity platforms, and security tooling. Assist with general IT department needs, including hardware procurement, vendor coordination, and asset/licensing management. Ensure systems meet high standards of uptime, performance, and reliability. Follow ITIL-aligned processes, including change control, incident and problem management, and documentation standards. Networking & Infrastructure Support Troubleshoot and support core networking components (TCP/IP, DHCP, DNS, routing, VPN). Maintain secure, resilient connectivity across cloud and on-premises infrastructure. Security, Governance & Compliance Maintain a strong security-first mindset across all platforms and processes. Support governance requirements, including GDPR and PCI compliance. Contribute to audit readiness and ongoing security enhancements. Collaboration, Communication & Stakeholder Engagement Liaise with internal teams, clients, business stakeholders, and external vendors. Maintain strong communication and build collaborative relationships. Translate complex technical topics into clear, user-friendly language for non-technical audiences. Produce high-quality documentation, including standards, knowledgebase articles, and procedural guides. Mentoring & Team Leadership Mentor junior engineers in both technical and process-related areas. Support skills development, knowledge sharing, and best-practice adoption. Contribute to shaping technical standards and improving operational practices. Demonstrate professionalism, quality, and clarity in all interactions THE PERSON Self-starter with the ability to hit the ground running. Energetic, eager to learn, and motivated to improve systems and processes. Excellent written and spoken English; clear and confident communicator. Ability to manage multiple projects and tasks under tight timelines. People-focused, approachable, and able to build strong working relationships. High attention to detail, documentation quality, and operational accuracy. Keeps up-to-date with emerging technologies, cloud advancements, and industry best practices. At least 2-3 years' experience in a similar Senior / Third Line role. Ideally holding 2-3 of the following certifications: AZ-104, AZ-700, AZ-500, SC-200, MS-100 Additional beneficial certifications: ITIL Foundation, Security+, Jamf, Linux, M365, AI/Copilot certifications Desirable Experience Experience using APIs for systems integration or workflow automation. Building and supporting automation solutions using Azure Logic Apps. Experience with the Power Platform, especially Power Automate. Working within medium-to-large enterprise technology environments. Vendor management, procurement experience, and supplier engagement. Building documentation, technical standards, and internal knowledgebases. Exposure to DevOps tools, infrastructure automation, or CI/CD pipelines. HOURS We actively encourage our teams to have a good work/life balance and so we are pleased to offer flexible working shifts at Fred Perry HQ. Our core shift hours are from 10am - 4.30pm and so employees can choose to start and finish early, or start and finish late. (i.e. work 8:00am-4:30pm, or 10:00am-6:30pm etc). We also have 30-minute early finish on Fridays. As we continue to work in a more flexible way, the Head Office acts a brand hub, where we can all connect and collaborate with one another. This role is a mix of office based (London) and remote working. We will expect the employee to come into the office regularly for face-to-face meetings and to work alongside their team on collaborative projects. BENEFITS Annual performance-related bonus Competitive salary Generous staff discount and regular sample sales Generous pension scheme with 8.5% company contribution Option to buy an extra 5 days holiday annually Enhanced maternity and paternity packages Life insurance Private healthcare Cycle to work scheme Early finish Fridays Season ticket loan Additional benefits with long service 25 days annual leave plus Bank Holidays Annual Birthday vouchers EAP Social Events We actively welcome applications from people of all different backgrounds. Your CV will be submitted to hiring managers with all personal details hidden to ensure anonymity.
Triple Wimbledon champion Fred Perry founded his brand in 1952. He was the son of a cotton spinner, who played and fought his way through, always with style - and despite the establishment. Today, Fred Perry is a global community of over 370 employees, all inspired by the Laurel Wreath and what it represents PURPOSE This role blends project delivery, BAU support, cloud engineering, security, vendor management, documentation, and mentoring. It requires someone who can hit the ground running, communicate clearly, and operate with a high degree of professionalism. You will work across a variety of infrastructure, cloud, automation, networking, and security platforms, supporting both strategic initiatives and daily operational demands. The role includes leading assigned transformation projects, resolving advanced technical escalations, and driving continuous improvements across the IT estate. This position may require occasional out-of-hours work and limited travel across the UK, EU and US for project or operational needs. TYPES OF WORK Work is split between flexible office-based hours and remote working. The core shift is from 10am to 4.30pm with options to start earlier or finish later, and 30 minute early finish on Fridays. The role requires regular office presence for face to face meetings. KEY RESPONSIBILITIES Technical Leadership & Project Delivery Lead and deliver infrastructure and cloud projects assigned to you, working collaboratively with senior engineers and stakeholders. Contribute to long term architectural planning, providing input into future state designs and technology direction. Propose modern solutions with a cloud first approach. Design, deploy and support Microsoft 365 and Azure workloads, including identity, security and collaboration solutions. Drive and support the implementation of Microsoft Copilot and optimise end user experience under administrative oversight. Work on initiatives involving AI automation, agent based systems and emerging Microsoft cloud technologies. Lead major infrastructure, cloud and application migration projects within your allocated scope. Act as a senior escalation point for third line issues through to full resolution. BAU Support & Operational Excellence Support daily IT operations across servers, networking, cloud services, identity platforms and security tooling. Assist with general IT department needs including hardware procurement, vendor coordination and asset/licensing management. Ensure systems meet high standards of uptime, performance and reliability. Follow ITIL aligned processes including change control, incident and problem management and documentation standards. Networking & Infrastructure Support Troubleshoot and support core networking components (TCP/IP, DHCP, DNS, routing, VPN). Maintain secure, resilient connectivity across cloud and on premises infrastructure. Security, Governance & Compliance Maintain a strong security first mindset across all platforms and processes. Support governance requirements including GDPR and PCI compliance. Contribute to audit readiness and ongoing security enhancements. Collaboration, Communication & Stakeholder Engagement Liaise with internal teams, clients, business stakeholders and external vendors. Maintain strong communication and build collaborative relationships. Translate complex technical topics into clear, user friendly language for non technical audiences. Produce high quality documentation including standards, knowledge base articles and procedural guides. Mentor junior engineers in technical and process areas. Support skills development, knowledge sharing and best practice adoption. Contribute to shaping technical standards and improving operational practices. Demonstrate professionalism, quality and clarity in all interactions. QUALIFICATIONS & EXPERIENCE Self starter with the ability to hit the ground running. Energetic, eager to learn and motivated to improve systems and processes. Excellent written and spoken English; clear and confident communicator. Ability to manage multiple projects and tasks under tight timelines. People focused, approachable and able to build strong working relationships. High attention to detail, documentation quality and operational accuracy. Keeps up to date with emerging technologies, cloud advancements and industry best practices. At least 2-3 years' experience in a similar Senior / Third Line role. Ideal: holding 2-3 of the following certifications - AZ 104, AZ 700, AZ 500, SC 200, MS 100. Additional beneficial certifications: ITIL Foundation, Security+, Jamf, Linux, M365, AI/Copilot certifications. Experience using APIs for systems integration or workflow automation. Experience building and supporting automation solutions using Azure Logic Apps. Experience with the Power Platform, especially Power Automate. Experience working within medium to large enterprise technology environments. Vendor management, procurement experience and supplier engagement. Building documentation, technical standards and internal knowledgebases. Exposure to DevOps tools, infrastructure automation or CI/CD pipelines. BENEFITS Annual performance related bonus. Generous staff discount and regular sample sales. Generous pension scheme with 8.5% company contribution. Option to buy an extra 5 days holiday annually. Enhanced maternity and paternity packages. Life insurance. Cycle to work scheme. Early finish Fridays. Season ticket loan. Additional benefits with long service. 25 days annual leave plus Bank Holidays. EAP. Social events. Location: England, United Kingdom of Great Britain and Northern Ireland.
07/06/2026
Full time
Triple Wimbledon champion Fred Perry founded his brand in 1952. He was the son of a cotton spinner, who played and fought his way through, always with style - and despite the establishment. Today, Fred Perry is a global community of over 370 employees, all inspired by the Laurel Wreath and what it represents PURPOSE This role blends project delivery, BAU support, cloud engineering, security, vendor management, documentation, and mentoring. It requires someone who can hit the ground running, communicate clearly, and operate with a high degree of professionalism. You will work across a variety of infrastructure, cloud, automation, networking, and security platforms, supporting both strategic initiatives and daily operational demands. The role includes leading assigned transformation projects, resolving advanced technical escalations, and driving continuous improvements across the IT estate. This position may require occasional out-of-hours work and limited travel across the UK, EU and US for project or operational needs. TYPES OF WORK Work is split between flexible office-based hours and remote working. The core shift is from 10am to 4.30pm with options to start earlier or finish later, and 30 minute early finish on Fridays. The role requires regular office presence for face to face meetings. KEY RESPONSIBILITIES Technical Leadership & Project Delivery Lead and deliver infrastructure and cloud projects assigned to you, working collaboratively with senior engineers and stakeholders. Contribute to long term architectural planning, providing input into future state designs and technology direction. Propose modern solutions with a cloud first approach. Design, deploy and support Microsoft 365 and Azure workloads, including identity, security and collaboration solutions. Drive and support the implementation of Microsoft Copilot and optimise end user experience under administrative oversight. Work on initiatives involving AI automation, agent based systems and emerging Microsoft cloud technologies. Lead major infrastructure, cloud and application migration projects within your allocated scope. Act as a senior escalation point for third line issues through to full resolution. BAU Support & Operational Excellence Support daily IT operations across servers, networking, cloud services, identity platforms and security tooling. Assist with general IT department needs including hardware procurement, vendor coordination and asset/licensing management. Ensure systems meet high standards of uptime, performance and reliability. Follow ITIL aligned processes including change control, incident and problem management and documentation standards. Networking & Infrastructure Support Troubleshoot and support core networking components (TCP/IP, DHCP, DNS, routing, VPN). Maintain secure, resilient connectivity across cloud and on premises infrastructure. Security, Governance & Compliance Maintain a strong security first mindset across all platforms and processes. Support governance requirements including GDPR and PCI compliance. Contribute to audit readiness and ongoing security enhancements. Collaboration, Communication & Stakeholder Engagement Liaise with internal teams, clients, business stakeholders and external vendors. Maintain strong communication and build collaborative relationships. Translate complex technical topics into clear, user friendly language for non technical audiences. Produce high quality documentation including standards, knowledge base articles and procedural guides. Mentor junior engineers in technical and process areas. Support skills development, knowledge sharing and best practice adoption. Contribute to shaping technical standards and improving operational practices. Demonstrate professionalism, quality and clarity in all interactions. QUALIFICATIONS & EXPERIENCE Self starter with the ability to hit the ground running. Energetic, eager to learn and motivated to improve systems and processes. Excellent written and spoken English; clear and confident communicator. Ability to manage multiple projects and tasks under tight timelines. People focused, approachable and able to build strong working relationships. High attention to detail, documentation quality and operational accuracy. Keeps up to date with emerging technologies, cloud advancements and industry best practices. At least 2-3 years' experience in a similar Senior / Third Line role. Ideal: holding 2-3 of the following certifications - AZ 104, AZ 700, AZ 500, SC 200, MS 100. Additional beneficial certifications: ITIL Foundation, Security+, Jamf, Linux, M365, AI/Copilot certifications. Experience using APIs for systems integration or workflow automation. Experience building and supporting automation solutions using Azure Logic Apps. Experience with the Power Platform, especially Power Automate. Experience working within medium to large enterprise technology environments. Vendor management, procurement experience and supplier engagement. Building documentation, technical standards and internal knowledgebases. Exposure to DevOps tools, infrastructure automation or CI/CD pipelines. BENEFITS Annual performance related bonus. Generous staff discount and regular sample sales. Generous pension scheme with 8.5% company contribution. Option to buy an extra 5 days holiday annually. Enhanced maternity and paternity packages. Life insurance. Cycle to work scheme. Early finish Fridays. Season ticket loan. Additional benefits with long service. 25 days annual leave plus Bank Holidays. EAP. Social events. Location: England, United Kingdom of Great Britain and Northern Ireland.
About the Business Quilter plc is a leading wealth management business, helping to enable brighter financial futures for every generation. Quilter oversees £141.9 billion in customer investments (as at 31 March 2026). It has an adviser and customer offering spanning financial advice, investment platforms, multi-asset investment solutions, and discretionary fund management. The business is comprised of two segments: Affluent and High Net Worth. Affluent encompasses the financial planning business, Quilter Financial Planning, the Quilter Investment Platform and Quilter Investors, the multi-asset investment solutions business. High Net Worth includes the discretionary fund management business, Quilter Cheviot, together with Quilter Cheviot Financial Planning - offering a highly personalised service to private clients, charities, trustees, and professional partners. Quilter Cheviot has presence throughout the UK, Ireland and Channel Islands. Our foundations are rooted in our extraordinary expertise, which is trusted by hundreds of thousands of customers, and we have great ambitions to stay one step ahead. About the Role Level: 4 Department: Technology Location: Southampton London Contract type: Permanent Quilter has a vibrant, diverse, and highly successful IT team which is now looking to employ a Technical Specialist. This role will support transformational change that enables Quilter Technology department to deliver against strategic programmes. Providing infrastructure expertise to deliver detailed analysis of our technical estate whilst developing the steps to modernise and improve efficiency of our services. Responsibilities Provide expert-level technical analysis across Microsoft Cloud, Infrastructure, Networking, Security and Automation domains. Build strong relationships with internal teams, partners, SMEs and senior stakeholders to ensure solutions are well designed, secure and fit for purpose. Lead or support cross team delivery initiatives, technical assessments and continuous improvement activities. Produce clear documentation including designs, BAU procedures, risk assessments, BIAs, DR plans and technical guidance. Support Quilter's technology transformation initiatives including cloud adoption, infrastructure modernisation and zero trust security uplift. Champion operational excellence, ensure risks are understood and mitigated, and support problem/incident resolution at an expert level. Share knowledge widely and mentor colleagues, growing capability within Infrastructure & Operations. Act as an ambassador for Technology, modelling Quilter's values. Microsoft 365 & Entra ID Global administration of M365 across complex multi tenant environments. Microsoft Azure & Cloud Services - Azure IaaS deployments, networking (VNets, subnets, NSGs, VPN Gateway), Azure Sentinel (SIEM) and Azure Backup; architecting secure multi VLAN cloud/on prem hybrid infrastructures. Information Security - Vulnerability management awareness including penetration testing engagement and remediation; endpoint security Defender for Endpoint. Backup & Resilience - Disaster Recovery planning including BIAs and DR testing execution; Rubrik cloud protection. Automation, Scripting & Databases - PowerShell and Terraform; with a professional automation first mindset. Qualifications / Required Experience Operating as a senior/lead infrastructure engineer supporting end to end IT estates across cloud, on prem and hybrid models. Working with technical SMEs specialising in applications and infrastructure; servers, networks, data, storage, middleware and telephony. Managing full infrastructure stacks including servers, storage, networking, security, M365, monitoring and BAU operations. Proven track record of supporting the delivery of technical change covering implementation of new services, IT transformation, remediation, integration or migrations with an automation mindset. Working in regulated environments and contributing to audits, due diligence and InfoSec governance. Knowledge of frameworks such as ITIL and the Development Lifecycle. Providing technical leadership, mentoring junior engineers and shaping departmental capability. Delivering excellent communication - simplifying technical complexity for a broad business audience. Behavioural Competencies Excellent communication, stakeholder management and influencing skills demonstrating the ability to translate technical and complex challenges into clearly written proposals for senior stakeholders. Calm, structured and analytical under pressure; able to guide others through incidents and complex change. Passion for modernisation, research and continuous improvement. Commitment to knowledge sharing and raising team capability. Inclusion & Diversity We value diversity and strive to promote inclusivity in all aspects of our culture. We believe in equal opportunities for all, ensuring that no applicant encounters less favourable treatment based on anything but their skills, qualifications, experience, and potential. We celebrate the unique contributions of a diverse workforce and create a respectful, nurturing environment where every colleague can thrive. Values Do the right thing: We act with integrity and are proudly committed to going above and beyond in service of our clients and the support we provide our communities. Always curious: We continuously seek new ideas and knowledge so we're one step ahead of our clients' needs. Embrace challenge: We aim high to transform our potential into meaningful outcomes. With ambition as our driving force and a steadfast commitment to growth, we succeed for the good of every generation. Stronger together: Combining our diverse talents, we accomplish more collectively than we ever could do alone. We speak openly, actively listen, and support each other, and constructively challenge and embrace new ideas. We seek empowerment and demonstrate ownership and trust, with the confidence to make impactful decisions. Core Benefits Holiday: 182 hours (26 days) Quilter Incentive Scheme: All employees are eligible to participate in incentive scheme, to incentivise business performance and their contribution. Pension Scheme: A non contributory company pension scheme that can be boosted through personal contributions. Private Medical Insurance: Single cover as standard with options to increase cover to include your partner or children. Life Assurance: 4x your salary. Income Protection: 75% of salary, less state benefits, payable after 26 weeks of absence. Healthcare Cash Plan: Jersey employees only. We are committed to treating all our job applicants fairly and with respect. Our people come from all kinds of backgrounds and have a wide range of expertise, so we welcome your application regardless of your beliefs, culture, gender identity, ethnicity, sexual orientation and/or disability. Please contact the talent acquisition team if you need any reasonable adjustments made to the recruitment process, require information in an alternative format or have any questions around accessibility - we will try our very best to accommodate.
06/06/2026
Full time
About the Business Quilter plc is a leading wealth management business, helping to enable brighter financial futures for every generation. Quilter oversees £141.9 billion in customer investments (as at 31 March 2026). It has an adviser and customer offering spanning financial advice, investment platforms, multi-asset investment solutions, and discretionary fund management. The business is comprised of two segments: Affluent and High Net Worth. Affluent encompasses the financial planning business, Quilter Financial Planning, the Quilter Investment Platform and Quilter Investors, the multi-asset investment solutions business. High Net Worth includes the discretionary fund management business, Quilter Cheviot, together with Quilter Cheviot Financial Planning - offering a highly personalised service to private clients, charities, trustees, and professional partners. Quilter Cheviot has presence throughout the UK, Ireland and Channel Islands. Our foundations are rooted in our extraordinary expertise, which is trusted by hundreds of thousands of customers, and we have great ambitions to stay one step ahead. About the Role Level: 4 Department: Technology Location: Southampton London Contract type: Permanent Quilter has a vibrant, diverse, and highly successful IT team which is now looking to employ a Technical Specialist. This role will support transformational change that enables Quilter Technology department to deliver against strategic programmes. Providing infrastructure expertise to deliver detailed analysis of our technical estate whilst developing the steps to modernise and improve efficiency of our services. Responsibilities Provide expert-level technical analysis across Microsoft Cloud, Infrastructure, Networking, Security and Automation domains. Build strong relationships with internal teams, partners, SMEs and senior stakeholders to ensure solutions are well designed, secure and fit for purpose. Lead or support cross team delivery initiatives, technical assessments and continuous improvement activities. Produce clear documentation including designs, BAU procedures, risk assessments, BIAs, DR plans and technical guidance. Support Quilter's technology transformation initiatives including cloud adoption, infrastructure modernisation and zero trust security uplift. Champion operational excellence, ensure risks are understood and mitigated, and support problem/incident resolution at an expert level. Share knowledge widely and mentor colleagues, growing capability within Infrastructure & Operations. Act as an ambassador for Technology, modelling Quilter's values. Microsoft 365 & Entra ID Global administration of M365 across complex multi tenant environments. Microsoft Azure & Cloud Services - Azure IaaS deployments, networking (VNets, subnets, NSGs, VPN Gateway), Azure Sentinel (SIEM) and Azure Backup; architecting secure multi VLAN cloud/on prem hybrid infrastructures. Information Security - Vulnerability management awareness including penetration testing engagement and remediation; endpoint security Defender for Endpoint. Backup & Resilience - Disaster Recovery planning including BIAs and DR testing execution; Rubrik cloud protection. Automation, Scripting & Databases - PowerShell and Terraform; with a professional automation first mindset. Qualifications / Required Experience Operating as a senior/lead infrastructure engineer supporting end to end IT estates across cloud, on prem and hybrid models. Working with technical SMEs specialising in applications and infrastructure; servers, networks, data, storage, middleware and telephony. Managing full infrastructure stacks including servers, storage, networking, security, M365, monitoring and BAU operations. Proven track record of supporting the delivery of technical change covering implementation of new services, IT transformation, remediation, integration or migrations with an automation mindset. Working in regulated environments and contributing to audits, due diligence and InfoSec governance. Knowledge of frameworks such as ITIL and the Development Lifecycle. Providing technical leadership, mentoring junior engineers and shaping departmental capability. Delivering excellent communication - simplifying technical complexity for a broad business audience. Behavioural Competencies Excellent communication, stakeholder management and influencing skills demonstrating the ability to translate technical and complex challenges into clearly written proposals for senior stakeholders. Calm, structured and analytical under pressure; able to guide others through incidents and complex change. Passion for modernisation, research and continuous improvement. Commitment to knowledge sharing and raising team capability. Inclusion & Diversity We value diversity and strive to promote inclusivity in all aspects of our culture. We believe in equal opportunities for all, ensuring that no applicant encounters less favourable treatment based on anything but their skills, qualifications, experience, and potential. We celebrate the unique contributions of a diverse workforce and create a respectful, nurturing environment where every colleague can thrive. Values Do the right thing: We act with integrity and are proudly committed to going above and beyond in service of our clients and the support we provide our communities. Always curious: We continuously seek new ideas and knowledge so we're one step ahead of our clients' needs. Embrace challenge: We aim high to transform our potential into meaningful outcomes. With ambition as our driving force and a steadfast commitment to growth, we succeed for the good of every generation. Stronger together: Combining our diverse talents, we accomplish more collectively than we ever could do alone. We speak openly, actively listen, and support each other, and constructively challenge and embrace new ideas. We seek empowerment and demonstrate ownership and trust, with the confidence to make impactful decisions. Core Benefits Holiday: 182 hours (26 days) Quilter Incentive Scheme: All employees are eligible to participate in incentive scheme, to incentivise business performance and their contribution. Pension Scheme: A non contributory company pension scheme that can be boosted through personal contributions. Private Medical Insurance: Single cover as standard with options to increase cover to include your partner or children. Life Assurance: 4x your salary. Income Protection: 75% of salary, less state benefits, payable after 26 weeks of absence. Healthcare Cash Plan: Jersey employees only. We are committed to treating all our job applicants fairly and with respect. Our people come from all kinds of backgrounds and have a wide range of expertise, so we welcome your application regardless of your beliefs, culture, gender identity, ethnicity, sexual orientation and/or disability. Please contact the talent acquisition team if you need any reasonable adjustments made to the recruitment process, require information in an alternative format or have any questions around accessibility - we will try our very best to accommodate.
Cloud Platform Engineer (Azure / Hybrid) Salary up to 65,000 Based in London (remote) The environment is hybrid moving toward fully cloud (Azure-led) , with a small AWS footprint being phased out over the next 6 months. This role focuses on platform ownership, stability, security, and cost optimisation . Key Responsibilities: Manage and maintain Azure and hybrid infrastructure Ensure system stability, performance, and security Support on-prem to cloud connectivity Monitor, troubleshoot, and resolve issues Drive cost optimisation across cloud environments Support data and integration services (ADF, Logic Apps, APIs) Implement and maintain security controls and access policies Contribute to automation and platform improvements Skills & Experience: Experience as a Cloud / Azure / Infrastructure Engineer Strong Azure (IaaS, networking, identity, Entra ID) Hybrid experience (on-prem + cloud) Infrastructure background (Windows/Linux, AD, M365) Working knowledge of AWS Experience with security tools and controls Backup experience (Veeam or similar) Exposure to: ADF / Fabric Logic Apps / APIs Front Door / WAF / Nginx Please apply with your most recent updated CV! Please be aware this advert will remain open until the vacancy has been filled. Interviews will take place throughout this period, therefore we encourage you to apply early to avoid disappointment. Tate is acting as an Employment Business in relation to this vacancy. Tate is committed to promoting equal opportunities. To ensure that every candidate has the best experience with us, we encourage you to let us know if there are any adjustments we can make during the application or interview process. Your comfort and accessibility are our priority, and we are here to support you every step of the way. Additionally, we value and respect your individuality, and we invite you to share your preferred pronouns in your application.
05/06/2026
Full time
Cloud Platform Engineer (Azure / Hybrid) Salary up to 65,000 Based in London (remote) The environment is hybrid moving toward fully cloud (Azure-led) , with a small AWS footprint being phased out over the next 6 months. This role focuses on platform ownership, stability, security, and cost optimisation . Key Responsibilities: Manage and maintain Azure and hybrid infrastructure Ensure system stability, performance, and security Support on-prem to cloud connectivity Monitor, troubleshoot, and resolve issues Drive cost optimisation across cloud environments Support data and integration services (ADF, Logic Apps, APIs) Implement and maintain security controls and access policies Contribute to automation and platform improvements Skills & Experience: Experience as a Cloud / Azure / Infrastructure Engineer Strong Azure (IaaS, networking, identity, Entra ID) Hybrid experience (on-prem + cloud) Infrastructure background (Windows/Linux, AD, M365) Working knowledge of AWS Experience with security tools and controls Backup experience (Veeam or similar) Exposure to: ADF / Fabric Logic Apps / APIs Front Door / WAF / Nginx Please apply with your most recent updated CV! Please be aware this advert will remain open until the vacancy has been filled. Interviews will take place throughout this period, therefore we encourage you to apply early to avoid disappointment. Tate is acting as an Employment Business in relation to this vacancy. Tate is committed to promoting equal opportunities. To ensure that every candidate has the best experience with us, we encourage you to let us know if there are any adjustments we can make during the application or interview process. Your comfort and accessibility are our priority, and we are here to support you every step of the way. Additionally, we value and respect your individuality, and we invite you to share your preferred pronouns in your application.
