25 jobs found

Lead Security Engineer Permanent - 65k - 75k + strong benefits Location: Hybrid - Cardiff Your new company I am looking to recruit a skilled Lead Security Engineer to join a growing financial services organisation in Cardiff. The company has strong benefits, a great culture, and are at a good stage in their journey. This role is hybrid, looking at 2-3 days a week, so you will need to be located locally. Your new role You'll be the Lead Security person, reporting into the CTO, with 1 direct report currently. The role will grow over the coming years, but there is an initial plan to deploy Sentinel and Purview, with other good plans in place for the coming years. This is a strong opportunity for a Security Engineer looking to take that next step or for a hands-on Security Manager looking for a great new environment. Responsibilities include: Cyber Security management Identity and Access Management Microsoft Security suite coverage Azure Security Engineering Threat detection, IR & Forensics What you'll need to succeed Necessary - Experience implementing and monitoring Microsoft Sentinel Purview implementation and monitoring experience (desirable). Ability to be on site in Cardiff 2/3 days a week. Experience with Azure Strong communication skills, lots of working with other departments and colleagues. What you'll get in return As well as a salary of up to 75,000, there is also a company bonus scheme, typically 5-10%, Private Medical Insurance, 25 holiday days (increasing over time) plus bank holidays, matched pension contribution up to 8%, as well as other perks and benefits. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV. If this job isn't quite right for you, but you are looking for a new position, please contact us for a confidential discussion about your career. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at (url removed)

We re looking for a Senior Security Engineer for our client in the data sector, based in London, on an initial 3 to 6 month contract paying up to £500 per day Outside IR35. This role offers hybrid working with an expectation to attend the office 3 days per week. You will focus on hands-on remediation across Azure and endpoint environments, improving Defender for Cloud findings, closing vulnerabilities, and strengthening security posture. The role is delivery-led and ideal for someone who enjoys fixing issues rather than only advising. The successful Senior Security Engineer will have experience with: Defender for Cloud, Defender for Endpoint and EASM Vulnerability remediation and Secure Score improvement Purview (DLP, sensitivity labels, insider risk) Compliance uplift for ISO 27001, SOC 2, GDPR and NIS2 Configuration hardening, patching and policy deployment Entra ID, Conditional Access, PIM and cloud identity controls PowerShell and Microsoft Graph for automation Nice to have: Sentinel exposure, Zero Trust knowledge, regulated-sector experience. Certifications required: AZ-500, SC-100 (or working towards), plus one of MS-500, SC-400 or SC-900. Desirable: CCSP. Interested? Please apply below. Senior Security Engineer, Azure Security Engineer, Cloud Security Engineer, Defender for Cloud, Defender for Endpoint, EASM, Purview, DLP, Conditional Access, PIM, Sentinel, Vulnerability Remediation, Cloud Hardening, London, Hybrid

Lead Cybersecurity Incident Responder - IR, Cyber, Salary: Competitive, based on experience + benefits Location: London / Hybrid (some travel European travel) About the Organisation This forward-thinking cybersecurity intelligence organisation is recognised as a European leader, partnering with some of the most prominent brands to anticipate, prevent, and respond to emerging threats. You will be joining a highly skilled team made up of some of the sharpest minds in the industry, offering an environment where you can grow, innovate, and make a real impact. Who We're Looking For We are seeking a highly experienced cybersecurity professional with a strong background in incident response and advanced security operations. Essential experience and skills: Extensive hands-on experience in Incident Response (IR), SOC, MSSP, CSIRT, or DFIR, with a proven ability to handle urgent and complex client incidents under pressure. European language is beneficial but not required. Experience working in a 24/7 SOC environment, with a deep understanding of how SOC operations integrate with IR. Expert knowledge of technologies such as Microsoft security stack, DFIR tooling, SIEM, Microsoft Defender/Sentinel, EDR platforms, timeline analysis, and cloud environments (Azure, AWS, or GCP). Exposure to penetration testing, including red team or purple team exercises, is advantageous. Ability to script or automate using Bash, Perl, Python, or PowerShell. Strong analytical mindset and familiarity with hypothesis-driven investigation methods. Confident understanding of compliance, legal requirements, and managing third-party vendor relationships. Solid working knowledge of the MITRE ATT&CK framework. Willingness to take part in on-call rotations. Excellent understanding of the cybersecurity landscape and its impact on modern organisations. Highly desirable certifications: CISSP, CISM, OSCP, GIAC, GCIH, GCFA, GCFE, GPEN, GNFA (holding at least one is preferred). What You'll Be Doing As the Lead Cybersecurity Incident Responder, you will play a critical role in guiding clients through high-impact, time-sensitive security incidents. Your responsibilities will include: Conducting network, host, and forensic investigations, presenting clear and actionable findings to clients. Providing on-call emergency support and leading swift, effective response actions. Handling complex and sensitive IR engagements across a wide range of industries and technical environments. Acting as a trusted advisor, consulting directly with clients and collaborating with senior leadership. Producing detailed technical reports and executive-level summaries. Mentoring and supporting junior members of the team. This is an exciting opportunity to join a dynamic, highly respected organisation and contribute to meaningful cybersecurity work that protects organisations across Europe. About Adecco Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this position. Incident Response, Cyber Incident Responder, DFIR, Digital Forensics, SOC Analyst, Lead Incident Responder, Cybersecurity Analyst, SIEM, Microsoft Sentinel, Microsoft Defender, EDR, Azure Security, AWS Security, GCP Security, Threat Hunting, Cyber Threat Intelligence, MITRE ATT&CK, Red Team, Purple Team, Malware Analysis, Cyber Forensics, Security Operations, Security Engineer, On-Call IR, Penetration Testing, Python, PowerShell, Bash, Cyber Defence, CSIRT, MSSP, Network Forensics, Endpoint Forensics, Cloud Security, IR Lead, Security Consultant.

Senior 3rd Line IT Engineer Location: London Bridge Company: Managed Service Provider (MSP) This role will be office-based for the first 3 6 months, with the option to move to a hybrid working arrangement thereafter. Our client is a well-established MSP based in London Bridge. They are a close-knit team of 30 IT professionals delivering end-to-end technology services and support to a diverse range of clients, with a strong focus on reliability, security, and customer care. The Opportunity We are seeking an experienced Senior 3rd Line Engineer to join our growing technical team. This pivotal role involves: Acting as the go-to escalation point for complex issues Managing core client infrastructure and cloud environments Ensuring centralized security and monitoring platforms run smoothly You will work closely with our Service Desk and Project teams, maintaining high service standards, documenting solutions, and mentoring junior engineers through effective Standard Operating Procedures (SOPs). Senior 3rd Line IT Engineer - Key Responsibilities Act as the primary escalation point for complex 2nd/3rd line incidents and service requests across infrastructure, networking, Azure, Microsoft 365, and cybersecurity. Manage and maintain client systems and centralized services, including Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, DR/BC, Huntress, Autotask, and Datto RMM. Provide and present clients with centralized services reports and cybersecurity reviews. Collaborate with the Project team on deployments, migrations, automations, and upgrades across on-premises and cloud environments. Develop and document Standard Operating Procedures (SOPs) to assist the Service Desk with first-response troubleshooting. Contribute to continual service improvement by reviewing recurring incidents and identifying training or process opportunities. Mentor and provide technical guidance to Service Desk engineers. Ensure that all systems and processes align with best practices in cybersecurity, resilience, and performance. Key Skills & Experience Proven experience in a 3rd Line / Senior Engineer role within an MSP environment Strong knowledge of Microsoft technologies, including Azure, 365, SharePoint, and Intune Excellent understanding of networking, firewalls, VPNs, and Windows Server environments Experience with RMM tools, security platforms, and endpoint management Familiarity with tools and platforms such as Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, Huntress, Datto, and Autotask Strong troubleshooting, analytical, and communication skills Ability to work independently and collaboratively across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator / Solutions Expert CompTIA Security+, CISSP, or similar cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, etc.) Why Join the Company Join a technically strong, supportive, and collaborative team in central London Work across diverse clients, technologies, and industries Play a key role in strategic projects and continuous improvement initiatives Access ongoing training, certifications, and professional development opportunities Be part of a company that values reliability, security, and delivering excellent customer service

Cyber Security & Centralised Services Manager Location: London Bridge Company: Managed Service Provider (MSP) This role will be office-based for the first 3 6 months, with the option to move to a hybrid working arrangement thereafter. Our client is a well-established MSP based in London Bridge. They are a close-knit team of 30 IT professionals delivering end-to-end technology services and support to a diverse range of clients, with a strong emphasis on cybersecurity, resilience and regulatory compliance. The Opportunity: We are seeking an experienced Cyber Security & Centralised Services Managerwith a strong cybersecurity focus to join our growing technical team. In this pivotal role, you will: Act as the primary escalation point for complex IT and cybersecurity incidents. Manage and secure core client infrastructure and cloud environments. Ensure centralised security, monitoring, and incident response platforms operate effectively. You will collaborate closely with our Service Desk, Projects and Account Management teams to maintain high standards of service, document solutions and mentor junior engineers in line with cybersecurity best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Key Responsibilities Cyber Security & Centralised Services Manager: Serve as the primary escalation point for complex IT and cybersecurity incidents, including malware infections, ransomware attacks, phishing attempts, and unauthorised access events. Monitor, analyse, and respond to alerts from client security platforms (MDR/XDR, SentinelOne, Huntress, Fortinet, Mimecast, Avanan, Defender) to ensure rapid threat mitigation. Conduct vulnerability assessments, risk analyses and security audits across client environments, providing actionable recommendations and remediation guidance. Implement and maintain security hardening across infrastructure, cloud services, endpoints, and networks, in alignment with best practices and frameworks such as ISO27001, NIST, and Cyber Essentials Plus. Lead and coordinate incident response efforts, including root cause analysis, threat containment and post-incident reporting for clients. Collaborate with the Project and Service Desk teams to embed security into deployments, migrations, upgrades, and automation workflows, ensuring systems remain secure by design. Maintain and improve Standard Operating Procedures (SOPs) for security operations, ensuring knowledge is shared across the team for rapid incident handling. Provide mentorship and cybersecurity guidance to junior engineers and Service Desk staff, fostering a culture of security awareness and proactive threat management. Perform ongoing threat intelligence monitoring and security trend analysis to anticipate risks and protect client environments. Support clients in security reporting, compliance reviews, and continuous improvement initiatives, helping them meet regulatory and industry security standards. Cyber Security & Centralised Services Manager Key Skills & Experience: Proven experience in a 3rd Line / Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud security architectures. Hands-on experience with endpoint protection, EDR/MDR/XDR platforms, email security, RMM tools, and centralised monitoring systems. Familiarity with security frameworks and compliance standards, including Cyber Essentials, Cyber Essentials Plus, ISO27001, NIST, and GDPR requirements. Skilled in vulnerability management, threat detection, incident response, and remediation planning, including experience with ransomware and phishing mitigation. Strong communication skills with the ability to present technical and security findings to non-technical stakeholders and clients. Proactive mindset in threat hunting, risk assessments and continuous improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator / Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part of a technically strong, supportive and collaborative security-conscious team in central London. Play a key role in strategic security projects, incident response and continuous improvement initiatives. Access ongoing training, certifications and professional development in cybersecurity. Join a company that holds the core values of Honesty, Accountability, Commitment, Innovation, Expertise and Collaboration

Group IT Infrastructure Manager Our client based in Tamworth, is seeking a Group IT Infrastructure Manager to support over 300 users across sites in the UK, Ireland, Scotland and Dubai. You'll lead a team of skilled IT individuals, fostering a collaborative and service focused culture. From delivering large-scale infrastructure projects to ensuring the seamless day-to-day operation of critical systems, the Group IT Infrastructure Manager will work on meaningful projects, collaborate with cross functional teams, and directly influence the success of our organisation. As a Group IT Infrastructure Manager, you will need to have/be: Networking Strong network admin, installation, and troubleshooting skills (CCNA level). Experience with Cisco, Fortinet, Ruckus; performance and security focused. Skilled in VLANs, VPNs, firewalls, QoS, and high-availability design. Hardware & Infrastructure Good understanding of hardware, cabling, wireless tech, and IT security basics. Experience with rack servers, RAID, SAN/NAS storage. Competent with monitoring tools (SolarWinds, Nagios, PRTG). Microsoft Technologies Strong Windows Server (Apply online only , AD, Group Policy, and systems admin. Working knowledge of Exchange Online. Experience with Azure AD and hybrid identity. Familiar with Intune and JAMF for device management. Solid Office 365 and Windows 10/11 admin skills. Virtualisation & Cloud Skilled in Hyper-V and VMware (resource management, backups, failover). Exposure to Azure, AWS, GCP for migrations and optimisation. Communication Systems Experience with enterprise VoIP systems. Knowledge of IP CCTV setup, storage, and network integration. Backup & DR Proficient with Veeam for backup/replication. Experience in DR planning, failover, and resilience testing. Security & Compliance Strong grasp of cybersecurity (firewalls, EPP, vulnerabilities, threat detection). Understanding of ISO 27001 and GDPR; audit support experience. Familiar with SIEM tools (Splunk, Sentinel). Operating Systems & Automation Working knowledge of Linux (Ubuntu, CentOS). Scripting with PowerShell, Bash, Python. Familiar with ITSM platforms (ServiceNow, Freshservice). Soft Skills Strong analytical and problem-solving ability. Excellent communicator across technical/non-technical teams. Highly organised with good multitasking skills. Leadership experience driving team performance and improvement. Certifications Essential: MCSE, ITIL, CCNA (or equivalent) Desirable: CISSP / Security+, ISO 27001, PRINCE2 Details: Salary : 65, 000 - 70, 000 Working Hours : Full time Monday - Friday Location : Tamworth (on site full time) Duration : Permanent Role of Group IT Infrastructure Manager: Visible, approachable leader across all sites. Partner with departments to deliver proactive, value-driven IT solutions. Provide IT input in management meetings to support strategic decisions. Support wider teams during peak periods to maintain smooth operations. Oversee daily IT operations across servers, applications, and networks. Manage installation, upgrades, and maintenance of hardware/software. Lead procurement and lifecycle management of IT equipment. Ensure system performance through testing, monitoring, and improvement. Manage and optimise WAN infrastructure across all sites. Maintain strong security controls to protect systems and data. Proactively identify and resolve vulnerabilities through updates and patches. Maintain robust disaster recovery and backup strategies. Assess technology risks and implement mitigation measures. Test and refine DR and continuity plans to ensure resilience. Lead major infrastructure projects, upgrades, and migrations. Work with MIS to align infrastructure and system development. Create project plans, manage resources, and deliver on time and budget. Manage the IT budget and track expenditure. Build strong vendor relationships, negotiate contracts, and ensure SLAs are met. Lead and develop 3rd Line Engineers and Helpdesk teams. Oversee Helpdesk performance and ensure timely issue resolution. Foster a collaborative, customer-focused, and continuously improving culture. Stay updated on new technologies and recommend improvements. Drive continuous improvement across infrastructure and service delivery. Align IT services and projects with long-term organisational goals. Strong analytical thinker with excellent problem-solving skills. Willing to work evenings/weekends/public holidays when required. Benefits of working as a Group IT Infrastructure Manager: 23 days annual leave + bank holidays Option to purchase up to 5 extra days annual leave Health Cashback Plan Pension Scheme Life Assurance Free Parking

Senior Security Engineer Microsoft Solutions Partner Edinburgh Highly Competitive Pay, Performance Bonus + Exceptional Benefits Strengthen Defences. Hunt Threats. Shape the Future of Cybersecurity. Are you ready to take your cyber security expertise to the next level? Join Quorum, a leading Microsoft Solutions Partner and Tier 1 CSP based in Scotland. We re not your average IT consultancy we re employee-owned, award-winning, and proud holders of 5 out of 6 Microsoft Designations and 3 Specialisations in Cloud Security, Identity & Access Management, and Microsoft Teams Calling. Now, we re growing our Managed Security Services team and looking for a Senior Security Engineer with a passion for proactive threat detection, automation, and innovation. Why Join Quorum? Highly competitive salary + Bonus scheme linked to Microsoft accreditations Flexible holiday buying/selling Home broadband paid Private health care & contributory pension Dedicated technical training budget and development pathways Award-winning family-friendly and flexible working culture A genuinely friendly, collaborative team environment with low turnover What You'll Be Doing: As a Senior Security Engineer, you'll be a key player in our mission to protect, detect, and respond to evolving cyber threats. Your day-to-day will include: Leading as an escalation point for cyber incidents and alerts Integrating threat intelligence into Microsoft Defender and Sentinel Developing, tuning, and managing detection rules and response policies Performing threat hunting across client environments Maintaining and optimising our security tech stack (Defender XDR, Sentinel, Entra ID, Azure, M365) Onboarding clients to security platforms and managing secure configurations Supporting internal and client teams with technical reporting and analysis Mentoring junior engineers and contributing to a culture of continuous improvement What We re Looking For: 3+ years in cyber security, ideally within a Managed Service Provider Deep experience with Microsoft Defender suite (MDE, MDO, MDCA, MDI) and Microsoft Sentinel Strong knowledge of KQL, Logic Apps, and automation/orchestration tools Skilled in endpoint, identity, and cloud security Familiar with Microsoft 365 and Azure security best practices Excellent communicator comfortable explaining complex security risks to both tech teams and business leaders Passion for learning, team mentorship, and staying ahead of cyber threats Bonus points if you hold certifications such as SC-100, SC-200, CompTIA Security+, or Network+ What s Next? If you re an experienced security engineer who thrives in a fast-paced, supportive environment and you re ready to help shape the future of cyber defence for a diverse client base we want to hear from you. Apply today and make your next career move your best yet.

Cyber Security Consultant Edinburgh (Hybrid) Competitive Pay & Great Benefits Join One of Scotland s Leading Microsoft Partners Quorum Ready to take your cyber security career to the next level? Want to work with cutting-edge Microsoft cloud technologies while delivering real impact for clients across the UK? Quorum is calling. We re one of Scotland s largest Microsoft Partners and a Microsoft Direct Cloud Solutions Provider (CSP). Our expertise spans Modern Workplace, Azure Cloud Adoption & Migration, Data Platform, Cloud Security & Identity, and Cloud App Development and we re growing fast. Right now, we re looking for a Cyber Security Consultant who lives and breathes technology, thrives in fast-moving environments, and wants to work with a talented, passionate security team. What s on Offer? Highly competitive salary Contributory pension Private healthcare Ability to buy and sell holidays We pay for your home broadband Annual personal technical budget Bonuses for achieving professional certifications Outstanding training & continuous development Amazing retention rates and a genuinely supportive team Key Responsibilities of Cyber Security Consultant: As a Cyber Security Consultant at Quorum, you ll be front-and-centre in delivering world-class security solutions to our clients. Expect a role that s dynamic, challenging, hands-on , and backed by continuous support, training, and career development. You ll be responsible for: Designing, deploying, and managing Microsoft Sentinel and Microsoft Defender XDR solutions Working closely with clients to solve complex cloud security challenges Providing deep technical expertise across Azure, M365, identity, infrastructure, virtualisation, networking, and storage Building resilient, multi-site architectures Working in regulated environments with strong knowledge of data boundaries Leveraging automation, configuration management, and modern cloud tooling Driving technical decision-making with senior stakeholders Communicating clearly, confidently, and effectively at all levels Key Skills & Experience: Proven experience with Microsoft Sentinel and Microsoft Defender XDR Strong understanding of cloud computing trends, enterprise drivers, and emerging technologies Deep technical knowledge of public/private cloud infrastructure Strong grasp of identity & access management Experience across Windows and Linux environments Background in automation/configuration management A track record of building trusted relationships with senior stakeholders Excellent verbal and written communication A problem-solver mindset with the ability to leverage internal and external expertise Certifications That Impress Us: Microsoft Certified: Cybersecurity Architect Expert Microsoft Certified: Azure Security Engineer Associate CISSP CCSP IASME Cyber Essentials Assessor (If you re missing one or two but have strong experience still get in touch!) Why Join Quorum? Because we don t just invest in technology we invest in you . Quorum is an Employee-Owned company, and our culture is one of collaboration, support, growth, and genuine work-life balance. We pride ourselves on our award-winning family-friendly and flexible working culture, and we re committed to helping every employee build the career they want. At Quorum, we eat, sleep, and breathe technology. If that sounds like you, then you re exactly who we want. Apply today and help shape the future of cloud security with us.

Job Title: SIEM Engineer Location: Wokingham/Hybrid (3 days per week on site) Duration: 3 months from the start Rate: 430 per day inside ir35 SC security clearance is required for this role We are looking for a highly skilled Security Engineer to support the deployment, configuration, and management of modern SIEM and EDR platforms. This role is ideal for someone with strong hands-on technical security expertise and a passion for threat detection, analysis, and automation. Key Responsibilities: Syslog experience and/or strong Linux skills SIEM Deployment & Management Configure, deploy, and maintain SIEM platforms such as Microsoft Sentinel or Elastic SIEM . Build and optimise log ingestion pipelines. EDR Deployment & Management Manage and maintain tools including Tanium , Trellix , FireEye , Microsoft Defender , or Elastic EDR . Threat Detection & Analysis Monitor security logs and alerts. Investigate anomalies, understand attack patterns, and provide actionable recommendations. Syslog Management Configure and maintain Syslog servers . Manage Syslog feeds and ensure reliable log forwarding. Log Ingestion for Sentinel Deploy out-of-the-box integrations. Develop custom connectors and ingestion methods for diverse log sources. Collaboration Work closely with IT, SOC, and wider security teams to strengthen the organisation's cybersecurity posture. Required Skills & Qualifications Strong background in security engineering , SIEM/EDR tooling, and network security. Certifications such as CISSP, CEH, GIAC, AZ-500, SC-100 , or relevant vendor-specific credentials. Scripting proficiency in Python, PowerShell, KQL (Kusto Query Language), or Kibana Query Language . Strong analytical mindset with the ability to process large datasets, detect threats, and identify misconfigurations. Excellent written and verbal communication skills for documenting findings and engaging stakeholders. If you are interested in this role please feel free to submit your CV Many thanks,

Senior Information Security Analyst Are you passionate about building secure cloud environments and driving proactive security solutions? We re looking for a highly skilled Information Security Analyst with strong expertise in Azure cloud security, Microsoft Sentinel, and Tenable to join a growing security team. As an Information Security Analyst, you will play a key role in safeguarding cloud environments. You will design, implement, and optimize security controls, monitor threats, and lead remediation efforts across the organisation. This is a hands-on role suited to someone who enjoys solving complex security challenges and driving continuous improvement. Key Responsibilities Lead the design and implementation of Azure security best practices, policies, and controls. Manage and optimise Microsoft Sentinel SIEM, including rule creation, use-case development, automation, and threat hunting. Oversee vulnerability management activities using Tenable, ensuring timely identification, prioritisation, and remediation of risks. Support incident response activities, including investigation, containment, and root-cause analysis. Conduct security assessments, recommend improvements, and work with engineering and IT teams to implement secure solutions. Continuously assess cloud environments for misconfigurations, threats, and compliance gaps. Prepare security reports, dashboards, and metrics for leadership and stakeholders. Skills & Experience Required Strong hands-on experience with Azure Security Centre, Azure AD, Defender for Cloud, and cloud security architecture. Proven expertise in Microsoft Sentinel SIEM administration, threat detection, and automation (KQL experience desirable). Solid understanding of vulnerability management with Tenable (Tenable.io/Tenable.sc). Knowledge of industry security frameworks (ISO 27001, NIST, CIS). Strong analytical, problem-solving, and communication skills. Relevant certifications highly desirable (AZ-500, SC-200, CEH, Security+, etc.).

IT Engineer - Microsoft Defender Security Operations 3 months London - onsite Inside IR35 - Umbrella only Role Overview We are seeking an accomplished IT Engineer with specialist expertise in the Microsoft Defender security ecosystem. The successful candidate will strengthen cyber defence across endpoints, identities, cloud services, and hybrid infrastructure. Key Responsibilities Security operations and threat defence Manage and optimise Microsoft Defender across Endpoint, Identity, Cloud Apps, Office 365, and Cloud Security Posture Management. Monitor alerts and conduct threat investigations. Support incident response with containment and remediation. Conduct proactive threat hunting. Platform administration and governance Configure policy baselines and protection profiles. Maintain governance and compliance alignment. Lead version management and capability tuning. Maintain documentation for configurations and processes. Stakeholder engagement and improvement Collaborate with Infrastructure, Cloud, and Cyber Security teams. Provide security insights to projects. Produce reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. Desirable Skills Experience with Microsoft Sentinel. Understanding of MITRE ATT and CK. Exposure to red team activities. Familiarity with automation using PowerShell. Professional Attributes Analytical thinker. Resilient and proactive. Strong communicator. Collaborative mindset. Qualifications Microsoft security certifications such as SC 200, SC 300, or SC 400. Broader cloud or cyber qualifications beneficial.

IT Support Engineer (Hybrid / Remote working Considered) My client is expanding and is seeking a proactive, technically strong IT Support Engineer to join their growing team. If you thrive in a fast-paced MSP environment, enjoy tackling complex technical challenges, and want exposure to a wide range of modern technologies, this role will suit you perfectly. You ll act as a key escalation point for technical issues across Microsoft 365, Azure, Windows Server, networking and endpoint management. You ll work extensively with their RMM platform and cybersecurity tooling including SentinelOne, Huntress and backup solutions-so a strong focus on security and reliability is essential. This is a client-facing role that requires excellent troubleshooting skills, outstanding communication and a commitment to high-quality service delivery. What You ll Be Doing Providing remote and on-site support across multiple client environments Acting as an escalation point for 1st line engineers and seeing issues through to full resolution Monitoring, managing and remediating systems using RMM tools Troubleshooting issues across Microsoft 365, Azure AD, Windows Server and endpoint devices Supporting endpoint security, EDR platforms (SentinelOne, Huntress) and backup solutions Assisting with deployments, migrations and infrastructure upgrades Escalating complex issues to senior engineers or vendors where appropriate Maintaining accurate technical documentation and communicating clearly with clients Contributing to process improvements and best-practice initiatives What You ll Bring Essential: 2+ years experience in an MSP or multi-client IT support environment Strong knowledge of Microsoft 365, Intune and Azure AD Solid understanding of Windows Server, Active Directory and Group Policy Good networking fundamentals (VLANs, firewalls, VPNs, DNS, DHCP) Strong troubleshooting ability with a see it through mindset Excellent communication and customer-service skills Full UK driving licence and willingness to travel Desirable: Experience with RMM and PSA tools Hands-on experience with SentinelOne, Huntress or similar EDR/security platforms Experience supporting image-based, file-level and/or cloud backups Understanding of Cyber Essentials and security best practice Certifications such as CompTIA Network+, Microsoft 365 Fundamentals or similar Who You Are You ll be a great fit if you re client-focused, pragmatic and genuinely passionate about technology. My client values integrity, reliability and innovation. The team is collaborative and supportive, and they re looking for someone who remains calm under pressure, has a methodical approach to problem-solving, and brings a good sense of humour to the job. Benefits: Remote Working Bonus 24 days holiday + Bank Holidays + Christmas Shut Down Interested? Click Apply Now! IT Support Engineer

A Council in London are seeking an Azure CloudOps Engineer to design, deploy, and maintain highly resilient, secure, and cost-optimised cloud infrastructure and services on Microsoft Azure. This role is responsible for establishing and adhering to strict UK Government Digital Service (GDS) reliability standards and implementing rigorous FinOps governance policies. The engineer must drive operational excellence through comprehensive automation and proactive Site Reliability Engineering (SRE) practices. The role is for 6 months paying around (Apply online only)pd (outside IR35). Responsibilities: Service Reliability Engineering (SRE) Implementation: The engineer is required to define, actively monitor, and regularly report on critical Service Level Indicators (SLIs) to ensure all services meet defined Service Level Objectives (SLOs) for critical user journeys, ensuring compliance with GDS standards. This involves leading measurement workshops with product and delivery teams. Incident and Problem Management Leadership: Leading the technical response and resolution for high-priority cloud incidents (P1 and P2). The role demands integrating Azure Monitor and Azure Service Health alerts directly with the Council's ITSM platform to automatically generate tickets and drive continuous operational improvements aimed at minimising Mean Time to Resolution (MTTR). Automation and Infrastructure-as-Code (IaC) Development: Developing, testing, and maintaining reusable IaC templates (specifically Bicep or Terraform) for standardising infrastructure deployment. This includes creating robust PowerShell and Python Runbooks within Azure Automation for routine configuration management, scheduled maintenance, and automated incident remediation actions. Security Operations (SecOps) and Threat Response: Implementing proactive threat detection and automated security response capabilities. This involves active utilisation of Microsoft Defender for Cloud (for CSPM and CWPP) and Microsoft Sentinel, developing automated security workflows and playbooks using Azure Logic Apps to enforce security policy. Financial Operations (FinOps) and Cost Governance: Accountability for continuous Usage Optimisation, including reviewing resource sizing and implementing cost allocation policies. The engineer will enforce budget controls and governance via Azure Policy, working collaboratively with Finance and Procurement teams to ensure efficient and auditable use of public funds. The role of an Interim Azure Cloud Operations Engineer is a highly specialised senior position that demands expertise across traditional operations, Site Reliability Engineering, and Financial Operations.

Infrastructure Engineer Location: Birmingham (Hybrid, with visits to Milton Keynes) Role: Permanent - Full time on site I'm recruiting for a leading global distributor of electrical and industrial automation products, known for its strong focus on innovation, sustainability, and empowering its people. This company operates across multiple locations and delivers advanced technology solutions to a wide range of industries. Your responsibilities in the role Responsible for the design, build, and maintenance of all of the company's on-premise and cloud infrastructure Implement on-premise and cloud infrastructure upgrade projects. Maintain all company servers, both on-premise and in the cloud (Azure). Maintain storage systems (SAN, NAS). Maintain company network at all sites including switches, firewalls, and wireless access points. Monitor company infrastructure to ensure performance and availability. Handle support tickets that are escalated for infrastructure resolution. Ensure server backups are performed and test recovery. Assist in establishing a robust Disaster Recovery Plan and participate in the practice of the Disaster Recovery at least annually. Assist with the planning and deployment of group security measures. Create documentation and ensure it is up to date. In the event of a failure, work at speed for an optimal recovery. Identifying and mitigating vulnerabilities. Keep up to date with the latest security and technological developments Take charge of personal development and contribute to performance evaluation in accordance with the company's core competencies and learning and development framework. Observe Health & Safety policy and procedures. Skills and Experience Palo Alto deployment and configuration experience is a must. Microsoft Defender for Endpoint, Tenable, Sentinel, Zscaler, Tanium and Illiumo would be advantageous. Understanding of network protocols, configurations, deployment and management of routers, switches, and firewalls. Knowledge of cybersecurity principles, including firewalls, intrusion detection/prevention systems, and encryption. Analytical and problem-solving skills to identify and assess issues, threats, patterns, and trends. Verbal communication skills, including presentation skills, with an ability to communicate with various technical and non-technical team members and other relevant individuals. ECS Recruitment Group Ltd is acting as an Employment Agency in relation to this vacancy.

Operations Analyst Annual Salary of 41,000- 45,000 Permanent, Full-time Watford Operations Analyst required to join a dynamic team within a leading national organisation. This role is ideal for a technically driven professional who enjoys being challenged, thrives in an evolving environment, and is motivated by continuous improvement and repeated success. In this role, you will support a large and diverse user base across hundreds of UK sites, working with the latest cloud and on-premises technologies. You will be heavily involved in maintaining core infrastructure, improving operational processes, and contributing to the organisation's long-term technology roadmap. Key responsibilities of the Operations Analyst Deliver day-to-day operational support for cloud-hosted and on-premises server environments and networks Work closely with Application Support colleagues to diagnose and resolve service issues Maintain and enhance infrastructure to ensure secure, stable, and highly available services for approximately 6,500 users across 300 locations Contribute to lifecycle management and continuous improvement initiatives Support the planning, testing, and rollout of infrastructure changes and upgrades Build strong working relationships with internal teams and external partners Uphold cybersecurity best practice and support efforts to retain security accreditations Required skills and experience of the Operations Analyst Broad experience as a Microsoft-focused Cloud Engineer or Operations Analyst Strong knowledge of Azure services, including IaaS, PaaS, ASR, and M365 (Exchange Online, Teams, OneDrive) Understanding of Azure networking components: private endpoints, Azure Firewall, VPNs, IP Groups Experience working with Windows Server, Windows Desktop, and Linux environments Windows Server, Active Directory, Hyper-V PowerShell for automation and scripting. Experience with monitoring tools, Log Analytics, Sentinel and alerting platforms Familiarity with Logic Apps, API Management, and Azure Application Proxy Strong knowledge of LAN/WAN technologies including switching, routing, firewalls, MPLS, VRF, SD-WAN and DNS/DHCP services This role offers the chance to work with modern cloud technologies, contribute to meaningful infrastructure improvements, and develop your skills within a supportive team environment. If you believe you have the necessary skills, ambition and experience for the Operations Analyst role, please apply now, or contact Kyle Fitzgerald at Sellick Partnership. With the department workload increasing due to the success of the organisation, the client is looking for a relatively quick appointment. Sellick Partnership is proud to be an inclusive and accessible recruitment business and we support applications from candidates of all backgrounds and circumstances. Please note, our advertisements use years' experience, hourly rates, and salary levels purely as a guide and we assess applications based on the experience and skills evidenced on the CV. For information on how your personal details may be used by Sellick Partnership, please review our data processing notice on our website.

2nd Line Support Engineer My client is expanding and is seeking a proactive, technically strong 2nd Line Support Engineer to join their growing team. If you thrive in a fast-paced MSP environment, enjoy tackling complex technical challenges, and want exposure to a wide range of modern technologies, this role will suit you perfectly. You ll act as a key escalation point for technical issues across Microsoft 365, Azure, Windows Server, networking and endpoint management. You ll work extensively with their RMM platform and cybersecurity tooling including SentinelOne, Huntress and backup solutions-so a strong focus on security and reliability is essential. This is a client-facing role that requires excellent troubleshooting skills, outstanding communication and a commitment to high-quality service delivery. What You ll Be Doing Providing 2nd line remote and on-site support across multiple client environments Acting as an escalation point for 1st line engineers and seeing issues through to full resolution Monitoring, managing and remediating systems using RMM tools Troubleshooting issues across Microsoft 365, Azure AD, Windows Server and endpoint devices Supporting endpoint security, EDR platforms (SentinelOne, Huntress) and backup solutions Assisting with deployments, migrations and infrastructure upgrades Escalating complex issues to senior engineers or vendors where appropriate Maintaining accurate technical documentation and communicating clearly with clients Contributing to process improvements and best-practice initiatives What You ll Bring Essential: 3 4+ years experience in an MSP or multi-client IT support environment Strong knowledge of Microsoft 365, Intune and Azure AD Solid understanding of Windows Server, Active Directory and Group Policy Good networking fundamentals (VLANs, firewalls, VPNs, DNS, DHCP) Strong troubleshooting ability with a see it through mindset Excellent communication and customer-service skills Full UK driving licence and willingness to travel Desirable: Experience with RMM and PSA tools Hands-on experience with SentinelOne, Huntress or similar EDR/security platforms Experience supporting image-based, file-level and/or cloud backups Understanding of Cyber Essentials and security best practice Certifications such as CompTIA Network+, Microsoft 365 Fundamentals or similar Who You Are You ll be a great fit if you re client-focused, pragmatic and genuinely passionate about technology. My client values integrity, reliability and innovation. The team is collaborative and supportive, and they re looking for someone who remains calm under pressure, has a methodical approach to problem-solving, and brings a good sense of humour to the job. Benefits: Remote Working Bonus 24 days holiday + Bank Holidays + Christmas Shut Down Interested? Click Apply Now! 2nd Line Support Engineer

I am currently looking for 2 experienced Cyber Security Engineers (DV Cleared) for a client, based in Milton Keynes with occasional travel to London. DV Clearance is essential - applicants without current clearance unfortunately cannot be considered. About the Role: These roles sit within a client's Cybersecurity Operations function. You will play a key part in designing, implementing, and maintaining the platforms that support enterprise-scale security operations. From SIEM and log collection to endpoint detection, automation, and integration, you'll help ensure the SOC team has the reliable and scalable infrastructure it needs to detect, investigate, and respond to threats. Responsibilities: Manage and optimise SIEM platforms (Splunk, Microsoft Sentinel, open-source alternatives) across hybrid-cloud environments Configure and maintain log/data pipelines from endpoints, cloud services, and network devices Ensure high availability, reliability, and performance of core security platforms Integrate new security tools into the ecosystem, including automation via APIs, Scripting, and AI Maintain clear documentation, diagrams, and procedures to support knowledge sharing and consistency Skills & Experience: Strong hands-on experience with SIEM technologies (Splunk, Sentinel, etc.) Knowledge of cloud platforms (Azure, AWS, GCP) and hybrid environments Scripting skills (Python, PowerShell) for automation and integration Experience with SOAR and SecDevOps practices (Git, GitHub, Azure DevOps, CI/CD) Good understanding of frameworks such as NIST, MITRE ATT&CK, CAF Background in Incident Response or SOC analysis is highly valued Soft Skills: Strong analytical and problem-solving mindset Effective communication and collaboration skills Ability to thrive in a fast-paced, dynamic environment Certifications (Splunk, Microsoft, SANS, etc.) are desirable but not required. Location: Milton Keynes (with some travel to London) Positions: 2 available If you're DV cleared and want to take on a challenging and rewarding role with a leading organisation, I'd love to hear from you.

Security Engineer - 3-month contract - Northampton/Remote My Customer is looking for a proactive Security Engineer to join their team and take ownership of monitoring, triaging, and responding to security alerts across their Microsoft security ecosystem. Strong experience troubleshooting and responding to alerts would be the main focus of the role. Strong expertise with Microsoft Defender and Sentinel is needed. Key Skills & Experience from the Security Engineer Strong experience with Microsoft Sentinel (SIEM) and Microsoft Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within Sentinel or similar). Understanding of threat detection, log analysis, and automation within Microsoft's security ecosystem. Key Responsibilities of the Security Engineer Monitor, investigate, and respond to security alerts and incidents in Microsoft Sentinel and Microsoft Defender . Perform detailed security event analysis and correlation, escalating incidents where necessary. Develop and optimise SOAR (Security Orchestration, Automation and Response) playbooks to enhance incident response and efficiency. Collaborate with wider IT and security teams to improve threat detection, incident handling, and response processes. Beneficial Experience Exposure to Operational Technology (OT) environments. Experience with Tenable (vulnerability management). Knowledge of Microsoft Purview (data governance, compliance, and information protection). The Security Engineer is required onsite, 2 days a week in Northampton and 3 days remote. Apply now to speak with VIQU IT in confidence about the Security Engineer role. Or reach out to Connor Smal via the VIQU IT website. Do you know someone great? We'll thank you with up to £1,000 if your referral is successful (terms apply).

Your new company As part of their continued investment in technology and cyber resilience, my client is seeking a Cloud Security Engineer to join their dynamic Technology Directorate. This is a pivotal role supporting the Head of Cyber Security and Infrastructure in strengthening the cyber security estate and ensuring robust protection across our digital platforms. Your new role As Cloud Security Engineer, you will play a key role in enhancing cyber resilience. You'll be responsible for leveraging tools such as Microsoft Defender, Sentinel, Azure, and their SOC partner to conduct threat analysis, risk assessments, and implement effective controls. You'll support the delivery of their Cyber Security Sub Strategy in line with the Cyber Assessment Framework, and contribute to the design and operation of threat intelligence, incident response, vulnerability management, and ethical hacking capabilities. You'll work closely with internal stakeholders and external partners to ensure compliance with ISO27001, Cyber Essentials+, and other regulatory frameworks. This role also involves reporting on cyber threats and performance using Power BI, supporting penetration testing, and contributing to the development of secure IT architecture and access control policies. What you'll need to succeed Extensive experience administering the Azure platform and Microsoft security tools (Defender, Sentinel, Intune, Autopilot). Strong understanding of cyber security frameworks including ISO27001, Cyber Essentials+, and the Cyber Assessment Framework. Proven experience in identity and access management, end-user device management, and working with external SOCs. Ability to deliver against cyber security roadmaps, respond to incidents, and remediate vulnerabilities. Experience in building Power BI dashboards and writing security policies and SOPs. A collaborative mindset with excellent communication skills and a proactive approach to continuous improvement. What you'll get in return A chance to make a real impact in a purpose-driven organisation. Flexible working arrangements. Access to professional development and training. A supportive and inclusive culture. Competitive salary up to £52K and benefits package. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy of your CV, or call us now. Hays Specialist Recruitment Limited acts as an employment agency for permanent recruitment and employment business for the supply of temporary workers. By applying for this job you accept the T&C's, Privacy Policy and Disclaimers which can be found at hays.co.uk

"At Klipboard we've introduced a flexible hybrid work policy, where employees spend three days in the office and two days working from home. This approach promotes a balanced work environment that combines office collaboration with the comfort and convenience of remote work." Klipboard provides specialist software, services and support to deliver fully integrated trading and business management solutions to companies in the distributive trade - wherever they are in the world. With a unique depth of knowledge and experience in ERP/SaaS solutions, Klipboard has a wide range of clients includes wholesalers, distributors, merchants and retailers from small traders to multinational enterprises. Klipboard has offices in the UK, Ireland, The Netherlands, South Africa, Kenya and North America. Our mission is simple: to design and deliver high performance, integrated ERP solutions that enable our distributive trade customers to source effectively, stock efficiently, sell profitably and service competitively We are seeking a 3rd Line Support Engineer to join our dynamic team and provide exceptional technical support to a global client base. This role offers the opportunity to transition from traditional IT solutions to advanced cloud and security technologies. The successful candidate will have an excellent base of experience and knowledge with traditional Microsoft technologies such as Windows Server, Active Directory, Group Policy and Microsoft 365. The successful candidate will then work with the latest Microsoft services, developing expertise in areas such as: Azure Cloud & Virtual Desktops Microsoft Sentinel Microsoft Defender for Cloud Privileged Identity Management Microsoft Defender for Endpoint This position involves operating in a fast-paced MSP environment to ensure the availability, performance, and security of customers' cloud workloads. Key Responsibilities: Provide high-quality support for incidents and service requests raised through our Service Desk, working with technologies such as Active Directory, Azure Active Directory, Group Policy, Exchange Online, Windows Server, and Remote Desktop Services. Respond to monitoring alerts for Microsoft Azure IaaS/PaaS/SaaS services, network connectivity, and Microsoft 365 services to proactively address potential issues. Investigate and resolve security alerts for Microsoft 365 users and Azure workloads, addressing concerns like user account security, suspicious activity, antivirus alerts, and Endpoint Detection and Response (EDR) notifications. Review, install, and test security and application updates, leveraging automation to maintain and improve customer environments. Ensure the operational integrity, performance, and security of customer cloud-based services through proactive monitoring and expertise. Collaborate with customers and internal teams to implement migrations and deliver solutions tailored to customer requirements. Maintain regular communication with customers via Service Desk tools and Teams meetings. Working Arrangements Hybrid working model: 3-4 days remote, 1 day in the office. All necessary equipment for home working will be provided. Shift pattern includes: Week 1: 6:30 AM to 3:00 PM Week 2: 9:00 AM to 5:30 PM Week 3: 1:30 PM to 10:00 PM On-call responsibilities (paid per rotation) and occasional out-of-hours work (paid overtime). Candidate Profile The ideal candidate will: Be an effective communicator who prioritizes customer satisfaction. Possess strong interpersonal skills to collaborate with team members and customer IT representatives. Have prior experience in a Service Desk environment with the ability to manage and prioritize tasks effectively. Be enthusiastic about learning new skills in cloud computing, IT security, and Microsoft solutions, pursuing relevant certifications. Exhibit a detail-oriented approach to problem-solving and task execution. Skills, Knowledge and Experience: Proficiency in traditional Microsoft Windows Server solutions, including: Active Directory and Group Policy File and Print services Remote Desktop Services PowerShell scripting Fundamental knowledge of TCP/IP networking, VPNs, and network connectivity. Experience administering Microsoft 365 services (Email, OneDrive, Teams, SharePoint). Understanding of IT security practices and tools (e.g., Antivirus, Email Filtering, Web Filtering). Required Experience Previous experience within a 3rd Line Role is extremely desirable Previous experience within an MSP environment is preferred Active Directory: 3 years Microsoft Windows Server: 3 years IP networking: 2 year Microsoft 365 administration: 3 years Active Microsoft Azure, 365 & Windows Server certifications are preferred. Equal Opportunities As a global company, we value and respect the diversity of our workforce, aiming to empower everyone to embrace each other's differences. We are committed to creating an inclusive workplace where diversity, equity, and inclusion are integral to our company and culture. We recognize the benefits of a diverse workforce, where creativity and valuing differences enable us all to thrive and sparks innovation. If you require any help, adjustments and/or support during the interview and offer process then please advise our TA or HR team. To all recruitment agencies: Klipboard does not accept agency speculative resumes. At present we only accept CV's from Agencies on our PSL who have been assigned specific position/s. Please do not forward resumes to our careers site or direct to Klipboard employee as this does not constitute an introduction and Klipboard retrospectively will not be liable for any candidate ownership or fees related to unsolicited resumes.