Job Title: Infrastructure & Identity Access Management (IAM) Architect Location: London (Hybrid) Contract Type: Permanent Overview We are seeking a senior Infrastructure & IAM Architect to lead the design, evolution, and governance of identity, access management, and supporting infrastructure within a global professional services environment. This is a strategic architecture role with deep hands-on influence, focused on enterprise-scale IAM , privileged access, authentication, and zero trust principles across hybrid and cloud platforms. You'll work closely with Security, Platform Engineering, and Infrastructure teams to strengthen identity security, reduce risk, and improve user experience at global scale. The role suits an experienced IAM architect who enjoys setting standards, driving modern identity practices, and influencing senior stakeholders across a complex organisation. Key Responsibilities Identity & Access Architecture Define and maintain enterprise IAM architecture , covering identity life cycle, access governance, and privileged access management. Design secure authentication and authorisation patterns using OpenID Connect, SAML, OAuth, Kerberos, and LDAP . Lead implementation of Conditional Access , risk-based authentication, and device/state-based access controls. Embed zero trust and least-privilege principles across all enterprise applications and privileged roles. Privileged Access & Security Integration Architect and enhance Privileged Access Management (PAM) capabilities, including approval workflows and continuous monitoring. Champion identity threat detection and response (ITDR) approaches to mitigate identity-based attacks. Integrate IAM with HR, IT, and engineering systems to support automated joiner/mover/leaver processes. Assess IAM-related vulnerabilities and design remediation strategies. Infrastructure & Governance Own global Firewall architecture and design , aligning identity, network, and access strategies. Support Azure Policies, guardrails, and audit readiness aligned to security and compliance standards. Guide the hardening and operation of Active Directory (on-prem and Entra ID/Azure AD). Produce reference architectures, design standards, runbooks, and technical documentation. Strategy, Collaboration & Innovation Track emerging IAM technologies (eg passwordless, adaptive access, decentralised identity). Work with vendors on roadmaps, governance, and security notifications. Communicate architectural decisions clearly to senior IT and business leaders. Promote consistent identity and infrastructure standards across regions. Skills & Experience Experience 7-10 years' experience in IAM, identity engineering, or architecture within large or enterprise environments. Strong experience leading complex IAM design initiatives at scale. Background in global or multi-jurisdictional organisations strongly preferred. Technical Expertise Deep expertise in Microsoft identity platforms (Entra ID/Azure AD, on-prem AD). Strong hands-on experience with RBAC, entitlement management, and automated provisioning. Proficiency with PowerShell and REST APIs for identity automation. Understanding of network security concepts and their interaction with IAM (Firewalls, segmentation, remote access). Experience with Azure Policy, landing zones, and security guardrails. Certifications (Required/Preferred) Microsoft Certified: Identity and Access Administrator Associate (required). CISSP (preferred). Azure Cybersecurity Architect/Expert (preferred). CIAM or equivalent identity certifications (highly desirable). Personal Attributes Strong communicator able to explain complex identity concepts clearly. Confident, consultative, and comfortable challenging the status quo. Highly collaborative across security, engineering, and business teams. Structured, detail-oriented, and resilient under pressure. High discretion when handling sensitive information. Why Apply? This is a high-impact architecture role offering ownership of identity and access strategy at enterprise scale. You'll shape modern IAM practices, influence security posture globally, and work with cutting-edge Microsoft identity technologies in a complex professional services environment.
18/06/2026
Full time
Job Title: Infrastructure & Identity Access Management (IAM) Architect Location: London (Hybrid) Contract Type: Permanent Overview We are seeking a senior Infrastructure & IAM Architect to lead the design, evolution, and governance of identity, access management, and supporting infrastructure within a global professional services environment. This is a strategic architecture role with deep hands-on influence, focused on enterprise-scale IAM , privileged access, authentication, and zero trust principles across hybrid and cloud platforms. You'll work closely with Security, Platform Engineering, and Infrastructure teams to strengthen identity security, reduce risk, and improve user experience at global scale. The role suits an experienced IAM architect who enjoys setting standards, driving modern identity practices, and influencing senior stakeholders across a complex organisation. Key Responsibilities Identity & Access Architecture Define and maintain enterprise IAM architecture , covering identity life cycle, access governance, and privileged access management. Design secure authentication and authorisation patterns using OpenID Connect, SAML, OAuth, Kerberos, and LDAP . Lead implementation of Conditional Access , risk-based authentication, and device/state-based access controls. Embed zero trust and least-privilege principles across all enterprise applications and privileged roles. Privileged Access & Security Integration Architect and enhance Privileged Access Management (PAM) capabilities, including approval workflows and continuous monitoring. Champion identity threat detection and response (ITDR) approaches to mitigate identity-based attacks. Integrate IAM with HR, IT, and engineering systems to support automated joiner/mover/leaver processes. Assess IAM-related vulnerabilities and design remediation strategies. Infrastructure & Governance Own global Firewall architecture and design , aligning identity, network, and access strategies. Support Azure Policies, guardrails, and audit readiness aligned to security and compliance standards. Guide the hardening and operation of Active Directory (on-prem and Entra ID/Azure AD). Produce reference architectures, design standards, runbooks, and technical documentation. Strategy, Collaboration & Innovation Track emerging IAM technologies (eg passwordless, adaptive access, decentralised identity). Work with vendors on roadmaps, governance, and security notifications. Communicate architectural decisions clearly to senior IT and business leaders. Promote consistent identity and infrastructure standards across regions. Skills & Experience Experience 7-10 years' experience in IAM, identity engineering, or architecture within large or enterprise environments. Strong experience leading complex IAM design initiatives at scale. Background in global or multi-jurisdictional organisations strongly preferred. Technical Expertise Deep expertise in Microsoft identity platforms (Entra ID/Azure AD, on-prem AD). Strong hands-on experience with RBAC, entitlement management, and automated provisioning. Proficiency with PowerShell and REST APIs for identity automation. Understanding of network security concepts and their interaction with IAM (Firewalls, segmentation, remote access). Experience with Azure Policy, landing zones, and security guardrails. Certifications (Required/Preferred) Microsoft Certified: Identity and Access Administrator Associate (required). CISSP (preferred). Azure Cybersecurity Architect/Expert (preferred). CIAM or equivalent identity certifications (highly desirable). Personal Attributes Strong communicator able to explain complex identity concepts clearly. Confident, consultative, and comfortable challenging the status quo. Highly collaborative across security, engineering, and business teams. Structured, detail-oriented, and resilient under pressure. High discretion when handling sensitive information. Why Apply? This is a high-impact architecture role offering ownership of identity and access strategy at enterprise scale. You'll shape modern IAM practices, influence security posture globally, and work with cutting-edge Microsoft identity technologies in a complex professional services environment.
Finova Technologies Private Limited
Salford, Manchester
Application Security Engineer - Manchester Based (3 Days Hybrid) Finova is seeking a hands on Application Security Engineer to embed security into the design, build, and shipment of software across a multi cloud SaaS fintech platform. About the Role Core Responsibility: Partner closely with developers, the IAM Specialist, and the Cloud Security Engineer to ensure identity, infrastructure, and code are defended together. The Stack: Multi cloud environment spanning AWS, Azure and GCP. Applications run on .NET / ASP.NET with SQL Server backends. Key Challenge: Protect regulated financial data while defending a growing portfolio of AI powered features against a new class of application risks (prompt injection, model abuse, and training data leakage). Work Model: Highly collaborative, hands on hybrid role focused on making secure by default the path of least resistance for engineering teams. About You Experience: 4-6 years in application security, product security, or security focused software engineering within regulated environments. Framework Expertise: Strong working knowledge of .NET / ASP.NET application security (Claims based identity, ASP.NET Core authorization, data protection APIs). Security Models: Deep familiarity with OWASP Top 10, OWASP ASVS, and hands on experience leading threat modelling sessions (STRIDE/attack trees). CI/CD Pipeline Skills: Experience integrating and tuning security tools (SAST, SCA, DAST) within Azure DevOps, GitHub Actions or similar pipelines. Code Review: Confident reading and reviewing C# code to find authorization flaws, deserialization issues, or tenant isolation gaps during PRs. Core Fundamentals: Solid understanding of cryptographic primitives, API security at scale (OAuth 2.0 / OIDC, JWT pitfalls), and SaaS multi tenancy data exposure risks. Consultative Delivery: Experience working as a delivery engineer or consultant, shipping security work into messy, deadline driven customer environments. Communication: Clear communicator who can effectively coach a junior engineer, debate with a senior engineer, and explain critical risks to non technical executives. Nice to Have Fintech Background: Experience working in fintech, payments, banking or insurance environments. AI Security: Hands on experience securing AI/LLM features, prompt injection defense, and familiarity with OWASP LLM Top 10 or MITRE ATLAS. Offensive Security: An offensive security background (OSCP, OSWE or equivalent) or experience with bug bounty program design. Certifications: CSSLP, GWAPT, GWEB, CISSP or vendor specific cloud security certifications. Database Security: Experience identifying SQL Server specific application risks, including ORM misuse and stored procedure vulnerabilities. Community Contributions: Contributions to open source security tooling, CVE research, or published security writing. Key Attributes The Collaborative Builder: Thrive in shared accountability environments, working alongside infrastructure and identity specialists to build multi layered defenses. Pragmatic and Ruthless: Tune tools to protect developer workflows from noise, ensuring that every alert is a high signal, high trust finding. Curious and Adaptive: Energized by new technical frontiers, translating the emerging risks of AI endpoints and LLMs into practical engineering guardrails. Resilient Communicator: Comfortable operating in regulated environments, translating complex vulnerabilities into business context for leadership while remaining a trusted peer to developers. What Will You Be Doing? Secure SDLC & Shift Left Automation Toolchain Ownership: Own the application security toolchain end to end (SAST, SCA, DAST, secrets, container and IaC scanning) integrated into Azure DevOps and GitHub Actions. Scanner Optimization: Tune scanners to maximize high signal findings and eliminate noise so engineers trust the alerts. Early Detection: Build and maintain pre commit and pull request security checks to catch issues before code is merged. Vulnerability Management: Drive CVSS based SLAs, automated tracking and exception workflows for application layer issues across product teams. Coding Standards: Define and evolve secure coding standards for .NET / ASP.NET (input validation, cryptography, logging and authorization patterns). Threat Modelling & Secure Design Active Threat Modelling: Lead threat modelling sessions for new features using STRIDE or attack trees, turning outputs into tracked work items. Design Architecture: Review Architectural Decision Records, API designs and data flow diagrams before code is written. Developer Pairing: Provide hands on security guidance by pairing with developers on complex authorization logic, cryptographic choices or tenant isolation. Pattern Catalogues: Maintain a living catalogue of approved secure patterns and anti patterns so teams can build securely at speed. Vulnerability Management & Penetration Testing Lifecycle Management: Own the remediation lifecycle for application findings discovered via internal testing, customer reports, bug bounties and external pentests. Pentest Coordination: Scope and coordinate external penetration tests, select vendors, challenge false positives and build remediation plans. Internal Testing: Conduct manual code reviews of high risk areas, dynamic testing of new features and adversarial reviews of authorization logic. Purple Teaming: Build and run purple team exercises against internal applications to test detection and response capabilities alongside Security Operations. Application Layer Authorization (in partnership with IAM) Access Validation: Partner with the IAM Specialist to ensure RBAC/ABAC implementations behave correctly, tenant context is mandatory and defaults fail closed. ASP.NET Hardening: Review and harden authorization implementations (Claims, policies, attributes, custom middleware) and write unit/integration tests to prove isolation. Policy Design: Contribute to OPA / Rego policy design from the application side and integrate policy decision points into application code. Bug Hunting: Systematically hunt for high stakes authorization bugs such as IDOR, BOLA, broken access control and mass assignment. API & Service Security API Standards: Define and enforce standards for authentication (OAuth 2.0, mTLS), rate limiting and schema validation across REST, GraphQL and gRPC. Gateway Hardening: Partner with the Cloud Security Engineer to harden API gateway configurations, request validations and JWT validation rules. Layer 7 Protections: Implement and monitor WAF rules, bot management and anti automation controls without disrupting legitimate customer integrations. Inventory Tracking: Maintain a clear inventory of internal and external APIs, their classifications and their security postures. AI & ML Application Security AI Risk Leadership: Lead security thinking for AI features, defending against prompt injection, jailbreaks, model DoS and inference data leakage. Adversarial Testing: Design and run security testing for LLM backed endpoints and feed findings back into prompt design and guardrails. Confused Deputy Prevention: Collaborate with IAM to ensure AI endpoints cannot be weaponized to bypass direct access limitations. Data Pipeline Security: Define secure use patterns for embeddings, vector databases, RAG pipelines and feature stores to prevent tenant data leaks. Landscape Tracking: Translate evolving AI security frameworks (OWASP LLM Top 10, MITRE ATLAS) into practical engineering standards. Compliance, Evidence & Engineering Enablement Automated Evidence: Ensure application security controls satisfy SOC 2 Type II and PCI DSS requirements via automated pipeline collection. Audit Support: Support audits and customer assurance reviews by providing technical context and clear remediation narratives. Security Training: Run secure coding workshops, threat modelling enablement, and post incident learning sessions for engineers. Incident Response: Contribute to incident response for application security events through root cause analysis and blameless post mortems. What We Offer Hybrid working - work in the office with flexibility to work remotely as needed. Private medical insurance - comprehensive health cover with option to add family. Life assurance and income protection - peace of mind for the future. Family friendly policies - enhanced leave beyond maternity and paternity. Work from anywhere - approval to work abroad for up to 4 weeks each year. Flexible holiday package - 25 days paid holiday plus public holidays, with option to rebook or trade. Company pension scheme - salary exchange to save on tax and build a secure future. Employee assistance programme - confidential counselling helpline. Electric car scheme - brand new electric vehicle with salary sacrifice. Health cash plan - reimbursement for everyday healthcare costs. . click apply for full job details
16/06/2026
Full time
Application Security Engineer - Manchester Based (3 Days Hybrid) Finova is seeking a hands on Application Security Engineer to embed security into the design, build, and shipment of software across a multi cloud SaaS fintech platform. About the Role Core Responsibility: Partner closely with developers, the IAM Specialist, and the Cloud Security Engineer to ensure identity, infrastructure, and code are defended together. The Stack: Multi cloud environment spanning AWS, Azure and GCP. Applications run on .NET / ASP.NET with SQL Server backends. Key Challenge: Protect regulated financial data while defending a growing portfolio of AI powered features against a new class of application risks (prompt injection, model abuse, and training data leakage). Work Model: Highly collaborative, hands on hybrid role focused on making secure by default the path of least resistance for engineering teams. About You Experience: 4-6 years in application security, product security, or security focused software engineering within regulated environments. Framework Expertise: Strong working knowledge of .NET / ASP.NET application security (Claims based identity, ASP.NET Core authorization, data protection APIs). Security Models: Deep familiarity with OWASP Top 10, OWASP ASVS, and hands on experience leading threat modelling sessions (STRIDE/attack trees). CI/CD Pipeline Skills: Experience integrating and tuning security tools (SAST, SCA, DAST) within Azure DevOps, GitHub Actions or similar pipelines. Code Review: Confident reading and reviewing C# code to find authorization flaws, deserialization issues, or tenant isolation gaps during PRs. Core Fundamentals: Solid understanding of cryptographic primitives, API security at scale (OAuth 2.0 / OIDC, JWT pitfalls), and SaaS multi tenancy data exposure risks. Consultative Delivery: Experience working as a delivery engineer or consultant, shipping security work into messy, deadline driven customer environments. Communication: Clear communicator who can effectively coach a junior engineer, debate with a senior engineer, and explain critical risks to non technical executives. Nice to Have Fintech Background: Experience working in fintech, payments, banking or insurance environments. AI Security: Hands on experience securing AI/LLM features, prompt injection defense, and familiarity with OWASP LLM Top 10 or MITRE ATLAS. Offensive Security: An offensive security background (OSCP, OSWE or equivalent) or experience with bug bounty program design. Certifications: CSSLP, GWAPT, GWEB, CISSP or vendor specific cloud security certifications. Database Security: Experience identifying SQL Server specific application risks, including ORM misuse and stored procedure vulnerabilities. Community Contributions: Contributions to open source security tooling, CVE research, or published security writing. Key Attributes The Collaborative Builder: Thrive in shared accountability environments, working alongside infrastructure and identity specialists to build multi layered defenses. Pragmatic and Ruthless: Tune tools to protect developer workflows from noise, ensuring that every alert is a high signal, high trust finding. Curious and Adaptive: Energized by new technical frontiers, translating the emerging risks of AI endpoints and LLMs into practical engineering guardrails. Resilient Communicator: Comfortable operating in regulated environments, translating complex vulnerabilities into business context for leadership while remaining a trusted peer to developers. What Will You Be Doing? Secure SDLC & Shift Left Automation Toolchain Ownership: Own the application security toolchain end to end (SAST, SCA, DAST, secrets, container and IaC scanning) integrated into Azure DevOps and GitHub Actions. Scanner Optimization: Tune scanners to maximize high signal findings and eliminate noise so engineers trust the alerts. Early Detection: Build and maintain pre commit and pull request security checks to catch issues before code is merged. Vulnerability Management: Drive CVSS based SLAs, automated tracking and exception workflows for application layer issues across product teams. Coding Standards: Define and evolve secure coding standards for .NET / ASP.NET (input validation, cryptography, logging and authorization patterns). Threat Modelling & Secure Design Active Threat Modelling: Lead threat modelling sessions for new features using STRIDE or attack trees, turning outputs into tracked work items. Design Architecture: Review Architectural Decision Records, API designs and data flow diagrams before code is written. Developer Pairing: Provide hands on security guidance by pairing with developers on complex authorization logic, cryptographic choices or tenant isolation. Pattern Catalogues: Maintain a living catalogue of approved secure patterns and anti patterns so teams can build securely at speed. Vulnerability Management & Penetration Testing Lifecycle Management: Own the remediation lifecycle for application findings discovered via internal testing, customer reports, bug bounties and external pentests. Pentest Coordination: Scope and coordinate external penetration tests, select vendors, challenge false positives and build remediation plans. Internal Testing: Conduct manual code reviews of high risk areas, dynamic testing of new features and adversarial reviews of authorization logic. Purple Teaming: Build and run purple team exercises against internal applications to test detection and response capabilities alongside Security Operations. Application Layer Authorization (in partnership with IAM) Access Validation: Partner with the IAM Specialist to ensure RBAC/ABAC implementations behave correctly, tenant context is mandatory and defaults fail closed. ASP.NET Hardening: Review and harden authorization implementations (Claims, policies, attributes, custom middleware) and write unit/integration tests to prove isolation. Policy Design: Contribute to OPA / Rego policy design from the application side and integrate policy decision points into application code. Bug Hunting: Systematically hunt for high stakes authorization bugs such as IDOR, BOLA, broken access control and mass assignment. API & Service Security API Standards: Define and enforce standards for authentication (OAuth 2.0, mTLS), rate limiting and schema validation across REST, GraphQL and gRPC. Gateway Hardening: Partner with the Cloud Security Engineer to harden API gateway configurations, request validations and JWT validation rules. Layer 7 Protections: Implement and monitor WAF rules, bot management and anti automation controls without disrupting legitimate customer integrations. Inventory Tracking: Maintain a clear inventory of internal and external APIs, their classifications and their security postures. AI & ML Application Security AI Risk Leadership: Lead security thinking for AI features, defending against prompt injection, jailbreaks, model DoS and inference data leakage. Adversarial Testing: Design and run security testing for LLM backed endpoints and feed findings back into prompt design and guardrails. Confused Deputy Prevention: Collaborate with IAM to ensure AI endpoints cannot be weaponized to bypass direct access limitations. Data Pipeline Security: Define secure use patterns for embeddings, vector databases, RAG pipelines and feature stores to prevent tenant data leaks. Landscape Tracking: Translate evolving AI security frameworks (OWASP LLM Top 10, MITRE ATLAS) into practical engineering standards. Compliance, Evidence & Engineering Enablement Automated Evidence: Ensure application security controls satisfy SOC 2 Type II and PCI DSS requirements via automated pipeline collection. Audit Support: Support audits and customer assurance reviews by providing technical context and clear remediation narratives. Security Training: Run secure coding workshops, threat modelling enablement, and post incident learning sessions for engineers. Incident Response: Contribute to incident response for application security events through root cause analysis and blameless post mortems. What We Offer Hybrid working - work in the office with flexibility to work remotely as needed. Private medical insurance - comprehensive health cover with option to add family. Life assurance and income protection - peace of mind for the future. Family friendly policies - enhanced leave beyond maternity and paternity. Work from anywhere - approval to work abroad for up to 4 weeks each year. Flexible holiday package - 25 days paid holiday plus public holidays, with option to rebook or trade. Company pension scheme - salary exchange to save on tax and build a secure future. Employee assistance programme - confidential counselling helpline. Electric car scheme - brand new electric vehicle with salary sacrifice. Health cash plan - reimbursement for everyday healthcare costs. . click apply for full job details
Overview Mayer Brown is an international law firm positioned to represent the world's major corporations, funds, and financial institutions in their most important and complex transactions and disputes. We are recognized by our clients as strategic partners with deep commercial instincts and a commitment to creatively anticipating their needs and delivering excellence in everything we do. We are a collegial and collaborative firm where highly motivated individuals with an unwavering commitment to excellence receive the opportunity, support, and development they need to grow, thrive, and realise their greatest potential all while supporting the Firm's client service principles of excellence, strategic partnership, commercial instinct, integrated strengths, innovation, and collaboration across our international firm. If you enjoy working with team members whose defining characteristics are exceptional client service, initiative, professionalism, responsiveness, and adaptability, you may be the person we are seeking to join our IT department in our London office as an Architect: Infrastructure & Access Management. Responsibilities Stay current with emerging IAM technologies such as passwordless authentication, decentralized identity frameworks, and adaptive access controls. Collaborate with the Senior Architect Information Security and lead the implementation of identity governance automation, leveraging machine learning for anomaly detection and remediation. Ensure seamless integration of multi-factor authentication (MFA) with biometric and mobile device capabilities to improve both security and user experience. Champion the adoption of identity threat detection and response (ITDR) solutions to proactively identify and mitigate identity-based attacks. Develop and maintain the firm's IAM architecture, including identity lifecycle, access governance, and privileged access controls. Design secure authentication and authorization patterns (OpenID Connect, SAML, OAuth, Kerberos, LDAP) and in conjunction with the Platform Engineering team, Conditional Access policies aligned with Microsoft best practices. Embed zero trust and least privilege principles across all privileged roles and enterprise applications. Responsible for global firewall design and architecture. Architect and enhance privileged access management (PAM) capabilities, including approval workflows and continuous monitoring. Collaborate with Security to design Azure Policies and guardrails, supporting audit readiness and remediation (e.g., ISO 27001, ISO 22301). Integrate IAM with HR, IT, and engineering systems to ensure policy-driven access throughout the user lifecycle. Oversee Conditional Access deployment, risk-based authentication, and device/state signals. Guide the operation and hardening of multi-site Active Directory domains/forests and cloud identity components (Entra/Azure AD). Align IAM with Firewall, Micro-Segmentation, NDR, Remote Access, and Certificate Management strategies. Assess IAM-related vulnerabilities and design timely mitigations. Establish and maintain reference architectures, design standards, runbooks, and documentation. Participate in vendor governance, roadmap reviews, and security notifications. Communicate architecture decisions to senior business and IT leaders; foster cross-regional collaboration. Track industry trends and recommend innovations to improve security and reduce complexity. Perform other duties as assigned or required to meet Firm goals and objectives The Firm may modify and amend this job description at any time at its sole discretion. Nothing herein creates a contract of employment. Qualifications Bachelor's degree in Computer Science, Information Technology, or related field; equivalent experience considered. Approx. 7-10 years in IAM/identity engineering/architecture within large or enterprise environments; 3+ years leading complex IAM design initiatives. Prior global/large-scale enterprise experience preferred. Relevant industry certifications such as CISSP Microsoft Certified: Identity and Access Administrator Associate required Azure Cybersecurity Expert preferred Certified Identity and Access Manager (CIAM) are highly desirable Technical Skills: Deep expertise in Microsoft identity and security across SaaS/PaaS, IAM, and Privileged Access domains; advanced Entra ID/Azure AD and on prem AD. Strong command of SSO and authentication protocols: OpenID Connect, SAML, OAuth, Kerberos, LDAP. Hands on RBAC design, entitlement management, and automated provisioning/de provisioning pipelines. Proficiency with PowerShell and RESTful integrations for identity automation and compliance checks. Familiarity with NDR and Micro Segmentation patterns; understanding of network topologies and their interplay with IAM. Experience hardening infrastructure and monitoring for malware/unauthorized access in hybrid environments. Exposure to Azure Policy and landing zone guardrails; Conditional Access at scale. Performance Traits: Excellent written and verbal communication; able to explain complex identity concepts to diverse audiences. Strong customer focus, initiative, and ability to operate under pressure with shifting priorities. Collaborative across business analysts, developers, data teams, and security; resilient, agile mindset; commitment to process improvement and structured operational practices. High discretion in handling sensitive information; willingness to challenge the status quo constructively. Willingness to challenge the status quo. At Mayer Brown, we are committed to creating an inclusive work environment that offers our people the opportunity and support they need to succeed. Our culture promotes mutual respect, acceptance, cooperation and productivity among people from all backgrounds and values different perspectives and ideas. One of our core values at Mayer Brown is to promote inclusion at all levels within the business which is actively supported by our Employee Resource Groups - LGBTQI+, Fusion (Race & Ethnicity), Multi-faith, Women, Enable (Disability), Social Inclusion and Opportunities Network and Work and Me (Family). We are happy to discuss any reasonable adjustments that individuals may require throughout the recruitment process and once they have joined the Firm.
16/06/2026
Full time
Overview Mayer Brown is an international law firm positioned to represent the world's major corporations, funds, and financial institutions in their most important and complex transactions and disputes. We are recognized by our clients as strategic partners with deep commercial instincts and a commitment to creatively anticipating their needs and delivering excellence in everything we do. We are a collegial and collaborative firm where highly motivated individuals with an unwavering commitment to excellence receive the opportunity, support, and development they need to grow, thrive, and realise their greatest potential all while supporting the Firm's client service principles of excellence, strategic partnership, commercial instinct, integrated strengths, innovation, and collaboration across our international firm. If you enjoy working with team members whose defining characteristics are exceptional client service, initiative, professionalism, responsiveness, and adaptability, you may be the person we are seeking to join our IT department in our London office as an Architect: Infrastructure & Access Management. Responsibilities Stay current with emerging IAM technologies such as passwordless authentication, decentralized identity frameworks, and adaptive access controls. Collaborate with the Senior Architect Information Security and lead the implementation of identity governance automation, leveraging machine learning for anomaly detection and remediation. Ensure seamless integration of multi-factor authentication (MFA) with biometric and mobile device capabilities to improve both security and user experience. Champion the adoption of identity threat detection and response (ITDR) solutions to proactively identify and mitigate identity-based attacks. Develop and maintain the firm's IAM architecture, including identity lifecycle, access governance, and privileged access controls. Design secure authentication and authorization patterns (OpenID Connect, SAML, OAuth, Kerberos, LDAP) and in conjunction with the Platform Engineering team, Conditional Access policies aligned with Microsoft best practices. Embed zero trust and least privilege principles across all privileged roles and enterprise applications. Responsible for global firewall design and architecture. Architect and enhance privileged access management (PAM) capabilities, including approval workflows and continuous monitoring. Collaborate with Security to design Azure Policies and guardrails, supporting audit readiness and remediation (e.g., ISO 27001, ISO 22301). Integrate IAM with HR, IT, and engineering systems to ensure policy-driven access throughout the user lifecycle. Oversee Conditional Access deployment, risk-based authentication, and device/state signals. Guide the operation and hardening of multi-site Active Directory domains/forests and cloud identity components (Entra/Azure AD). Align IAM with Firewall, Micro-Segmentation, NDR, Remote Access, and Certificate Management strategies. Assess IAM-related vulnerabilities and design timely mitigations. Establish and maintain reference architectures, design standards, runbooks, and documentation. Participate in vendor governance, roadmap reviews, and security notifications. Communicate architecture decisions to senior business and IT leaders; foster cross-regional collaboration. Track industry trends and recommend innovations to improve security and reduce complexity. Perform other duties as assigned or required to meet Firm goals and objectives The Firm may modify and amend this job description at any time at its sole discretion. Nothing herein creates a contract of employment. Qualifications Bachelor's degree in Computer Science, Information Technology, or related field; equivalent experience considered. Approx. 7-10 years in IAM/identity engineering/architecture within large or enterprise environments; 3+ years leading complex IAM design initiatives. Prior global/large-scale enterprise experience preferred. Relevant industry certifications such as CISSP Microsoft Certified: Identity and Access Administrator Associate required Azure Cybersecurity Expert preferred Certified Identity and Access Manager (CIAM) are highly desirable Technical Skills: Deep expertise in Microsoft identity and security across SaaS/PaaS, IAM, and Privileged Access domains; advanced Entra ID/Azure AD and on prem AD. Strong command of SSO and authentication protocols: OpenID Connect, SAML, OAuth, Kerberos, LDAP. Hands on RBAC design, entitlement management, and automated provisioning/de provisioning pipelines. Proficiency with PowerShell and RESTful integrations for identity automation and compliance checks. Familiarity with NDR and Micro Segmentation patterns; understanding of network topologies and their interplay with IAM. Experience hardening infrastructure and monitoring for malware/unauthorized access in hybrid environments. Exposure to Azure Policy and landing zone guardrails; Conditional Access at scale. Performance Traits: Excellent written and verbal communication; able to explain complex identity concepts to diverse audiences. Strong customer focus, initiative, and ability to operate under pressure with shifting priorities. Collaborative across business analysts, developers, data teams, and security; resilient, agile mindset; commitment to process improvement and structured operational practices. High discretion in handling sensitive information; willingness to challenge the status quo constructively. Willingness to challenge the status quo. At Mayer Brown, we are committed to creating an inclusive work environment that offers our people the opportunity and support they need to succeed. Our culture promotes mutual respect, acceptance, cooperation and productivity among people from all backgrounds and values different perspectives and ideas. One of our core values at Mayer Brown is to promote inclusion at all levels within the business which is actively supported by our Employee Resource Groups - LGBTQI+, Fusion (Race & Ethnicity), Multi-faith, Women, Enable (Disability), Social Inclusion and Opportunities Network and Work and Me (Family). We are happy to discuss any reasonable adjustments that individuals may require throughout the recruitment process and once they have joined the Firm.
慨正橡扯 is looking for an AWS Cloud & AI Security Engineer to design and implement security measures across AWS platforms and AI workloads. This role focuses on threat detection and response, specifically utilizing Amazon GuardDuty and related security operations. The successful candidate will work with various teams to enhance security-by-design in AI systems, ensuring these systems are safeguarded from evolving threats. This position offers flexible working with a split between in-office and remote work.
15/06/2026
Full time
慨正橡扯 is looking for an AWS Cloud & AI Security Engineer to design and implement security measures across AWS platforms and AI workloads. This role focuses on threat detection and response, specifically utilizing Amazon GuardDuty and related security operations. The successful candidate will work with various teams to enhance security-by-design in AI systems, ensuring these systems are safeguarded from evolving threats. This position offers flexible working with a split between in-office and remote work.
This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Security Engineer in United Kingdom. Join a fast growing, globally distributed engineering organization building one of the most advanced PostgreSQL platforms for modern transactional, analytical, and AI driven workloads. In this role, you will sit at the intersection of software engineering, infrastructure, and security, helping to embed security practices directly into products, cloud environments, and developer workflows. You will work closely with engineering teams to identify vulnerabilities, improve secure development practices, and strengthen the overall security posture of a highly scalable, cloud native platform. This is a hands on engineering role where you will write production grade code, build security tooling, and drive automation across CI/CD and infrastructure systems. It offers the opportunity to work in a remote first, highly collaborative environment where ownership, speed, and technical depth are highly valued. Accountabilities Triage, validate, and remediate security vulnerabilities across applications, infrastructure, cloud environments, and internal systems. Design, develop, and maintain internal and open source security tools, contributing production grade code in modern programming languages. Conduct secure code reviews, threat modeling exercises, and security architecture reviews to improve engineering practices. Build and enhance security automation across CI/CD pipelines, cloud infrastructure, and internal engineering platforms. Support incident response activities, security investigations, and compliance related processes such as audits and access reviews. Collaborate with engineering teams to embed security best practices throughout the software development lifecycle. Investigate emerging risks, including AI assisted development threats, and integrate AI tools into security workflows where appropriate. Participate in continuous improvement of detection, monitoring, and preventative security controls across systems. Contribute to engineering discussions and decisions that improve resilience, scalability, and security of distributed systems. Requirements Proven experience in software engineering, security engineering, or a hybrid of both roles in production environments. Strong ability to read, write, and maintain production grade code, ideally in Go, Python, Rust, or similar languages. Solid understanding of security fundamentals across application, infrastructure, cloud, and platform security domains. Hands on experience building automation, tooling, or systems that improve security posture and operational efficiency. Strong familiarity with modern cloud native environments, containers, Kubernetes, and distributed systems architectures. Experience with secure development practices including code review, threat modeling, and vulnerability management. Analytical and problem solving mindset with a strong focus on building scalable and automated solutions. Comfortable working in fast paced, ambiguous environments with high ownership and autonomy. Strong communication skills and ability to collaborate effectively with engineering and cross functional teams. Interest in AI assisted development workflows and modern developer tooling is highly valued. Benefits Fully remote work environment with global flexibility. Competitive compensation with long term stock option opportunities. Flexible paid time off policy, including enhanced holiday periods. Additional company wide shutdown periods (e.g., Fridays off in August). Monthly home office and connectivity stipends. Professional development and learning support programs. Comprehensive health and family insurance options (depending on location). Opportunity to work on cutting edge PostgreSQL and cloud native technologies at scale. High autonomy engineering culture focused on building impactful systems. Inclusive and collaborative global team environment with strong technical ownership.
15/06/2026
Full time
This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Security Engineer in United Kingdom. Join a fast growing, globally distributed engineering organization building one of the most advanced PostgreSQL platforms for modern transactional, analytical, and AI driven workloads. In this role, you will sit at the intersection of software engineering, infrastructure, and security, helping to embed security practices directly into products, cloud environments, and developer workflows. You will work closely with engineering teams to identify vulnerabilities, improve secure development practices, and strengthen the overall security posture of a highly scalable, cloud native platform. This is a hands on engineering role where you will write production grade code, build security tooling, and drive automation across CI/CD and infrastructure systems. It offers the opportunity to work in a remote first, highly collaborative environment where ownership, speed, and technical depth are highly valued. Accountabilities Triage, validate, and remediate security vulnerabilities across applications, infrastructure, cloud environments, and internal systems. Design, develop, and maintain internal and open source security tools, contributing production grade code in modern programming languages. Conduct secure code reviews, threat modeling exercises, and security architecture reviews to improve engineering practices. Build and enhance security automation across CI/CD pipelines, cloud infrastructure, and internal engineering platforms. Support incident response activities, security investigations, and compliance related processes such as audits and access reviews. Collaborate with engineering teams to embed security best practices throughout the software development lifecycle. Investigate emerging risks, including AI assisted development threats, and integrate AI tools into security workflows where appropriate. Participate in continuous improvement of detection, monitoring, and preventative security controls across systems. Contribute to engineering discussions and decisions that improve resilience, scalability, and security of distributed systems. Requirements Proven experience in software engineering, security engineering, or a hybrid of both roles in production environments. Strong ability to read, write, and maintain production grade code, ideally in Go, Python, Rust, or similar languages. Solid understanding of security fundamentals across application, infrastructure, cloud, and platform security domains. Hands on experience building automation, tooling, or systems that improve security posture and operational efficiency. Strong familiarity with modern cloud native environments, containers, Kubernetes, and distributed systems architectures. Experience with secure development practices including code review, threat modeling, and vulnerability management. Analytical and problem solving mindset with a strong focus on building scalable and automated solutions. Comfortable working in fast paced, ambiguous environments with high ownership and autonomy. Strong communication skills and ability to collaborate effectively with engineering and cross functional teams. Interest in AI assisted development workflows and modern developer tooling is highly valued. Benefits Fully remote work environment with global flexibility. Competitive compensation with long term stock option opportunities. Flexible paid time off policy, including enhanced holiday periods. Additional company wide shutdown periods (e.g., Fridays off in August). Monthly home office and connectivity stipends. Professional development and learning support programs. Comprehensive health and family insurance options (depending on location). Opportunity to work on cutting edge PostgreSQL and cloud native technologies at scale. High autonomy engineering culture focused on building impactful systems. Inclusive and collaborative global team environment with strong technical ownership.
# Principal Product Manager London, United KingdomJoin Mintel and help shape the future of global consumer insights. We're looking for a Principal Product Manager to join our growing Product leadership team - someone who can blend visionary thinking, market obsession, and product execution excellence to lead Mintel into its next era of innovation and growth. This role is a unique opportunity to operate at the highest strategic level - guiding product direction, aligning across the business, and building cutting-edge solutions that shape entire industries. Why This Role Matters As Principal Product Manager focused on our One Mintel AI Platform Proposition & Roadmap, you'll: Lead cross-functional strategic initiatives across the product portfolio. Drive lean, data-driven product development that delivers measurable ROI. Ensure strategic alignment between product vision and company-wide goals. Partner closely with senior global stakeholders and C-suite to turn product strategy into real-world impact. Help define how Mintel builds product - not just what we build.This isn't just about feature releases. It's about redefining market categories, driving multi-million-pound growth, and ensuring Mintel stays indispensable to the world's leading brands. What You'll Be Doing Drive our Vision Forward: Bring to life Mintel's multi-year product strategy, identifying transformational opportunities across our portfolio. Build market-defining roadmaps rooted in client insight, commercial reality, competitive intelligence, and long-term impact.Drive Strategic Delivery: Lead high-priority, cross-team and cross-functional initiatives, guiding other product managers, design, data and engineering teams toward aligned outcomes. Orchestrate large-scale initiatives across commercial, marketing, data, futures and engineering teams, with trust and influence to drive complex delivery.Direct Commercial Impact: Partner with Sales, Marketing, and Consulting leaders to design and execute go-to-market plans for major launches. Build compelling business cases and value propositions to drive adoption, retention, and revenue growth. Support commercial team as a trusted product team representation in winning high-value client proposals.Influence at the Highest Level: Operate as a trusted advisor to C-suite and global leadership. Drive clarity, alignment, and excitement around product strategy across the organisation.Be a Product Culture Shaper: Champion lean methodologies: including MVPs, rapid experimentation, fast validation, and continuous learning. Help reimagine how product is built at Mintel - AI-first thinking in discovery and validation to delivery and measurement. Lead the strategic use of AI/ML in product development to gain competitive advantage. Coach and mentor product managers to elevate the craft across the team. What We're Looking For Essential: 10+ years in Product Management, including time at a Principal/Lead level. Proven experience leading strategic, cross-functional product initiatives spanning multiple teams and domains. Deep knowledge of lean product development and ability to implement it across teams. Strong commercial acumen with a track record of delivering significant revenue impact and supporting high-value client proposals. Executive-level influencing and stakeholder management experience - you know how to bring the business with you. Sharp communicator - you bring clarity and confidence to the overarching product vision and roadmap. Proficient in tools like MixPanel, Productboard, Jira, and data analytics platforms.Preferred: Master's degree or MBA. Experience working with Data Science, AI, or Data Engineering teams. Background in strategy or management consulting. Nice to have: Exposure or experience in FMCGhis is a genuine opportunity to have a voice and be part of shaping decisions and direction in this exciting space. You will join the Information Security Team and will be helping us to make changes that contribute to the quality of our systems and user environments whether on-prem, in data centres or in the cloud.You're interested in building capabilities that improve security posture through hands-on configuration, system administration and enjoy the challenge of working with a variety of technology environments and teams.We support a hybrid working approach. Define end user security experience Delivering projects with product, development and support teams Develop the effectiveness of detection and response management Triage, track and follow security issues to completion Lead team incident management procedures Develop security automation response for anomalous events and changes in risk Work with 3rd party vendors/partners on security engagements Transforming system review/config audit into continual improvement cycles Conducting end point, server and device config reviews Be a SME resource for operational security control advice & threat modelling for the businessEssential knowledge: Solid understanding of cybersecurity concepts, including threats, vulnerabilities, security operations, encryption, boundary defence, authentication and risk management. IAM & Directory Management engineering (Azure/Entra/ M365) Detection & Response platforms Securing mobile, server and desktop operating systems Security Architecture principles Network Security engineering Securing AWS workloads Microsoft 365 E5 security & compliance capabilities, including Microsoft Defender XDR (Defender for Endpoint/Identity/Office 365/Cloud Apps) and Microsoft Purview (Information Protection, DLP, eDiscovery, Insider Risk) Operational familiarity with authentication, authorisation and non-repudiation techniques Operationalizing alert and intelligence data into actionable response Excellent communication and documentation skills Strong analytical and problem-solving skills Windows & Linux System administrationDesirable Knowledge: Working across hybrid cloud environments CIS hardening & benchmark standards Cloud and AI engineering capabilities One or more of the following would be advantageous: KQL, Python, linux shell Data regulations as they relate to IT systems Data Visualisation skills Secure enablement and governance of Microsoft Copilot and GenAI (Copilot for Security, Microsoft 365 Copilot). Execution of change/project mgmt. across teams in & outside of IT Working with Container and orchestration tools Working with DevOps teams What you'll get in return: A culture that supports true collaboration whilst embracing remote working with a company wide hybrid working week. Approach to personal development where we encourage individuals to grow and share what they've learned. Social events, both within the department and across the company Generous holiday allowance with the opportunity to buy back additional holiday. A day off to celebrate your birthday Giving back is part of our culture with this in mind Mintel gives each employee 2 days per year to give to a worthwhile cause. Apply for this job
15/06/2026
Full time
# Principal Product Manager London, United KingdomJoin Mintel and help shape the future of global consumer insights. We're looking for a Principal Product Manager to join our growing Product leadership team - someone who can blend visionary thinking, market obsession, and product execution excellence to lead Mintel into its next era of innovation and growth. This role is a unique opportunity to operate at the highest strategic level - guiding product direction, aligning across the business, and building cutting-edge solutions that shape entire industries. Why This Role Matters As Principal Product Manager focused on our One Mintel AI Platform Proposition & Roadmap, you'll: Lead cross-functional strategic initiatives across the product portfolio. Drive lean, data-driven product development that delivers measurable ROI. Ensure strategic alignment between product vision and company-wide goals. Partner closely with senior global stakeholders and C-suite to turn product strategy into real-world impact. Help define how Mintel builds product - not just what we build.This isn't just about feature releases. It's about redefining market categories, driving multi-million-pound growth, and ensuring Mintel stays indispensable to the world's leading brands. What You'll Be Doing Drive our Vision Forward: Bring to life Mintel's multi-year product strategy, identifying transformational opportunities across our portfolio. Build market-defining roadmaps rooted in client insight, commercial reality, competitive intelligence, and long-term impact.Drive Strategic Delivery: Lead high-priority, cross-team and cross-functional initiatives, guiding other product managers, design, data and engineering teams toward aligned outcomes. Orchestrate large-scale initiatives across commercial, marketing, data, futures and engineering teams, with trust and influence to drive complex delivery.Direct Commercial Impact: Partner with Sales, Marketing, and Consulting leaders to design and execute go-to-market plans for major launches. Build compelling business cases and value propositions to drive adoption, retention, and revenue growth. Support commercial team as a trusted product team representation in winning high-value client proposals.Influence at the Highest Level: Operate as a trusted advisor to C-suite and global leadership. Drive clarity, alignment, and excitement around product strategy across the organisation.Be a Product Culture Shaper: Champion lean methodologies: including MVPs, rapid experimentation, fast validation, and continuous learning. Help reimagine how product is built at Mintel - AI-first thinking in discovery and validation to delivery and measurement. Lead the strategic use of AI/ML in product development to gain competitive advantage. Coach and mentor product managers to elevate the craft across the team. What We're Looking For Essential: 10+ years in Product Management, including time at a Principal/Lead level. Proven experience leading strategic, cross-functional product initiatives spanning multiple teams and domains. Deep knowledge of lean product development and ability to implement it across teams. Strong commercial acumen with a track record of delivering significant revenue impact and supporting high-value client proposals. Executive-level influencing and stakeholder management experience - you know how to bring the business with you. Sharp communicator - you bring clarity and confidence to the overarching product vision and roadmap. Proficient in tools like MixPanel, Productboard, Jira, and data analytics platforms.Preferred: Master's degree or MBA. Experience working with Data Science, AI, or Data Engineering teams. Background in strategy or management consulting. Nice to have: Exposure or experience in FMCGhis is a genuine opportunity to have a voice and be part of shaping decisions and direction in this exciting space. You will join the Information Security Team and will be helping us to make changes that contribute to the quality of our systems and user environments whether on-prem, in data centres or in the cloud.You're interested in building capabilities that improve security posture through hands-on configuration, system administration and enjoy the challenge of working with a variety of technology environments and teams.We support a hybrid working approach. Define end user security experience Delivering projects with product, development and support teams Develop the effectiveness of detection and response management Triage, track and follow security issues to completion Lead team incident management procedures Develop security automation response for anomalous events and changes in risk Work with 3rd party vendors/partners on security engagements Transforming system review/config audit into continual improvement cycles Conducting end point, server and device config reviews Be a SME resource for operational security control advice & threat modelling for the businessEssential knowledge: Solid understanding of cybersecurity concepts, including threats, vulnerabilities, security operations, encryption, boundary defence, authentication and risk management. IAM & Directory Management engineering (Azure/Entra/ M365) Detection & Response platforms Securing mobile, server and desktop operating systems Security Architecture principles Network Security engineering Securing AWS workloads Microsoft 365 E5 security & compliance capabilities, including Microsoft Defender XDR (Defender for Endpoint/Identity/Office 365/Cloud Apps) and Microsoft Purview (Information Protection, DLP, eDiscovery, Insider Risk) Operational familiarity with authentication, authorisation and non-repudiation techniques Operationalizing alert and intelligence data into actionable response Excellent communication and documentation skills Strong analytical and problem-solving skills Windows & Linux System administrationDesirable Knowledge: Working across hybrid cloud environments CIS hardening & benchmark standards Cloud and AI engineering capabilities One or more of the following would be advantageous: KQL, Python, linux shell Data regulations as they relate to IT systems Data Visualisation skills Secure enablement and governance of Microsoft Copilot and GenAI (Copilot for Security, Microsoft 365 Copilot). Execution of change/project mgmt. across teams in & outside of IT Working with Container and orchestration tools Working with DevOps teams What you'll get in return: A culture that supports true collaboration whilst embracing remote working with a company wide hybrid working week. Approach to personal development where we encourage individuals to grow and share what they've learned. Social events, both within the department and across the company Generous holiday allowance with the opportunity to buy back additional holiday. A day off to celebrate your birthday Giving back is part of our culture with this in mind Mintel gives each employee 2 days per year to give to a worthwhile cause. Apply for this job
Kitt designs and operates workspace for the world's most vibrant brands. From managing the design and build, to creating an elevated ongoing experience, we create spaces that are worth leaving home for. Role Mission Reporting directly into one of our Head of Engineering, you'll own and evolve the infrastructure, deployment pipelines and security posture that the rest of engineering builds on top of. This is an infrastructure first role with real depth: you'll spend most of your time in our cloud and DevOps stack, but you'll also get hands on with our Go backend services - fixing, extending and building features when the work calls for it. We define ourselves as product engineers - we love building things that make a tangible difference, whether that's a feature a customer touches or a pipeline that makes every engineer faster. As a Platform Engineer you'll treat developer experience and reliability as products in their own right, with internal teams as your customers. This is a role for someone who wants to own infra and DevOps end to end - self directed, ambitious, and eager to get stuck in. You won't be waiting to be told what to fix; you'll be the person who spots it, scopes it and ships it. Responsibilities Own the infrastructure: Take ownership of our AWS based infrastructure as code (Terraform), our EKS Kubernetes clusters, and the supporting services that keep 40 microservices running across dev, staging and production Run and improve CI/CD: Maintain and evolve our CircleCI pipelines and custom Kitt CLI tooling, making builds and deployments faster, safer and easier for the whole team DevOps & developer experience: Improve how engineers ship - from Helm charts and Skaffold based dev workflows to local environments - treating internal tooling as a product SecOps: Help keep us secure and compliant - secrets management (AWS Secrets Manager + External Secrets), IAM and access control, threat detection and vulnerability findings (GuardDuty, Inspector), and supporting our ISO 27001 work Observability & reliability: Build and tune monitoring, dashboards and alerting (Datadog) so we catch issues early and understand our systems in production Backend development: Dig into our Go microservices - gRPC, GraphQL gateway, MySQL/Postgres/Redis - to fix issues, add features and improve the services your infrastructure runs Cost & scalability: Keep an eye on cloud spend and scaling (Karpenter autoscaling, right sizing) and make pragmatic calls that balance cost, performance and reliability About you DevOps & infrastructure experience: Solid hands on experience running infrastructure and deployment pipelines in production - this is the core of the role AWS: Strong, practical AWS experience is a must (EC2, EKS/Kubernetes, IAM, networking, secrets). GCP experience is a nice to have given our polycloud setup Infrastructure as code: Comfortable with Terraform (or similar) and treating infrastructure as version controlled, reviewable code Kubernetes & containers: Real experience with Kubernetes and Docker - deploying, debugging and operating containerised workloads Backend coding: You can read and write backend code and genuinely enjoy doing so. Go experience is ideal, but if you've worked in another statically typed language (TypeScript, Java, C#, Rust, etc.) alongside strong DevOps experience, we'll help you get up to speed on Go Security mindset: You think about security as you build - secrets, access, least privilege - and are keen to grow your SecOps skills Self directed & ambitious: You take ownership, work independently, and are eager to get stuck in. You spot what needs doing and drive it, rather than waiting for direction Pragmatism: You make sensible trade offs between speed, cost, reliability and maintainability, and care about the impact your work has on other engineers Scale up energy: Ambitious and excited to work in a friendly scale up environment with the mission to transform workspaces globally Why Kitt? The world of work has shifted forever. As people everywhere prioritise purpose over their paychecks, company culture has been thrown into the spotlight. But the problem is, too many companies are showing up to work in bland, cookie cutter offices. We're leading this change. Real company culture can only be built in person, in the real world - and for it to be authentic it needs its very own, personalised space. That's why we create offices as unique as the brands and the people who work there. We're long term culture partners to our clients long after they've signed the lease and chosen. We'll Kitt you out Generous stock option scheme (ask us what this means if you're not sure) Starting salary of £65,000 - £80,000 Hybrid working - 3 days a week in our London office, with up to 2 days remote 28 days holiday a year plus Bank Holidays Parental leave: up to 12 weeks paid parental leave for the primary caregiver Pregnancy loss support leave Regular socials - we love a good party Octopus MoneyCoach Workplace Nursery Benefit Cycle to Work scheme Season Ticket Loans WellHub and Dr Care Anywhere to support your mental and physical health and wellbeing We believe the world is transformed when people come together to do extraordinary things. We harness the power of diverse perspectives and experiences, fostering collaboration and innovation to achieve extraordinary results that make a positive impact. With the same set of equitable interview questions for all candidates and hiring teams which encompass diversity, we prioritise creating an inclusive environment where individuals' backgrounds or origins are irrelevant. For more information, please contact
14/06/2026
Full time
Kitt designs and operates workspace for the world's most vibrant brands. From managing the design and build, to creating an elevated ongoing experience, we create spaces that are worth leaving home for. Role Mission Reporting directly into one of our Head of Engineering, you'll own and evolve the infrastructure, deployment pipelines and security posture that the rest of engineering builds on top of. This is an infrastructure first role with real depth: you'll spend most of your time in our cloud and DevOps stack, but you'll also get hands on with our Go backend services - fixing, extending and building features when the work calls for it. We define ourselves as product engineers - we love building things that make a tangible difference, whether that's a feature a customer touches or a pipeline that makes every engineer faster. As a Platform Engineer you'll treat developer experience and reliability as products in their own right, with internal teams as your customers. This is a role for someone who wants to own infra and DevOps end to end - self directed, ambitious, and eager to get stuck in. You won't be waiting to be told what to fix; you'll be the person who spots it, scopes it and ships it. Responsibilities Own the infrastructure: Take ownership of our AWS based infrastructure as code (Terraform), our EKS Kubernetes clusters, and the supporting services that keep 40 microservices running across dev, staging and production Run and improve CI/CD: Maintain and evolve our CircleCI pipelines and custom Kitt CLI tooling, making builds and deployments faster, safer and easier for the whole team DevOps & developer experience: Improve how engineers ship - from Helm charts and Skaffold based dev workflows to local environments - treating internal tooling as a product SecOps: Help keep us secure and compliant - secrets management (AWS Secrets Manager + External Secrets), IAM and access control, threat detection and vulnerability findings (GuardDuty, Inspector), and supporting our ISO 27001 work Observability & reliability: Build and tune monitoring, dashboards and alerting (Datadog) so we catch issues early and understand our systems in production Backend development: Dig into our Go microservices - gRPC, GraphQL gateway, MySQL/Postgres/Redis - to fix issues, add features and improve the services your infrastructure runs Cost & scalability: Keep an eye on cloud spend and scaling (Karpenter autoscaling, right sizing) and make pragmatic calls that balance cost, performance and reliability About you DevOps & infrastructure experience: Solid hands on experience running infrastructure and deployment pipelines in production - this is the core of the role AWS: Strong, practical AWS experience is a must (EC2, EKS/Kubernetes, IAM, networking, secrets). GCP experience is a nice to have given our polycloud setup Infrastructure as code: Comfortable with Terraform (or similar) and treating infrastructure as version controlled, reviewable code Kubernetes & containers: Real experience with Kubernetes and Docker - deploying, debugging and operating containerised workloads Backend coding: You can read and write backend code and genuinely enjoy doing so. Go experience is ideal, but if you've worked in another statically typed language (TypeScript, Java, C#, Rust, etc.) alongside strong DevOps experience, we'll help you get up to speed on Go Security mindset: You think about security as you build - secrets, access, least privilege - and are keen to grow your SecOps skills Self directed & ambitious: You take ownership, work independently, and are eager to get stuck in. You spot what needs doing and drive it, rather than waiting for direction Pragmatism: You make sensible trade offs between speed, cost, reliability and maintainability, and care about the impact your work has on other engineers Scale up energy: Ambitious and excited to work in a friendly scale up environment with the mission to transform workspaces globally Why Kitt? The world of work has shifted forever. As people everywhere prioritise purpose over their paychecks, company culture has been thrown into the spotlight. But the problem is, too many companies are showing up to work in bland, cookie cutter offices. We're leading this change. Real company culture can only be built in person, in the real world - and for it to be authentic it needs its very own, personalised space. That's why we create offices as unique as the brands and the people who work there. We're long term culture partners to our clients long after they've signed the lease and chosen. We'll Kitt you out Generous stock option scheme (ask us what this means if you're not sure) Starting salary of £65,000 - £80,000 Hybrid working - 3 days a week in our London office, with up to 2 days remote 28 days holiday a year plus Bank Holidays Parental leave: up to 12 weeks paid parental leave for the primary caregiver Pregnancy loss support leave Regular socials - we love a good party Octopus MoneyCoach Workplace Nursery Benefit Cycle to Work scheme Season Ticket Loans WellHub and Dr Care Anywhere to support your mental and physical health and wellbeing We believe the world is transformed when people come together to do extraordinary things. We harness the power of diverse perspectives and experiences, fostering collaboration and innovation to achieve extraordinary results that make a positive impact. With the same set of equitable interview questions for all candidates and hiring teams which encompass diversity, we prioritise creating an inclusive environment where individuals' backgrounds or origins are irrelevant. For more information, please contact
Kitt designs and operates workspace for the world's most vibrant brands. From managing the design and build, to creating an elevated ongoing experience, we create spaces that are worth leaving home for. Role Mission Reporting directly into one of our Head of Engineering, you'll own and evolve the infrastructure, deployment pipelines and security posture that the rest of engineering builds on top of. This is an infrastructure first role with real depth: you'll spend most of your time in our cloud and DevOps stack, but you'll also get hands on with our Go backend services - fixing, extending and building features when the work calls for it. We define ourselves as product engineers - we love building things that make a tangible difference, whether that's a feature a customer touches or a pipeline that makes every engineer faster. As a Platform Engineer you'll treat developer experience and reliability as products in their own right, with internal teams as your customers. This is a role for someone who wants to own infra and DevOps end to end - self directed, ambitious, and eager to get stuck in. You won't be waiting to be told what to fix; you'll be the person who spots it, scopes it and ships it. Responsibilities Own the infrastructure: Take ownership of our AWS based infrastructure as code (Terraform), our EKS Kubernetes clusters, and the supporting services that keep 40 microservices running across dev, staging and production Run and improve CI/CD: Maintain and evolve our CircleCI pipelines and custom Kitt CLI tooling, making builds and deployments faster, safer and easier for the whole team DevOps & developer experience: Improve how engineers ship - from Helm charts and Skaffold based dev workflows to local environments - treating internal tooling as a product SecOps: Help keep us secure and compliant - secrets management (AWS Secrets Manager + External Secrets), IAM and access control, threat detection and vulnerability findings (GuardDuty, Inspector), and supporting our ISO 27001 work Observability & reliability: Build and tune monitoring, dashboards and alerting (Datadog) so we catch issues early and understand our systems in production Backend development: Dig into our Go microservices - gRPC, GraphQL gateway, MySQL/Postgres/Redis - to fix issues, add features and improve the services your infrastructure runs Cost & scalability: Keep an eye on cloud spend and scaling (Karpenter autoscaling, right sizing) and make pragmatic calls that balance cost, performance and reliability About you DevOps & infrastructure experience: Solid hands on experience running infrastructure and deployment pipelines in production - this is the core of the role AWS: Strong, practical AWS experience is a must (EC2, EKS/Kubernetes, IAM, networking, secrets). GCP experience is a nice to have given our polycloud setup Infrastructure as code: Comfortable with Terraform (or similar) and treating infrastructure as version controlled, reviewable code Kubernetes & containers: Real experience with Kubernetes and Docker - deploying, debugging and operating containerised workloads Backend coding: You can read and write backend code and genuinely enjoy doing so. Go experience is ideal, but if you've worked in another statically typed language (TypeScript, Java, C#, Rust, etc.) alongside strong DevOps experience, we'll help you get up to speed on Go Security mindset: You think about security as you build - secrets, access, least privilege - and are keen to grow your SecOps skills Self directed & ambitious: You take ownership, work independently, and are eager to get stuck in. You spot what needs doing and drive it, rather than waiting for direction Pragmatism: You make sensible trade offs between speed, cost, reliability and maintainability, and care about the impact your work has on other engineers Scale up energy: Ambitious and excited to work in a friendly scale up environment with the mission to transform workspaces globally Why Kitt? The world of work has shifted forever. As people everywhere prioritise purpose over their paychecks, company culture has been thrown into the spotlight. But the problem is, too many companies are showing up to work in bland, cookie cutter offices. We're leading this change. Real company culture can only be built in person, in the real world - and for it to be authentic it needs its very own, personalised space. That's why we create offices as unique as the brands and the people who work there. We're long term culture partners to our clients long after they've signed the lease and chosen. We'll Kitt you out Generous stock option scheme (ask us what this means if you're not sure) Starting salary of £65,000 - £80,000 Hybrid working - 3 days a week in our London office, with up to 2 days remote 28 days holiday a year plus Bank Holidays Parental leave: up to 12 weeks paid parental leave for the primary caregiver Pregnancy loss support leave Regular socials - we love a good party Octopus MoneyCoach Workplace Nursery Benefit Cycle to Work scheme Season Ticket Loans WellHub and Dr Care Anywhere to support your mental and physical health and wellbeing We believe the world is transformed when people come together to do extraordinary things. We harness the power of diverse perspectives and experiences, fostering collaboration and innovation to achieve extraordinary results that make a positive impact. With the same set of equitable interview questions for all candidates and hiring teams which encompass diversity, we prioritise creating an inclusive environment where individuals' backgrounds or origins are irrelevant. For more information, please contact
14/06/2026
Full time
Kitt designs and operates workspace for the world's most vibrant brands. From managing the design and build, to creating an elevated ongoing experience, we create spaces that are worth leaving home for. Role Mission Reporting directly into one of our Head of Engineering, you'll own and evolve the infrastructure, deployment pipelines and security posture that the rest of engineering builds on top of. This is an infrastructure first role with real depth: you'll spend most of your time in our cloud and DevOps stack, but you'll also get hands on with our Go backend services - fixing, extending and building features when the work calls for it. We define ourselves as product engineers - we love building things that make a tangible difference, whether that's a feature a customer touches or a pipeline that makes every engineer faster. As a Platform Engineer you'll treat developer experience and reliability as products in their own right, with internal teams as your customers. This is a role for someone who wants to own infra and DevOps end to end - self directed, ambitious, and eager to get stuck in. You won't be waiting to be told what to fix; you'll be the person who spots it, scopes it and ships it. Responsibilities Own the infrastructure: Take ownership of our AWS based infrastructure as code (Terraform), our EKS Kubernetes clusters, and the supporting services that keep 40 microservices running across dev, staging and production Run and improve CI/CD: Maintain and evolve our CircleCI pipelines and custom Kitt CLI tooling, making builds and deployments faster, safer and easier for the whole team DevOps & developer experience: Improve how engineers ship - from Helm charts and Skaffold based dev workflows to local environments - treating internal tooling as a product SecOps: Help keep us secure and compliant - secrets management (AWS Secrets Manager + External Secrets), IAM and access control, threat detection and vulnerability findings (GuardDuty, Inspector), and supporting our ISO 27001 work Observability & reliability: Build and tune monitoring, dashboards and alerting (Datadog) so we catch issues early and understand our systems in production Backend development: Dig into our Go microservices - gRPC, GraphQL gateway, MySQL/Postgres/Redis - to fix issues, add features and improve the services your infrastructure runs Cost & scalability: Keep an eye on cloud spend and scaling (Karpenter autoscaling, right sizing) and make pragmatic calls that balance cost, performance and reliability About you DevOps & infrastructure experience: Solid hands on experience running infrastructure and deployment pipelines in production - this is the core of the role AWS: Strong, practical AWS experience is a must (EC2, EKS/Kubernetes, IAM, networking, secrets). GCP experience is a nice to have given our polycloud setup Infrastructure as code: Comfortable with Terraform (or similar) and treating infrastructure as version controlled, reviewable code Kubernetes & containers: Real experience with Kubernetes and Docker - deploying, debugging and operating containerised workloads Backend coding: You can read and write backend code and genuinely enjoy doing so. Go experience is ideal, but if you've worked in another statically typed language (TypeScript, Java, C#, Rust, etc.) alongside strong DevOps experience, we'll help you get up to speed on Go Security mindset: You think about security as you build - secrets, access, least privilege - and are keen to grow your SecOps skills Self directed & ambitious: You take ownership, work independently, and are eager to get stuck in. You spot what needs doing and drive it, rather than waiting for direction Pragmatism: You make sensible trade offs between speed, cost, reliability and maintainability, and care about the impact your work has on other engineers Scale up energy: Ambitious and excited to work in a friendly scale up environment with the mission to transform workspaces globally Why Kitt? The world of work has shifted forever. As people everywhere prioritise purpose over their paychecks, company culture has been thrown into the spotlight. But the problem is, too many companies are showing up to work in bland, cookie cutter offices. We're leading this change. Real company culture can only be built in person, in the real world - and for it to be authentic it needs its very own, personalised space. That's why we create offices as unique as the brands and the people who work there. We're long term culture partners to our clients long after they've signed the lease and chosen. We'll Kitt you out Generous stock option scheme (ask us what this means if you're not sure) Starting salary of £65,000 - £80,000 Hybrid working - 3 days a week in our London office, with up to 2 days remote 28 days holiday a year plus Bank Holidays Parental leave: up to 12 weeks paid parental leave for the primary caregiver Pregnancy loss support leave Regular socials - we love a good party Octopus MoneyCoach Workplace Nursery Benefit Cycle to Work scheme Season Ticket Loans WellHub and Dr Care Anywhere to support your mental and physical health and wellbeing We believe the world is transformed when people come together to do extraordinary things. We harness the power of diverse perspectives and experiences, fostering collaboration and innovation to achieve extraordinary results that make a positive impact. With the same set of equitable interview questions for all candidates and hiring teams which encompass diversity, we prioritise creating an inclusive environment where individuals' backgrounds or origins are irrelevant. For more information, please contact
Overview Title: Cyber Security Platform Engineer - Microsoft Reference No: 2161 Company: FTSE 100 Reports to: Security Platform Engineering Manager Location: London Working Pattern: 37.5 hours per week, Monday - Friday. Location: London/Peterborough, with potential travel to divisional sites as required by advisory engagements (hybrid working arrangements in place). Salary: £59,000 - £72,000 Benefits: Bupa, Matched pension contributions. The Role Group Cyber Security Overview The Group Cyber Security (GCS) team is responsible for managing cyber risk appropriately across) the Group and has recently refreshed its cyber strategy, with a renewed focus on embedding cyber security as part of the culture and DNA. This is a highly federated business model spanning 11 divisions and over 50 countries, and the cyber strategy has been designed to build materially improved security capabilities whilst working with a divisional focus. It is an exciting time to join GCS. We are in a period of significant investment, with a multi-year transformation programme under way to build new security capabilities at pace. GCS is responsible for setting the Group cyber standard, measuring compliance against it across all the businesses, and delivering a portfolio of centrally managed security services that divisions can rely on. The Security Platform Engineering function is central to that portfolio - responsible for ensuring that the security tools the organisation invests in are deeply understood, expertly configured, continuously improved, and consistently delivering their intended security and business value. Microsoft is the most strategically significant security platform, and the uplift and optimisation of the Microsoft security estate is one of the most consequential engineering challenges in the GCS transformation programme. Role Summary Reporting to the Security Platform Engineering Manager, the Cyber Security Platform Engineer - Microsoft is the Group dedicated technical authority for the Microsoft security platform. The role carries implied ownership of the full Microsoft security stack: the M365 Defender suite, the security-relevant capabilities of Microsoft Entra ID (conditional access, Privileged Identity Management, access packages, and least privilege), Intune, and the foundational configuration of the Microsoft 365 and Azure environments on which all of these depend. This is a role that extends beyond BAU platform management: a significant part of the initial mandate is to critically assess the current state of the Microsoft estate - spanning E3, Active Directory, Entra ID, Intune, and existing Defender deployments - identify the gaps against vendor-recommended best practice and the Group cyber standard, and build a prioritised strategy and plan to close them. This role is the primary technical owner of that relationship on the GCS side - working directly with the Microsoft team to prioritise, plan, and drive the E5 deployment across the estate, and ensuring that the professional services and engineering resources available are directed at the highest-value activities. The role must navigate the realities of the federated organisation with skill: delivery will depend on partnership with divisional IT teams, and getting there will require excellent stakeholder management, a clear change communication approach, and an absolute commitment to end-user experience. Zero tolerance for avoidable downtime is not a preference - it is a non-negotiable operating constraint. The role works in close partnership with the Cyber Architecture Manager, the Group CTO function, the IT Frameworks Director, Assurance leads, Divisional Security Leads, and the Identity Transformation team. It shares the defining mindset of the whole platform engineering function: genuine passion for the Microsoft platform, curiosity about its full capability, and the drive to get to a secure, consistent, vendor-recommended configuration as quickly and as safely as possible. Role Responsibilities / Accountabilities Microsoft Estate Assessment, Gap Analysis & Strategy Conduct a structured, critical assessment of the current Microsoft security estate, covering Active Directory, Microsoft Entra ID, Intune, M365 (E3 and current Defender deployments), and Azure security configuration; benchmark the current state against Microsoft's secure score recommendations, vendor best practice, and the Group cyber technical standard, and produce a clear, evidence-based gap analysis. Develop a prioritised Microsoft security uplift strategy and delivery plan that sequences remediation and enhancement activity by risk reduction impact, operational feasibility, and alignment with the E5 migration roadmap; ensure the plan is realistic for federated environment and has clear milestones, owners, and success criteria. Maintain the Microsoft security uplift plan as a live document; track progress against milestones, report status to the Security Platform Engineering Manager, and adapt the plan to the Groups environment, the threat landscape, and the Microsoft product roadmap evolve. Microsoft Defender Platform Ownership & Engineering Own the technical configuration, ongoing engineering, and operational health of the full M365 Defender suite, including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender for Office 365, and Microsoft Sentinel integration; maintain configurations to the approved baseline and drive continuous improvement against vendor-recommended configuration. Work closely with the SOC to tune Defender configurations for effective detection and response; adjust detection rules, custom detection queries, and alert thresholds in response to SOC operational feedback, ensuring analysts receive high-fidelity, actionable alerts with minimal noise. Develop and maintain detailed configuration documentation, runbooks, and change records for all Defender workloads; ensure configuration state is consistently documented, version-controlled, and auditable. Entra ID Security & Identity Controls Own the security configuration of Microsoft Entra ID across the Group; take implied technical ownership of the security-relevant Entra capabilities including Conditional Access policy design and enforcement, Privileged Identity Management (PIM), access packages and entitlement management, Identity Protection, and the application of least privilege principles across the directory. Work with the Cyber Architecture Manager, the IT Frameworks Director, and Assurance leads to ensure that GCS policies - including BYOD, remote access, and privilege management policies - are correctly and completely manifested in Entra Conditional Access policies and Intune device compliance rules; maintain a clear mapping between policy intent and platform configuration. Support the Active Directory to Entra ID modernisation journey; identify legacy AD configurations and hybrid identity risks that need to be addressed as part of the E5 migration, and work with the Identity Transformation team to ensure Entra security configuration activity is co-ordinated with the broader identity programme. Own the Intune security configuration, maintain device compliance policies, configuration profiles, and security baselines; ensure Intune is configured to enforce the Group endpoint security standard and provides accurate device compliance data to Entra Conditional Access and the Defender estate. E5 Migration, ECIF Engagement & Microsoft Relationship Act as GCS's primary technical liaison to the Microsoft ECIF (Engineering Co-Investment Fund) team; plan, prioritise, and drive the E5 deployment programme in partnership with the ECIF team, ensuring that Microsoft engineering resources are directed at the highest-value activities and that the Organisation is getting the maximum benefit from the co-investment engagement. Manage the technical relationship with Microsoft across the security and identity platform; maintain active engagement with Microsoft technical account management, product specialists, and engineering teams; use the account relationship to gain early access to roadmap briefings, preview features, escalation paths, and best-practice guidance relevant to the organisations environment. Plan and manage the technical delivery of E5 capability rollout across the divisions; sequence deployment activity to maximise early security value, sequence it safely within the change management constraints, and ensure each phase is fully tested, documented, and supported before moving to the next. Maintain accurate records of Microsoft licence entitlements, feature adoption, and E5 deployment progress; ensure the Group is consuming the capabilities it is paying for, and provide the Security Platform Engineering Manager with clear, up-to-date visibility of licence utilisation and deployment status. Policy Manifestation, Standards Alignment & Assurance Translate Group cyber technical standards and security policies into enforceable Microsoft platform configurations; maintain a clear, auditable mapping between each policy requirement and its implementation in Defender, Entra, Intune, or other Microsoft controls, and ensure divergence is identified and remediated promptly. Work closely with the Director of Cyber Assurance and Assurance leads to support controls assessment of the Microsoft estate; provide technical evidence of configuration compliance . click apply for full job details
09/06/2026
Full time
Overview Title: Cyber Security Platform Engineer - Microsoft Reference No: 2161 Company: FTSE 100 Reports to: Security Platform Engineering Manager Location: London Working Pattern: 37.5 hours per week, Monday - Friday. Location: London/Peterborough, with potential travel to divisional sites as required by advisory engagements (hybrid working arrangements in place). Salary: £59,000 - £72,000 Benefits: Bupa, Matched pension contributions. The Role Group Cyber Security Overview The Group Cyber Security (GCS) team is responsible for managing cyber risk appropriately across) the Group and has recently refreshed its cyber strategy, with a renewed focus on embedding cyber security as part of the culture and DNA. This is a highly federated business model spanning 11 divisions and over 50 countries, and the cyber strategy has been designed to build materially improved security capabilities whilst working with a divisional focus. It is an exciting time to join GCS. We are in a period of significant investment, with a multi-year transformation programme under way to build new security capabilities at pace. GCS is responsible for setting the Group cyber standard, measuring compliance against it across all the businesses, and delivering a portfolio of centrally managed security services that divisions can rely on. The Security Platform Engineering function is central to that portfolio - responsible for ensuring that the security tools the organisation invests in are deeply understood, expertly configured, continuously improved, and consistently delivering their intended security and business value. Microsoft is the most strategically significant security platform, and the uplift and optimisation of the Microsoft security estate is one of the most consequential engineering challenges in the GCS transformation programme. Role Summary Reporting to the Security Platform Engineering Manager, the Cyber Security Platform Engineer - Microsoft is the Group dedicated technical authority for the Microsoft security platform. The role carries implied ownership of the full Microsoft security stack: the M365 Defender suite, the security-relevant capabilities of Microsoft Entra ID (conditional access, Privileged Identity Management, access packages, and least privilege), Intune, and the foundational configuration of the Microsoft 365 and Azure environments on which all of these depend. This is a role that extends beyond BAU platform management: a significant part of the initial mandate is to critically assess the current state of the Microsoft estate - spanning E3, Active Directory, Entra ID, Intune, and existing Defender deployments - identify the gaps against vendor-recommended best practice and the Group cyber standard, and build a prioritised strategy and plan to close them. This role is the primary technical owner of that relationship on the GCS side - working directly with the Microsoft team to prioritise, plan, and drive the E5 deployment across the estate, and ensuring that the professional services and engineering resources available are directed at the highest-value activities. The role must navigate the realities of the federated organisation with skill: delivery will depend on partnership with divisional IT teams, and getting there will require excellent stakeholder management, a clear change communication approach, and an absolute commitment to end-user experience. Zero tolerance for avoidable downtime is not a preference - it is a non-negotiable operating constraint. The role works in close partnership with the Cyber Architecture Manager, the Group CTO function, the IT Frameworks Director, Assurance leads, Divisional Security Leads, and the Identity Transformation team. It shares the defining mindset of the whole platform engineering function: genuine passion for the Microsoft platform, curiosity about its full capability, and the drive to get to a secure, consistent, vendor-recommended configuration as quickly and as safely as possible. Role Responsibilities / Accountabilities Microsoft Estate Assessment, Gap Analysis & Strategy Conduct a structured, critical assessment of the current Microsoft security estate, covering Active Directory, Microsoft Entra ID, Intune, M365 (E3 and current Defender deployments), and Azure security configuration; benchmark the current state against Microsoft's secure score recommendations, vendor best practice, and the Group cyber technical standard, and produce a clear, evidence-based gap analysis. Develop a prioritised Microsoft security uplift strategy and delivery plan that sequences remediation and enhancement activity by risk reduction impact, operational feasibility, and alignment with the E5 migration roadmap; ensure the plan is realistic for federated environment and has clear milestones, owners, and success criteria. Maintain the Microsoft security uplift plan as a live document; track progress against milestones, report status to the Security Platform Engineering Manager, and adapt the plan to the Groups environment, the threat landscape, and the Microsoft product roadmap evolve. Microsoft Defender Platform Ownership & Engineering Own the technical configuration, ongoing engineering, and operational health of the full M365 Defender suite, including Defender for Endpoint, Defender for Identity, Defender for Cloud Apps, Defender for Office 365, and Microsoft Sentinel integration; maintain configurations to the approved baseline and drive continuous improvement against vendor-recommended configuration. Work closely with the SOC to tune Defender configurations for effective detection and response; adjust detection rules, custom detection queries, and alert thresholds in response to SOC operational feedback, ensuring analysts receive high-fidelity, actionable alerts with minimal noise. Develop and maintain detailed configuration documentation, runbooks, and change records for all Defender workloads; ensure configuration state is consistently documented, version-controlled, and auditable. Entra ID Security & Identity Controls Own the security configuration of Microsoft Entra ID across the Group; take implied technical ownership of the security-relevant Entra capabilities including Conditional Access policy design and enforcement, Privileged Identity Management (PIM), access packages and entitlement management, Identity Protection, and the application of least privilege principles across the directory. Work with the Cyber Architecture Manager, the IT Frameworks Director, and Assurance leads to ensure that GCS policies - including BYOD, remote access, and privilege management policies - are correctly and completely manifested in Entra Conditional Access policies and Intune device compliance rules; maintain a clear mapping between policy intent and platform configuration. Support the Active Directory to Entra ID modernisation journey; identify legacy AD configurations and hybrid identity risks that need to be addressed as part of the E5 migration, and work with the Identity Transformation team to ensure Entra security configuration activity is co-ordinated with the broader identity programme. Own the Intune security configuration, maintain device compliance policies, configuration profiles, and security baselines; ensure Intune is configured to enforce the Group endpoint security standard and provides accurate device compliance data to Entra Conditional Access and the Defender estate. E5 Migration, ECIF Engagement & Microsoft Relationship Act as GCS's primary technical liaison to the Microsoft ECIF (Engineering Co-Investment Fund) team; plan, prioritise, and drive the E5 deployment programme in partnership with the ECIF team, ensuring that Microsoft engineering resources are directed at the highest-value activities and that the Organisation is getting the maximum benefit from the co-investment engagement. Manage the technical relationship with Microsoft across the security and identity platform; maintain active engagement with Microsoft technical account management, product specialists, and engineering teams; use the account relationship to gain early access to roadmap briefings, preview features, escalation paths, and best-practice guidance relevant to the organisations environment. Plan and manage the technical delivery of E5 capability rollout across the divisions; sequence deployment activity to maximise early security value, sequence it safely within the change management constraints, and ensure each phase is fully tested, documented, and supported before moving to the next. Maintain accurate records of Microsoft licence entitlements, feature adoption, and E5 deployment progress; ensure the Group is consuming the capabilities it is paying for, and provide the Security Platform Engineering Manager with clear, up-to-date visibility of licence utilisation and deployment status. Policy Manifestation, Standards Alignment & Assurance Translate Group cyber technical standards and security policies into enforceable Microsoft platform configurations; maintain a clear, auditable mapping between each policy requirement and its implementation in Defender, Entra, Intune, or other Microsoft controls, and ensure divergence is identified and remediated promptly. Work closely with the Director of Cyber Assurance and Assurance leads to support controls assessment of the Microsoft estate; provide technical evidence of configuration compliance . click apply for full job details
Cyber Security ArchitectApplyremote type: Hybrid or Remotelocations: Remote UKtime type: Full timeposted on: Posted Todayjob requisition id: RLocation: Remote UK, United KingdomThales is a global technology leader with more than 83,000 employees on five continents. With over 7,500 people in the UK, operating across defence, space, aerospace, and digital security, we help build a future we can all trust. Thales supports the security and stability of our nation by providing extraordinary technology to our customers, as well as delivering social value to the UK with our products and services.We are looking for Cyber Security Architects to join our growing team. As a Cyber Security Architect, you'll work on complex systems provided by Thales and provide specialist security architecture, technical leadership and guidance, to enable Thales to devise, develop and maintain reliable, secure, accreditable and economically sustainable security solutions to meet the project needs. You will advise on the development of high level security compliant architecture and contribution to the design of the preliminary and detailed designs of the solution: it includes the study of alternatives and a risk assessmentConsult on potential security components architectures (e.g. SIEM, IAM, gateways, detection and deception capabilities )Evaluate architectures against Business Line policy and major cyber security standards & regulation frameworks (NIST, ISO, JSP, etc.)Produce justification for architectural choicesEnsure technical coordination across a multi-discipline teamPresent, recommend and demonstrate solutions to customer representatives, peers or technical teamsConduct security related tasks including: Production of engineering and architecture reports, specifications and design documents Verification of architectures and solutions against established requirements Development of documentation to enable the accreditation and certification of solutions Development and delivery of security training for a specific user community, taking into account their existing knowledge and training needs based upon the required learning outcomes. Collaborate/interact with cyber suppliers/vendors for technical assessment of cyber products in order to select a suitable one Right for this role? Ideally you have graduated in Engineering or Computer Science or hold relevant industry certifications (CISSP, Cisco, CCP, etc)Have experience of advising on security solutions taking into account customer needs You want to secure the solutions in collaboration with the domain architects You are seen as a value proposition on crucial and sensitive programmes COMPETENCIES: Experience working in organisations adopting Secure by Design You have the ability to define architectures on your own or with other specialists You are proficient with Infrastructure Security Design, Security Supervision Design, and Information Systems Security (ISS) You can advise and give support to the rest of the team Familiar with Risk Analysis, Network Security, Cryptography, Identity & Access Management (software/hardware development, the NIST Cybersecurity Framework, cloud technologies)Familiarity with threat modelling Able to monitor and measure risk as well as compliance You have the ability to work with customers and technical teams Desirable Domain knowledge - Defence, Nuclear, Government, Aerospace, CNI, TransportRisk Management and Accreditation YOUR CAREER AT THALES Future opportunities will allow you to discover other domains or sites. You will be able to evolve and grow your competences in different areas: Room and attention to personal development Build your talents in another domain of Thales Group, discovering new products, new customers, new country or go to a more complex Solution Choose between a technical expertise or a leadership path Build an international career within a leading Engineering Group Security Clearance Requirement: Due to the nature of the work that we do at Thales, many of our roles are subject to security restrictions. This role requires Security Clearance (SC). It would be advantageous if currently held, however, if not currently held, it is a requirement that the successful applicant undergo, achieve, and maintain SC Clearance prior to commencing employment.To be eligible for full SC, you generally need to have resided in the UK for the last 5 years. In some circumstances, a minimum of 3 years' residence in the UK over the last 5 years may be accepted, with additional overseas checks.Please visit the UKSV website for further guidance: Thales, we ensure equal opportunities, pay and working conditions for all. The benefits we offer include private medical insurance, buying or selling annual leave, cycle to work schemes, employee discounts, paid volunteering day, stocks and shares, annual bonus and much more depending on the role. Read more about our benefits here.We are committed to creating a workplace where everyone feels valued for who they are and the unique strengths they bring. Discover more about our programmes, employee networks, wellbeing policies, and inclusive features here.If this role isn't quite right for you, we encourage you to join our talent community where your details will be shared with our recruitment teams for other potential opportunities. Join the Talent Community here.Join Thales in the UK - Innovate with us and shape the future!
07/06/2026
Full time
Cyber Security ArchitectApplyremote type: Hybrid or Remotelocations: Remote UKtime type: Full timeposted on: Posted Todayjob requisition id: RLocation: Remote UK, United KingdomThales is a global technology leader with more than 83,000 employees on five continents. With over 7,500 people in the UK, operating across defence, space, aerospace, and digital security, we help build a future we can all trust. Thales supports the security and stability of our nation by providing extraordinary technology to our customers, as well as delivering social value to the UK with our products and services.We are looking for Cyber Security Architects to join our growing team. As a Cyber Security Architect, you'll work on complex systems provided by Thales and provide specialist security architecture, technical leadership and guidance, to enable Thales to devise, develop and maintain reliable, secure, accreditable and economically sustainable security solutions to meet the project needs. You will advise on the development of high level security compliant architecture and contribution to the design of the preliminary and detailed designs of the solution: it includes the study of alternatives and a risk assessmentConsult on potential security components architectures (e.g. SIEM, IAM, gateways, detection and deception capabilities )Evaluate architectures against Business Line policy and major cyber security standards & regulation frameworks (NIST, ISO, JSP, etc.)Produce justification for architectural choicesEnsure technical coordination across a multi-discipline teamPresent, recommend and demonstrate solutions to customer representatives, peers or technical teamsConduct security related tasks including: Production of engineering and architecture reports, specifications and design documents Verification of architectures and solutions against established requirements Development of documentation to enable the accreditation and certification of solutions Development and delivery of security training for a specific user community, taking into account their existing knowledge and training needs based upon the required learning outcomes. Collaborate/interact with cyber suppliers/vendors for technical assessment of cyber products in order to select a suitable one Right for this role? Ideally you have graduated in Engineering or Computer Science or hold relevant industry certifications (CISSP, Cisco, CCP, etc)Have experience of advising on security solutions taking into account customer needs You want to secure the solutions in collaboration with the domain architects You are seen as a value proposition on crucial and sensitive programmes COMPETENCIES: Experience working in organisations adopting Secure by Design You have the ability to define architectures on your own or with other specialists You are proficient with Infrastructure Security Design, Security Supervision Design, and Information Systems Security (ISS) You can advise and give support to the rest of the team Familiar with Risk Analysis, Network Security, Cryptography, Identity & Access Management (software/hardware development, the NIST Cybersecurity Framework, cloud technologies)Familiarity with threat modelling Able to monitor and measure risk as well as compliance You have the ability to work with customers and technical teams Desirable Domain knowledge - Defence, Nuclear, Government, Aerospace, CNI, TransportRisk Management and Accreditation YOUR CAREER AT THALES Future opportunities will allow you to discover other domains or sites. You will be able to evolve and grow your competences in different areas: Room and attention to personal development Build your talents in another domain of Thales Group, discovering new products, new customers, new country or go to a more complex Solution Choose between a technical expertise or a leadership path Build an international career within a leading Engineering Group Security Clearance Requirement: Due to the nature of the work that we do at Thales, many of our roles are subject to security restrictions. This role requires Security Clearance (SC). It would be advantageous if currently held, however, if not currently held, it is a requirement that the successful applicant undergo, achieve, and maintain SC Clearance prior to commencing employment.To be eligible for full SC, you generally need to have resided in the UK for the last 5 years. In some circumstances, a minimum of 3 years' residence in the UK over the last 5 years may be accepted, with additional overseas checks.Please visit the UKSV website for further guidance: Thales, we ensure equal opportunities, pay and working conditions for all. The benefits we offer include private medical insurance, buying or selling annual leave, cycle to work schemes, employee discounts, paid volunteering day, stocks and shares, annual bonus and much more depending on the role. Read more about our benefits here.We are committed to creating a workplace where everyone feels valued for who they are and the unique strengths they bring. Discover more about our programmes, employee networks, wellbeing policies, and inclusive features here.If this role isn't quite right for you, we encourage you to join our talent community where your details will be shared with our recruitment teams for other potential opportunities. Join the Talent Community here.Join Thales in the UK - Innovate with us and shape the future!
Cloud Security Engineer Location Remote (25% Weekly on-site - WithinEngland) Security Clearance Requirement Eligible to obtain and maintain an active UK security clearance Position Overview Atreides areseekinga motivated and proactive Cloud Security Engineer with a strong focus on Microsoft Azure security to join our growing team. This role is ideal for a security engineer or SecOps professional who understands the critical importance of maintaining a highly secure environment and is eager to work across cloud, endpoint, and infrastructure domains. While the primary focus will be Azure security engineering, experience with hardware and traditional infrastructure security will be considered a strong plus. Security Engineering & Automation Design, build, and maintain security automation and tooling to enforce controls and simplify compliance. Build and manage identity & access management controls across cloud platforms and applications. Write and review Infrastructure-as-Code (Bicep/Terraform) for secure cloud configuration. Implement preventative and detective controls in Azure; automate remediation of alerts. Secure CI/CD pipelines, integrating results from SAST/DAST/SCA tools and ensuring supply chain integrity. Engineer solutions for Kubernetes security, focusing on RBAC, network policies, and runtime protection. Detection, Monitoring & Incident Response Perform triage, containment, eradication, and recovery activities as part of incident response, ensuring threats are effectively mitigated. Develop and optimise security detections (Sentinel, KQL, YARA). Manage log sources, ingestion pipelines, and monitoring infrastructure. Conduct threat hunting and analysis to identify emerging risks. Lead and contribute to incident investigations, including post-mortem analysis and remediation actions. Vulnerability & Risk Management Identify, track, and remediate vulnerabilities across cloud, endpoint, and infrastructure. Implement controls from security assessments, audits, and architecture reviews. Support third party risk assessments and vendor due diligence. Governance, Documentation & Projects Maintain documentation of security standards, runbooks, and procedures. Participate in security-related projects and lead implementation of new security solutions. Required Qualifications 3+ years in security engineering or security operations, ideally in cloud first environments. Strong understanding of cloud security architecture with hands on experience securing cloud infrastructure and services. Hands on experience with the Azure security stack, including Microsoft Defender for Cloud (recommendations, alerts, Secure Score), Azure Policy, and related security tooling. Proficiency with SIEM platforms (Azure Sentinel preferred), developing detections and alerts, tuning rules, and investigating incidents. Proven incident response capability including triage, investigation, containment, eradication, and recovery. Practical experience integrating security into software and system development lifecycles. Experience with endpoint security solutions and MDM/EMM tools. Experience securing containerised environments (Kubernetes) and CI/CD pipelines. Proficiency in scripting and automation (PowerShell, Python, KQL, Bicep). Strong understanding of network security - protocols, firewalls, IDS/IPS, WAFs, and infrastructure hardening. Familiarity with incident response frameworks (NIST, SANS). Experience configuring and using cloud native security logging, monitoring, and detection services. In depth knowledge of security principles, attack vectors (OWASP Top 10, MITRE ATT&CK), and the threat landscape. Desired Qualifications Azure Security Engineer AZ-500 Security Operations Analyst SC-200 Identity and Access administrator SC-300 GIAC Certified Forensic Analyst Compensation and Benefits Comprehensive health, dental, and vision insurance plans Flexible hybrid work environment Additional benefits like flexible hours, work travel opportunities, competitive vacation time and parental leave Eligibility You must have the right to work in the United Kingdom. Please note that we do not provide visa sponsorship.
05/06/2026
Full time
Cloud Security Engineer Location Remote (25% Weekly on-site - WithinEngland) Security Clearance Requirement Eligible to obtain and maintain an active UK security clearance Position Overview Atreides areseekinga motivated and proactive Cloud Security Engineer with a strong focus on Microsoft Azure security to join our growing team. This role is ideal for a security engineer or SecOps professional who understands the critical importance of maintaining a highly secure environment and is eager to work across cloud, endpoint, and infrastructure domains. While the primary focus will be Azure security engineering, experience with hardware and traditional infrastructure security will be considered a strong plus. Security Engineering & Automation Design, build, and maintain security automation and tooling to enforce controls and simplify compliance. Build and manage identity & access management controls across cloud platforms and applications. Write and review Infrastructure-as-Code (Bicep/Terraform) for secure cloud configuration. Implement preventative and detective controls in Azure; automate remediation of alerts. Secure CI/CD pipelines, integrating results from SAST/DAST/SCA tools and ensuring supply chain integrity. Engineer solutions for Kubernetes security, focusing on RBAC, network policies, and runtime protection. Detection, Monitoring & Incident Response Perform triage, containment, eradication, and recovery activities as part of incident response, ensuring threats are effectively mitigated. Develop and optimise security detections (Sentinel, KQL, YARA). Manage log sources, ingestion pipelines, and monitoring infrastructure. Conduct threat hunting and analysis to identify emerging risks. Lead and contribute to incident investigations, including post-mortem analysis and remediation actions. Vulnerability & Risk Management Identify, track, and remediate vulnerabilities across cloud, endpoint, and infrastructure. Implement controls from security assessments, audits, and architecture reviews. Support third party risk assessments and vendor due diligence. Governance, Documentation & Projects Maintain documentation of security standards, runbooks, and procedures. Participate in security-related projects and lead implementation of new security solutions. Required Qualifications 3+ years in security engineering or security operations, ideally in cloud first environments. Strong understanding of cloud security architecture with hands on experience securing cloud infrastructure and services. Hands on experience with the Azure security stack, including Microsoft Defender for Cloud (recommendations, alerts, Secure Score), Azure Policy, and related security tooling. Proficiency with SIEM platforms (Azure Sentinel preferred), developing detections and alerts, tuning rules, and investigating incidents. Proven incident response capability including triage, investigation, containment, eradication, and recovery. Practical experience integrating security into software and system development lifecycles. Experience with endpoint security solutions and MDM/EMM tools. Experience securing containerised environments (Kubernetes) and CI/CD pipelines. Proficiency in scripting and automation (PowerShell, Python, KQL, Bicep). Strong understanding of network security - protocols, firewalls, IDS/IPS, WAFs, and infrastructure hardening. Familiarity with incident response frameworks (NIST, SANS). Experience configuring and using cloud native security logging, monitoring, and detection services. In depth knowledge of security principles, attack vectors (OWASP Top 10, MITRE ATT&CK), and the threat landscape. Desired Qualifications Azure Security Engineer AZ-500 Security Operations Analyst SC-200 Identity and Access administrator SC-300 GIAC Certified Forensic Analyst Compensation and Benefits Comprehensive health, dental, and vision insurance plans Flexible hybrid work environment Additional benefits like flexible hours, work travel opportunities, competitive vacation time and parental leave Eligibility You must have the right to work in the United Kingdom. Please note that we do not provide visa sponsorship.
Detego Global is on the lookout for a SOC Subject Matter Expert to join our Product Management team. We are looking for a mid to senior SOC analyst with extensive operational experience who is ready to transition into a product-focused role. You will be the voice of the SOC development team, translating deep operational security experience into product requirements and strategic direction for advanced SOC command and control tools. You will work closely with product managers, engineers, UX designers, and customers to ensure our products solve real analyst challenges and improve SOC efficiency and effectiveness. This role will provide the right candidate with the opportunity to work on some extremely rewarding projects supporting the development of impactful security operations software while working with a friendly and supportive team. The role has a strong opportunity for growth and will play an integral role in helping shape the future of SOC products and security operations tools. Reports to: Senior Product Manager Place of Work: Hybrid Remote/Office in Horsham Responsibilities and Duties The SOC Subject Matter Expert role requires a professional who combines extensive SOC operational experience with strategic product thinking to bridge the gap between security operations needs and product development. They will be responsible for providing expert SOC operational guidance throughout the product development lifecycle, defining system-level requirements, and ensuring our products genuinely address the challenges faced by SOC analysts in real-world environments. Their primary responsibility lies in translating SOC analyst pain points, workflows, and use cases into actionable product features, with particular focus on alert/incident prioritisation and intelligent playbook execution that helps analysts make critical security decisions. Their responsibilities will include: Providing expert SOC operational guidance to product management and engineering teams throughout the product development lifecycle. Defining and documenting detailed system-level requirements for SOC analyst tools, ensuring alignment with real-world operational needs. Translating SOC analyst pain points, workflows, and use cases into actionable product features and user stories. Designing and validating alert prioritisation algorithms, incident triage workflows, and automated playbook logic based on operational experience. Collaborating with product managers to shape product strategy, roadmap priorities, and feature definitions. Conducting customer discovery sessions, interviews, and workshops with SOC teams to gather requirements and validate concepts. Creating realistic user personas, journey maps, and workflow diagrams that represent authentic SOC analyst experiences. Evaluating competitive SOC tools and industry trends to inform product differentiation and innovation opportunities. Participating in proof-of-concept development to validate new features addressing critical analyst decision-making challenges. Working with UX designers to ensure intuitive interfaces that match SOC analyst mental models and workflow patterns. Providing technical consultation on threat detection logic, MITRE ATT&CK mapping, and security operations best practices. Supporting go-to-market activities by creating technical content, conducting product demonstrations, and engaging with prospective customers. Mentoring and educating internal teams on SOC operations, threat landscapes, and analyst workflows. Ensuring product features align with industry frameworks (MITRE ATT&CK, NIST, ISO 27001) and SOC maturity models. Act as a trusted SOC and cyber defence expert in customer meetings, workshops, and solution design sessions. Support pre-sales engagements by articulating operational value, use cases, and real-world applicability. Deliver product demonstrations and technical briefings tailored to SOC practitioners, security leaders, and decision-makers. Translate complex SOC workflows and technical concepts into clear, compelling narratives for customers and stakeholders. Support go-to-market activities through technical content creation, presentations, and customer engagement. Skills and Experience Minimum 6 years of hands on experience as a SOC Analyst, Senior SOC Analyst, or SOC Team Lead Deep understanding of end to end SOC operations including alert triage, incident response, threat hunting, and case management Extensive experience with SIEM platforms, security orchestration tools, and the broader SOC technology stack Strong knowledge of threat detection methodologies, alert correlation, and incident prioritisation frameworks Expert level understanding of MITRE ATT&CK framework and its practical application in SOC operations Proven ability to identify operational inefficiencies and translate them into product improvement opportunities Experience developing or optimising SOC playbooks, runbooks, and standard operating procedures Excellent communication skills with ability to articulate complex security concepts to both technical and business audiences Strong analytical and strategic thinking capabilities Understanding of common attack patterns, threat actor TTPs, and the evolving threat landscape Ability to balance ideal security outcomes with practical operational constraints and business realities Strong problem solving skills and willingness to roll up one's sleeves to get the job done Skilled at working effectively with cross functional teams in a matrix organisation 8+ years of progressive SOC experience including team leadership or senior analyst responsibilities. Experience in Tier 2 or Tier 3 SOC roles with incident response and threat hunting responsibilities. Previous involvement in SOC tool evaluation, selection, or implementation projects. Experience with security automation, SOAR platforms, or playbook development. Experience working with or partnering with SOC/SIEM/EDR vendors and MSSP (Managed Security Service Provider) vendors. Familiarity with product management principles, agile methodologies, or requirements gathering processes. Experience presenting to executive leadership or external stakeholders. Knowledge of multiple SIEM platforms (Splunk, QRadar, Sentinel, Chronicle, etc.) and their operational strengths/weaknesses. Understanding of SOC metrics, KPIs, and performance measurement frameworks. Security certifications (e.g., GCIH, GCIA, GCFA, CISSP, GMON) demonstrating advanced security operations expertise. Experience working in regulated industries or with compliance driven security operations. Bachelor's degree in cybersecurity, information technology, or related field. "
04/06/2026
Full time
Detego Global is on the lookout for a SOC Subject Matter Expert to join our Product Management team. We are looking for a mid to senior SOC analyst with extensive operational experience who is ready to transition into a product-focused role. You will be the voice of the SOC development team, translating deep operational security experience into product requirements and strategic direction for advanced SOC command and control tools. You will work closely with product managers, engineers, UX designers, and customers to ensure our products solve real analyst challenges and improve SOC efficiency and effectiveness. This role will provide the right candidate with the opportunity to work on some extremely rewarding projects supporting the development of impactful security operations software while working with a friendly and supportive team. The role has a strong opportunity for growth and will play an integral role in helping shape the future of SOC products and security operations tools. Reports to: Senior Product Manager Place of Work: Hybrid Remote/Office in Horsham Responsibilities and Duties The SOC Subject Matter Expert role requires a professional who combines extensive SOC operational experience with strategic product thinking to bridge the gap between security operations needs and product development. They will be responsible for providing expert SOC operational guidance throughout the product development lifecycle, defining system-level requirements, and ensuring our products genuinely address the challenges faced by SOC analysts in real-world environments. Their primary responsibility lies in translating SOC analyst pain points, workflows, and use cases into actionable product features, with particular focus on alert/incident prioritisation and intelligent playbook execution that helps analysts make critical security decisions. Their responsibilities will include: Providing expert SOC operational guidance to product management and engineering teams throughout the product development lifecycle. Defining and documenting detailed system-level requirements for SOC analyst tools, ensuring alignment with real-world operational needs. Translating SOC analyst pain points, workflows, and use cases into actionable product features and user stories. Designing and validating alert prioritisation algorithms, incident triage workflows, and automated playbook logic based on operational experience. Collaborating with product managers to shape product strategy, roadmap priorities, and feature definitions. Conducting customer discovery sessions, interviews, and workshops with SOC teams to gather requirements and validate concepts. Creating realistic user personas, journey maps, and workflow diagrams that represent authentic SOC analyst experiences. Evaluating competitive SOC tools and industry trends to inform product differentiation and innovation opportunities. Participating in proof-of-concept development to validate new features addressing critical analyst decision-making challenges. Working with UX designers to ensure intuitive interfaces that match SOC analyst mental models and workflow patterns. Providing technical consultation on threat detection logic, MITRE ATT&CK mapping, and security operations best practices. Supporting go-to-market activities by creating technical content, conducting product demonstrations, and engaging with prospective customers. Mentoring and educating internal teams on SOC operations, threat landscapes, and analyst workflows. Ensuring product features align with industry frameworks (MITRE ATT&CK, NIST, ISO 27001) and SOC maturity models. Act as a trusted SOC and cyber defence expert in customer meetings, workshops, and solution design sessions. Support pre-sales engagements by articulating operational value, use cases, and real-world applicability. Deliver product demonstrations and technical briefings tailored to SOC practitioners, security leaders, and decision-makers. Translate complex SOC workflows and technical concepts into clear, compelling narratives for customers and stakeholders. Support go-to-market activities through technical content creation, presentations, and customer engagement. Skills and Experience Minimum 6 years of hands on experience as a SOC Analyst, Senior SOC Analyst, or SOC Team Lead Deep understanding of end to end SOC operations including alert triage, incident response, threat hunting, and case management Extensive experience with SIEM platforms, security orchestration tools, and the broader SOC technology stack Strong knowledge of threat detection methodologies, alert correlation, and incident prioritisation frameworks Expert level understanding of MITRE ATT&CK framework and its practical application in SOC operations Proven ability to identify operational inefficiencies and translate them into product improvement opportunities Experience developing or optimising SOC playbooks, runbooks, and standard operating procedures Excellent communication skills with ability to articulate complex security concepts to both technical and business audiences Strong analytical and strategic thinking capabilities Understanding of common attack patterns, threat actor TTPs, and the evolving threat landscape Ability to balance ideal security outcomes with practical operational constraints and business realities Strong problem solving skills and willingness to roll up one's sleeves to get the job done Skilled at working effectively with cross functional teams in a matrix organisation 8+ years of progressive SOC experience including team leadership or senior analyst responsibilities. Experience in Tier 2 or Tier 3 SOC roles with incident response and threat hunting responsibilities. Previous involvement in SOC tool evaluation, selection, or implementation projects. Experience with security automation, SOAR platforms, or playbook development. Experience working with or partnering with SOC/SIEM/EDR vendors and MSSP (Managed Security Service Provider) vendors. Familiarity with product management principles, agile methodologies, or requirements gathering processes. Experience presenting to executive leadership or external stakeholders. Knowledge of multiple SIEM platforms (Splunk, QRadar, Sentinel, Chronicle, etc.) and their operational strengths/weaknesses. Understanding of SOC metrics, KPIs, and performance measurement frameworks. Security certifications (e.g., GCIH, GCIA, GCFA, CISSP, GMON) demonstrating advanced security operations expertise. Experience working in regulated industries or with compliance driven security operations. Bachelor's degree in cybersecurity, information technology, or related field. "
Company DescriptionDepop is the community-powered circular fashion marketplace where anyone can buy, sell and discover desirable secondhand fashion. With a community of over 35 million users, Depop is on a mission to make fashion circular, redefining fashion consumption. Founded in 2011, the company is headquartered in London, with offices in New York and Manchester, and in 2021 became a wholly-owned subsidiary of Etsy. Find out more at mission is to make fashion circular and to create an inclusive environment where everyone is welcome, no matter who they are or where they're from. Just as our platform connects people globally, we believe our workplace should reflect the diversity of the communities we serve. We thrive on the power of different perspectives and experiences, knowing they drive innovation and bring us closer to our users. We're proud to be an equal opportunity employer, providing employment opportunities without regard to age, ethnicity, religion or belief, gender identity, sex, sexual orientation, disability, pregnancy or maternity, marriage and civil partnership, or any other protected status. We're continuously evolving our recruitment processes to ensure fairness and are open to accommodating any needs you might have.If, due to a disability, you need adjustments to complete the application, please let us know by sending an email with your name, the role to which you would like to apply, and the type of support you need to complete the application to . For any other non-disability related questions, please reach out to our Talent Partners.Depop's Trust Detection squad plays a critical role in keeping our global community safe. We build proactive, scalable detection systems that identify harmful content and user behaviour early, enabling fast, fair, and effective moderation at scale.This is a cross-functional squad of Backend and Machine Learning Engineers working closely with Product, Data, Fraud and Trust and Safety partners. The team operates in a rapidly evolving problem space where threats change quickly and systems must continuously adapt.As a Senior Backend Engineer in Trust Detection, you will have a unique opportunity to shape, evolve, and scale our detection capabilities. You will work on systems that are still maturing, influence how we productionise ML, and help establish strong engineering foundations as the domain grows.This role suits engineers who enjoy autonomy, are deeply curious, and thrive in collaborative, ambiguous problem spaces.What you will be doingIndependently design and deliver backend solutions to medium-to-large problem spaces, from discovery through production and iterationBuild and evolve core detection services, pipelines, and APIs that operate at scale and under real-world adversarial conditionsWork hands-on with ML Engineers and ML Scientists to productionise models and improve detection pipelines, monitoring, and iteration loopsTake end-to-end ownership of your work, including design, implementation, testing, observability, and operational supportContribute to shaping technical direction within the team, improving system design, reliability, and developer experienceOperate in an experiment-led environment, helping define hypotheses, success metrics, and feedback loopsCollaborate closely with Product, Fraud, Trust and Safety, and other Engineering teams to ensure solutions are well scoped and well understoodActively contribute to continuous improvement through retrospectives, post-incident reviews, and technical discussionsMentor and support other engineers in the team, raising the overall quality of deliveryWhy this role is excitingYou will help shape and scale detection systems that are still evolving rather than joining a fully fixed platformYou will work closely with ML Scientists without needing to be an ML specialistYou will have real ownership over meaningful problem areasYou will see direct, measurable impact from your work on the safety of millions of usersYou will join a team that values experimentation, learning, and pragmatic engineering excellenceWhat are we looking forCore requirementsStrong backend engineering fundamentals with experience independently delivering production systemsProficiency in at least one backend language such as Scala, Java, or Python, with the ability to learn new languages quicklyExperience working with data-intensive systems, including designing, consuming, and evolving data models across servicesExperience building or operating event-driven systems, such as producing and consuming events or messages in distributed architecturesExperience building scalable and reliable services and APIsA strong sense of ownership paired with effective collaboration and communicationComfort working in ambiguous problem spaces and proactively shaping solutionsSolid testing practices across unit and integration levelsExperience working in a DevOps-oriented environment including CI/CD and production monitoringHelpful experience, but we value learning just as muchExperience running, maintaining, or evolving ML-powered systems in productionExperience in experiment-led or hypothesis-driven teams with strong data and insights practicesPrior work in Trust and Safety, fraud, abuse detection, or moderation systemsExperience in marketplace or eCommerce environmentsHands-on experience with message brokers or streaming platforms such as Kafka or similar technologiesExperience with Docker and KubernetesFamiliarity with AWS infrastructure and infrastructure-as-code toolingAdditional InformationHealth + Mental WellbeingPMI and cash plan healthcare access with BupaSubsidised counselling and coaching with Self SpaceCycle to Work scheme with options from Evans or the Green Commute InitiativeEmployee Assistance Programme (EAP) for 24/7 confidential supportMental Health First Aiders across the business for support and signpostingWork/Life Balance:25 days annual leave with option to carry over up to 5 days1 company-wide day off per quarterImpact hours: Up to 2 days additional paid leave per year for volunteeringFully paid 4 week sabbatical after completion of 5 years of consecutive service with Depop, to give you a chance to recharge or do something you love.Flexible Working: MyMode hybrid-working model with Flex, Office Based, and Remote options role dependantAll offices are dog-friendlyAbility to work abroad for 4 weeks per year in UK tax treaty countriesFamily Life:18 weeks of paid parental leave for full-time regular employeesIVF leave, shared parental leave, and paid emergency parent/carer leaveLearn + Grow:Budgets for conferences, learning subscriptions, and moreMentorship and programmes to upskill employeesYour Future:Life Insurance (financial compensation of 3x your salary)Pension matching up to 6% of qualifying earningsDepop Extras:Employees enjoy free shipping on their Depop sales within the UK.Special milestones are celebrated with gifts and rewards!
04/06/2026
Full time
Company DescriptionDepop is the community-powered circular fashion marketplace where anyone can buy, sell and discover desirable secondhand fashion. With a community of over 35 million users, Depop is on a mission to make fashion circular, redefining fashion consumption. Founded in 2011, the company is headquartered in London, with offices in New York and Manchester, and in 2021 became a wholly-owned subsidiary of Etsy. Find out more at mission is to make fashion circular and to create an inclusive environment where everyone is welcome, no matter who they are or where they're from. Just as our platform connects people globally, we believe our workplace should reflect the diversity of the communities we serve. We thrive on the power of different perspectives and experiences, knowing they drive innovation and bring us closer to our users. We're proud to be an equal opportunity employer, providing employment opportunities without regard to age, ethnicity, religion or belief, gender identity, sex, sexual orientation, disability, pregnancy or maternity, marriage and civil partnership, or any other protected status. We're continuously evolving our recruitment processes to ensure fairness and are open to accommodating any needs you might have.If, due to a disability, you need adjustments to complete the application, please let us know by sending an email with your name, the role to which you would like to apply, and the type of support you need to complete the application to . For any other non-disability related questions, please reach out to our Talent Partners.Depop's Trust Detection squad plays a critical role in keeping our global community safe. We build proactive, scalable detection systems that identify harmful content and user behaviour early, enabling fast, fair, and effective moderation at scale.This is a cross-functional squad of Backend and Machine Learning Engineers working closely with Product, Data, Fraud and Trust and Safety partners. The team operates in a rapidly evolving problem space where threats change quickly and systems must continuously adapt.As a Senior Backend Engineer in Trust Detection, you will have a unique opportunity to shape, evolve, and scale our detection capabilities. You will work on systems that are still maturing, influence how we productionise ML, and help establish strong engineering foundations as the domain grows.This role suits engineers who enjoy autonomy, are deeply curious, and thrive in collaborative, ambiguous problem spaces.What you will be doingIndependently design and deliver backend solutions to medium-to-large problem spaces, from discovery through production and iterationBuild and evolve core detection services, pipelines, and APIs that operate at scale and under real-world adversarial conditionsWork hands-on with ML Engineers and ML Scientists to productionise models and improve detection pipelines, monitoring, and iteration loopsTake end-to-end ownership of your work, including design, implementation, testing, observability, and operational supportContribute to shaping technical direction within the team, improving system design, reliability, and developer experienceOperate in an experiment-led environment, helping define hypotheses, success metrics, and feedback loopsCollaborate closely with Product, Fraud, Trust and Safety, and other Engineering teams to ensure solutions are well scoped and well understoodActively contribute to continuous improvement through retrospectives, post-incident reviews, and technical discussionsMentor and support other engineers in the team, raising the overall quality of deliveryWhy this role is excitingYou will help shape and scale detection systems that are still evolving rather than joining a fully fixed platformYou will work closely with ML Scientists without needing to be an ML specialistYou will have real ownership over meaningful problem areasYou will see direct, measurable impact from your work on the safety of millions of usersYou will join a team that values experimentation, learning, and pragmatic engineering excellenceWhat are we looking forCore requirementsStrong backend engineering fundamentals with experience independently delivering production systemsProficiency in at least one backend language such as Scala, Java, or Python, with the ability to learn new languages quicklyExperience working with data-intensive systems, including designing, consuming, and evolving data models across servicesExperience building or operating event-driven systems, such as producing and consuming events or messages in distributed architecturesExperience building scalable and reliable services and APIsA strong sense of ownership paired with effective collaboration and communicationComfort working in ambiguous problem spaces and proactively shaping solutionsSolid testing practices across unit and integration levelsExperience working in a DevOps-oriented environment including CI/CD and production monitoringHelpful experience, but we value learning just as muchExperience running, maintaining, or evolving ML-powered systems in productionExperience in experiment-led or hypothesis-driven teams with strong data and insights practicesPrior work in Trust and Safety, fraud, abuse detection, or moderation systemsExperience in marketplace or eCommerce environmentsHands-on experience with message brokers or streaming platforms such as Kafka or similar technologiesExperience with Docker and KubernetesFamiliarity with AWS infrastructure and infrastructure-as-code toolingAdditional InformationHealth + Mental WellbeingPMI and cash plan healthcare access with BupaSubsidised counselling and coaching with Self SpaceCycle to Work scheme with options from Evans or the Green Commute InitiativeEmployee Assistance Programme (EAP) for 24/7 confidential supportMental Health First Aiders across the business for support and signpostingWork/Life Balance:25 days annual leave with option to carry over up to 5 days1 company-wide day off per quarterImpact hours: Up to 2 days additional paid leave per year for volunteeringFully paid 4 week sabbatical after completion of 5 years of consecutive service with Depop, to give you a chance to recharge or do something you love.Flexible Working: MyMode hybrid-working model with Flex, Office Based, and Remote options role dependantAll offices are dog-friendlyAbility to work abroad for 4 weeks per year in UK tax treaty countriesFamily Life:18 weeks of paid parental leave for full-time regular employeesIVF leave, shared parental leave, and paid emergency parent/carer leaveLearn + Grow:Budgets for conferences, learning subscriptions, and moreMentorship and programmes to upskill employeesYour Future:Life Insurance (financial compensation of 3x your salary)Pension matching up to 6% of qualifying earningsDepop Extras:Employees enjoy free shipping on their Depop sales within the UK.Special milestones are celebrated with gifts and rewards!
Reporting to: Head of Risk and Compliance ABOUT NEXGEN CLOUD: NexGen Cloud is the company behind Hyperstack, a full-stack AI cloud serving tens of thousands of customers from AI researchers to enterprises running the world's most compute-intensive workloads. We deliver on-demand and private GPU infrastructure to teams who treat performance as a requirement, not a feature. We're a tight-knit, fast-moving team working at the cutting edge of AI cloud infrastructure. We practice what we preach, equipping our people with AI at every level so we can solve harder problems, ship faster, and keep raising the bar for what enterprise GPU infrastructure looks like. THE ROLE: Information Security Officer This role exists because as we scale our infrastructure and customer base, protecting the systems, data, and trust that underpin Hyperstack is a business critical priority. You'll have direct ownership over NexGen Cloud's information security posture - from policy and risk frameworks through to incident response and compliance programmes. This is a role for someone who operates independently, thinks in systems, and understands that good security is both a technical and a business discipline. WHAT YOU'LL BE DOING: Rather than a long checklist, here's what success in this role looks like: Own the development and maintenance of data security policies, standards, and procedures across the organisation Drive the information security roadmap, coordinating activities across Risk and Compliance, Engineering, and Operations Lead risk and vulnerability assessments, ensuring findings translate into prioritised remediation actions Oversee data classification, encryption, and access control frameworks Lead incident response planning, investigation, and remediation - including playbooks, communications, and documentation - tracking actions through to closure Collaborate with Engineering, DevOps, Legal, and Compliance to embed security by design Manage third party security risk and vendor assessments, escalating material risks appropriately Build and deliver security awareness programmes across the organisation Maintain documentation for audits and regulatory reporting ABOUT YOU: We're more interested in how you think and work than in a perfect CV. You'll likely bring a combination of the following: Strong knowledge of data protection laws and regulatory frameworks Experience in cloud security environments Deep understanding of encryption, IAM, network security, and secure architecture principles Proven experience in incident response and risk management Familiarity with security standards such as ISO 27001, SOC 2, NIST Ability to translate technical risks into business impact for non technical stakeholders Strong communication and cross functional collaboration skills Certifications are a plus (e.g. Security+, ISO 27001 Foundation, CC); advanced certifications (CISSP, CISM, CCSP) welcomed but not required Nice to Have Experience in HPC, GPU, or AI/ML cloud environments Background in SaaS, IaaS, or enterprise cloud infrastructure security Experience with zero trust architecture implementation Knowledge of container and Kubernetes security Familiarity with DevSecOps practices and CI/CD security integration Exposure to international data transfer frameworks and multi region compliance Experience with SIEM, SOAR, and advanced threat detection platforms Involvement in external security audits and penetration testing programmes Experience leading security certifications or accreditation programmes WHAT WE OFFER: Competitive salary and annual discretionary bonus scheme 25 days of holiday, plus public holidays Flexible working arrangements (remote or hybrid, depending on role and location) Real ownership and autonomy, with the trust to take initiative and experiment The opportunity to make a visible, meaningful impact as we scale Clear career progression and growth opportunities in a fast growing company A collaborative, international culture built on trust, transparency, and ownership The chance to help shape NexGen Cloud's team, culture, and future alongside ambitious, mission driven colleagues
01/06/2026
Full time
Reporting to: Head of Risk and Compliance ABOUT NEXGEN CLOUD: NexGen Cloud is the company behind Hyperstack, a full-stack AI cloud serving tens of thousands of customers from AI researchers to enterprises running the world's most compute-intensive workloads. We deliver on-demand and private GPU infrastructure to teams who treat performance as a requirement, not a feature. We're a tight-knit, fast-moving team working at the cutting edge of AI cloud infrastructure. We practice what we preach, equipping our people with AI at every level so we can solve harder problems, ship faster, and keep raising the bar for what enterprise GPU infrastructure looks like. THE ROLE: Information Security Officer This role exists because as we scale our infrastructure and customer base, protecting the systems, data, and trust that underpin Hyperstack is a business critical priority. You'll have direct ownership over NexGen Cloud's information security posture - from policy and risk frameworks through to incident response and compliance programmes. This is a role for someone who operates independently, thinks in systems, and understands that good security is both a technical and a business discipline. WHAT YOU'LL BE DOING: Rather than a long checklist, here's what success in this role looks like: Own the development and maintenance of data security policies, standards, and procedures across the organisation Drive the information security roadmap, coordinating activities across Risk and Compliance, Engineering, and Operations Lead risk and vulnerability assessments, ensuring findings translate into prioritised remediation actions Oversee data classification, encryption, and access control frameworks Lead incident response planning, investigation, and remediation - including playbooks, communications, and documentation - tracking actions through to closure Collaborate with Engineering, DevOps, Legal, and Compliance to embed security by design Manage third party security risk and vendor assessments, escalating material risks appropriately Build and deliver security awareness programmes across the organisation Maintain documentation for audits and regulatory reporting ABOUT YOU: We're more interested in how you think and work than in a perfect CV. You'll likely bring a combination of the following: Strong knowledge of data protection laws and regulatory frameworks Experience in cloud security environments Deep understanding of encryption, IAM, network security, and secure architecture principles Proven experience in incident response and risk management Familiarity with security standards such as ISO 27001, SOC 2, NIST Ability to translate technical risks into business impact for non technical stakeholders Strong communication and cross functional collaboration skills Certifications are a plus (e.g. Security+, ISO 27001 Foundation, CC); advanced certifications (CISSP, CISM, CCSP) welcomed but not required Nice to Have Experience in HPC, GPU, or AI/ML cloud environments Background in SaaS, IaaS, or enterprise cloud infrastructure security Experience with zero trust architecture implementation Knowledge of container and Kubernetes security Familiarity with DevSecOps practices and CI/CD security integration Exposure to international data transfer frameworks and multi region compliance Experience with SIEM, SOAR, and advanced threat detection platforms Involvement in external security audits and penetration testing programmes Experience leading security certifications or accreditation programmes WHAT WE OFFER: Competitive salary and annual discretionary bonus scheme 25 days of holiday, plus public holidays Flexible working arrangements (remote or hybrid, depending on role and location) Real ownership and autonomy, with the trust to take initiative and experiment The opportunity to make a visible, meaningful impact as we scale Clear career progression and growth opportunities in a fast growing company A collaborative, international culture built on trust, transparency, and ownership The chance to help shape NexGen Cloud's team, culture, and future alongside ambitious, mission driven colleagues
About Darkshield Darkshield is an expert cybersecurity agency based in York, UK. We help organisations navigate an increasingly complex digital landscape by providing expert services in penetration testing, vulnerability assessment, managed security, and compliance. Our mission is to protect businesses by delivering tailored, cutting edge cybersecurity solutions that keep them resilient and ahead of cyber threats. The Role We are looking for a Cloud Security Engineer to join our growing team. This role involves designing, implementing, and managing security solutions across AWS, Azure, and Google Cloud. The ideal candidate will have a deep understanding of cloud security architectures, automation, and compliance frameworks. Key Responsibilities Cloud Security Architecture & Implementation Design and implement cloud security architectures across AWS, Azure, or Google Cloud. Develop and enforce cloud security controls, including IAM policies, encryption, and network security. Threat Monitoring & Incident Response Monitor cloud environments for security threats, vulnerabilities, and misconfigurations. Lead incident response efforts related to cloud security breaches and misconfigurations. Implement SIEM and security monitoring tools for real time threat detection. Cloud Security Assessments & Compliance Conduct cloud security assessments, penetration testing, and risk analysis. Ensure compliance with ISO 27001, NIST, CIS Benchmarks, GDPR, and other security standards. Collaborate with DevOps teams to integrate security into CI/CD pipelines. Security Automation & Infrastructure as Code (IaC) Automate security policies and compliance enforcement using Python, Terraform, Ansible, or CloudFormation. Develop security automation scripts for vulnerability scanning and patch management. Collaboration & Knowledge Sharing Provide guidance and best practices to internal teams on cloud security. Work closely with developers, DevOps, and compliance teams to align security requirements. Required Qualifications & Experience Technical Skills & Experience At least three years of experience in cloud security engineering or a related role. Hands on expertise securing AWS, Azure, or Google Cloud platforms. Strong knowledge of IAM, firewalls, WAFs, encryption, and security groups. Experience with security automation using Python, Terraform, or CloudFormation. Familiarity with container security (Kubernetes, Docker) and microservices security. Certifications (Preferred, Not Required) AWS Certified Security - Specialty Azure Security Engineer Associate (AZ 500) Google Professional Cloud Security Engineer CISSP, OSCP, CEH, or relevant security certifications are a plus. Soft Skills & Work Environment Strong problem solving skills and ability to think like an attacker. Excellent communication and collaboration skills to work with cross functional teams. Ability to work independently and handle multiple projects in a fast paced environment. Success Criteria (Performance Expectations) Implement cloud security controls across at least one major cloud provider within the first three months. Conduct at least two full cloud security assessments per quarter. Develop automated security enforcement scripts that reduce vulnerabilities by 30percent within the first six months. Why Join Darkshield? Work on cutting edge cybersecurity projects with top tier clients. Career growth opportunities in a fast growing cybersecurity agency. Flexible work environment - remote and hybrid options available. Competitive salary and bonuses based on security impact and research.
30/05/2026
Full time
About Darkshield Darkshield is an expert cybersecurity agency based in York, UK. We help organisations navigate an increasingly complex digital landscape by providing expert services in penetration testing, vulnerability assessment, managed security, and compliance. Our mission is to protect businesses by delivering tailored, cutting edge cybersecurity solutions that keep them resilient and ahead of cyber threats. The Role We are looking for a Cloud Security Engineer to join our growing team. This role involves designing, implementing, and managing security solutions across AWS, Azure, and Google Cloud. The ideal candidate will have a deep understanding of cloud security architectures, automation, and compliance frameworks. Key Responsibilities Cloud Security Architecture & Implementation Design and implement cloud security architectures across AWS, Azure, or Google Cloud. Develop and enforce cloud security controls, including IAM policies, encryption, and network security. Threat Monitoring & Incident Response Monitor cloud environments for security threats, vulnerabilities, and misconfigurations. Lead incident response efforts related to cloud security breaches and misconfigurations. Implement SIEM and security monitoring tools for real time threat detection. Cloud Security Assessments & Compliance Conduct cloud security assessments, penetration testing, and risk analysis. Ensure compliance with ISO 27001, NIST, CIS Benchmarks, GDPR, and other security standards. Collaborate with DevOps teams to integrate security into CI/CD pipelines. Security Automation & Infrastructure as Code (IaC) Automate security policies and compliance enforcement using Python, Terraform, Ansible, or CloudFormation. Develop security automation scripts for vulnerability scanning and patch management. Collaboration & Knowledge Sharing Provide guidance and best practices to internal teams on cloud security. Work closely with developers, DevOps, and compliance teams to align security requirements. Required Qualifications & Experience Technical Skills & Experience At least three years of experience in cloud security engineering or a related role. Hands on expertise securing AWS, Azure, or Google Cloud platforms. Strong knowledge of IAM, firewalls, WAFs, encryption, and security groups. Experience with security automation using Python, Terraform, or CloudFormation. Familiarity with container security (Kubernetes, Docker) and microservices security. Certifications (Preferred, Not Required) AWS Certified Security - Specialty Azure Security Engineer Associate (AZ 500) Google Professional Cloud Security Engineer CISSP, OSCP, CEH, or relevant security certifications are a plus. Soft Skills & Work Environment Strong problem solving skills and ability to think like an attacker. Excellent communication and collaboration skills to work with cross functional teams. Ability to work independently and handle multiple projects in a fast paced environment. Success Criteria (Performance Expectations) Implement cloud security controls across at least one major cloud provider within the first three months. Conduct at least two full cloud security assessments per quarter. Develop automated security enforcement scripts that reduce vulnerabilities by 30percent within the first six months. Why Join Darkshield? Work on cutting edge cybersecurity projects with top tier clients. Career growth opportunities in a fast growing cybersecurity agency. Flexible work environment - remote and hybrid options available. Competitive salary and bonuses based on security impact and research.
At CGI, we're redefining how technology protects the nation. As an ArcSight SIEM Engineer, you'll play a vital role in a major defence programme-modernising secure data platforms, driving automation, and strengthening the UK's cyber resilience. Working at the forefront of national security, you'll design and support cutting-edge systems that enable faster, smarter threat detection and decision-making. You'll be part of a close-knit team that thrives on collaboration, innovation, and technical excellence-where you'll have the freedom to take ownership of your work, the opportunity to create lasting impact, and the support of a global organisation committed to your growth. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Due to the secure nature of the programme, you will need to hold UK Security Clearance (HLC/DV). This is a full time onsite role in Basingstoke (no hybrid or remote working). Your future duties and responsibilities In this role, you will be instrumental in modernising and maintaining key defence platforms, ensuring data collection and analysis systems are secure, efficient, and future ready. Working within a collaborative client site environment, you will develop, configure, and optimise ArcSight SIEM toolsets, ensuring the seamless integration of new capabilities to support national security operations. You will also automate release and deployment processes to improve quality and delivery speed, while maintaining rigorous standards for documentation and compliance. Key responsibilities: Develop & optimise: modernise data collection, processing, and storage systems using tools like Kafka, Kubernetes, and Zookeeper Automate & enhance: streamline release processes using Ansible and Azure DevOps Configure & maintain: support and troubleshoot ArcSight SIEM components (filters, SmartConnectors, ESM) Collaborate & align: translate security requirements into technical solutions with internal teams Document & support: produce and maintain technical and support documentation Required qualifications to be successful in this role You should bring strong systems engineering experience with a focus on security, automation, and SIEM technologies, ideally in defence or other secure environments. Essential skills and experience: Hands on ArcSight SIEM configuration, support, and troubleshooting Strong experience in RHEL and Windows environments Automation using Ansible and Azure DevOps Familiarity with Kafka, Kubernetes, and distributed systems Strong communication skills (written and verbal) Understanding of data engineering concepts (SQL or Big Data) Scripting skills (PowerShell, Bash) desirable Active HLC/DV clearance required We also offer a competitive salary, a pension plan, private health care and a share scheme which makes you a CGI Partner.
27/05/2026
Full time
At CGI, we're redefining how technology protects the nation. As an ArcSight SIEM Engineer, you'll play a vital role in a major defence programme-modernising secure data platforms, driving automation, and strengthening the UK's cyber resilience. Working at the forefront of national security, you'll design and support cutting-edge systems that enable faster, smarter threat detection and decision-making. You'll be part of a close-knit team that thrives on collaboration, innovation, and technical excellence-where you'll have the freedom to take ownership of your work, the opportunity to create lasting impact, and the support of a global organisation committed to your growth. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Due to the secure nature of the programme, you will need to hold UK Security Clearance (HLC/DV). This is a full time onsite role in Basingstoke (no hybrid or remote working). Your future duties and responsibilities In this role, you will be instrumental in modernising and maintaining key defence platforms, ensuring data collection and analysis systems are secure, efficient, and future ready. Working within a collaborative client site environment, you will develop, configure, and optimise ArcSight SIEM toolsets, ensuring the seamless integration of new capabilities to support national security operations. You will also automate release and deployment processes to improve quality and delivery speed, while maintaining rigorous standards for documentation and compliance. Key responsibilities: Develop & optimise: modernise data collection, processing, and storage systems using tools like Kafka, Kubernetes, and Zookeeper Automate & enhance: streamline release processes using Ansible and Azure DevOps Configure & maintain: support and troubleshoot ArcSight SIEM components (filters, SmartConnectors, ESM) Collaborate & align: translate security requirements into technical solutions with internal teams Document & support: produce and maintain technical and support documentation Required qualifications to be successful in this role You should bring strong systems engineering experience with a focus on security, automation, and SIEM technologies, ideally in defence or other secure environments. Essential skills and experience: Hands on ArcSight SIEM configuration, support, and troubleshooting Strong experience in RHEL and Windows environments Automation using Ansible and Azure DevOps Familiarity with Kafka, Kubernetes, and distributed systems Strong communication skills (written and verbal) Understanding of data engineering concepts (SQL or Big Data) Scripting skills (PowerShell, Bash) desirable Active HLC/DV clearance required We also offer a competitive salary, a pension plan, private health care and a share scheme which makes you a CGI Partner.
At CGI, we're redefining how technology protects the nation. As an ArcSight SIEM Engineer, you'll play a vital role in a major defence programme-modernising secure data platforms, driving automation, and strengthening the UK's cyber resilience. Working at the forefront of national security, you'll design and support cutting-edge systems that enable faster, smarter threat detection and decision-making. You'll be part of a close-knit team that thrives on collaboration, innovation, and technical excellence-where you'll have the freedom to take ownership of your work, the opportunity to create lasting impact, and the support of a global organisation committed to your growth. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Due to the secure nature of the programme, you will need to hold UK Security Clearance (HLC/DV). This is a full time onsite role in Basingstoke (no hybrid or remote working). Your future duties and responsibilities In this role, you will be instrumental in modernising and maintaining key defence platforms, ensuring data collection and analysis systems are secure, efficient, and future ready. Working within a collaborative client site environment, you will develop, configure, and optimise ArcSight SIEM toolsets, ensuring the seamless integration of new capabilities to support national security operations. You will also automate release and deployment processes to improve quality and delivery speed, while maintaining rigorous standards for documentation and compliance. Key responsibilities: Develop & optimise: modernise data collection, processing, and storage systems using tools like Kafka, Kubernetes, and Zookeeper Automate & enhance: streamline release processes using Ansible and Azure DevOps Configure & maintain: support and troubleshoot ArcSight SIEM components (filters, SmartConnectors, ESM) Collaborate & align: translate security requirements into technical solutions with internal teams Document & support: produce and maintain technical and support documentation Required qualifications to be successful in this role You should bring strong systems engineering experience with a focus on security, automation, and SIEM technologies, ideally in defence or other secure environments. Essential skills and experience: Hands on ArcSight SIEM configuration, support, and troubleshooting Strong experience in RHEL and Windows environments Automation using Ansible and Azure DevOps Familiarity with Kafka, Kubernetes, and distributed systems Strong communication skills (written and verbal) Understanding of data engineering concepts (SQL or Big Data) Scripting skills (PowerShell, Bash) desirable Active HLC/DV clearance required We also offer a competitive salary, a pension plan, private health care and a share scheme which makes you a CGI Partner.
26/05/2026
Full time
At CGI, we're redefining how technology protects the nation. As an ArcSight SIEM Engineer, you'll play a vital role in a major defence programme-modernising secure data platforms, driving automation, and strengthening the UK's cyber resilience. Working at the forefront of national security, you'll design and support cutting-edge systems that enable faster, smarter threat detection and decision-making. You'll be part of a close-knit team that thrives on collaboration, innovation, and technical excellence-where you'll have the freedom to take ownership of your work, the opportunity to create lasting impact, and the support of a global organisation committed to your growth. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Due to the secure nature of the programme, you will need to hold UK Security Clearance (HLC/DV). This is a full time onsite role in Basingstoke (no hybrid or remote working). Your future duties and responsibilities In this role, you will be instrumental in modernising and maintaining key defence platforms, ensuring data collection and analysis systems are secure, efficient, and future ready. Working within a collaborative client site environment, you will develop, configure, and optimise ArcSight SIEM toolsets, ensuring the seamless integration of new capabilities to support national security operations. You will also automate release and deployment processes to improve quality and delivery speed, while maintaining rigorous standards for documentation and compliance. Key responsibilities: Develop & optimise: modernise data collection, processing, and storage systems using tools like Kafka, Kubernetes, and Zookeeper Automate & enhance: streamline release processes using Ansible and Azure DevOps Configure & maintain: support and troubleshoot ArcSight SIEM components (filters, SmartConnectors, ESM) Collaborate & align: translate security requirements into technical solutions with internal teams Document & support: produce and maintain technical and support documentation Required qualifications to be successful in this role You should bring strong systems engineering experience with a focus on security, automation, and SIEM technologies, ideally in defence or other secure environments. Essential skills and experience: Hands on ArcSight SIEM configuration, support, and troubleshooting Strong experience in RHEL and Windows environments Automation using Ansible and Azure DevOps Familiarity with Kafka, Kubernetes, and distributed systems Strong communication skills (written and verbal) Understanding of data engineering concepts (SQL or Big Data) Scripting skills (PowerShell, Bash) desirable Active HLC/DV clearance required We also offer a competitive salary, a pension plan, private health care and a share scheme which makes you a CGI Partner.
iProov provides science based biometric solutions that enable the world's most security conscious organizations to streamline secure remote onboarding and authentication for digital and physical access. Our award winning liveness technology and iSOC offer unmatched resilience against deepfakes and generative AI threats while ensuring effortless, scalable user experiences. Trusted by leading governments and enterprises, including the U.S. Department of Homeland Security, U.K. Home Office, GovTech Singapore, ING, and UBS, iProov sets the standard in biometric identity assurance. This global trust is built not only on our technology but on the strength of the people behind it. For us, diversity at iProov is about reflecting the customers we serve, holding the principles of equality and inclusion at the heart of everything we do and all that we stand for, embracing differences, creating possibilities, and growing together. We aim to foster a culture where individuals of all backgrounds feel confident in bringing their whole selves to work, feel included, and their talents are nurtured, empowering them to contribute fully to our purpose. The Role Reports to: Head of Red Team Location: UK - (Hybrid - Flexible) Comp: Negotiable (Base) + Company Performance Bonus (10%) + Share Options + UK iProov Benefits As we continue to scale, we are looking for an experienced Red Team Engineer specialising in mobile application security (iOS and/or Android) to join our growing Red Team function. This role will focus on assessing and challenging the security of iProov's mobile SDKs, applications, and biometric identity flows, ensuring we remain resilient against increasingly sophisticated threats, including deepfakes, device compromise, and adversarial manipulation. You will play a critical role in proactively identifying weaknesses, simulating real world attacks, and strengthening our ability to detect and respond to threats across mobile environments. How you can make an impact Design and execute Red Team operations targeting mobile applications, SDKs, and biometric identity flows across iOS and Android Perform advanced mobile application penetration testing, including reverse engineering, runtime manipulation, and bypass techniques Emulator and instrumentation attacks Biometric spoofing and presentation attacks Mobile API abuse and session manipulation Identify vulnerabilities in mobile architectures, authentication flows, and client side controls Conduct research into emerging mobile threat actor tactics, techniques, and procedures (TTPs), particularly in biometric and identity systems Develop proof of concept exploits and tooling to replicate real world attack scenarios Produce clear, actionable reports with risk ranked remediation guidance for engineering and product teams Collaborate closely with mobile engineers, product, and security teams to translate findings into practical fixes Provide code level and architectural guidance to improve mobile application security Validate remediations and ensure vulnerabilities are effectively addressed Contribute to improving detection capabilities within iProov's security ecosystem (including iSOC) Mentor engineers on secure mobile development practices and threat modelling Ensure all activities align with rules of engagement, legal, and regulatory requirements What we would like to see from you 5+ years' experience in Red Teaming, penetration testing, or mobile security research Strong hands on expertise in mobile application security (iOS and/or Android) Experience with: Reverse engineering tools (e.g. Frida, Objection, Ghidra, Hopper, IDA Pro) Mobile testing frameworks and interception tools (e.g. Burp Suite, mitmproxy) Analysing mobile binaries (APK/IPA), obfuscation, and runtime protections Deep understanding of: Mobile OS internals (Android/iOS security models) Secure storage, keychains/keystores, and cryptographic implementations Authentication protocols and identity flows (OAuth, biometrics, session handling) Experience identifying and exploiting: Client side trust issues Certificate pinning bypasses Anti tampering and anti debugging controls Ability to build or customise tooling and scripts for mobile security testing Experience communicating complex technical findings to both technical and non technical audiences A passion for offensive security and creatively breaking systems to make them stronger Comfortable operating in a high growth, fast paced environment 25 days Annual Leave, plus 8 Bank Holidays (more holiday with service - up to an extra 5 days off per year based on your continuous service) Growth Shares allocated after passing probation (6 months of service) Salary sacrifice schemes including: Pension, Cycle To Work and Electric Car Scheme Nursery Sacrifice Scheme Work Overseas Perk - Work globally for up to 2 weeks Life Assurance SmartHealth - Access to private GP, Psychologist, Nutritionist along with tailored fitness plans for both you and your family Benefit from personalized 1:1 career coaching with our in house Occupational Psychologist Award winning L&D platform with personal allocated training budgets Enhanced paid family leave Flexible hybrid working environment Free Barista Coffee/Tea, biscuits with fruit in the WeWork office Free access to WeWork discounts and free online well being sessions Vitality Health - a range of options available on this below Private Health cover including Dental, Optical, and Audiology 50% off monthly gym memberships Apple watches significantly discounted as member vitality status Half price trainers with Runners Need Weekly rewards - Free coffee with Café Nero Monthly rewards - Free Cinema ticket Discounts on travel with Expedia (hotels) and Mr & Mrs Smith with discounts getting greater throughout the year based on a members vitality status Amazon prime free months based on activity Up to 25% cashback at Waitrose when buying healthy foods 75% off stays at Champneys Health Spas Allen Carr's £299 no smoking programme for free Access to Vitality Healthy Mind with 30% off Headspace subscriptions and the ability to earn Vitality points for using Buddhify, Calm and Headspace Discounts on Weight Watchers Our Culture & Recruitment Process At iProov, we're incredibly proud of the culture we've carefully curated. Our culture enables diverse thought, curiosity and innovation. Our team strives to do everything to the highest standard possible to achieve the remarkable. To do that we need different perspectives, experiences and ideas alongside an environment where these are welcomed - we want everyone to feel confident in bringing their full capabilities to work. We firmly believe psychological safety is key to building and nurturing great teams. We're a small and dynamic company, that means having the right skills is important, and we know that our best work emerges when people feel secure, welcomed and respected. As an equal opportunities employer, we encourage applications from people of all backgrounds. We're committed to building a workforce that is representative of the people we serve. We will not put someone at a disadvantage or treat them less favourably because of race, color, national origin, ancestry, age, disability, creed, religion or belief, sex, sexual orientation, gender reassignment, marriage or civil partnership, or pregnancy and maternity. Our goal is to find people who are passionate about creating a safer, more secure world. Our recruitment process is designed to be fair and transparent, focusing solely on your qualifications, competence, and suitability for the role. We review all applications carefully and will be in touch with shortlisted candidates regarding the next steps in our interview process. If you need an adjustment for a disability or any other reason during the hiring process, please send a request to .
24/05/2026
Full time
iProov provides science based biometric solutions that enable the world's most security conscious organizations to streamline secure remote onboarding and authentication for digital and physical access. Our award winning liveness technology and iSOC offer unmatched resilience against deepfakes and generative AI threats while ensuring effortless, scalable user experiences. Trusted by leading governments and enterprises, including the U.S. Department of Homeland Security, U.K. Home Office, GovTech Singapore, ING, and UBS, iProov sets the standard in biometric identity assurance. This global trust is built not only on our technology but on the strength of the people behind it. For us, diversity at iProov is about reflecting the customers we serve, holding the principles of equality and inclusion at the heart of everything we do and all that we stand for, embracing differences, creating possibilities, and growing together. We aim to foster a culture where individuals of all backgrounds feel confident in bringing their whole selves to work, feel included, and their talents are nurtured, empowering them to contribute fully to our purpose. The Role Reports to: Head of Red Team Location: UK - (Hybrid - Flexible) Comp: Negotiable (Base) + Company Performance Bonus (10%) + Share Options + UK iProov Benefits As we continue to scale, we are looking for an experienced Red Team Engineer specialising in mobile application security (iOS and/or Android) to join our growing Red Team function. This role will focus on assessing and challenging the security of iProov's mobile SDKs, applications, and biometric identity flows, ensuring we remain resilient against increasingly sophisticated threats, including deepfakes, device compromise, and adversarial manipulation. You will play a critical role in proactively identifying weaknesses, simulating real world attacks, and strengthening our ability to detect and respond to threats across mobile environments. How you can make an impact Design and execute Red Team operations targeting mobile applications, SDKs, and biometric identity flows across iOS and Android Perform advanced mobile application penetration testing, including reverse engineering, runtime manipulation, and bypass techniques Emulator and instrumentation attacks Biometric spoofing and presentation attacks Mobile API abuse and session manipulation Identify vulnerabilities in mobile architectures, authentication flows, and client side controls Conduct research into emerging mobile threat actor tactics, techniques, and procedures (TTPs), particularly in biometric and identity systems Develop proof of concept exploits and tooling to replicate real world attack scenarios Produce clear, actionable reports with risk ranked remediation guidance for engineering and product teams Collaborate closely with mobile engineers, product, and security teams to translate findings into practical fixes Provide code level and architectural guidance to improve mobile application security Validate remediations and ensure vulnerabilities are effectively addressed Contribute to improving detection capabilities within iProov's security ecosystem (including iSOC) Mentor engineers on secure mobile development practices and threat modelling Ensure all activities align with rules of engagement, legal, and regulatory requirements What we would like to see from you 5+ years' experience in Red Teaming, penetration testing, or mobile security research Strong hands on expertise in mobile application security (iOS and/or Android) Experience with: Reverse engineering tools (e.g. Frida, Objection, Ghidra, Hopper, IDA Pro) Mobile testing frameworks and interception tools (e.g. Burp Suite, mitmproxy) Analysing mobile binaries (APK/IPA), obfuscation, and runtime protections Deep understanding of: Mobile OS internals (Android/iOS security models) Secure storage, keychains/keystores, and cryptographic implementations Authentication protocols and identity flows (OAuth, biometrics, session handling) Experience identifying and exploiting: Client side trust issues Certificate pinning bypasses Anti tampering and anti debugging controls Ability to build or customise tooling and scripts for mobile security testing Experience communicating complex technical findings to both technical and non technical audiences A passion for offensive security and creatively breaking systems to make them stronger Comfortable operating in a high growth, fast paced environment 25 days Annual Leave, plus 8 Bank Holidays (more holiday with service - up to an extra 5 days off per year based on your continuous service) Growth Shares allocated after passing probation (6 months of service) Salary sacrifice schemes including: Pension, Cycle To Work and Electric Car Scheme Nursery Sacrifice Scheme Work Overseas Perk - Work globally for up to 2 weeks Life Assurance SmartHealth - Access to private GP, Psychologist, Nutritionist along with tailored fitness plans for both you and your family Benefit from personalized 1:1 career coaching with our in house Occupational Psychologist Award winning L&D platform with personal allocated training budgets Enhanced paid family leave Flexible hybrid working environment Free Barista Coffee/Tea, biscuits with fruit in the WeWork office Free access to WeWork discounts and free online well being sessions Vitality Health - a range of options available on this below Private Health cover including Dental, Optical, and Audiology 50% off monthly gym memberships Apple watches significantly discounted as member vitality status Half price trainers with Runners Need Weekly rewards - Free coffee with Café Nero Monthly rewards - Free Cinema ticket Discounts on travel with Expedia (hotels) and Mr & Mrs Smith with discounts getting greater throughout the year based on a members vitality status Amazon prime free months based on activity Up to 25% cashback at Waitrose when buying healthy foods 75% off stays at Champneys Health Spas Allen Carr's £299 no smoking programme for free Access to Vitality Healthy Mind with 30% off Headspace subscriptions and the ability to earn Vitality points for using Buddhify, Calm and Headspace Discounts on Weight Watchers Our Culture & Recruitment Process At iProov, we're incredibly proud of the culture we've carefully curated. Our culture enables diverse thought, curiosity and innovation. Our team strives to do everything to the highest standard possible to achieve the remarkable. To do that we need different perspectives, experiences and ideas alongside an environment where these are welcomed - we want everyone to feel confident in bringing their full capabilities to work. We firmly believe psychological safety is key to building and nurturing great teams. We're a small and dynamic company, that means having the right skills is important, and we know that our best work emerges when people feel secure, welcomed and respected. As an equal opportunities employer, we encourage applications from people of all backgrounds. We're committed to building a workforce that is representative of the people we serve. We will not put someone at a disadvantage or treat them less favourably because of race, color, national origin, ancestry, age, disability, creed, religion or belief, sex, sexual orientation, gender reassignment, marriage or civil partnership, or pregnancy and maternity. Our goal is to find people who are passionate about creating a safer, more secure world. Our recruitment process is designed to be fair and transparent, focusing solely on your qualifications, competence, and suitability for the role. We review all applications carefully and will be in touch with shortlisted candidates regarding the next steps in our interview process. If you need an adjustment for a disability or any other reason during the hiring process, please send a request to .
Blue Light Card. Individually great, together unstoppable The Role and the Team We have an exciting opportunity for a Cloud Security Engineer to join our Technology team and play a key role in how we secure and evolve our cloud estate. You'll be reporting directly to the Director of Technology & Security. This is a hands on role where you'll take the technical lead on securing our cloud and edge estate. You'll work closely with our platform and engineering squads, helping us continuously improve how we protect the infrastructure that sits behind our product. If you love solving complex security challenges and want your work to matter, this is a great time to join. What You'll Do Review and triage security findings, prioritise remediation, and work with engineering squads and third parties to continuously improve our cloud security position Own our Cloud Security Posture Management tooling day to day, tuning policies, driving remediation, and keeping our security position visible across the business Keep our AWS estate secure across IAM, network controls, encryption, logging, and workload protection, partnering with platform engineering on guardrails, Service Control Policies, and secure landing zones Manage our Cloudflare edge as a security control, tuning WAF rules, overseeing rate limiting and bot management, and responding quickly as threats evolve Lead detection and response for cloud and edge incidents, develop detections in our SIEM, and produce post incident reviews that help us learn and improve Develop and maintain our technical security standards across cloud, WAF, IAM, and logging, keeping us aligned with best practice and our regulatory obligations Support compliance across UK GDPR, PCI DSS, ISO 27001, NIST CSF, and Cyber Essentials Plus, contributing to risk assessments and implementing technical mitigations Champion security best practice across our engineering teams, helping squads build security in from the start What You'll Bring Extensive experience as a Cloud Security Engineer, with the ability to operate independently and influence how security is done across a technology organisation Hands on experience with AWS, Cloudflare, Tenable, and SIEM, with the depth to use these tools confidently day to day Proven experience working to frameworks including NIST CSF, ISO 27001, and Cyber Essentials Plus, with a practical understanding of what good compliance really looks like Familiarity with Cloud Security Maturity Frameworks and benchmarks such as CIS, and the ability to apply them to raise security standards in practice Experience leading or contributing to incident response, particularly for cloud and edge incidents such as credential stuffing, IAM compromise, and exposed assets Strong working knowledge of Cloudflare Enterprise, including WAF rule authoring, Bot Management, and log pipelines into SIEM A clear communication style and the ability to translate technical risk into plain language for non technical stakeholders A collaborative approach, a strong track record of delivering results, and a genuine interest in how AI and automation can improve security operations We promote hybrid working and value in person collaboration, encouraging time in our offices, where you can make the most of our fully stocked snack drawers - either the HQ in Leicestershire, or London, Holborn office. The frequency and office location will vary depending on the role and team. We aim to be flexible, but we aren't able to offer fully remote working. Blue Light Card is an equal opportunities employer. We believe that employing a diverse workforce is key to our success. We make recruiting decisions based on your experience and skills. In the event of a high number of applications, we'll prioritise candidates who meet both the essential and desirable criteria for the role. What We Offer Hybrid working and flexible hours EV charging and free parking onsite at HQ 25 days annual leave plus an additional day off for your birthday, and a buy and sell holiday scheme of up to 5 days A company bonus scheme Your own Blue Light Card and exclusive access to thousands of discounts Generous funded BUPA medical insurance covering pre existing conditions Auto enrolment pension scheme via salary sacrifice, with employer NI savings reinvested into pensions Enhanced parental leave and absence leave Healthcare cashback plan Employee assistance programme (including mental health support) and mental health first aiders Great social events e.g., festive party, summer party, team socials, sports matches Regular company wide recognition events e.g. monthly Light's Up and annual Shine awards Relaxed dress code and modern office space (games area, chill out areas, bookclub, free drinks/snacks) Onsite gym at HQ (including access to free HIIT & stretch classes) Strong learning and development culture and personal growth fund
23/05/2026
Full time
Blue Light Card. Individually great, together unstoppable The Role and the Team We have an exciting opportunity for a Cloud Security Engineer to join our Technology team and play a key role in how we secure and evolve our cloud estate. You'll be reporting directly to the Director of Technology & Security. This is a hands on role where you'll take the technical lead on securing our cloud and edge estate. You'll work closely with our platform and engineering squads, helping us continuously improve how we protect the infrastructure that sits behind our product. If you love solving complex security challenges and want your work to matter, this is a great time to join. What You'll Do Review and triage security findings, prioritise remediation, and work with engineering squads and third parties to continuously improve our cloud security position Own our Cloud Security Posture Management tooling day to day, tuning policies, driving remediation, and keeping our security position visible across the business Keep our AWS estate secure across IAM, network controls, encryption, logging, and workload protection, partnering with platform engineering on guardrails, Service Control Policies, and secure landing zones Manage our Cloudflare edge as a security control, tuning WAF rules, overseeing rate limiting and bot management, and responding quickly as threats evolve Lead detection and response for cloud and edge incidents, develop detections in our SIEM, and produce post incident reviews that help us learn and improve Develop and maintain our technical security standards across cloud, WAF, IAM, and logging, keeping us aligned with best practice and our regulatory obligations Support compliance across UK GDPR, PCI DSS, ISO 27001, NIST CSF, and Cyber Essentials Plus, contributing to risk assessments and implementing technical mitigations Champion security best practice across our engineering teams, helping squads build security in from the start What You'll Bring Extensive experience as a Cloud Security Engineer, with the ability to operate independently and influence how security is done across a technology organisation Hands on experience with AWS, Cloudflare, Tenable, and SIEM, with the depth to use these tools confidently day to day Proven experience working to frameworks including NIST CSF, ISO 27001, and Cyber Essentials Plus, with a practical understanding of what good compliance really looks like Familiarity with Cloud Security Maturity Frameworks and benchmarks such as CIS, and the ability to apply them to raise security standards in practice Experience leading or contributing to incident response, particularly for cloud and edge incidents such as credential stuffing, IAM compromise, and exposed assets Strong working knowledge of Cloudflare Enterprise, including WAF rule authoring, Bot Management, and log pipelines into SIEM A clear communication style and the ability to translate technical risk into plain language for non technical stakeholders A collaborative approach, a strong track record of delivering results, and a genuine interest in how AI and automation can improve security operations We promote hybrid working and value in person collaboration, encouraging time in our offices, where you can make the most of our fully stocked snack drawers - either the HQ in Leicestershire, or London, Holborn office. The frequency and office location will vary depending on the role and team. We aim to be flexible, but we aren't able to offer fully remote working. Blue Light Card is an equal opportunities employer. We believe that employing a diverse workforce is key to our success. We make recruiting decisions based on your experience and skills. In the event of a high number of applications, we'll prioritise candidates who meet both the essential and desirable criteria for the role. What We Offer Hybrid working and flexible hours EV charging and free parking onsite at HQ 25 days annual leave plus an additional day off for your birthday, and a buy and sell holiday scheme of up to 5 days A company bonus scheme Your own Blue Light Card and exclusive access to thousands of discounts Generous funded BUPA medical insurance covering pre existing conditions Auto enrolment pension scheme via salary sacrifice, with employer NI savings reinvested into pensions Enhanced parental leave and absence leave Healthcare cashback plan Employee assistance programme (including mental health support) and mental health first aiders Great social events e.g., festive party, summer party, team socials, sports matches Regular company wide recognition events e.g. monthly Light's Up and annual Shine awards Relaxed dress code and modern office space (games area, chill out areas, bookclub, free drinks/snacks) Onsite gym at HQ (including access to free HIIT & stretch classes) Strong learning and development culture and personal growth fund
AI Engineer Our client, a leading global supplier for IT services, requires an experienced AI Engineer to be based at their client's office in Sheffield, UK. This is a hybrid role - you can work remotely in the UK and attend the Sheffield office 2 days per week . This is a 6+ month temporary contract to start ASAP Day rate: Competitive Market rate This position falls under the client's Group Data Technology space. The key focus is on creating connections between business processes, data, products, services, and technology that underpin customer interactions and drive financial success. The team provides a single comprehensive data cataloguing solution across multiple business units. Key Responsibilities Work on functional design, process design (including scenario design, flow mapping), prototyping, testing, training, and defining support procedures, in collaboration with an advanced engineering team and executive leadership Articulate and document the solutions architecture and lessons learned for each exploration and accelerated incubation Conduct assessments of the AI for a given use case and come up with recommendations and alternate ways to achieve the objectives Key Requirements Essential: Proven experience of Chat Bot development using below listed technologies (Mandatory) Python, PyCharm, Numpy, Pandas Experience with ML, deep learning, TensorFlow, Python, NLP MySQL, PostgreSQL, NoSQL, RDBMS design and modelling GitHub, Jenkins Data modelling, Data wrangling and extraction Experience in developing classification algorithms and data preparation Must have experience in either one or more of the expertise areas like Image processing, text extraction, clustering, classification and embedding models Must have experience on developing Drift detection and Model monitoring implementation, good to have experience with AgentEvals for Large Language Models Desirable: Bachelor's degree or higher in computer science, engineering or related field 5-7 years of experience in architecting, positioning and delivering data science and machine learning Experience with Supervised and Unsupervised learning algorithms, good to have experience on Classification algorithms Experience with Document Type classifier, Pattern matching and PII identification Hands on experience in model training, drift detection and feature generation Expertise in Agile and can work with at least one of the common frameworks Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with focus on recommendations for enhancements or remediation Dev-ops and application security & data security experience Securing highly available Internet banking application Knowledge of client side applications and micro services architecture Excellent written and spoken communication skills; an ability to communicate with impact, ensuring complex information is articulated in a meaningful way to wide and varied audiences Build effective networks across business areas, developing relationships based on mutual trust and encouraging others to do the same Ability to quickly acquire new skills and tools Good To Have Skills: Computer Vision problem solution, Advanced pattern matching PII identification and extraction Document type classifiers Standardised form matcher Due to the volume of applications received, unfortunately we cannot respond to everyone. If you do not hear back from us within 7 days of sending your application, please assume that you have not been successful on this occasion.
03/10/2025
Contractor
AI Engineer Our client, a leading global supplier for IT services, requires an experienced AI Engineer to be based at their client's office in Sheffield, UK. This is a hybrid role - you can work remotely in the UK and attend the Sheffield office 2 days per week . This is a 6+ month temporary contract to start ASAP Day rate: Competitive Market rate This position falls under the client's Group Data Technology space. The key focus is on creating connections between business processes, data, products, services, and technology that underpin customer interactions and drive financial success. The team provides a single comprehensive data cataloguing solution across multiple business units. Key Responsibilities Work on functional design, process design (including scenario design, flow mapping), prototyping, testing, training, and defining support procedures, in collaboration with an advanced engineering team and executive leadership Articulate and document the solutions architecture and lessons learned for each exploration and accelerated incubation Conduct assessments of the AI for a given use case and come up with recommendations and alternate ways to achieve the objectives Key Requirements Essential: Proven experience of Chat Bot development using below listed technologies (Mandatory) Python, PyCharm, Numpy, Pandas Experience with ML, deep learning, TensorFlow, Python, NLP MySQL, PostgreSQL, NoSQL, RDBMS design and modelling GitHub, Jenkins Data modelling, Data wrangling and extraction Experience in developing classification algorithms and data preparation Must have experience in either one or more of the expertise areas like Image processing, text extraction, clustering, classification and embedding models Must have experience on developing Drift detection and Model monitoring implementation, good to have experience with AgentEvals for Large Language Models Desirable: Bachelor's degree or higher in computer science, engineering or related field 5-7 years of experience in architecting, positioning and delivering data science and machine learning Experience with Supervised and Unsupervised learning algorithms, good to have experience on Classification algorithms Experience with Document Type classifier, Pattern matching and PII identification Hands on experience in model training, drift detection and feature generation Expertise in Agile and can work with at least one of the common frameworks Ability to identify network attacks and systemic security issues as they relate to threats and vulnerabilities, with focus on recommendations for enhancements or remediation Dev-ops and application security & data security experience Securing highly available Internet banking application Knowledge of client side applications and micro services architecture Excellent written and spoken communication skills; an ability to communicate with impact, ensuring complex information is articulated in a meaningful way to wide and varied audiences Build effective networks across business areas, developing relationships based on mutual trust and encouraging others to do the same Ability to quickly acquire new skills and tools Good To Have Skills: Computer Vision problem solution, Advanced pattern matching PII identification and extraction Document type classifiers Standardised form matcher Due to the volume of applications received, unfortunately we cannot respond to everyone. If you do not hear back from us within 7 days of sending your application, please assume that you have not been successful on this occasion.
