Senior Cloud/Platform Engineering role Senior Cloud Engineer - Hybrid (Manchester) - Government Project Salary: £70,000 - £73,000 + Benefits + Unlimited Training Budget Active SC Clearance is required for this role. Are you an experienced Cloud Engineer ready to step into a senior role where you can lead, influence, and deliver at scale? We're looking for a Senior Cloud Engineer to play a key role in delivering secure, high-performing cloud platforms for a major UK government programme based in Manchester. This hybrid role offers the flexibility of working across home, office, and client environments, while remaining closely connected to impactful project delivery. The Opportunity As a Senior Cloud Engineer, you'll be a core member of a high-performing Cloud Pod-guiding technical delivery while mentoring others and shaping best practices. You'll balance hands-on engineering with leadership responsibilities, helping to design and evolve modern cloud platforms that underpin critical public services. This is an opportunity to influence architecture, drive innovation, and contribute to the continuous improvement of both platforms and people. What You'll Be Doing Leading the design, build, and optimisation of scalable cloud platforms using a code-first approach Driving best practices across Infrastructure as Code, automation, and platform standardisation Acting as a technical mentor within your pod, supporting and upskilling engineers Collaborating across teams to deliver secure, resilient, and high-quality cloud solutions Championing Agile delivery, contributing to sprint planning and technical direction Enhancing CI/CD pipelines and DevOps practices to improve efficiency and reliability Contributing to engineering strategy, reusable assets, and internal standards What We're Looking For Proven experience in a Senior Cloud/Platform Engineering role Strong expertise in AWS and/or Azure environments Advanced experience with Infrastructure as Code (Terraform preferred) Solid experience with Git-based version control (eg GitHub) Strong knowledge of CI/CD pipelines, automation, and DevOps principles Experience with Kubernetes, Ansible , and container-based architectures Strong foundation in infrastructure, networking, and security principles Experience working in Agile teams , with the ability to lead and influence What's in It for You £70,000 - £73,000 base salary + comprehensive benefits Unlimited training budget for certifications and external learning Clear Pathway into leadership and architecture roles Private healthcare and wellbeing support Flexible, hybrid working environment Opportunity to work on high-impact, secure government programmes Why Join? You'll be part of a collaborative, engineering-led culture where your expertise is valued and your ideas shape real outcomes. This is your opportunity to lead from the front, work on meaningful projects, and accelerate your career in a supportive, high-performing environment. If you're ready to take the next step into a senior role and make a real impact, we'd love to hear from you.
08/05/2026
Full time
Senior Cloud/Platform Engineering role Senior Cloud Engineer - Hybrid (Manchester) - Government Project Salary: £70,000 - £73,000 + Benefits + Unlimited Training Budget Active SC Clearance is required for this role. Are you an experienced Cloud Engineer ready to step into a senior role where you can lead, influence, and deliver at scale? We're looking for a Senior Cloud Engineer to play a key role in delivering secure, high-performing cloud platforms for a major UK government programme based in Manchester. This hybrid role offers the flexibility of working across home, office, and client environments, while remaining closely connected to impactful project delivery. The Opportunity As a Senior Cloud Engineer, you'll be a core member of a high-performing Cloud Pod-guiding technical delivery while mentoring others and shaping best practices. You'll balance hands-on engineering with leadership responsibilities, helping to design and evolve modern cloud platforms that underpin critical public services. This is an opportunity to influence architecture, drive innovation, and contribute to the continuous improvement of both platforms and people. What You'll Be Doing Leading the design, build, and optimisation of scalable cloud platforms using a code-first approach Driving best practices across Infrastructure as Code, automation, and platform standardisation Acting as a technical mentor within your pod, supporting and upskilling engineers Collaborating across teams to deliver secure, resilient, and high-quality cloud solutions Championing Agile delivery, contributing to sprint planning and technical direction Enhancing CI/CD pipelines and DevOps practices to improve efficiency and reliability Contributing to engineering strategy, reusable assets, and internal standards What We're Looking For Proven experience in a Senior Cloud/Platform Engineering role Strong expertise in AWS and/or Azure environments Advanced experience with Infrastructure as Code (Terraform preferred) Solid experience with Git-based version control (eg GitHub) Strong knowledge of CI/CD pipelines, automation, and DevOps principles Experience with Kubernetes, Ansible , and container-based architectures Strong foundation in infrastructure, networking, and security principles Experience working in Agile teams , with the ability to lead and influence What's in It for You £70,000 - £73,000 base salary + comprehensive benefits Unlimited training budget for certifications and external learning Clear Pathway into leadership and architecture roles Private healthcare and wellbeing support Flexible, hybrid working environment Opportunity to work on high-impact, secure government programmes Why Join? You'll be part of a collaborative, engineering-led culture where your expertise is valued and your ideas shape real outcomes. This is your opportunity to lead from the front, work on meaningful projects, and accelerate your career in a supportive, high-performing environment. If you're ready to take the next step into a senior role and make a real impact, we'd love to hear from you.
Senior IT Network Architect - Europe (Remote) | €90,000-€110,000 + Benefits We're hiring a technical hands-on Senior Network Architect to lead on a number of major network transformation initiatives across Europe within a large-scale enterprise environment. In this position we are looking for a technical specialist, someone with a deep and proven experience working on Global or Pan-European complex distributed networks across data centres, stores/branches, and offices. As the Senior Network Architect, you will play a key role in consolidating a large number of European data centres into 2 strategic hubs while maintaining uptime and continuity across hundreds of business-critical applications. Candidates wishing to apply for this position must be able to demonstrate where they have - Led architecture programmes across Pan-European network operations Driven SD-WAN, Zero Trust, Cloud Networking and DC modernisation initiatives Owed both strategic architecture and low-level technical design Supported large, distributed environments across multiple EU countries Worked across multi-cloud, automation, and enterprise security programmes You will be technically astute with all things network related and be somewhat of an expert with deep practical expertise with Cisco, Palo Alto, Fortinet, and/or Juniper technologies. Hands-on delivery experience is valued more highly than certifications, although CCIE, PCNSE, NSE, JNCIE and cloud certifications are all welcomed. Additional European language skills would be advantageous - particularly Italian or Spanish, although French, Dutch or German would also be highly valued. Fully remote role with some travel across Europe as the business requires.
08/05/2026
Full time
Senior IT Network Architect - Europe (Remote) | €90,000-€110,000 + Benefits We're hiring a technical hands-on Senior Network Architect to lead on a number of major network transformation initiatives across Europe within a large-scale enterprise environment. In this position we are looking for a technical specialist, someone with a deep and proven experience working on Global or Pan-European complex distributed networks across data centres, stores/branches, and offices. As the Senior Network Architect, you will play a key role in consolidating a large number of European data centres into 2 strategic hubs while maintaining uptime and continuity across hundreds of business-critical applications. Candidates wishing to apply for this position must be able to demonstrate where they have - Led architecture programmes across Pan-European network operations Driven SD-WAN, Zero Trust, Cloud Networking and DC modernisation initiatives Owed both strategic architecture and low-level technical design Supported large, distributed environments across multiple EU countries Worked across multi-cloud, automation, and enterprise security programmes You will be technically astute with all things network related and be somewhat of an expert with deep practical expertise with Cisco, Palo Alto, Fortinet, and/or Juniper technologies. Hands-on delivery experience is valued more highly than certifications, although CCIE, PCNSE, NSE, JNCIE and cloud certifications are all welcomed. Additional European language skills would be advantageous - particularly Italian or Spanish, although French, Dutch or German would also be highly valued. Fully remote role with some travel across Europe as the business requires.
for our customer, we requrie a DC/Infrastructure Engineer who can travel betweeen Birmingham & London Key Technologies & Experience Data Centre & Hardware Physical data centre operations (racking, stacking, cabling, commissioning, decommissioning) Enterprise server hardware deployment & life cycle management Structured cabling and DC infrastructure standards Co-location environments (eg Equinix or similar) Cloud & Virtualisation VMware vSphere/VMware ecosystem Apache CloudStack (or similar IaaS platforms) Public cloud: AWS and/or Microsoft Azure Hybrid cloud architecture (on-prem + cloud integration) Infrastructure & Platforms Enterprise compute, storage, and networking architecture Storage technologies: SAN, NAS, object storage Infrastructure design for scalability, resilience, and high availability Networking & Security Managed Switches, routing, and enterprise networking Firewall technologies (Fortinet preferred; Cisco experience beneficial) Network design and troubleshooting (L2/L3) Security hardening and infrastructure compliance best practices Operating Systems Linux (Ubuntu preferred) Windows Server environments Monitoring, Backup & DR Monitoring & observability: Prometheus, Grafana, Checkmk, ELK Stack Backup solutions: Veeam, Commvault (or similar) Disaster recovery and business continuity planning Automation/DevOps (Desirable) Container platforms (Kubernetes) Collaboration with DevOps pipelines and modern infrastructure practices Project & Delivery Data centre migration and relocation programmes Infrastructure upgrades, capacity planning, and transformation projects Multi-site delivery across complex environments Certifications (Nice to Have) AWS Certified Solutions Architect Microsoft Azure Administrator VMware VCP Cisco CCNP We believe in equal opportunity for all and actively encourage applications from diverse backgrounds, experiences, and perspectives. Source Group International Ltd is acting as an Employment Business in relation to this vacancy
08/05/2026
Contractor
for our customer, we requrie a DC/Infrastructure Engineer who can travel betweeen Birmingham & London Key Technologies & Experience Data Centre & Hardware Physical data centre operations (racking, stacking, cabling, commissioning, decommissioning) Enterprise server hardware deployment & life cycle management Structured cabling and DC infrastructure standards Co-location environments (eg Equinix or similar) Cloud & Virtualisation VMware vSphere/VMware ecosystem Apache CloudStack (or similar IaaS platforms) Public cloud: AWS and/or Microsoft Azure Hybrid cloud architecture (on-prem + cloud integration) Infrastructure & Platforms Enterprise compute, storage, and networking architecture Storage technologies: SAN, NAS, object storage Infrastructure design for scalability, resilience, and high availability Networking & Security Managed Switches, routing, and enterprise networking Firewall technologies (Fortinet preferred; Cisco experience beneficial) Network design and troubleshooting (L2/L3) Security hardening and infrastructure compliance best practices Operating Systems Linux (Ubuntu preferred) Windows Server environments Monitoring, Backup & DR Monitoring & observability: Prometheus, Grafana, Checkmk, ELK Stack Backup solutions: Veeam, Commvault (or similar) Disaster recovery and business continuity planning Automation/DevOps (Desirable) Container platforms (Kubernetes) Collaboration with DevOps pipelines and modern infrastructure practices Project & Delivery Data centre migration and relocation programmes Infrastructure upgrades, capacity planning, and transformation projects Multi-site delivery across complex environments Certifications (Nice to Have) AWS Certified Solutions Architect Microsoft Azure Administrator VMware VCP Cisco CCNP We believe in equal opportunity for all and actively encourage applications from diverse backgrounds, experiences, and perspectives. Source Group International Ltd is acting as an Employment Business in relation to this vacancy
Security Consultant/Engineer - Fortinet, NSE7, SIEM, SOAR, LAN - £55,000 - £75,000 - NW England Do you want to be one of the Fortinet experts within a Fortinet Expert Partner? Do you want to work on some of the most exciting SecOps projects out there? Do you want to be part of a close-knit team that are moving the dial in the world of Security? We are working with a Fortinet Expert Partner to find a Senior Network Security Specialist. You will be working on some of the most exciting modern network and systems security architecture and will have design and practical experience of Fortinet's security portfolio, including the FortiGate Unified Threat Management platform, SDWAN, ZTNA and SASE. You will be Leading, Designing, Implementation Security Architecture projects. There is lots of training and development within this role and you will be able to add to your Fortinet certs whilst in this role. Ideally you will come from a background LAN Enterprise and/or WAN and have a detailed knowledge of IP, network security, unified threat management, communications media, and networking equipment. Skills Fortinet - NSE7 SecOps automated tooling Strong Networking background Low Level Design Implementation Firewalls, Unified Threat Management, Web Filtering, Email Security SDWAN/SASE This business operates out of two sites, and you will be working on a Hybrid basis and will be aligned to one of the offices and able to expense to the other. You will be expected to help occasionally with some final escalation form the Managed Services desk when it falls into your area of expertise. Duties and Responsibilities: Design, implement and support network security architecture including Firewalls, Unified Threat Management, Web Filtering, Email Security, Web Application Firewalls, Authentication Improve network security infrastructure with automated SecOps tooling Lead, Plan, Design, and Implement Security Architecture to external customers as part of the Professional Services team. Last point of escalation when needed Be able to undergo DBS clearance. NPPV3 - will need to be undertaken post probation. Security Consultant/Engineer - Fortinet, NSE7, SIEM, SOAR, LAN - £55,000 - £75,000 - NW England
08/05/2026
Full time
Security Consultant/Engineer - Fortinet, NSE7, SIEM, SOAR, LAN - £55,000 - £75,000 - NW England Do you want to be one of the Fortinet experts within a Fortinet Expert Partner? Do you want to work on some of the most exciting SecOps projects out there? Do you want to be part of a close-knit team that are moving the dial in the world of Security? We are working with a Fortinet Expert Partner to find a Senior Network Security Specialist. You will be working on some of the most exciting modern network and systems security architecture and will have design and practical experience of Fortinet's security portfolio, including the FortiGate Unified Threat Management platform, SDWAN, ZTNA and SASE. You will be Leading, Designing, Implementation Security Architecture projects. There is lots of training and development within this role and you will be able to add to your Fortinet certs whilst in this role. Ideally you will come from a background LAN Enterprise and/or WAN and have a detailed knowledge of IP, network security, unified threat management, communications media, and networking equipment. Skills Fortinet - NSE7 SecOps automated tooling Strong Networking background Low Level Design Implementation Firewalls, Unified Threat Management, Web Filtering, Email Security SDWAN/SASE This business operates out of two sites, and you will be working on a Hybrid basis and will be aligned to one of the offices and able to expense to the other. You will be expected to help occasionally with some final escalation form the Managed Services desk when it falls into your area of expertise. Duties and Responsibilities: Design, implement and support network security architecture including Firewalls, Unified Threat Management, Web Filtering, Email Security, Web Application Firewalls, Authentication Improve network security infrastructure with automated SecOps tooling Lead, Plan, Design, and Implement Security Architecture to external customers as part of the Professional Services team. Last point of escalation when needed Be able to undergo DBS clearance. NPPV3 - will need to be undertaken post probation. Security Consultant/Engineer - Fortinet, NSE7, SIEM, SOAR, LAN - £55,000 - £75,000 - NW England
InfraView - Specialist Cloud & IT Infrastructure Technology Recruitmen
X2 Network Consultant & Engineer - Cisco Lan Enterprise - Cisco, Juniper and/or Aruba Certs - £45K - £70K - Homebased, office, hybrid - North West Do you want to work for a leading Network Security Solutions Provider? Do you want to be part of a close-knit team with endless progression? Are you a ready-made Design & Implementation Consultant? Are you a Support & Project Implementation Engineer that wants to step up into Design & Implementation? You will be joining a leading Networking Security Solutions Provider as a Snr Network Design & Implementation Engineer OR as a Network Project Engineer. Design, implement and support network infrastructure including edge and core switching technologies, telecommunications Routers, enterprise wireless solutions, Unified Communications and Wide Area Networks Plan, design and implement networking architecture projects, working on multiple customer projects across Cisco Lan & Wireless Enterprise technologies, including Juniper & Aruba. Skills & duties: Cisco, Juniper and/or Aruba Certs Solid Design and implementation around Cisco Lan enterprise networking & Wireless projects Strong Lan Networking background Low Level Design & implementation Plan, Design, and Implement networking and wireless projects to external customers as part of the Professional Services team. Installation, audits, presentation of reports, fault investigation and rectification; liaison and problem solving Act as an escalation support line for 2nd & 3rd Liners Be able to undergo DBS clearance. NPPV3 - will need to be undertaken post probation. This business operates out of two sites within the North West and you will be working on a Hybrid basis and will be aligned to one of the offices and able to expense to the other. Network Engineer - Cisco Lan Enterprise - CCNP - Juniper, Aruba - £45,000 - £70K - Homebased, office, hybrid - North West
08/05/2026
Full time
X2 Network Consultant & Engineer - Cisco Lan Enterprise - Cisco, Juniper and/or Aruba Certs - £45K - £70K - Homebased, office, hybrid - North West Do you want to work for a leading Network Security Solutions Provider? Do you want to be part of a close-knit team with endless progression? Are you a ready-made Design & Implementation Consultant? Are you a Support & Project Implementation Engineer that wants to step up into Design & Implementation? You will be joining a leading Networking Security Solutions Provider as a Snr Network Design & Implementation Engineer OR as a Network Project Engineer. Design, implement and support network infrastructure including edge and core switching technologies, telecommunications Routers, enterprise wireless solutions, Unified Communications and Wide Area Networks Plan, design and implement networking architecture projects, working on multiple customer projects across Cisco Lan & Wireless Enterprise technologies, including Juniper & Aruba. Skills & duties: Cisco, Juniper and/or Aruba Certs Solid Design and implementation around Cisco Lan enterprise networking & Wireless projects Strong Lan Networking background Low Level Design & implementation Plan, Design, and Implement networking and wireless projects to external customers as part of the Professional Services team. Installation, audits, presentation of reports, fault investigation and rectification; liaison and problem solving Act as an escalation support line for 2nd & 3rd Liners Be able to undergo DBS clearance. NPPV3 - will need to be undertaken post probation. This business operates out of two sites within the North West and you will be working on a Hybrid basis and will be aligned to one of the offices and able to expense to the other. Network Engineer - Cisco Lan Enterprise - CCNP - Juniper, Aruba - £45,000 - £70K - Homebased, office, hybrid - North West
for our customer, we requrie a DC/Infrastructure Engineer who can travel betweeen Birmingham & London Key Technologies & Experience Data Centre & Hardware Physical data centre operations (racking, stacking, cabling, commissioning, decommissioning) Enterprise server hardware deployment & life cycle management Structured cabling and DC infrastructure standards Co-location environments (eg Equinix or similar) Cloud & Virtualisation VMware vSphere/VMware ecosystem Apache CloudStack (or similar IaaS platforms) Public cloud: AWS and/or Microsoft Azure Hybrid cloud architecture (on-prem + cloud integration) Infrastructure & Platforms Enterprise compute, storage, and networking architecture Storage technologies: SAN, NAS, object storage Infrastructure design for scalability, resilience, and high availability Networking & Security Managed Switches, routing, and enterprise networking Firewall technologies (Fortinet preferred; Cisco experience beneficial) Network design and troubleshooting (L2/L3) Security hardening and infrastructure compliance best practices Operating Systems Linux (Ubuntu preferred) Windows Server environments Monitoring, Backup & DR Monitoring & observability: Prometheus, Grafana, Checkmk, ELK Stack Backup solutions: Veeam, Commvault (or similar) Disaster recovery and business continuity planning Automation/DevOps (Desirable) Container platforms (Kubernetes) Collaboration with DevOps pipelines and modern infrastructure practices Project & Delivery Data centre migration and relocation programmes Infrastructure upgrades, capacity planning, and transformation projects Multi-site delivery across complex environments Certifications (Nice to Have) AWS Certified Solutions Architect Microsoft Azure Administrator VMware VCP Cisco CCNP We believe in equal opportunity for all and actively encourage applications from diverse backgrounds, experiences, and perspectives. Source Group International Ltd is acting as an Employment Business in relation to this vacancy
08/05/2026
Contractor
for our customer, we requrie a DC/Infrastructure Engineer who can travel betweeen Birmingham & London Key Technologies & Experience Data Centre & Hardware Physical data centre operations (racking, stacking, cabling, commissioning, decommissioning) Enterprise server hardware deployment & life cycle management Structured cabling and DC infrastructure standards Co-location environments (eg Equinix or similar) Cloud & Virtualisation VMware vSphere/VMware ecosystem Apache CloudStack (or similar IaaS platforms) Public cloud: AWS and/or Microsoft Azure Hybrid cloud architecture (on-prem + cloud integration) Infrastructure & Platforms Enterprise compute, storage, and networking architecture Storage technologies: SAN, NAS, object storage Infrastructure design for scalability, resilience, and high availability Networking & Security Managed Switches, routing, and enterprise networking Firewall technologies (Fortinet preferred; Cisco experience beneficial) Network design and troubleshooting (L2/L3) Security hardening and infrastructure compliance best practices Operating Systems Linux (Ubuntu preferred) Windows Server environments Monitoring, Backup & DR Monitoring & observability: Prometheus, Grafana, Checkmk, ELK Stack Backup solutions: Veeam, Commvault (or similar) Disaster recovery and business continuity planning Automation/DevOps (Desirable) Container platforms (Kubernetes) Collaboration with DevOps pipelines and modern infrastructure practices Project & Delivery Data centre migration and relocation programmes Infrastructure upgrades, capacity planning, and transformation projects Multi-site delivery across complex environments Certifications (Nice to Have) AWS Certified Solutions Architect Microsoft Azure Administrator VMware VCP Cisco CCNP We believe in equal opportunity for all and actively encourage applications from diverse backgrounds, experiences, and perspectives. Source Group International Ltd is acting as an Employment Business in relation to this vacancy
for our customer, we requrie a DC/Infrastructure Engineer who can travel betweeen Birmingham & London Key Technologies & Experience Data Centre & Hardware Physical data centre operations (racking, stacking, cabling, commissioning, decommissioning) Enterprise server hardware deployment & life cycle management Structured cabling and DC infrastructure standards Co-location environments (eg Equinix or similar) Cloud & Virtualisation VMware vSphere/VMware ecosystem Apache CloudStack (or similar IaaS platforms) Public cloud: AWS and/or Microsoft Azure Hybrid cloud architecture (on-prem + cloud integration) Infrastructure & Platforms Enterprise compute, storage, and networking architecture Storage technologies: SAN, NAS, object storage Infrastructure design for scalability, resilience, and high availability Networking & Security Managed Switches, routing, and enterprise networking Firewall technologies (Fortinet preferred; Cisco experience beneficial) Network design and troubleshooting (L2/L3) Security hardening and infrastructure compliance best practices Operating Systems Linux (Ubuntu preferred) Windows Server environments Monitoring, Backup & DR Monitoring & observability: Prometheus, Grafana, Checkmk, ELK Stack Backup solutions: Veeam, Commvault (or similar) Disaster recovery and business continuity planning Automation/DevOps (Desirable) Container platforms (Kubernetes) Collaboration with DevOps pipelines and modern infrastructure practices Project & Delivery Data centre migration and relocation programmes Infrastructure upgrades, capacity planning, and transformation projects Multi-site delivery across complex environments Certifications (Nice to Have) AWS Certified Solutions Architect Microsoft Azure Administrator VMware VCP Cisco CCNP We believe in equal opportunity for all and actively encourage applications from diverse backgrounds, experiences, and perspectives. Source Group International Ltd is acting as an Employment Business in relation to this vacancy
08/05/2026
Contractor
for our customer, we requrie a DC/Infrastructure Engineer who can travel betweeen Birmingham & London Key Technologies & Experience Data Centre & Hardware Physical data centre operations (racking, stacking, cabling, commissioning, decommissioning) Enterprise server hardware deployment & life cycle management Structured cabling and DC infrastructure standards Co-location environments (eg Equinix or similar) Cloud & Virtualisation VMware vSphere/VMware ecosystem Apache CloudStack (or similar IaaS platforms) Public cloud: AWS and/or Microsoft Azure Hybrid cloud architecture (on-prem + cloud integration) Infrastructure & Platforms Enterprise compute, storage, and networking architecture Storage technologies: SAN, NAS, object storage Infrastructure design for scalability, resilience, and high availability Networking & Security Managed Switches, routing, and enterprise networking Firewall technologies (Fortinet preferred; Cisco experience beneficial) Network design and troubleshooting (L2/L3) Security hardening and infrastructure compliance best practices Operating Systems Linux (Ubuntu preferred) Windows Server environments Monitoring, Backup & DR Monitoring & observability: Prometheus, Grafana, Checkmk, ELK Stack Backup solutions: Veeam, Commvault (or similar) Disaster recovery and business continuity planning Automation/DevOps (Desirable) Container platforms (Kubernetes) Collaboration with DevOps pipelines and modern infrastructure practices Project & Delivery Data centre migration and relocation programmes Infrastructure upgrades, capacity planning, and transformation projects Multi-site delivery across complex environments Certifications (Nice to Have) AWS Certified Solutions Architect Microsoft Azure Administrator VMware VCP Cisco CCNP We believe in equal opportunity for all and actively encourage applications from diverse backgrounds, experiences, and perspectives. Source Group International Ltd is acting as an Employment Business in relation to this vacancy
NES Fircroft Engineering Services
Bristol, Somerset
Senior Product Security Engineer - 12 Months contract - Bristol/Remote Must be able to visit the Bristol office if required MUST BE SC LEVEL SECURITY CLEARED and current Inside IR35 Senior Product Security Engineer Job Description The Senior Product Security Engineer will be involved in the security of my client's designs and related current and emerging technology solutions on advanced next generation. The Opportunity Senior Product Security Engineer will be responsible for defining, implementing, and assuring the security strategy for defence shipping. This role ensures that cyber security, information assurance, and secure-by-design principles are Embedded across both the platform (ship) design and the IT/OT architecture throughout the full engineering life cycle. The role operates at the intersection of naval architecture, marine systems engineering, combat/logistics support systems, and enterprise IT/operational technology (OT), ensuring compliance with MOD security policies and relevant maritime cyber regulations. Duties Senior Product Security Engineer - Security Leadership & Strategy Develop and maintain the Product Security Management Plan (PSMP) for the vessel programme, covering all aspects of security. Define the security architecture strategy for both ship systems (OT) and IT networks. Act as the security authority within the Integrated Project Team (IPT). Provide leadership on secure-by-design principles across naval platform development. Secure Ship Design Integration Ensure security requirements are Embedded into programmable elements and systems included but not limited too: Platform management systems Navigation systems Propulsion and machinery control systems Communications systems (internal & external) Mission/logistics systems (if applicable) Conduct threat modelling and risk assessments for marine and hybrid IT/OT environments. Define physical security requirements and access controls. Support management of TEMPEST where required. Support design reviews (SRR, PDR, CDR) with formal security assurance inputs. Ensure compliance with relevant standards (eg, Def Stan, NCSC guidance, IEC 62443, NIST, IMO cyber guidance). IT & OT Architecture Security Define secure network zoning and segregation between: Operational Technology (OT) Information Technology (IT) Communications systems Approve system boundary definitions and trust zones. Ensure secure configuration baselines for onboard systems. Oversee secure integration of third-party vendors and subcontractors. Define Identity and Access Management (IAM) and privileged access strategies for afloat systems. Risk, Assurance & Compliance Lead security risk management in alignment with MOD/NCSC frameworks. Manage security risk registers and treatment plans. Coordinate accreditation and authority-to-operate activities. Support JSP 440/JSP 604 compliance activities. Provide evidence for security case development and formal assurance reviews. Supply Chain & Third-Party Security. Define security requirements within supplier contracts. Conduct supplier security assessments. Ensure secure development practices across the supply chain. Validate SBOMs (Software Bill of Materials) where required. Testing & Validation. Define security test strategies including: Vulnerability assessments Penetration testing Factory Acceptance Testing (FAT) security scope Harbour and Sea Trial cyber validation Oversee remediation of identified vulnerabilities. Ensure secure configuration prior to vessel acceptance. Incident Preparedness & Operational Security Define onboard cyber incident response requirements. Ensure monitoring and logging architecture supports detection and forensic investigation. Contribute to life cycle security planning, including in-service support. Qualifications Significant experience in cyber security within defence, maritime, or critical infrastructure environments. Experience in both the application of security accreditation and Secure by Design in a UK MOD environment. Experience securing complex IT/OT systems. Strong understanding of secure systems engineering principles. Experience working within MOD or defence regulatory frameworks. Demonstrated experience leading security through engineering design reviews. Knowledge of maritime systems and shipboard integration challenges. Strong understanding of network architectures, design and operation. Experience in the application of TEMPEST measures to design including use of Def-Stan 08-050 and 59-411, NCSC GPG14 and SDIP-29. Knowledge of maritime facility requirements for handling of high and extremely high classified data, eg STRAP, in line with UK MOD and NCSC requirements. With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Chemicals, Construction & Infrastructure, Life Sciences, Mining and Manufacturing sectors worldwide. With more than 80 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.
08/05/2026
Contractor
Senior Product Security Engineer - 12 Months contract - Bristol/Remote Must be able to visit the Bristol office if required MUST BE SC LEVEL SECURITY CLEARED and current Inside IR35 Senior Product Security Engineer Job Description The Senior Product Security Engineer will be involved in the security of my client's designs and related current and emerging technology solutions on advanced next generation. The Opportunity Senior Product Security Engineer will be responsible for defining, implementing, and assuring the security strategy for defence shipping. This role ensures that cyber security, information assurance, and secure-by-design principles are Embedded across both the platform (ship) design and the IT/OT architecture throughout the full engineering life cycle. The role operates at the intersection of naval architecture, marine systems engineering, combat/logistics support systems, and enterprise IT/operational technology (OT), ensuring compliance with MOD security policies and relevant maritime cyber regulations. Duties Senior Product Security Engineer - Security Leadership & Strategy Develop and maintain the Product Security Management Plan (PSMP) for the vessel programme, covering all aspects of security. Define the security architecture strategy for both ship systems (OT) and IT networks. Act as the security authority within the Integrated Project Team (IPT). Provide leadership on secure-by-design principles across naval platform development. Secure Ship Design Integration Ensure security requirements are Embedded into programmable elements and systems included but not limited too: Platform management systems Navigation systems Propulsion and machinery control systems Communications systems (internal & external) Mission/logistics systems (if applicable) Conduct threat modelling and risk assessments for marine and hybrid IT/OT environments. Define physical security requirements and access controls. Support management of TEMPEST where required. Support design reviews (SRR, PDR, CDR) with formal security assurance inputs. Ensure compliance with relevant standards (eg, Def Stan, NCSC guidance, IEC 62443, NIST, IMO cyber guidance). IT & OT Architecture Security Define secure network zoning and segregation between: Operational Technology (OT) Information Technology (IT) Communications systems Approve system boundary definitions and trust zones. Ensure secure configuration baselines for onboard systems. Oversee secure integration of third-party vendors and subcontractors. Define Identity and Access Management (IAM) and privileged access strategies for afloat systems. Risk, Assurance & Compliance Lead security risk management in alignment with MOD/NCSC frameworks. Manage security risk registers and treatment plans. Coordinate accreditation and authority-to-operate activities. Support JSP 440/JSP 604 compliance activities. Provide evidence for security case development and formal assurance reviews. Supply Chain & Third-Party Security. Define security requirements within supplier contracts. Conduct supplier security assessments. Ensure secure development practices across the supply chain. Validate SBOMs (Software Bill of Materials) where required. Testing & Validation. Define security test strategies including: Vulnerability assessments Penetration testing Factory Acceptance Testing (FAT) security scope Harbour and Sea Trial cyber validation Oversee remediation of identified vulnerabilities. Ensure secure configuration prior to vessel acceptance. Incident Preparedness & Operational Security Define onboard cyber incident response requirements. Ensure monitoring and logging architecture supports detection and forensic investigation. Contribute to life cycle security planning, including in-service support. Qualifications Significant experience in cyber security within defence, maritime, or critical infrastructure environments. Experience in both the application of security accreditation and Secure by Design in a UK MOD environment. Experience securing complex IT/OT systems. Strong understanding of secure systems engineering principles. Experience working within MOD or defence regulatory frameworks. Demonstrated experience leading security through engineering design reviews. Knowledge of maritime systems and shipboard integration challenges. Strong understanding of network architectures, design and operation. Experience in the application of TEMPEST measures to design including use of Def-Stan 08-050 and 59-411, NCSC GPG14 and SDIP-29. Knowledge of maritime facility requirements for handling of high and extremely high classified data, eg STRAP, in line with UK MOD and NCSC requirements. With over 90 years' combined experience, NES Fircroft (NES) is proud to be the world's leading engineering staffing provider spanning the Oil & Gas, Power & Renewables, Chemicals, Construction & Infrastructure, Life Sciences, Mining and Manufacturing sectors worldwide. With more than 80 offices in 45 countries, we are able to provide our clients with the engineering and technical expertise they need, wherever and whenever it is needed. We offer contractors far more than a traditional recruitment service, supporting with everything from securing visas and work permits, to providing market-leading benefits packages and accommodation, ensuring they are safely and compliantly able to support our clients.
About Scrumconnect Consulting Scrumconnect Consulting is a multi-award-winning digital consultancy, recognised for delivering impactful technology solutions across UK government departments. Our work has positively influenced the lives of over 40 million UK citizens. With a strong commitment to user-centred design and agile delivery, we continue to deliver innovative digital services that matter. Role Overview We are looking for a Senior iOS Developer to design, build, and maintain high-quality native iOS applications for a UK government client. You will work as part of a multidisciplinary agile team, delivering user-centred mobile experiences that meet Government Digital Service (GDS) standards and accessibility requirements. This is a hands-on technical role operating within structured and governed environments where security, performance, accessibility, and reliability are critical to service success. Key Responsibilities Design, develop, and maintain native iOS applications using Swift Collaborate with UX designers, product owners, and Back End developers to translate requirements into robust, accessible mobile experiences Write clean, testable, well-documented code following established coding standards and architectural patterns Implement and maintain CI/CD pipelines for automated builds, testing, and deployment Ensure applications meet WCAG 2.2 accessibility standards and GDS service standards Conduct code reviews and contribute to engineering best practices within the team Integrate with RESTful APIs and Back End services, working closely with API developers Troubleshoot and resolve performance issues, crashes, and production defects Support App Store submission processes and manage release cycles Contribute to technical documentation, architecture decisions, and sprint ceremonies Essential Skills & Experience Strong experience in native iOS development using Swift Solid understanding of iOS SDK, Xcode, and the Apple development ecosystem Experience with common iOS architectural patterns (eg MVVM, VIPER, Clean Architecture) Proficiency with iOS frameworks such as UIKit, SwiftUI, Combine, Core Data, or equivalent Experience writing unit tests, UI tests, and working with test-driven development practices Hands-on experience with CI/CD tools (eg Xcode Cloud, Fastlane, Jenkins, Azure DevOps) Understanding of RESTful API integration and networking best practices Familiarity with accessibility standards (WCAG 2.2) and building inclusive mobile interfaces Experience working in Agile or hybrid delivery models (Scrum, Kanban) Experience working in regulated, security-conscious, or high-assurance environments Desirable Experience delivering mobile applications within a UK public-sector or government context Familiarity with GDS service standards, the Technology Code of Practice, and the GOV.UK Design System Experience with mobile analytics, crash reporting, and APM tools (eg Firebase, Dynatrace, App Center) Understanding of secure coding practices and mobile security frameworks (eg OWASP Mobile) Experience with mobile device management (MDM) or enterprise distribution Familiarity with cross-platform considerations, even if primarily native-focused Scope & Accountability Responsible for hands-on design, development, and maintenance of iOS applications Owns the quality and technical integrity of assigned mobile deliverables and code Contributes technical analysis and recommendations to the wider delivery team Accountable for timely delivery of agreed development activities within sprint cycles Our Commitment to Diversity & Inclusion At Scrumconnect Consulting, we believe that diversity drives innovation. We are committed to creating an inclusive environment where everyone is respected, valued, and supported. We actively encourage applications from women, people with disabilities, individuals from under-represented communities, and those seeking flexible working arrangements. As a Disability Confident Level 1 employer, we provide reasonable adjustments throughout the recruitment process and employment to ensure equal opportunity for all.
08/05/2026
Contractor
About Scrumconnect Consulting Scrumconnect Consulting is a multi-award-winning digital consultancy, recognised for delivering impactful technology solutions across UK government departments. Our work has positively influenced the lives of over 40 million UK citizens. With a strong commitment to user-centred design and agile delivery, we continue to deliver innovative digital services that matter. Role Overview We are looking for a Senior iOS Developer to design, build, and maintain high-quality native iOS applications for a UK government client. You will work as part of a multidisciplinary agile team, delivering user-centred mobile experiences that meet Government Digital Service (GDS) standards and accessibility requirements. This is a hands-on technical role operating within structured and governed environments where security, performance, accessibility, and reliability are critical to service success. Key Responsibilities Design, develop, and maintain native iOS applications using Swift Collaborate with UX designers, product owners, and Back End developers to translate requirements into robust, accessible mobile experiences Write clean, testable, well-documented code following established coding standards and architectural patterns Implement and maintain CI/CD pipelines for automated builds, testing, and deployment Ensure applications meet WCAG 2.2 accessibility standards and GDS service standards Conduct code reviews and contribute to engineering best practices within the team Integrate with RESTful APIs and Back End services, working closely with API developers Troubleshoot and resolve performance issues, crashes, and production defects Support App Store submission processes and manage release cycles Contribute to technical documentation, architecture decisions, and sprint ceremonies Essential Skills & Experience Strong experience in native iOS development using Swift Solid understanding of iOS SDK, Xcode, and the Apple development ecosystem Experience with common iOS architectural patterns (eg MVVM, VIPER, Clean Architecture) Proficiency with iOS frameworks such as UIKit, SwiftUI, Combine, Core Data, or equivalent Experience writing unit tests, UI tests, and working with test-driven development practices Hands-on experience with CI/CD tools (eg Xcode Cloud, Fastlane, Jenkins, Azure DevOps) Understanding of RESTful API integration and networking best practices Familiarity with accessibility standards (WCAG 2.2) and building inclusive mobile interfaces Experience working in Agile or hybrid delivery models (Scrum, Kanban) Experience working in regulated, security-conscious, or high-assurance environments Desirable Experience delivering mobile applications within a UK public-sector or government context Familiarity with GDS service standards, the Technology Code of Practice, and the GOV.UK Design System Experience with mobile analytics, crash reporting, and APM tools (eg Firebase, Dynatrace, App Center) Understanding of secure coding practices and mobile security frameworks (eg OWASP Mobile) Experience with mobile device management (MDM) or enterprise distribution Familiarity with cross-platform considerations, even if primarily native-focused Scope & Accountability Responsible for hands-on design, development, and maintenance of iOS applications Owns the quality and technical integrity of assigned mobile deliverables and code Contributes technical analysis and recommendations to the wider delivery team Accountable for timely delivery of agreed development activities within sprint cycles Our Commitment to Diversity & Inclusion At Scrumconnect Consulting, we believe that diversity drives innovation. We are committed to creating an inclusive environment where everyone is respected, valued, and supported. We actively encourage applications from women, people with disabilities, individuals from under-represented communities, and those seeking flexible working arrangements. As a Disability Confident Level 1 employer, we provide reasonable adjustments throughout the recruitment process and employment to ensure equal opportunity for all.
Network Security Specialist, Fortinet, Palo Alto, Zero Trust, Zscaler, Automation Hybrid working 3 days in office (London) My client is seeking a Network Security Specialist to join his team in London. This is a newly created role and sits in the Network Team and will act as a conduit between the Network Team and InfoSec team. It is an ideal opportunity for someone who is looking to step up into a technical authority/delivery lead position. As a Senior Network Security Specialist, you will design, implement and govern the network security controls that protect their modern, high-performance enterprise network. You will take a hands-on lead role in shaping the network security roadmap, defining policies and standards and driving the adoption of Zero Trust and micro-segmentation across the organisation. Skills and experience required: Experience defining/implementing network segmentation and micro-segmentation strategies Zero Trust networking principles and identity-aware access controls Designing, implementing and optimising firewall and proxy security policies. Deep hands-on experience with: Fortinet (FortiGate, FortiManager, FortiAnalyzer) Zscaler (ZIA, ZPA, Zero Trust Exchange) Palo Alto Networks (PAN-OS, Panorama, policy design) - Desirable Experience securing hybrid environments spanning on-prem, cloud, and containerised platforms. Automation and infrastructure-as-code approaches for deploying security controls. Routing, switching, load balancing and security architectures, with extensive operational and engineering experience. TCP/IP, BGP, OSPF, VLANs, VRF, VPN, VXLAN, NAT, ACLs, DNS. Packet capture and network analytics and monitoring tools. Desirable:Exposure to security controls and design for Kubernetes/OpenShift Experience within highly regulatated environments If this is of interest and you have the required skills, please submit your CV over for immediate consdieration. McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.
08/05/2026
Full time
Network Security Specialist, Fortinet, Palo Alto, Zero Trust, Zscaler, Automation Hybrid working 3 days in office (London) My client is seeking a Network Security Specialist to join his team in London. This is a newly created role and sits in the Network Team and will act as a conduit between the Network Team and InfoSec team. It is an ideal opportunity for someone who is looking to step up into a technical authority/delivery lead position. As a Senior Network Security Specialist, you will design, implement and govern the network security controls that protect their modern, high-performance enterprise network. You will take a hands-on lead role in shaping the network security roadmap, defining policies and standards and driving the adoption of Zero Trust and micro-segmentation across the organisation. Skills and experience required: Experience defining/implementing network segmentation and micro-segmentation strategies Zero Trust networking principles and identity-aware access controls Designing, implementing and optimising firewall and proxy security policies. Deep hands-on experience with: Fortinet (FortiGate, FortiManager, FortiAnalyzer) Zscaler (ZIA, ZPA, Zero Trust Exchange) Palo Alto Networks (PAN-OS, Panorama, policy design) - Desirable Experience securing hybrid environments spanning on-prem, cloud, and containerised platforms. Automation and infrastructure-as-code approaches for deploying security controls. Routing, switching, load balancing and security architectures, with extensive operational and engineering experience. TCP/IP, BGP, OSPF, VLANs, VRF, VPN, VXLAN, NAT, ACLs, DNS. Packet capture and network analytics and monitoring tools. Desirable:Exposure to security controls and design for Kubernetes/OpenShift Experience within highly regulatated environments If this is of interest and you have the required skills, please submit your CV over for immediate consdieration. McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds.
About Scrumconnect Consulting Scrumconnect Consulting is a multi-award-winning digital consultancy, recognised for delivering impactful technology solutions across UK government departments. Our work has positively influenced the lives of over 40 million UK citizens. With a strong commitment to user-centred design and agile delivery, we continue to deliver innovative digital services that matter. Role Overview We are looking for a Senior Android Developer to design, build, and maintain high-quality native Android applications for a UK government client. You will work as part of a multidisciplinary agile team, delivering user-centred mobile experiences that meet Government Digital Service (GDS) standards and accessibility requirements. This is a hands-on technical role operating within structured and governed environments where security, performance, accessibility, and reliability are critical to service success. Key Responsibilities Design, develop, and maintain native Android applications using Kotlin and/or Java Collaborate with UX designers, product owners, and Back End developers to translate requirements into robust, accessible mobile experiences Write clean, testable, well-documented code following established coding standards and architectural patterns Implement and maintain CI/CD pipelines for automated builds, testing, and deployment Ensure applications meet WCAG 2.2 accessibility standards and GDS service standards Conduct code reviews and contribute to engineering best practices within the team Integrate with RESTful APIs and Back End services, working closely with API developers Troubleshoot and resolve performance issues, crashes, and production defects Support Google Play Store submission processes and manage release cycles Contribute to technical documentation, architecture decisions, and sprint ceremonies Essential Skills & Experience Strong experience in native Android development using Kotlin (Java experience also valued) Solid understanding of Android SDK, Android Studio, and the Google development ecosystem Experience with common Android architectural patterns (eg MVVM, MVI, Clean Architecture) Proficiency with Android frameworks such as Jetpack Compose, Android Jetpack libraries, Room, Retrofit, or equivalent Experience writing unit tests, instrumented tests, and working with test-driven development practices Hands-on experience with CI/CD tools (eg Gradle, Fastlane, Jenkins, Azure DevOps, GitHub Actions) Understanding of RESTful API integration and networking best practices Familiarity with accessibility standards (WCAG 2.2) and building inclusive mobile interfaces Experience working in Agile or hybrid delivery models (Scrum, Kanban) Experience working in regulated, security-conscious, or high-assurance environments Desirable Experience delivering mobile applications within a UK public-sector or government context Familiarity with GDS service standards, the Technology Code of Practice, and the GOV.UK Design System Experience with mobile analytics, crash reporting, and APM tools (eg Firebase Crashlytics, Dynatrace, App Center) Understanding of secure coding practices and mobile security frameworks (eg OWASP Mobile) Experience with mobile device management (MDM) or enterprise distribution Familiarity with cross-platform considerations, even if primarily native-focused Scope & Accountability Responsible for hands-on design, development, and maintenance of Android applications Owns the quality and technical integrity of assigned mobile deliverables and code Contributes technical analysis and recommendations to the wider delivery team Accountable for timely delivery of agreed development activities within sprint cycles Our Commitment to Diversity & Inclusion At Scrumconnect Consulting, we believe that diversity drives innovation. We are committed to creating an inclusive environment where everyone is respected, valued, and supported. We actively encourage applications from women, people with disabilities, individuals from under-represented communities, and those seeking flexible working arrangements. As a Disability Confident Level 1 employer, we provide reasonable adjustments throughout the recruitment process and employment to ensure equal opportunity for all.
08/05/2026
Contractor
About Scrumconnect Consulting Scrumconnect Consulting is a multi-award-winning digital consultancy, recognised for delivering impactful technology solutions across UK government departments. Our work has positively influenced the lives of over 40 million UK citizens. With a strong commitment to user-centred design and agile delivery, we continue to deliver innovative digital services that matter. Role Overview We are looking for a Senior Android Developer to design, build, and maintain high-quality native Android applications for a UK government client. You will work as part of a multidisciplinary agile team, delivering user-centred mobile experiences that meet Government Digital Service (GDS) standards and accessibility requirements. This is a hands-on technical role operating within structured and governed environments where security, performance, accessibility, and reliability are critical to service success. Key Responsibilities Design, develop, and maintain native Android applications using Kotlin and/or Java Collaborate with UX designers, product owners, and Back End developers to translate requirements into robust, accessible mobile experiences Write clean, testable, well-documented code following established coding standards and architectural patterns Implement and maintain CI/CD pipelines for automated builds, testing, and deployment Ensure applications meet WCAG 2.2 accessibility standards and GDS service standards Conduct code reviews and contribute to engineering best practices within the team Integrate with RESTful APIs and Back End services, working closely with API developers Troubleshoot and resolve performance issues, crashes, and production defects Support Google Play Store submission processes and manage release cycles Contribute to technical documentation, architecture decisions, and sprint ceremonies Essential Skills & Experience Strong experience in native Android development using Kotlin (Java experience also valued) Solid understanding of Android SDK, Android Studio, and the Google development ecosystem Experience with common Android architectural patterns (eg MVVM, MVI, Clean Architecture) Proficiency with Android frameworks such as Jetpack Compose, Android Jetpack libraries, Room, Retrofit, or equivalent Experience writing unit tests, instrumented tests, and working with test-driven development practices Hands-on experience with CI/CD tools (eg Gradle, Fastlane, Jenkins, Azure DevOps, GitHub Actions) Understanding of RESTful API integration and networking best practices Familiarity with accessibility standards (WCAG 2.2) and building inclusive mobile interfaces Experience working in Agile or hybrid delivery models (Scrum, Kanban) Experience working in regulated, security-conscious, or high-assurance environments Desirable Experience delivering mobile applications within a UK public-sector or government context Familiarity with GDS service standards, the Technology Code of Practice, and the GOV.UK Design System Experience with mobile analytics, crash reporting, and APM tools (eg Firebase Crashlytics, Dynatrace, App Center) Understanding of secure coding practices and mobile security frameworks (eg OWASP Mobile) Experience with mobile device management (MDM) or enterprise distribution Familiarity with cross-platform considerations, even if primarily native-focused Scope & Accountability Responsible for hands-on design, development, and maintenance of Android applications Owns the quality and technical integrity of assigned mobile deliverables and code Contributes technical analysis and recommendations to the wider delivery team Accountable for timely delivery of agreed development activities within sprint cycles Our Commitment to Diversity & Inclusion At Scrumconnect Consulting, we believe that diversity drives innovation. We are committed to creating an inclusive environment where everyone is respected, valued, and supported. We actively encourage applications from women, people with disabilities, individuals from under-represented communities, and those seeking flexible working arrangements. As a Disability Confident Level 1 employer, we provide reasonable adjustments throughout the recruitment process and employment to ensure equal opportunity for all.
We are looking for a QA Test Infrastructure Engineer to work with one of our clients in the defence sector. You'll work alongside engineers, architects, and delivery specialists to develop technology that enables faster, safer decision-making for critical operations. You work will consist of: ensuring quality of products as they move from POC to production, analysing infrastructure requirements and architectures, creating infrastructure-focussed strategies and designing and executing tests across physical infrastructure and IaC. We are looking for someone with skills and experience in: Infrastructure, Networking & Operating Systems Strong understanding of TCP/IP, DNS, DHCP, routing, switching, Firewalls, VLANs, and related network behaviours. Experience with physical infrastructure setup and troubleshooting (Routers, Switches, cabling). Proficiency with Linux/Unix command line for diagnostics, configuration, and validation. Experience working across virtualisation platforms (VMware, VirtualBox) and cloud environments (AWS, Azure, GCP). Infrastructure as Code (IaC) Terraform: writing/validating HCL, managing state, using modules. Ansible: building playbooks/roles, inventories, and validating idempotency. Kubernetes: deploying workloads, validating manifests, managing clusters, and testing containerised applications. CI/CD & Automation Familiarity with CI/CD tooling (Jenkins, GitLab CI, GitHub Actions). Experience integrating IaC validation and environment checks into automated pipelines. Understanding of pipeline gating, automated readiness checks, and environment orchestration. Security & Compliance Strong grounding in Secure-by-Design principles, IAM, least privilege, OS hardening, network segmentation, and observability. Experience within regulated or highly governed environments (eg, MOD or similar). Ability to support compliance, assurance, and accreditation activity. Due to the nature of the work, candidates must be sole British nationals, hold DV clearance and be on site 5 days a week.
08/05/2026
Contractor
We are looking for a QA Test Infrastructure Engineer to work with one of our clients in the defence sector. You'll work alongside engineers, architects, and delivery specialists to develop technology that enables faster, safer decision-making for critical operations. You work will consist of: ensuring quality of products as they move from POC to production, analysing infrastructure requirements and architectures, creating infrastructure-focussed strategies and designing and executing tests across physical infrastructure and IaC. We are looking for someone with skills and experience in: Infrastructure, Networking & Operating Systems Strong understanding of TCP/IP, DNS, DHCP, routing, switching, Firewalls, VLANs, and related network behaviours. Experience with physical infrastructure setup and troubleshooting (Routers, Switches, cabling). Proficiency with Linux/Unix command line for diagnostics, configuration, and validation. Experience working across virtualisation platforms (VMware, VirtualBox) and cloud environments (AWS, Azure, GCP). Infrastructure as Code (IaC) Terraform: writing/validating HCL, managing state, using modules. Ansible: building playbooks/roles, inventories, and validating idempotency. Kubernetes: deploying workloads, validating manifests, managing clusters, and testing containerised applications. CI/CD & Automation Familiarity with CI/CD tooling (Jenkins, GitLab CI, GitHub Actions). Experience integrating IaC validation and environment checks into automated pipelines. Understanding of pipeline gating, automated readiness checks, and environment orchestration. Security & Compliance Strong grounding in Secure-by-Design principles, IAM, least privilege, OS hardening, network segmentation, and observability. Experience within regulated or highly governed environments (eg, MOD or similar). Ability to support compliance, assurance, and accreditation activity. Due to the nature of the work, candidates must be sole British nationals, hold DV clearance and be on site 5 days a week.
Purpose of the Role The Active Directory/Entra Specialist is the technical authority for the customer's hybrid identity platform. The role owns the design, operation, security, and continuous improvement of on-premises Active Directory Domain Services, Group Policy, ADFS, Entra ID (P2), Azure AD Connect, B2B and B2C flows, Conditional Access, MFA, Intune, and identity life cycle automation across all in-scope business programmes. Identity is the foundation of every other workload in the estate. This role therefore underwrites the availability, security and compliance of M365, SharePoint, Power Platform, Dynamics 365, Fabric and Azure services. The post-holder is on the front line for any P1 authentication outage, Conditional Access misconfiguration, or directory replication failure. Requirements 2.3 Key Technical Responsibilities Hybrid Active Directory Operations Administer multi-forest on-premises Active Directory Domain Services (modern schema, WS2016+ functional level), including domain controllers, FSMO roles, sites and services, replication topology, DNS, DHCP, time service (NT5DS), and trust relationships. Maintain and harden Group Policy Objects across the estate, including baseline security GPOs, audit policies, AppLocker/WDAC, BitLocker, Windows Update for Business, and computer/user configuration drift detection. Operate and patch ADFS on Legacy Windows Server (where present), administer claims rules, relying party trusts, certificate rotation, and plan migration of relying parties to Entra ID where commercially appropriate. Manage Azure AD Connect (auto-updating) including sync rules, source anchor, password hash sync/pass-through authentication, seamless SSO, staging mode validation, and re-permission/re-baseline activities. Diagnose and remediate replication failures, lingering objects, USN rollback, tombstone issues, NTLM/Kerberos auth failures, SPN duplication, and time-skew problems using repadmin, dcdiag, klist, KDCDiag, ADReplStatus and Microsoft 365 Connectivity Analyzer. Entra ID and Identity Lifecycle Administer Entra ID P2 tenants including users, groups, dynamic groups, administrative units, application registrations, enterprise applications, service principals, managed identities, and consent workflows. Configure and operate Conditional Access (sign-in risk, user risk, named locations, device compliance, session controls), Multi-Factor Authentication, passwordless sign-in (Windows Hello for Business, FIDO2, Authenticator), and Temporary Access Pass for onboarding. Operate Privileged Identity Management (PIM) for just-in-time role activation, approval workflows, access reviews and break-glass account governance; work with the on-premises PAM solution for tier-0 administration. Manage Entra ID B2B (guest collaboration) and B2C (custom policies, user flows, identity providers, custom branding, application integrations) for both internal and external-facing tenants. Implement Identity Governance: Entitlement Management, Access Packages, Access Reviews, Lifecycle Workflows, and HR-driven inbound provisioning where in scope. Endpoint Management with Intune Administer Microsoft Intune including device enrolment (Autopilot, Apple ABM, Android Enterprise), configuration profiles, compliance policies, app protection policies (MAM), Conditional Access integration, and Endpoint Privilege Management. Define and maintain Windows update rings, feature update profiles, driver update profiles, and Defender for Endpoint baselines via Intune Security Baselines. Operate Win32/LOB/Microsoft Store app deployment, package authoring (intunewin), update rings, and supersedence chains. Co-manage devices with Configuration Manager where present, troubleshoot enrolment failures using IME logs, MDM Diagnostics Tool, and the Intune Troubleshooting portal. Identity Automation and Tooling Author and maintain PowerShell automation using Microsoft Graph PowerShell SDK, Az PowerShell, ExchangeOnlineManagement, MSOnline (Legacy), AzureAD (Legacy), and ActiveDirectory modules - including JML (Joiner-Mover-Leaver) workflows, group membership reconciliation, stale object cleanup, and licence assignment. Build and operate identity-related runbooks in Azure Automation, Logic Apps, or Power Automate where appropriate. Use Microsoft Graph (REST + SDK) for advanced reporting, bulk operations, and integration with HR/ITSM platforms. Service Operations Own L2/L3 incident, problem and change resolution for identity-related tickets, achieving the contractual SLAs: P1 1-hour response/4-hour resolution, P2 4-hour response/1 working day resolution, P3 1 working day response/3 working days resolution. Lead root cause analysis (RCA) for P1 identity incidents and produce post-incident review reports within five working days. Contribute to monthly service reports with identity KPIs (sign-in success rate, MFA coverage, Conditional Access policy hits, privileged role activations, sync health, AAD Connect latency, certificate expiry watchlist). Participate in CAB review, change scheduling, and change risk assessment for identity changes; produce rollback plans and pre/post implementation checks. Mandatory Technical Skills Active Directory Domain Services on Windows Server 2016+ including schema management, sites and services, GPO design, ADFS, AD CS, AD Recycle Bin, and DR/recovery procedures (authoritative restore). Entra ID P2 deep configuration: Conditional Access, MFA, PIM, Identity Protection (sign-in risk, user risk, risky users), Identity Governance, Application Proxy, External Identities (B2B, B2C custom policies), and Hybrid Identity (AAD Connect). Microsoft Intune end-to-end device and application management, including Autopilot pre-provisioning, compliance, configuration, and Endpoint Security baselines. PowerShell Scripting (intermediate-to-advanced) using Microsoft Graph SDK, Az, and ActiveDirectory modules; ability to read/debug/extend existing scripts under change control. Working knowledge of Microsoft Defender for Identity (formerly Azure ATP) signals and integration with Defender XDR. Networking fundamentals: DNS, Kerberos, NTLM, OAuth 2.0, OpenID Connect, SAML 2.0, WS-Federation, certificate-based authentication, TLS/SSL troubleshooting, and modern auth flows. Working knowledge of ITIL v4 incident, problem, change and configuration management, and ITSM ticketing (eg, ServiceNow, Jira Service Management). Desirable Technical Skills Entra Permissions Management (CIEM). Microsoft Entra ID Verified ID (decentralised identity) familiarity. Group Policy Analytics in Intune for cloud migration. Experience operating tier-0 PAM solutions (CyberArk, BeyondTrust, Delinea) on-premises. Familiarity with FIDO2 hardware tokens, Windows LAPS (cloud), and Authentication Methods migration. Exposure to Azure VPN Gateway, ExpressRoute, and hybrid connectivity for identity authentication paths. Required Certifications Microsoft Certified: Identity and Access Administrator Associate (SC-300) - mandatory. Microsoft Certified: Endpoint Administrator Associate (MD-102) - mandatory. Microsoft 365 Certified: Administrator Expert (MS-102) - preferred. Microsoft Certified: Cybersecurity Architect Expert (SC-100) - desirable. ITIL 4 Foundation - preferred.
08/05/2026
Purpose of the Role The Active Directory/Entra Specialist is the technical authority for the customer's hybrid identity platform. The role owns the design, operation, security, and continuous improvement of on-premises Active Directory Domain Services, Group Policy, ADFS, Entra ID (P2), Azure AD Connect, B2B and B2C flows, Conditional Access, MFA, Intune, and identity life cycle automation across all in-scope business programmes. Identity is the foundation of every other workload in the estate. This role therefore underwrites the availability, security and compliance of M365, SharePoint, Power Platform, Dynamics 365, Fabric and Azure services. The post-holder is on the front line for any P1 authentication outage, Conditional Access misconfiguration, or directory replication failure. Requirements 2.3 Key Technical Responsibilities Hybrid Active Directory Operations Administer multi-forest on-premises Active Directory Domain Services (modern schema, WS2016+ functional level), including domain controllers, FSMO roles, sites and services, replication topology, DNS, DHCP, time service (NT5DS), and trust relationships. Maintain and harden Group Policy Objects across the estate, including baseline security GPOs, audit policies, AppLocker/WDAC, BitLocker, Windows Update for Business, and computer/user configuration drift detection. Operate and patch ADFS on Legacy Windows Server (where present), administer claims rules, relying party trusts, certificate rotation, and plan migration of relying parties to Entra ID where commercially appropriate. Manage Azure AD Connect (auto-updating) including sync rules, source anchor, password hash sync/pass-through authentication, seamless SSO, staging mode validation, and re-permission/re-baseline activities. Diagnose and remediate replication failures, lingering objects, USN rollback, tombstone issues, NTLM/Kerberos auth failures, SPN duplication, and time-skew problems using repadmin, dcdiag, klist, KDCDiag, ADReplStatus and Microsoft 365 Connectivity Analyzer. Entra ID and Identity Lifecycle Administer Entra ID P2 tenants including users, groups, dynamic groups, administrative units, application registrations, enterprise applications, service principals, managed identities, and consent workflows. Configure and operate Conditional Access (sign-in risk, user risk, named locations, device compliance, session controls), Multi-Factor Authentication, passwordless sign-in (Windows Hello for Business, FIDO2, Authenticator), and Temporary Access Pass for onboarding. Operate Privileged Identity Management (PIM) for just-in-time role activation, approval workflows, access reviews and break-glass account governance; work with the on-premises PAM solution for tier-0 administration. Manage Entra ID B2B (guest collaboration) and B2C (custom policies, user flows, identity providers, custom branding, application integrations) for both internal and external-facing tenants. Implement Identity Governance: Entitlement Management, Access Packages, Access Reviews, Lifecycle Workflows, and HR-driven inbound provisioning where in scope. Endpoint Management with Intune Administer Microsoft Intune including device enrolment (Autopilot, Apple ABM, Android Enterprise), configuration profiles, compliance policies, app protection policies (MAM), Conditional Access integration, and Endpoint Privilege Management. Define and maintain Windows update rings, feature update profiles, driver update profiles, and Defender for Endpoint baselines via Intune Security Baselines. Operate Win32/LOB/Microsoft Store app deployment, package authoring (intunewin), update rings, and supersedence chains. Co-manage devices with Configuration Manager where present, troubleshoot enrolment failures using IME logs, MDM Diagnostics Tool, and the Intune Troubleshooting portal. Identity Automation and Tooling Author and maintain PowerShell automation using Microsoft Graph PowerShell SDK, Az PowerShell, ExchangeOnlineManagement, MSOnline (Legacy), AzureAD (Legacy), and ActiveDirectory modules - including JML (Joiner-Mover-Leaver) workflows, group membership reconciliation, stale object cleanup, and licence assignment. Build and operate identity-related runbooks in Azure Automation, Logic Apps, or Power Automate where appropriate. Use Microsoft Graph (REST + SDK) for advanced reporting, bulk operations, and integration with HR/ITSM platforms. Service Operations Own L2/L3 incident, problem and change resolution for identity-related tickets, achieving the contractual SLAs: P1 1-hour response/4-hour resolution, P2 4-hour response/1 working day resolution, P3 1 working day response/3 working days resolution. Lead root cause analysis (RCA) for P1 identity incidents and produce post-incident review reports within five working days. Contribute to monthly service reports with identity KPIs (sign-in success rate, MFA coverage, Conditional Access policy hits, privileged role activations, sync health, AAD Connect latency, certificate expiry watchlist). Participate in CAB review, change scheduling, and change risk assessment for identity changes; produce rollback plans and pre/post implementation checks. Mandatory Technical Skills Active Directory Domain Services on Windows Server 2016+ including schema management, sites and services, GPO design, ADFS, AD CS, AD Recycle Bin, and DR/recovery procedures (authoritative restore). Entra ID P2 deep configuration: Conditional Access, MFA, PIM, Identity Protection (sign-in risk, user risk, risky users), Identity Governance, Application Proxy, External Identities (B2B, B2C custom policies), and Hybrid Identity (AAD Connect). Microsoft Intune end-to-end device and application management, including Autopilot pre-provisioning, compliance, configuration, and Endpoint Security baselines. PowerShell Scripting (intermediate-to-advanced) using Microsoft Graph SDK, Az, and ActiveDirectory modules; ability to read/debug/extend existing scripts under change control. Working knowledge of Microsoft Defender for Identity (formerly Azure ATP) signals and integration with Defender XDR. Networking fundamentals: DNS, Kerberos, NTLM, OAuth 2.0, OpenID Connect, SAML 2.0, WS-Federation, certificate-based authentication, TLS/SSL troubleshooting, and modern auth flows. Working knowledge of ITIL v4 incident, problem, change and configuration management, and ITSM ticketing (eg, ServiceNow, Jira Service Management). Desirable Technical Skills Entra Permissions Management (CIEM). Microsoft Entra ID Verified ID (decentralised identity) familiarity. Group Policy Analytics in Intune for cloud migration. Experience operating tier-0 PAM solutions (CyberArk, BeyondTrust, Delinea) on-premises. Familiarity with FIDO2 hardware tokens, Windows LAPS (cloud), and Authentication Methods migration. Exposure to Azure VPN Gateway, ExpressRoute, and hybrid connectivity for identity authentication paths. Required Certifications Microsoft Certified: Identity and Access Administrator Associate (SC-300) - mandatory. Microsoft Certified: Endpoint Administrator Associate (MD-102) - mandatory. Microsoft 365 Certified: Administrator Expert (MS-102) - preferred. Microsoft Certified: Cybersecurity Architect Expert (SC-100) - desirable. ITIL 4 Foundation - preferred.
Terraform Infrastructure DevOps Engineer Our Financial Services client is seeking a Terraform Infrastructure DevOps Engineer to design, implement, and manage infrastructure as code using Terraform within their renowned infrastructure team. Responsibilities Design, implement, and manage compute, backup, and storage infrastructure. Develop and maintain infrastructure as code using Terraform (HCL), supporting deployments from development to production. Automate infrastructure deployment, monitoring, and management. Collaborate with development teams to optimize CI/CD pipelines. Monitor system performance and troubleshoot to ensure availability and reliability. Implement security best practices and ensure compliance. Optimize infrastructure cost and resource utilization. Translate security and architectural requirements into technical implementations. Build automation tools for diagnostics, troubleshooting, and operational efficiency. Maintain technical documentation and design specifications. Requirements 4-5 years of experience in infrastructure automation (IAAC). Strong knowledge of distributed systems (virtualisation, Linux, Windows, containers, storage). Experience with compute (HCI/CI), backup (Cohesity), or storage (NAS, S3, SAN). Solid understanding of networking and core Internet protocols. Hands-on experience with Terraform (Enterprise), including modules, state management, and providers (e.g., Nutanix, VMware). Familiarity with Azure DevOps and CI/CD processes. Experience with automation and scripting tools: Ansible, Python, PowerShell, Bash. Working knowledge of APIs (REST/Open API), YAML, and JSON.
08/05/2026
Contractor
Terraform Infrastructure DevOps Engineer Our Financial Services client is seeking a Terraform Infrastructure DevOps Engineer to design, implement, and manage infrastructure as code using Terraform within their renowned infrastructure team. Responsibilities Design, implement, and manage compute, backup, and storage infrastructure. Develop and maintain infrastructure as code using Terraform (HCL), supporting deployments from development to production. Automate infrastructure deployment, monitoring, and management. Collaborate with development teams to optimize CI/CD pipelines. Monitor system performance and troubleshoot to ensure availability and reliability. Implement security best practices and ensure compliance. Optimize infrastructure cost and resource utilization. Translate security and architectural requirements into technical implementations. Build automation tools for diagnostics, troubleshooting, and operational efficiency. Maintain technical documentation and design specifications. Requirements 4-5 years of experience in infrastructure automation (IAAC). Strong knowledge of distributed systems (virtualisation, Linux, Windows, containers, storage). Experience with compute (HCI/CI), backup (Cohesity), or storage (NAS, S3, SAN). Solid understanding of networking and core Internet protocols. Hands-on experience with Terraform (Enterprise), including modules, state management, and providers (e.g., Nutanix, VMware). Familiarity with Azure DevOps and CI/CD processes. Experience with automation and scripting tools: Ansible, Python, PowerShell, Bash. Working knowledge of APIs (REST/Open API), YAML, and JSON.
Network Architect 6 months Remote/London - 2 days a week on-site £Negotiable - INSIDE IR35 We are seeking an experienced Senior Network Architect to support our clients network operations and cloud platform landscape. The role will provide senior-level expertise across AWS, Azure, and on-premises environments, with a focus on stabilising, assessing, and re-architecting the current network estate while introducing best practices in automation and infrastructure as code. Required Skills & Experience Extensive experience as a Network Architect Strong expertise in AWS and Azure networking Proven experience with hybrid networking (cloud + on-prem integration) Experience with Cisco networking (physical and virtual appliances) Strong understanding of network security principles and cloud-native security controls Hands-on experience with Infrastructure as Code (eg, Terraform) and automation approaches Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.
08/05/2026
Contractor
Network Architect 6 months Remote/London - 2 days a week on-site £Negotiable - INSIDE IR35 We are seeking an experienced Senior Network Architect to support our clients network operations and cloud platform landscape. The role will provide senior-level expertise across AWS, Azure, and on-premises environments, with a focus on stabilising, assessing, and re-architecting the current network estate while introducing best practices in automation and infrastructure as code. Required Skills & Experience Extensive experience as a Network Architect Strong expertise in AWS and Azure networking Proven experience with hybrid networking (cloud + on-prem integration) Experience with Cisco networking (physical and virtual appliances) Strong understanding of network security principles and cloud-native security controls Hands-on experience with Infrastructure as Code (eg, Terraform) and automation approaches Disclaimer: This vacancy is being advertised by either Advanced Resource Managers Limited, Advanced Resource Managers IT Limited or Advanced Resource Managers Engineering Limited ("ARM"). ARM is a specialist talent acquisition and management consultancy. We provide technical contingency recruitment and a portfolio of more complex resource solutions. Our specialist recruitment divisions cover the entire technical arena, including some of the most economically and strategically important industries in the UK and the world today. We will never send your CV without your permission. Where the role is marked as Outside IR35 in the advertisement this is subject to receipt of a final Status Determination Statement from the end Client and may be subject to change.
Network Security Architect Our client is urgently looking for an experienced Network Security Architect to join their team on a permanent basis. Please note, the role is on-site 5 days per week in Oxfordshire. There is flexible working hours and an earlier finish on a Friday. Remote working may be granted on occasion. This is a global role with an initial focus around Network segmentation. You will improve standards across the business and lead technical projects and work closely with technical colleagues and vendors. The current tech stack includes but is not limited to Fortigate, Cisco, SD-Wan and Palo Alto. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus (15%), annual leave, flexible working hours, pension scheme (matched up top 9%), life assurance, private medical, income protection, on-ste canteen and gym and many, many more perks! Network Security Architect - Key Skills: 10+ years hands on experience in network engineering and architecture, with at least 3+ years specialising in large-scale network segmentation 5+ years hands on experience implementing and managing industry leading network security solutions (NGFWs, NDR, SASE, CASB, WAF, NAC, ZTNA) Deep expertise in core networking technologies (SDWAN, MPLS, VPN, IPSec, VLANs etc) Detailed understanding of enterprise network transport protocols (TCP, UDP, ICMP, ARP), infrastructure protocols (DNS, DHCP, BGP, SNMP), common application protocols (SMB, RDP, HTTP, FTP etc) and security protocols (TLS/SSL, IPSec, SSH, SAML, OAuth etc) Proven history of identifying, assessing and remediating network related security risks/misconfigurations Strong technical knowledge of a Microsoft based enterprise IT infrastructure Experience as an architect or lead on large projects spanning multiple countries and cultures Background of defining security standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks/methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
08/05/2026
Full time
Network Security Architect Our client is urgently looking for an experienced Network Security Architect to join their team on a permanent basis. Please note, the role is on-site 5 days per week in Oxfordshire. There is flexible working hours and an earlier finish on a Friday. Remote working may be granted on occasion. This is a global role with an initial focus around Network segmentation. You will improve standards across the business and lead technical projects and work closely with technical colleagues and vendors. The current tech stack includes but is not limited to Fortigate, Cisco, SD-Wan and Palo Alto. You will be rewarded with an excellent salary, as well as a brilliant benefits package including bonus (15%), annual leave, flexible working hours, pension scheme (matched up top 9%), life assurance, private medical, income protection, on-ste canteen and gym and many, many more perks! Network Security Architect - Key Skills: 10+ years hands on experience in network engineering and architecture, with at least 3+ years specialising in large-scale network segmentation 5+ years hands on experience implementing and managing industry leading network security solutions (NGFWs, NDR, SASE, CASB, WAF, NAC, ZTNA) Deep expertise in core networking technologies (SDWAN, MPLS, VPN, IPSec, VLANs etc) Detailed understanding of enterprise network transport protocols (TCP, UDP, ICMP, ARP), infrastructure protocols (DNS, DHCP, BGP, SNMP), common application protocols (SMB, RDP, HTTP, FTP etc) and security protocols (TLS/SSL, IPSec, SSH, SAML, OAuth etc) Proven history of identifying, assessing and remediating network related security risks/misconfigurations Strong technical knowledge of a Microsoft based enterprise IT infrastructure Experience as an architect or lead on large projects spanning multiple countries and cultures Background of defining security standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks/methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
£90,000 per annum + benefits + bonu 5 days per week onsite - Central London Permanent Technical Infrastructure Engineer - Financial Services | London £80,000 - 90,000 per annum + benefits + bonus | Full-time, onsite (5 days per week) We re recruiting a Technical Infrastructure Engineer on behalf of a financial services client, to join their Group IT function and play a central role in turning architectural vision into production-ready, well-documented technical solutions. This is a hands-on delivery role for someone who thrives on pace, owns their work end-to-end, and takes genuine pride in engineering things properly. The Role you'll take ownership of multiple technical initiatives running concurrently, leading everything from requirements capture and high-level design through to build, testing and handover into BAU. you'll work closely with the Head of Architecture and a small team of engineers, and you'll be equally comfortable rolling your sleeves up to solve a complex technical problem as you are presenting a trade-off decision to a business stakeholder. A strong emphasis is placed on documentation and traceability - you'll be expected to produce clear, version-controlled requirements, designs and artefacts yourself, not delegate that responsibility elsewhere. What you'll Be Doing You'll lead technical design and delivery across cloud, workplace, networking, identity and security domains. you'll interrogate and optimise the organisations existing product and licensing estate - finding and eliminating waste, consolidating overlap, and unlocking value from tools already in use before recommending anything new. you'll own technical delivery on business-driven projects, translating outcomes into requirements and being accountable for scope, timelines and quality. And you'll coach and develop junior and mid-level engineers, instilling good habits around documentation, requirements discipline and delivery pace. The Environment The organisation operates a hybrid ICT environment comprising on-premise data centre infrastructure, a Microsoft Azure footprint and Microsoft 365. This is a regulated, audited environment where change management, security compliance and thorough documentation are non-negotiable. What We re Looking For At least five years of hands-on engineering and technical delivery experience, spanning multiple infrastructure or cloud domains A solid track record of converting architectural direction into documented requirements, detailed designs and working production solutions Proven experience optimising Microsoft 365, Azure or equivalent licensing and platform estates Strong competence across at least four of: Azure/cloud platforms, modern workplace and Entra ID, security tooling, networking, integration/APIs, automation and DevOps The ability to write requirements, user stories, acceptance criteria and design artefacts yourself - clearly and consistently Experience managing several concurrent workstreams without letting documentation quality or delivery pace slip Confident communication with both technical and non-technical stakeholders, backed by clear written records The Person The organisation moves quickly and values pragmatic decision-making. They re looking for someone who is professionally serious but sociable, energetic, and comfortable leading conversations at all levels. This is not a remote-first role - you'll be onsite five days a week, collaborating closely with colleagues, business sponsors and third-party partners. If you are a hands-on technical leader who gets things built properly, documented thoroughly and delivered at pace, we'd love to hear from you.
08/05/2026
Full time
£90,000 per annum + benefits + bonu 5 days per week onsite - Central London Permanent Technical Infrastructure Engineer - Financial Services | London £80,000 - 90,000 per annum + benefits + bonus | Full-time, onsite (5 days per week) We re recruiting a Technical Infrastructure Engineer on behalf of a financial services client, to join their Group IT function and play a central role in turning architectural vision into production-ready, well-documented technical solutions. This is a hands-on delivery role for someone who thrives on pace, owns their work end-to-end, and takes genuine pride in engineering things properly. The Role you'll take ownership of multiple technical initiatives running concurrently, leading everything from requirements capture and high-level design through to build, testing and handover into BAU. you'll work closely with the Head of Architecture and a small team of engineers, and you'll be equally comfortable rolling your sleeves up to solve a complex technical problem as you are presenting a trade-off decision to a business stakeholder. A strong emphasis is placed on documentation and traceability - you'll be expected to produce clear, version-controlled requirements, designs and artefacts yourself, not delegate that responsibility elsewhere. What you'll Be Doing You'll lead technical design and delivery across cloud, workplace, networking, identity and security domains. you'll interrogate and optimise the organisations existing product and licensing estate - finding and eliminating waste, consolidating overlap, and unlocking value from tools already in use before recommending anything new. you'll own technical delivery on business-driven projects, translating outcomes into requirements and being accountable for scope, timelines and quality. And you'll coach and develop junior and mid-level engineers, instilling good habits around documentation, requirements discipline and delivery pace. The Environment The organisation operates a hybrid ICT environment comprising on-premise data centre infrastructure, a Microsoft Azure footprint and Microsoft 365. This is a regulated, audited environment where change management, security compliance and thorough documentation are non-negotiable. What We re Looking For At least five years of hands-on engineering and technical delivery experience, spanning multiple infrastructure or cloud domains A solid track record of converting architectural direction into documented requirements, detailed designs and working production solutions Proven experience optimising Microsoft 365, Azure or equivalent licensing and platform estates Strong competence across at least four of: Azure/cloud platforms, modern workplace and Entra ID, security tooling, networking, integration/APIs, automation and DevOps The ability to write requirements, user stories, acceptance criteria and design artefacts yourself - clearly and consistently Experience managing several concurrent workstreams without letting documentation quality or delivery pace slip Confident communication with both technical and non-technical stakeholders, backed by clear written records The Person The organisation moves quickly and values pragmatic decision-making. They re looking for someone who is professionally serious but sociable, energetic, and comfortable leading conversations at all levels. This is not a remote-first role - you'll be onsite five days a week, collaborating closely with colleagues, business sponsors and third-party partners. If you are a hands-on technical leader who gets things built properly, documented thoroughly and delivered at pace, we'd love to hear from you.
Company Overview Atreides helps organizations transform large and complex multi-modal datasets into information-rich geo spatial data subscriptions that can be used across a wide spectrum of use cases. Currently, Atreides focuses on providing high fidelity data solutions to enable customers to derive insights quickly. Team Overview We are a fast-moving, high-performance startup. We value a diverse team and believe inclusion drives better performance. We trust our team with autonomy, believing it leads to better results and job satisfaction. With a mission-driven mindset and entrepreneurial spirit, we are building something new and helping unlock the power of massive-scale data to make the world safer, stronger, and more prosperous. We are a passionate team of technologists, data scientists, and analysts with backgrounds in operational intelligence, law enforcement, large multinationals, and cybersecurity operations. We obsess about designing products that will change the way global companies, governments and nonprofits protect themselves from external threats and global adversaries. At Atreides, we believe that teams work best when they: Remain curious and passionate in all aspects of our work Promote clear, direct, and transparent communication Embrace the 'measure twice, cut once' philosophy Value and encourage diverse ideas and technologies Lead with empathy in all interactions Position Overview We are seeking a Staff Cloud Infrastructure Architect to design and actively build and scale the systems that form the backbone of our cloud platform. You will own the design, deployment, and operation of production infrastructure across AWS (and potentially Azure), delivering secure, reliable, and self-service environments that empower product teams to deploy and iterate rapidly. This is a hands on technical leadership role-you'll design solutions, write infrastructure code, and guide the evolution of our platform through direct implementation and mentorship. You'll collaborate deeply with software and product teams to ensure that new products are built on sound, scalable infrastructure foundations. You'll also be a key voice in product planning sessions where infrastructure requirements and capabilities influence the path forward. We're looking for someone who can take broad goals, translate them into technical designs, and execute end to end-someone who has built and operated large scale systems and is excited to do it again, better. Responsibilities Architect, deploy, and maintain scalable, secure infrastructure across AWS (and potentially Azure) using Infrastructure as Code (Pulumi,Teraformetc). Collaborate closely with internal engineering teams to understand product requirements, identify system constraints, and design solutions that balance performance, reliability, and cost. Own AWS EKS clusters and Kubernetes workloads, including autoscaling (Karpenter), FluxCD based GitOps, Helm charts, and custom SDKs for reusable deployments. Design and manage core cloud services-VPCs, VPNs, IAM, S3, RDS, ECR, load balancing, and network security controls. Build, maintain, and document infrastructure templates and develop engineer enablement tooling to allow teams to deploy independently. Implement observability and monitoring systems using Grafana, Prometheus, and Loki for infrastructure and application metrics. Establish and contribute to CI/CD best practices using GitHub Actions and related automation pipelines. Participate in on call rotations and respond to infrastructure alerts, RFIs, and external requests. Author and review technical design documents and proposals for infrastructure initiatives, architecture changes, and new services. Provide technical leadership and mentorship to peers, helping elevate infrastructure craftsmanship across the organization. Desired Qualification 10+years of experience in DevOps, platform, or infrastructure engineering roles, including 2+ years in a senior or principal capacity. Proven experience designing and delivering complete cloud infrastructure solutions independently. Expert-level understanding of AWS (EKS, VPC, EC2, S3, RDS, IAM, KMS, Route53, etc.). Experience with Azure cloud services (VMs, networking, AKS, identity, monitoring) is a strong plus. Proficiency with Pulumi (TypeScript or Python) or Terraform is required. Strong experience building CI/CD pipelines (GitHub Actions, GitLab CI, or similar). Skilled in containerization (Docker) and maintaining image registries and artifact repositories. Solid understanding of networking and security fundamentals (VPNs, firewall rules, IAM policies, encryption). Familiarity with observability and alerting stacks (Prometheus, Grafana, Loki). Excellent communicator, able to write and present technical designs and proposals clearly. Experience mentoring others and leading by example in fast-paced, high autonomy environments. Proficiency in Python for automation, scripting, or tooling development. Experience with Go is a plus. Display friendliness and empathy towards others. Compensation and Benefits Comprehensive health, dental, and vision insurance plans Flexible remote work environment Additional benefits like flexible hours, work travel opportunities, competitive vacation time and parental leave
08/05/2026
Full time
Company Overview Atreides helps organizations transform large and complex multi-modal datasets into information-rich geo spatial data subscriptions that can be used across a wide spectrum of use cases. Currently, Atreides focuses on providing high fidelity data solutions to enable customers to derive insights quickly. Team Overview We are a fast-moving, high-performance startup. We value a diverse team and believe inclusion drives better performance. We trust our team with autonomy, believing it leads to better results and job satisfaction. With a mission-driven mindset and entrepreneurial spirit, we are building something new and helping unlock the power of massive-scale data to make the world safer, stronger, and more prosperous. We are a passionate team of technologists, data scientists, and analysts with backgrounds in operational intelligence, law enforcement, large multinationals, and cybersecurity operations. We obsess about designing products that will change the way global companies, governments and nonprofits protect themselves from external threats and global adversaries. At Atreides, we believe that teams work best when they: Remain curious and passionate in all aspects of our work Promote clear, direct, and transparent communication Embrace the 'measure twice, cut once' philosophy Value and encourage diverse ideas and technologies Lead with empathy in all interactions Position Overview We are seeking a Staff Cloud Infrastructure Architect to design and actively build and scale the systems that form the backbone of our cloud platform. You will own the design, deployment, and operation of production infrastructure across AWS (and potentially Azure), delivering secure, reliable, and self-service environments that empower product teams to deploy and iterate rapidly. This is a hands on technical leadership role-you'll design solutions, write infrastructure code, and guide the evolution of our platform through direct implementation and mentorship. You'll collaborate deeply with software and product teams to ensure that new products are built on sound, scalable infrastructure foundations. You'll also be a key voice in product planning sessions where infrastructure requirements and capabilities influence the path forward. We're looking for someone who can take broad goals, translate them into technical designs, and execute end to end-someone who has built and operated large scale systems and is excited to do it again, better. Responsibilities Architect, deploy, and maintain scalable, secure infrastructure across AWS (and potentially Azure) using Infrastructure as Code (Pulumi,Teraformetc). Collaborate closely with internal engineering teams to understand product requirements, identify system constraints, and design solutions that balance performance, reliability, and cost. Own AWS EKS clusters and Kubernetes workloads, including autoscaling (Karpenter), FluxCD based GitOps, Helm charts, and custom SDKs for reusable deployments. Design and manage core cloud services-VPCs, VPNs, IAM, S3, RDS, ECR, load balancing, and network security controls. Build, maintain, and document infrastructure templates and develop engineer enablement tooling to allow teams to deploy independently. Implement observability and monitoring systems using Grafana, Prometheus, and Loki for infrastructure and application metrics. Establish and contribute to CI/CD best practices using GitHub Actions and related automation pipelines. Participate in on call rotations and respond to infrastructure alerts, RFIs, and external requests. Author and review technical design documents and proposals for infrastructure initiatives, architecture changes, and new services. Provide technical leadership and mentorship to peers, helping elevate infrastructure craftsmanship across the organization. Desired Qualification 10+years of experience in DevOps, platform, or infrastructure engineering roles, including 2+ years in a senior or principal capacity. Proven experience designing and delivering complete cloud infrastructure solutions independently. Expert-level understanding of AWS (EKS, VPC, EC2, S3, RDS, IAM, KMS, Route53, etc.). Experience with Azure cloud services (VMs, networking, AKS, identity, monitoring) is a strong plus. Proficiency with Pulumi (TypeScript or Python) or Terraform is required. Strong experience building CI/CD pipelines (GitHub Actions, GitLab CI, or similar). Skilled in containerization (Docker) and maintaining image registries and artifact repositories. Solid understanding of networking and security fundamentals (VPNs, firewall rules, IAM policies, encryption). Familiarity with observability and alerting stacks (Prometheus, Grafana, Loki). Excellent communicator, able to write and present technical designs and proposals clearly. Experience mentoring others and leading by example in fast-paced, high autonomy environments. Proficiency in Python for automation, scripting, or tooling development. Experience with Go is a plus. Display friendliness and empathy towards others. Compensation and Benefits Comprehensive health, dental, and vision insurance plans Flexible remote work environment Additional benefits like flexible hours, work travel opportunities, competitive vacation time and parental leave
Cambridge, UK Full-time Permanent Hybrid About us Riverlane's mission is to master quantum error correction (QEC) and unlock a new age of human progress. From advances in material and climate science, to complex chemistry simulation for new drug design, quantum computers will help humanity solve some of its most important challenges. But without QEC, the industry's defining technical challenge, such breakthroughs can never be achieved. Riverlane is the world leader in QEC technology. QEC is a complex problem that requires a range of skills, talent and passion. Having raised more than $125M in funding to date to accelerate our cutting edge R&D in quantum error correction (QEC), Riverlane partners with many of the world's leading quantum hardware providers and government agencies to make fault tolerant quantum computing a reality. We're making remarkable progress and growing fast. The Role As Head of IT, you will own and lead everything that keeps Riverlane's technology estate running - from corporate IT operations to the development and management of our on premises high performance computing (HPC) infrastructure. This is a senior, hands on leadership role that sits at the intersection of enterprise IT and deep technical infrastructure, making it uniquely exciting for someone who thrives in fast moving, engineering led organisations. You will be Riverlane's most senior IT leader, setting strategy, owning delivery, and working closely with engineering, operations, security, and finance stakeholders to ensure our infrastructure is world class, secure, and ready to scale. Key Responsibilities Corporate IT Own and evolve the company wide IT strategy, policies, and roadmap, ensuring alignment with Riverlane's growth trajectory and security requirements. Manage and continuously improve all corporate IT systems, including endpoint management, identity and access management (IAM), collaboration tools, SaaS platforms, and networking. Lead IT procurement, vendor management, and licence optimisation across all tools and platforms. Ensure robust IT support processes are in place, maintaining high availability and responsiveness for a technically demanding workforce of scientists and engineers. Own and develop Riverlane's information security posture, including policies, risk management, access controls, and compliance with relevant standards (e.g. ISO 27001, Cyber Essentials). Lead the IT aspects of any audits, due diligence processes, or regulatory requirements. Manage and mentor any IT support staff, building out the team as the company grows. HPC DevOps Infrastructure Take ownership of Riverlane's on premises high performance computer, serving as the primary technical authority for its architecture, performance, reliability, and availability. Lead the DevOps strategy for the HPC environment, including CI/CD pipelines, containerisation, workload scheduling (e.g. Slurm, Kubernetes), and infrastructure as code practices. Collaborate closely with quantum scientists and hardware engineers to understand their compute requirements and translate them into robust, scalable infrastructure solutions. Learn to ensure the HPC environment is optimised for the unique demands of quantum error correction research and development Define and enforce best practices around HPC system security, backup, disaster recovery, and capacity planning. Evaluate and integrate new technologies to extend the HPC capability as Riverlane's research scales toward MegaQuOp and beyond. Act as the bridge between the engineering/science teams and the IT function, translating complex research infrastructure requirements into well managed, reliable systems. About You Proven experience in a senior IT leadership role, ideally within a technology driven, engineering or research intensive organisation. Strong hands on technical background in Linux systems administration, networking, and cloud/on prem infrastructure. Demonstrable experience managing or supporting HPC environments, including job scheduling systems, storage architectures (e.g. GPFS, Lustre, NFS), and cluster management. Experience owning DevOps tooling and practices: CI/CD, containerisation (Docker, Kubernetes), infrastructure as code (Terraform, Ansible), and version control systems. Solid understanding of information security principles and experience implementing or managing security frameworks. Excellent stakeholder management skills - comfortable engaging with scientists, engineers, executives, and external vendors alike. A proactive, ownership oriented mindset with the ability to both set strategy and roll up your sleeves. Experience working in a quantum computing, semiconductor, HPC centre, or national laboratory environment. Familiarity with FPGA based systems or real time processing infrastructure. Experience scaling IT operations in a high growth startup or scaleup. Knowledge of relevant compliance frameworks (ISO 27001, NIST, Cyber Essentials Plus). Experience with GPU cluster management or similar specialist compute environments. What can you expect from us A comprehensive benefits package that includes private medical insurance, life insurance, a contributory pension scheme and annual bonus Equity, so that our team can share in the long term success of Riverlane 28 days annual leave plus bank holidays and enhanced family leave A diverse work environment that brings together experts in many fields (including software and hardware development, quantum information theory, physics and maths) and over 20 different nationalities A learning environment that encourages individual, team and company growth and learning, including a regular programme of learning events and an annual training and conference budget An award winning employer with 4.7 rating on Glassdoor How to apply Please upload a CV and covering letter by clicking 'Apply Now'. Your covering letter should explain why you are applying for the job and what skills and experience you can bring to the role. We review CVs as we receive them and interview as soon as we have applications that look like a good match. We do not use closing dates, so please apply as soon as possible to avoid missing out on this role. We advertised this role on DATE. Everyone is welcome at Riverlane. We are an equal opportunities employer and encourage applications from eligible and suitably qualified candidates regardless of age, disability, ethnicity, gender, gender reassignment, religion or belief, sexual orientation, marital or civil partnership status, or pregnancy and maternity/paternity. GDPR notice: Riverlane collects and processes personal data in accordance with applicable data protection laws. If you are a European Job Applicant see the privacy notice for further details.
08/05/2026
Full time
Cambridge, UK Full-time Permanent Hybrid About us Riverlane's mission is to master quantum error correction (QEC) and unlock a new age of human progress. From advances in material and climate science, to complex chemistry simulation for new drug design, quantum computers will help humanity solve some of its most important challenges. But without QEC, the industry's defining technical challenge, such breakthroughs can never be achieved. Riverlane is the world leader in QEC technology. QEC is a complex problem that requires a range of skills, talent and passion. Having raised more than $125M in funding to date to accelerate our cutting edge R&D in quantum error correction (QEC), Riverlane partners with many of the world's leading quantum hardware providers and government agencies to make fault tolerant quantum computing a reality. We're making remarkable progress and growing fast. The Role As Head of IT, you will own and lead everything that keeps Riverlane's technology estate running - from corporate IT operations to the development and management of our on premises high performance computing (HPC) infrastructure. This is a senior, hands on leadership role that sits at the intersection of enterprise IT and deep technical infrastructure, making it uniquely exciting for someone who thrives in fast moving, engineering led organisations. You will be Riverlane's most senior IT leader, setting strategy, owning delivery, and working closely with engineering, operations, security, and finance stakeholders to ensure our infrastructure is world class, secure, and ready to scale. Key Responsibilities Corporate IT Own and evolve the company wide IT strategy, policies, and roadmap, ensuring alignment with Riverlane's growth trajectory and security requirements. Manage and continuously improve all corporate IT systems, including endpoint management, identity and access management (IAM), collaboration tools, SaaS platforms, and networking. Lead IT procurement, vendor management, and licence optimisation across all tools and platforms. Ensure robust IT support processes are in place, maintaining high availability and responsiveness for a technically demanding workforce of scientists and engineers. Own and develop Riverlane's information security posture, including policies, risk management, access controls, and compliance with relevant standards (e.g. ISO 27001, Cyber Essentials). Lead the IT aspects of any audits, due diligence processes, or regulatory requirements. Manage and mentor any IT support staff, building out the team as the company grows. HPC DevOps Infrastructure Take ownership of Riverlane's on premises high performance computer, serving as the primary technical authority for its architecture, performance, reliability, and availability. Lead the DevOps strategy for the HPC environment, including CI/CD pipelines, containerisation, workload scheduling (e.g. Slurm, Kubernetes), and infrastructure as code practices. Collaborate closely with quantum scientists and hardware engineers to understand their compute requirements and translate them into robust, scalable infrastructure solutions. Learn to ensure the HPC environment is optimised for the unique demands of quantum error correction research and development Define and enforce best practices around HPC system security, backup, disaster recovery, and capacity planning. Evaluate and integrate new technologies to extend the HPC capability as Riverlane's research scales toward MegaQuOp and beyond. Act as the bridge between the engineering/science teams and the IT function, translating complex research infrastructure requirements into well managed, reliable systems. About You Proven experience in a senior IT leadership role, ideally within a technology driven, engineering or research intensive organisation. Strong hands on technical background in Linux systems administration, networking, and cloud/on prem infrastructure. Demonstrable experience managing or supporting HPC environments, including job scheduling systems, storage architectures (e.g. GPFS, Lustre, NFS), and cluster management. Experience owning DevOps tooling and practices: CI/CD, containerisation (Docker, Kubernetes), infrastructure as code (Terraform, Ansible), and version control systems. Solid understanding of information security principles and experience implementing or managing security frameworks. Excellent stakeholder management skills - comfortable engaging with scientists, engineers, executives, and external vendors alike. A proactive, ownership oriented mindset with the ability to both set strategy and roll up your sleeves. Experience working in a quantum computing, semiconductor, HPC centre, or national laboratory environment. Familiarity with FPGA based systems or real time processing infrastructure. Experience scaling IT operations in a high growth startup or scaleup. Knowledge of relevant compliance frameworks (ISO 27001, NIST, Cyber Essentials Plus). Experience with GPU cluster management or similar specialist compute environments. What can you expect from us A comprehensive benefits package that includes private medical insurance, life insurance, a contributory pension scheme and annual bonus Equity, so that our team can share in the long term success of Riverlane 28 days annual leave plus bank holidays and enhanced family leave A diverse work environment that brings together experts in many fields (including software and hardware development, quantum information theory, physics and maths) and over 20 different nationalities A learning environment that encourages individual, team and company growth and learning, including a regular programme of learning events and an annual training and conference budget An award winning employer with 4.7 rating on Glassdoor How to apply Please upload a CV and covering letter by clicking 'Apply Now'. Your covering letter should explain why you are applying for the job and what skills and experience you can bring to the role. We review CVs as we receive them and interview as soon as we have applications that look like a good match. We do not use closing dates, so please apply as soon as possible to avoid missing out on this role. We advertised this role on DATE. Everyone is welcome at Riverlane. We are an equal opportunities employer and encourage applications from eligible and suitably qualified candidates regardless of age, disability, ethnicity, gender, gender reassignment, religion or belief, sexual orientation, marital or civil partnership status, or pregnancy and maternity/paternity. GDPR notice: Riverlane collects and processes personal data in accordance with applicable data protection laws. If you are a European Job Applicant see the privacy notice for further details.
VodafoneThree - Senior Solution Architect, CIAMLondon, United Kingdom Location: London OR Newbury + Hybrid Salary: Excellent basic salary plus bonus and Vodafone benefits Working Hours: Full time 37.5 hours per week - Monday to Friday Hybrid We believe that through collaboration and connection with our colleagues we can achieve great things. Our hybrid working approach allows our people to work both in the office and at home, providing the flexibility and resources you need to succeed in your role. We don't require you to be in on specific days; instead, we ask people to come into the office 2-3 days each week, for at least 8 days per month. You should work with your line manager to understand what their expectations are for you, your specific role and your team. Who We Are We're here to build a network the UK can count on - one that connects people, places and potential. Because no matter where you live, what your background is, or how you get online - we think everyone deserves the same chance to stay connected, and with VodafoneThree, that future's being built - today. We're creating more than the UK's best network. We're helping close the digital divide, empower communities and drive meaningful progress. We believe that everyone should feel they belong. Whoever you are and whatever your story, there's space for you here. We're building a workplace where different perspectives are welcomed, voices are heard, and everyone feels safe to show up as themselves. You'll join a team that genuinely cares - about each other, about our customers, and about the future we're building. From day one, you'll be welcomed, valued and encouraged to bring your whole self to work. Why VodafoneThree Join us and you'll be at the heart of change. That means building responsibly, investing sustainably and creating opportunities that last. We're not just expanding connectivity; we're reimagining what a connected nation looks like. With £11bn invested in 5G and digital infrastructure, your work will directly power businesses, services, and communities across the country. You'll work on real challenges, with real impact, across every corner of the country. Wherever you join us, whatever your role, you'll be helping to build a future that works better for everyone. We move at pace, because what we're building matters - and we're learning as we go. We're proud of the progress we've made, but we're just getting started. Join our Digital teams where we harness the power of digital and embody the spirit of innovation to deliver the best solutions for our customers. What you'll do You'll step into a lead architect role at the heart of Vodafone UK's digital ecosystem, shaping how millions of Consumer and Enterprise customers securely access and manage their services. Working across web, app, chatbot, and telephony channels, you'll help create seamless, trusted login experiences while influencing the future of customer identity and authentication. Lead and influence the authentication product roadmap, using your end-to-end Identity and Access Management (IDAM) expertise to guide long-term architectural direction Shape the architectural runway to support new and evolving capabilities such as passwordless and biometric login (FIDO2), adaptive and risk-based authentication, and social sign-ins Evaluate and adopt modern authentication protocols and open standards to meet clear business and customer outcomes Partner closely with Product Owners, Technical Product Owners, UX, Engineering Managers, and senior developers to define functional and non-functional requirements and design robust end-to-end solutions Own impact assessments and solution blueprints, including providing VROM and ROM estimates for new business demands Champion incremental delivery, supporting phased planning and helping teams ship customer value early and often Ensure solutions align with AWS/Azure Well-Architected Framework principles, with a strong focus on security, resilience, scalability, maintainability, and cost efficiency Protect the integrity and reusability of authentication solutions throughout their lifecycle, keeping designs as simple and elegant as possible Who you are Deep expertise in federated identity management and security concepts, and strong working knowledge of standards such as OpenID Connect, OAuth2, SAML, and related RFCs Proven experience designing and delivering enterprise-scale identity solutions for B2C or B2B platforms Strong background designing cloud-based services using microservices and micro-frontend architectures Hands-on experience defining and designing RESTful APIs to industry standards A solid understanding of AWS or equivalent Well-Architected Framework pillars, especially security, scalability, performance, maintainability, and cost management Ability to communicate solution designs clearly using standard modeling approaches such as UML or C4 Confident communicator who can explain complex technical concepts clearly to both technical and non-technical stakeholders Practical experience working within Agile delivery methodologies such as Scrum, Kanban, or Lean Experience integrating enterprise-grade SaaS-based IDAM platforms We know that everyone is unique, with multiple aspects to their identity and different experiences behind them. We are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. If you're excited about this role but your experience doesn't align exactly with every part of the job description, we encourage you to apply as you may be the right candidate for this role or another role, and our recruitment team can help you see how your skills fit in. What we offer We care about our people's success by offering great pay, bonuses, up to 28 days off plus bank holidays, and paid time for charity work. You can personalise our benefits for you and your family, like discounts, vouchers, a pension plan and loads more. We help with your career through our amazing learning tools and top-notch parental leave policies. Need to Know We are regulated by the Financial Conduct Authority and all offers of employment for this role are subject to background checks, including criminal (DBS) and financial checks to meet the regulators standards. If you require any reasonable adjustments or have an accessibility request as part of your recruitment journey, for example, extended time or breaks in between online assessments, a sign language interpreter, or assistive technology, please refer to the Accessibility section of our Careers website () for guidance. We use AI in different parts of our business to boost innovation, improve efficiency, and create new opportunities. We know many candidates use AI to fine-tune their CVs or prepare for interviews, but what we really care about is your unique experiences and achievements. During the interview, we want you to rely on your own knowledge and skills to show us who you really are-your personality, creativity, and abilities. Above all, we're looking for authenticity and can't wait to get to know the real you. Top skillsCommunicationEngineeringBusiness DevelopmentAssuranceAnalysisTime ManagementTeamworkRetail SalesCustomer Service /ResolutionCustomer Service
08/05/2026
Full time
VodafoneThree - Senior Solution Architect, CIAMLondon, United Kingdom Location: London OR Newbury + Hybrid Salary: Excellent basic salary plus bonus and Vodafone benefits Working Hours: Full time 37.5 hours per week - Monday to Friday Hybrid We believe that through collaboration and connection with our colleagues we can achieve great things. Our hybrid working approach allows our people to work both in the office and at home, providing the flexibility and resources you need to succeed in your role. We don't require you to be in on specific days; instead, we ask people to come into the office 2-3 days each week, for at least 8 days per month. You should work with your line manager to understand what their expectations are for you, your specific role and your team. Who We Are We're here to build a network the UK can count on - one that connects people, places and potential. Because no matter where you live, what your background is, or how you get online - we think everyone deserves the same chance to stay connected, and with VodafoneThree, that future's being built - today. We're creating more than the UK's best network. We're helping close the digital divide, empower communities and drive meaningful progress. We believe that everyone should feel they belong. Whoever you are and whatever your story, there's space for you here. We're building a workplace where different perspectives are welcomed, voices are heard, and everyone feels safe to show up as themselves. You'll join a team that genuinely cares - about each other, about our customers, and about the future we're building. From day one, you'll be welcomed, valued and encouraged to bring your whole self to work. Why VodafoneThree Join us and you'll be at the heart of change. That means building responsibly, investing sustainably and creating opportunities that last. We're not just expanding connectivity; we're reimagining what a connected nation looks like. With £11bn invested in 5G and digital infrastructure, your work will directly power businesses, services, and communities across the country. You'll work on real challenges, with real impact, across every corner of the country. Wherever you join us, whatever your role, you'll be helping to build a future that works better for everyone. We move at pace, because what we're building matters - and we're learning as we go. We're proud of the progress we've made, but we're just getting started. Join our Digital teams where we harness the power of digital and embody the spirit of innovation to deliver the best solutions for our customers. What you'll do You'll step into a lead architect role at the heart of Vodafone UK's digital ecosystem, shaping how millions of Consumer and Enterprise customers securely access and manage their services. Working across web, app, chatbot, and telephony channels, you'll help create seamless, trusted login experiences while influencing the future of customer identity and authentication. Lead and influence the authentication product roadmap, using your end-to-end Identity and Access Management (IDAM) expertise to guide long-term architectural direction Shape the architectural runway to support new and evolving capabilities such as passwordless and biometric login (FIDO2), adaptive and risk-based authentication, and social sign-ins Evaluate and adopt modern authentication protocols and open standards to meet clear business and customer outcomes Partner closely with Product Owners, Technical Product Owners, UX, Engineering Managers, and senior developers to define functional and non-functional requirements and design robust end-to-end solutions Own impact assessments and solution blueprints, including providing VROM and ROM estimates for new business demands Champion incremental delivery, supporting phased planning and helping teams ship customer value early and often Ensure solutions align with AWS/Azure Well-Architected Framework principles, with a strong focus on security, resilience, scalability, maintainability, and cost efficiency Protect the integrity and reusability of authentication solutions throughout their lifecycle, keeping designs as simple and elegant as possible Who you are Deep expertise in federated identity management and security concepts, and strong working knowledge of standards such as OpenID Connect, OAuth2, SAML, and related RFCs Proven experience designing and delivering enterprise-scale identity solutions for B2C or B2B platforms Strong background designing cloud-based services using microservices and micro-frontend architectures Hands-on experience defining and designing RESTful APIs to industry standards A solid understanding of AWS or equivalent Well-Architected Framework pillars, especially security, scalability, performance, maintainability, and cost management Ability to communicate solution designs clearly using standard modeling approaches such as UML or C4 Confident communicator who can explain complex technical concepts clearly to both technical and non-technical stakeholders Practical experience working within Agile delivery methodologies such as Scrum, Kanban, or Lean Experience integrating enterprise-grade SaaS-based IDAM platforms We know that everyone is unique, with multiple aspects to their identity and different experiences behind them. We are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. If you're excited about this role but your experience doesn't align exactly with every part of the job description, we encourage you to apply as you may be the right candidate for this role or another role, and our recruitment team can help you see how your skills fit in. What we offer We care about our people's success by offering great pay, bonuses, up to 28 days off plus bank holidays, and paid time for charity work. You can personalise our benefits for you and your family, like discounts, vouchers, a pension plan and loads more. We help with your career through our amazing learning tools and top-notch parental leave policies. Need to Know We are regulated by the Financial Conduct Authority and all offers of employment for this role are subject to background checks, including criminal (DBS) and financial checks to meet the regulators standards. If you require any reasonable adjustments or have an accessibility request as part of your recruitment journey, for example, extended time or breaks in between online assessments, a sign language interpreter, or assistive technology, please refer to the Accessibility section of our Careers website () for guidance. We use AI in different parts of our business to boost innovation, improve efficiency, and create new opportunities. We know many candidates use AI to fine-tune their CVs or prepare for interviews, but what we really care about is your unique experiences and achievements. During the interview, we want you to rely on your own knowledge and skills to show us who you really are-your personality, creativity, and abilities. Above all, we're looking for authenticity and can't wait to get to know the real you. Top skillsCommunicationEngineeringBusiness DevelopmentAssuranceAnalysisTime ManagementTeamworkRetail SalesCustomer Service /ResolutionCustomer Service
