Global GRC Manager Permanent - Birmingham- Hybrid - 2/3 days a week onsite 60,000 - 75,000 DOE + 20% Bonus + Bens We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with the organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance stakeholders to maintain a strong security posture enterprise-wide. Essential Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management. In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Hands-on experience with cloud security governance, particularly Microsoft Azure 'Great to have' experience: Experience working in a Retail, Food & Beverage or similar environment Experience working at a Global / International level If this role sound of interest, then please apply today!
01/04/2026
Full time
Global GRC Manager Permanent - Birmingham- Hybrid - 2/3 days a week onsite 60,000 - 75,000 DOE + 20% Bonus + Bens We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with the organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance stakeholders to maintain a strong security posture enterprise-wide. Essential Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management. In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Hands-on experience with cloud security governance, particularly Microsoft Azure 'Great to have' experience: Experience working in a Retail, Food & Beverage or similar environment Experience working at a Global / International level If this role sound of interest, then please apply today!
Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for people who are will be excited by the potential for Engine's technology to transform banking in different markets around the world. Our purpose is underpinned by five values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role To support our growth, we are looking for talented and motivated SOC engineers to join our foundational in-house SOC team. In this pivotal role, you will be instrumental in supporting the development, implementation, and operating of our security monitoring, detection, and response capabilities, with a particular focus on our cloud environments. You'll be at the forefront of responding to incidents and alerts, and helping shape the future of our security operations capabilities. What you'll get to do: Security Monitoring & Alert Triage: Monitor security alerts and events generated by various security tools Perform triage and analysis of security incidents and anomalies, distinguishing between true positives and false positives. Prioritise alerts based on severity, potential impact, and business criticality. Incident Detection & Response: Investigate security incidents thoroughly, leveraging logs from platforms, endpoints, applications, and other security tools. Create and follow incident response playbooks and contribute to their continuous improvement. Collaborate with Technology, Product and Engineering Teams to contain, eradicate, and recover from security incidents. Document incident details, findings, and remediation steps accurately and comprehensively. Additionally Stay informed about the latest cyber threats, attack techniques, and vulnerabilities, especially those targeting cloud environments. Participate in proactive threat hunting activities using available tools and data sources. Contribute to the optimisation, tuning, and maintenance of SOC tools Identify opportunities for automation to streamline security operations and enhance detection capabilities. Maintain detailed records of security incidents, investigations, and remediation actions. Requirements 3+ years of hands-on experience in a Security Operations Center (SOC) or similar cybersecurity role. Demonstrable experience with cloud security monitoring and incident response. Familiarity with various attack vectors, threat intelligence frameworks (e.g., MITRE ATT&CK). A cyber/information security related degree and/or relevant cybersecurity qualifications would be beneficial e.g. CompTIA Security+, (ISC) SSCP or CySA+ Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with BISO Stage 2 - 60 min with Team Members Stage 3 - Final with CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Engine by Starling and Starling will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
01/04/2026
Full time
Description At Engine by Starling , we are on a mission to find and work with leading banks all around the world who have the ambition to build rapid growth businesses, on our technology. Engine is Starling's software-as-a-service (SaaS) business, the technology that was built to power Starling, and two years ago we split out as a separate business. Starling has seen exceptional growth and success, and a large part of that is down to the fact that we have built our own modern technology from the ground up. This SaaS technology platform is now available to banks and financial institutions all around the world, enabling them to benefit from the innovative digital features, and efficient back-office processes that has helped achieve Starling's success. As a company, everyone is expected to roll up their sleeves to help deliver great outcomes for our clients. We are an engineering led company and we're looking for people who are will be excited by the potential for Engine's technology to transform banking in different markets around the world. Our purpose is underpinned by five values: Listen, Keep It Simple, Do The Right Thing, Own It, and Aim For Greatness. Hybrid Working We have a Hybrid approach to working here at Engine - our preference is that you're located within a commutable distance of one of our offices so that we're able to interact and collaborate in person. About the Role To support our growth, we are looking for talented and motivated SOC engineers to join our foundational in-house SOC team. In this pivotal role, you will be instrumental in supporting the development, implementation, and operating of our security monitoring, detection, and response capabilities, with a particular focus on our cloud environments. You'll be at the forefront of responding to incidents and alerts, and helping shape the future of our security operations capabilities. What you'll get to do: Security Monitoring & Alert Triage: Monitor security alerts and events generated by various security tools Perform triage and analysis of security incidents and anomalies, distinguishing between true positives and false positives. Prioritise alerts based on severity, potential impact, and business criticality. Incident Detection & Response: Investigate security incidents thoroughly, leveraging logs from platforms, endpoints, applications, and other security tools. Create and follow incident response playbooks and contribute to their continuous improvement. Collaborate with Technology, Product and Engineering Teams to contain, eradicate, and recover from security incidents. Document incident details, findings, and remediation steps accurately and comprehensively. Additionally Stay informed about the latest cyber threats, attack techniques, and vulnerabilities, especially those targeting cloud environments. Participate in proactive threat hunting activities using available tools and data sources. Contribute to the optimisation, tuning, and maintenance of SOC tools Identify opportunities for automation to streamline security operations and enhance detection capabilities. Maintain detailed records of security incidents, investigations, and remediation actions. Requirements 3+ years of hands-on experience in a Security Operations Center (SOC) or similar cybersecurity role. Demonstrable experience with cloud security monitoring and incident response. Familiarity with various attack vectors, threat intelligence frameworks (e.g., MITRE ATT&CK). A cyber/information security related degree and/or relevant cybersecurity qualifications would be beneficial e.g. CompTIA Security+, (ISC) SSCP or CySA+ Interviewing is a two way process and we want you to have the time and opportunity to get to know us, as much as we are getting to know you! Our interviews are conversational and we want to get the best from you, so come with questions and be curious. In general you can expect the below, following a chat with one of our Talent Team: Stage 1 - 45 mins with BISO Stage 2 - 60 min with Team Members Stage 3 - Final with CTO Benefits 33 days holiday (including public holidays, which you can take when it works best for you) An extra day's holiday for your birthday Annual leave is increased with length of service, and you can choose to buy or sell up to five extra days off 16 hours paid volunteering time a year Salary sacrifice, company enhanced pension scheme Life insurance at 4x your salary & group income protection Private Medical Insurance with VitalityHealth including mental health support and cancer care. Partner benefits include discounts with Waitrose, Mr&Mrs Smith and Peloton Generous family-friendly policies Incentives refer a friend scheme Perkbox membership giving access to retail discounts, a wellness platform for physical and mental health, and weekly free and boosted perks Access to initiatives like Cycle to Work, Salary Sacrificed Gym partnerships and Electric Vehicle (EV) leasing About Us You may be put off applying for a role because you don't tick every box. Forget that! While we can't accommodate every flexible working request, we're always open to discussion. So, if you're excited about working with us, but aren't sure if you're 100% there yet, get in touch anyway. We're on a mission to radically reshape banking - and that starts with our brilliant team. Whatever came before, we're proud to bring together people of all backgrounds and experiences who love working together to solve problems. Engine by Starling is an equal opportunity employer, and we're proud of our ongoing efforts to foster diversity & inclusion in the workplace. Individuals seeking employment at Engine by Starling are considered without regard to race, religion, national origin, age, sex, gender, gender identity, gender expression, sexual orientation, marital status, medical condition, ancestry, physical or mental disability, military or veteran status, or any other characteristic protected by applicable law. When you provide us with this information, you are doing so at your own consent, with full knowledge that we will process this personal data in accordance with our Privacy Notice. By submitting your application, you agree that Engine by Starling and Starling will collect your personal data for recruiting and related purposes. Our Privacy Notice explains what personal information we will process, where we will process your personal information, its purposes for processing your personal information, and the rights you can exercise over our use of your personal information.
Salary : £69,611 to £77,801, comprising a basic salary of £66,581 and a concessionary payment of £3,030. The exact salary offered within this range will depend on your skills and experience. An additional Skills Payment is available once your skills level is confirmed, £3,822 for Level 1 or £8,190 for Level 2. Flexible working: We offer a range of working patterns, including full-time, part-time, and compressed hours, with flexible start and finish times to support a work-life balance. While most of our work is carried out on-site due to its sensitive nature, occasional home working may be possible depending on business needs. Find out more about flexible working on our website . GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners, MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ, you'll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork. As a Solutions Architect, you'll help deliver technology solutions that support GCHQ's mission, drawing on your experience to lead design work, manage a team, and make strategic architectural decisions. The nature of our work requires advanced, innovative technology, offering you the chance to apply your skills to unique and meaningful challenges. Working across a range of complex projects, you'll shape solution designs, produce clear documentation and models, and ensure alignment with established architectural standards. You'll work closely with stakeholders, balancing technical, business, cost, and risk considerations to deliver scalable and resilient solutions. Day-to-day, you'll collaborate with delivery teams, engineers, and business colleagues to clarify requirements, adapt designs and guide their implementation. You'll produce and maintain artefacts, provide clarity and direction, and mentor less-senior colleagues. Occasional travel across the UK will also be required so you can work closely with colleagues from all areas of the organisation. To apply, you'll bring experience in solutions architecture, including leading the design of end-to-end digital or technology solutions. You'll have familiarity with frameworks such as TOGAF, NIST, and ITIL, along with experience managing or line-managing a team. You'll be skilled at producing artefacts that guide delivery teams and at explaining design decisions clearly to both technical and non-technical audiences. Effective stakeholder management, collaboration and negotiation skills will also help you align differing user needs with organisational priorities. Adaptability, time management, critical thinking, and creative problem-solving will support you in delivering well-rounded solutions to complex challenges. When you join us, you'll have a full induction to GCHQ so you can understand who we are and what we do. Once in your role, you'll receive formal and on-the-job training, along with all the support you need to thrive. We're committed to continuous professional development and to providing the space for you to grow, innovate and experiment. Typically, around 20% of your time is dedicated to developing yourself and supporting others. We know development looks different for everyone, so we'll tailor our support to your learning style, whether that's through books, courses, conferences or stretch assignments. We'll cover the cost of professional qualifications and give you the time and support to achieve them. From day one, you'll have access to mentors and subject-matter experts, and we'll work with you to build a structured development plan aligned with your goals. At GCHQ, diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds. You can find out more about our culture, working environment and diversity on our website . To find out more and apply, please visit our website. To be eligible to apply, you must be a British Citizen. If you hold dual nationality, of which one component is British, you will still be considered. Candidates must normally have been resident in the UK for seven out of the last ten years. This is particularly important if you were born outside the UK. We welcome applications from candidates of all ages, and there is no upper age limit. You can apply at 17; if successful, you will not be offered a start date prior to your 18th birthday. Full eligibility details can be found on our website.
01/04/2026
Full time
Salary : £69,611 to £77,801, comprising a basic salary of £66,581 and a concessionary payment of £3,030. The exact salary offered within this range will depend on your skills and experience. An additional Skills Payment is available once your skills level is confirmed, £3,822 for Level 1 or £8,190 for Level 2. Flexible working: We offer a range of working patterns, including full-time, part-time, and compressed hours, with flexible start and finish times to support a work-life balance. While most of our work is carried out on-site due to its sensitive nature, occasional home working may be possible depending on business needs. Find out more about flexible working on our website . GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners, MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ, you'll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork. As a Solutions Architect, you'll help deliver technology solutions that support GCHQ's mission, drawing on your experience to lead design work, manage a team, and make strategic architectural decisions. The nature of our work requires advanced, innovative technology, offering you the chance to apply your skills to unique and meaningful challenges. Working across a range of complex projects, you'll shape solution designs, produce clear documentation and models, and ensure alignment with established architectural standards. You'll work closely with stakeholders, balancing technical, business, cost, and risk considerations to deliver scalable and resilient solutions. Day-to-day, you'll collaborate with delivery teams, engineers, and business colleagues to clarify requirements, adapt designs and guide their implementation. You'll produce and maintain artefacts, provide clarity and direction, and mentor less-senior colleagues. Occasional travel across the UK will also be required so you can work closely with colleagues from all areas of the organisation. To apply, you'll bring experience in solutions architecture, including leading the design of end-to-end digital or technology solutions. You'll have familiarity with frameworks such as TOGAF, NIST, and ITIL, along with experience managing or line-managing a team. You'll be skilled at producing artefacts that guide delivery teams and at explaining design decisions clearly to both technical and non-technical audiences. Effective stakeholder management, collaboration and negotiation skills will also help you align differing user needs with organisational priorities. Adaptability, time management, critical thinking, and creative problem-solving will support you in delivering well-rounded solutions to complex challenges. When you join us, you'll have a full induction to GCHQ so you can understand who we are and what we do. Once in your role, you'll receive formal and on-the-job training, along with all the support you need to thrive. We're committed to continuous professional development and to providing the space for you to grow, innovate and experiment. Typically, around 20% of your time is dedicated to developing yourself and supporting others. We know development looks different for everyone, so we'll tailor our support to your learning style, whether that's through books, courses, conferences or stretch assignments. We'll cover the cost of professional qualifications and give you the time and support to achieve them. From day one, you'll have access to mentors and subject-matter experts, and we'll work with you to build a structured development plan aligned with your goals. At GCHQ, diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds. You can find out more about our culture, working environment and diversity on our website . To find out more and apply, please visit our website. To be eligible to apply, you must be a British Citizen. If you hold dual nationality, of which one component is British, you will still be considered. Candidates must normally have been resident in the UK for seven out of the last ten years. This is particularly important if you were born outside the UK. We welcome applications from candidates of all ages, and there is no upper age limit. You can apply at 17; if successful, you will not be offered a start date prior to your 18th birthday. Full eligibility details can be found on our website.
Cyber Security Consultant Position Description Trusted to think critically If you're ahead of the game on cyber security, systems and operations risk, we can secure your career ambitions. Our Cyber Security Consultants are trusted to work closely on a wide range of exciting projects with real-world purpose, impacting clients from all sectors, as part of one of the largest cyber consultancies in the UK. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities You'll join a collaborative team of more than 280 members delivering 360 security services to clients across every domain that CGI operates in - from government, defence, healthcare and utilities, to banking and financial services. You'll bring a creative and critical mindset to projects and client operations, managing complex security challenges with a business-focused approach - protecting what is most valuable to our clients. You'll be assessing risk across business, technology and operations, considering threat intelligence and helping to build the full security view that underpins systems resilience and client confidence. Required qualifications to be successful in this role Exceptional planning and communication skills are key for this role, and you'll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials/Plus. We'll also look for your experience in: • Developing cyber policy and procedures • Data protection and privacy • Security change management • Understanding business continuity resilience and incidence response • Networks, core infrastructure and systems Desirable qualifications include: CISSP, CISM, CRISC, CCP Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
01/04/2026
Full time
Cyber Security Consultant Position Description Trusted to think critically If you're ahead of the game on cyber security, systems and operations risk, we can secure your career ambitions. Our Cyber Security Consultants are trusted to work closely on a wide range of exciting projects with real-world purpose, impacting clients from all sectors, as part of one of the largest cyber consultancies in the UK. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities You'll join a collaborative team of more than 280 members delivering 360 security services to clients across every domain that CGI operates in - from government, defence, healthcare and utilities, to banking and financial services. You'll bring a creative and critical mindset to projects and client operations, managing complex security challenges with a business-focused approach - protecting what is most valuable to our clients. You'll be assessing risk across business, technology and operations, considering threat intelligence and helping to build the full security view that underpins systems resilience and client confidence. Required qualifications to be successful in this role Exceptional planning and communication skills are key for this role, and you'll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials/Plus. We'll also look for your experience in: • Developing cyber policy and procedures • Data protection and privacy • Security change management • Understanding business continuity resilience and incidence response • Networks, core infrastructure and systems Desirable qualifications include: CISSP, CISM, CRISC, CCP Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Cyber Security Consultant (DV Security Clearance) Position Description Trusted to think critically If you're ahead of the game on cyber security, systems and operations risk, we can secure your career ambitions. Our Cyber Security Consultants are trusted to work closely on a wide range of exciting projects with real-world purpose, impacting clients from all sectors, as part of one of the largest cyber consultancies in the UK. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. This position requires you to work on client site in Basingstoke 5 days per week. Your future duties and responsibilities You'll join a collaborative team of more than 280 members delivering 360 security services to clients across every domain that CGI operates in - from government, defence, healthcare and utilities, to banking and financial services. You'll bring a creative and critical mindset to projects and client operations, managing complex security challenges with a business-focused approach - protecting what is most valuable to our clients. You'll be assessing risk across business, technology and operations, considering threat intelligence and helping to build the full security view that underpins systems resilience and client confidence. Required qualifications to be successful in this role Exceptional planning and communication skills are key for this role, and you'll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials/Plus. We'll also look for your experience in: • Developing cyber policy and procedures • Data protection and privacy • Security change management • Understanding business continuity resilience and incidence response • Networks, core infrastructure and systems Desirable qualifications include: CISSP, CISM, CRISC. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
01/04/2026
Full time
Cyber Security Consultant (DV Security Clearance) Position Description Trusted to think critically If you're ahead of the game on cyber security, systems and operations risk, we can secure your career ambitions. Our Cyber Security Consultants are trusted to work closely on a wide range of exciting projects with real-world purpose, impacting clients from all sectors, as part of one of the largest cyber consultancies in the UK. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. This position requires you to work on client site in Basingstoke 5 days per week. Your future duties and responsibilities You'll join a collaborative team of more than 280 members delivering 360 security services to clients across every domain that CGI operates in - from government, defence, healthcare and utilities, to banking and financial services. You'll bring a creative and critical mindset to projects and client operations, managing complex security challenges with a business-focused approach - protecting what is most valuable to our clients. You'll be assessing risk across business, technology and operations, considering threat intelligence and helping to build the full security view that underpins systems resilience and client confidence. Required qualifications to be successful in this role Exceptional planning and communication skills are key for this role, and you'll have a knowledge of security standards and processes such as ISO 27001 standards, (NCSC) CAF, Cyber Essentials, NIST and Cyber Essentials/Plus. We'll also look for your experience in: • Developing cyber policy and procedures • Data protection and privacy • Security change management • Understanding business continuity resilience and incidence response • Networks, core infrastructure and systems Desirable qualifications include: CISSP, CISM, CRISC. Any individual without security clearance is welcome to apply and will always be considered for this or wider opportunities in CGI, where appropriate. Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application.
01/04/2026
Full time
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application.
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
01/04/2026
Full time
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
01/04/2026
Full time
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
01/04/2026
Full time
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
01/04/2026
Full time
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
01/04/2026
Full time
DWP. Digital with Purpose. Join DWP as a Senior Cyber Security Risk Manager and help shape how we protect and secure some of the UK's largest digital services. Our DWP Digital teams use fresh ideas and leading-edge tech to build and maintain digital solutions that will be used by nearly every person in the UK, every day and at key moments in their lives. DWP is the UK's largest government department. We help people into work and make payments worth over £195bn a year to support and empower millions of people. The scale of what we do is extraordinary, and our purpose is unique. We'd love you to join us. What skills, knowledge and experience will you need? A broad platform knowledge and ability to conduct cyber security assessments from a multi-platform perspective. Research, evaluate and assess known/emerging security risks and controls to ensure expert advice is provided Extensive knowledge and experience of working with security principles and technologies for cloud hosted services. Advanced understanding of threat intelligence and threat assessment principles and concepts and leads threat intelligence and assessment activities. Demonstrable experience of working on complex IT infrastructures and across a multi-domain model, with specific experience working in a Cyber Security Risk management role as part of a cybersecurity capability. Please note this role requires you to pass Security Check clearance. You and your role As a Senior Cyber Security Risk Manager, you will lead first line cyber risk activity across DWP Digital, giving teams a clear view of security risks to support confident, risk informed decisions. Identifying, assessing and guiding the treatment of cyber risks through a controls driven approach, you'll ensure alignment with organisational standards and an evolving threat landscape. Working alongside delivery teams, technical specialists and senior stakeholders, you'll analyse the effectiveness of our controls and translate any technical vulnerabilities into clear, business focused insight. You'll also support design, testing and monitoring activities, and offer constructive challenge to keep us on a path of strategic alignment and good practice. You'll give trusted advice to business managers and senior leaders, and oversee the cyber risk lifecycle, recommending controls, collaborating widely and assessing business processes against emerging threats to deliver high quality, practical security guidance. Details. Wages. Perks. Hybrid Working: We work a hybrid model - you'll spend some time working at home (40%) and some time collaborating face to face in a hub (60%). Pay: We offer competitive pay for this role of up to £78,205. Pension: You'll get a brilliant civil service pension with employer contributions of 28.97%, worth over £16,786 per year. Holidays: A generous leave package starting at 26 days rising to 31 days over time. You can also take up to 3 extra days off a month on flexi-time. You'll also get all the usual public holidays. We have a broad benefits package built around your work-life balance which includes: Time off volunteering and charitable giving Bring your authentic self to work with 'I Can Be Me in DWP' Discounts and savings on shopping, fun days out and more Interest-free loans to buy a bike or a season ticket, so it's even easier for you to get to work and start making a difference Professional development, coaching, mentoring and career progression opportunities. And we have an award-winning environment and culture: DWP have been recognised as 2024 Diversity Employer of the Year at the Computing Women in Tech Excellence awards Diverse and Inclusive Leadership at Digital Leaders Awards 2024 Commended as Best Place to Work in Digital category in the Computing Digital Technology Leaders awards 2025 Recognised as one of the Best Public Sector Employers at 2025 Women In Tech Employer Awards Process: We know your time is valuable, so our application and selection process is just three stages: Apply: complete your application on Civil Service Jobs. Interview: A single stage interview online. CLICK APPLY for more information and to start your application
Location Glasgow, Newcastle-upon-Tyne About the job Job summary The Infected Blood Compensation Authority (IBCA) is responsible for delivering a compensation scheme that has been long awaited by the infected blood community to provide financial compensation to victims of infected blood on a UK-wide basis. We are looking for an experienced Lead Technical Architect who can blend knowledge of Data Platforms with data security, governance and strategic thinking. You will be confident at working in a complex and pressured data delivery environment across products where you'll be supporting the strategic objective of IBCA to pay compensation to those impacted by the infected blood scandal seamlessly. You will collaborate across the architecture function in data and digital to support the delivery of solutions, creating options and recommendations, and providing expert advice to drive technology choices. Working at IBCA gives you a huge opportunity to make an impact on those who deserve compensation, and this role will shape and support the development of safe and secure data solutions that provide a single source of truth for those going through their compensation journey. Successful applicants will join the Civil Service Pension Scheme. Please note that the mission of IBCA means that it is likely to be operational for a period of approximately 5 to 7 years. When IBCA's work begins to wind down, IBCA employees will receive support and practical guidance to find a new role, whether in the Civil Service, another Arms Length Body (ALB), or an external employer. Job description As a Lead Technical Architect (Solutions) you will work on multiple projects across the data delivery programme on problems that require broad architectural thinking. This post is within a data delivery setting, especially one focussed on AWS, Quantexa and Databricks. You will: Be responsible for leading the technical solution design of data systems and services, justifying and communicating design decisions; Assure data services and system quality, ensuring the technical work fits into the data platform and wider IBCA technology strategy; Drive continuous improvement in system reliability, performance, and security; Regularly collaborate and find agreement with senior stakeholders, providing direction and challenge; Be proactive in working with Product Managers and Engineers to identify problems and translating these into scalable technical solutions; Participate in architecture reviews, and technical workshops. Responsibilities Secure Cloud & Platform Architecture (AWS Focus): You will lead and optimise the design of resilient, high-availability AWS environments, ensuring that every infrastructure component is built with a "security-by-design" approach to protect against evolving threats; Architecture Patterns & Standards: You will establish and uphold the technical standards for the organisation, creating reusable patterns and governance frameworks that ensure consistency and quality across all engineering squads; Comprehensive Data Management Design: This involves architecting the end-to-end lifecycle of data systems and services, ensuring the underlying infrastructure supports high-performance analytics and robust data sovereignty; Digital Service Integration & API Management: You will oversee the connectivity of modern digital services by designing scalable API layers and integration strategies that allow internal and external systems to communicate securely and efficiently; Agile Delivery & Stakeholder Translation: You will bridge the gap between complex technical roadmaps and strategic business goals, communicating technical trade-offs to non-technical stakeholders to ensure smooth, iterative delivery. Person specification Essential Architecture design of highly scalable and secure Data Platforms hosted on AWS. This includes expertise in configuring and integrating data management systems like Databricks and Quantexa; Architecture design informed through use of principles, patterns, technical radars, practices and standards; Data Storage Design & Management - expertise across diverse storage technologies including SQL, NoSQL and Data Lakehouse; Data Architecture Design - Data Modelling (conceptual to physical), Master Data Management (MDM), Metadata Management, Data Lineage and Data Governance; API Management - designing and implementing robust integration patterns (including end-to-end secure API management and gateways) that reliably connect Data Platforms to wider digital services and consuming tech systems; Service Architecture Design - monitoring, logging and observability including patching, business continuity and disaster recovery; Experience of working within and across product teams within Agile environments throughout the full delivery lifecycle of inception to go-live; Translating business requirements into tangible, compliant, technical solutions with traceability to the user value that can be demonstrated to stakeholders. Desirable You will have experience of working on architecture design for the Quantexa Decision Intelligence Platform; Security Architecture Design - Data Security, Identity & Access Management, Cloud Security, Network Security and DevSecOps; Strong knowledge of DevOps practices and Infrastructure-as-Code.
01/04/2026
Full time
Location Glasgow, Newcastle-upon-Tyne About the job Job summary The Infected Blood Compensation Authority (IBCA) is responsible for delivering a compensation scheme that has been long awaited by the infected blood community to provide financial compensation to victims of infected blood on a UK-wide basis. We are looking for an experienced Lead Technical Architect who can blend knowledge of Data Platforms with data security, governance and strategic thinking. You will be confident at working in a complex and pressured data delivery environment across products where you'll be supporting the strategic objective of IBCA to pay compensation to those impacted by the infected blood scandal seamlessly. You will collaborate across the architecture function in data and digital to support the delivery of solutions, creating options and recommendations, and providing expert advice to drive technology choices. Working at IBCA gives you a huge opportunity to make an impact on those who deserve compensation, and this role will shape and support the development of safe and secure data solutions that provide a single source of truth for those going through their compensation journey. Successful applicants will join the Civil Service Pension Scheme. Please note that the mission of IBCA means that it is likely to be operational for a period of approximately 5 to 7 years. When IBCA's work begins to wind down, IBCA employees will receive support and practical guidance to find a new role, whether in the Civil Service, another Arms Length Body (ALB), or an external employer. Job description As a Lead Technical Architect (Solutions) you will work on multiple projects across the data delivery programme on problems that require broad architectural thinking. This post is within a data delivery setting, especially one focussed on AWS, Quantexa and Databricks. You will: Be responsible for leading the technical solution design of data systems and services, justifying and communicating design decisions; Assure data services and system quality, ensuring the technical work fits into the data platform and wider IBCA technology strategy; Drive continuous improvement in system reliability, performance, and security; Regularly collaborate and find agreement with senior stakeholders, providing direction and challenge; Be proactive in working with Product Managers and Engineers to identify problems and translating these into scalable technical solutions; Participate in architecture reviews, and technical workshops. Responsibilities Secure Cloud & Platform Architecture (AWS Focus): You will lead and optimise the design of resilient, high-availability AWS environments, ensuring that every infrastructure component is built with a "security-by-design" approach to protect against evolving threats; Architecture Patterns & Standards: You will establish and uphold the technical standards for the organisation, creating reusable patterns and governance frameworks that ensure consistency and quality across all engineering squads; Comprehensive Data Management Design: This involves architecting the end-to-end lifecycle of data systems and services, ensuring the underlying infrastructure supports high-performance analytics and robust data sovereignty; Digital Service Integration & API Management: You will oversee the connectivity of modern digital services by designing scalable API layers and integration strategies that allow internal and external systems to communicate securely and efficiently; Agile Delivery & Stakeholder Translation: You will bridge the gap between complex technical roadmaps and strategic business goals, communicating technical trade-offs to non-technical stakeholders to ensure smooth, iterative delivery. Person specification Essential Architecture design of highly scalable and secure Data Platforms hosted on AWS. This includes expertise in configuring and integrating data management systems like Databricks and Quantexa; Architecture design informed through use of principles, patterns, technical radars, practices and standards; Data Storage Design & Management - expertise across diverse storage technologies including SQL, NoSQL and Data Lakehouse; Data Architecture Design - Data Modelling (conceptual to physical), Master Data Management (MDM), Metadata Management, Data Lineage and Data Governance; API Management - designing and implementing robust integration patterns (including end-to-end secure API management and gateways) that reliably connect Data Platforms to wider digital services and consuming tech systems; Service Architecture Design - monitoring, logging and observability including patching, business continuity and disaster recovery; Experience of working within and across product teams within Agile environments throughout the full delivery lifecycle of inception to go-live; Translating business requirements into tangible, compliant, technical solutions with traceability to the user value that can be demonstrated to stakeholders. Desirable You will have experience of working on architecture design for the Quantexa Decision Intelligence Platform; Security Architecture Design - Data Security, Identity & Access Management, Cloud Security, Network Security and DevSecOps; Strong knowledge of DevOps practices and Infrastructure-as-Code.
Solutions Architect - Defence & National Security Location: Stoke (Onsite - 5 days per week) Salary: £75,000 + benefits Clearance: UKSV clearance required (must be eligible) About the Role Sanderson Government & Defence is supporting a leading organisation delivering secure, mission-critical solutions into the Defence and National Security sectors. We're looking for an experienced Solutions Architect to design and deliver innovative, secure collaboration solutions tailored to highly sensitive environments. This is a key role working at the forefront of secure technology, helping clients tackle complex challenges across defence and intelligence domains. What You'll Be Doing Client Engagement & Consultation Work closely with clients and internal stakeholders to understand business needs, technical challenges, and security requirements Translate requirements into clear technical specifications and solution designs Lead workshops, presentations, and technical demonstrations Act as a trusted advisor on secure collaboration technologies and emerging threats Solution Design & Architecture Design end-to-end solutions aligned with security standards and best practices Produce architecture diagrams, technical documentation, and implementation plans Support RFI/RFP responses with detailed technical proposals Technology Evaluation Assess and select appropriate technologies, platforms, and tools Evaluate security, compliance, scalability, and interoperability Provide clear recommendations with supporting rationale Delivery & Implementation Work with engineering, project teams, and vendors to ensure successful delivery Provide technical oversight throughout the project lifecycle Support issue resolution and ensure solutions meet client expectations Innovation & Leadership Stay up to date with industry trends, emerging technologies, and security developments Drive continuous improvement and innovation across solutions Contribute to thought leadership and best practices Mentor and support junior team members Key Skills & Experience Proven experience as a Solutions Architect within Defence, National Security, or secure environments Strong understanding of secure collaboration technologies (messaging, file sharing, video, IA) Experience with enterprise architecture frameworks (e.g. TOGAF) Strong cloud knowledge (AWS, Azure, or GCP) Experience across networking, virtualisation, and cybersecurity tools Excellent communication skills with the ability to engage both technical and non-technical stakeholders Strong analytical and problem-solving capabilities Desirable Relevant certifications (CISSP, TOGAF, CCSP, ITILv4) Experience responding to RFIs/RFPs Background in complex, multi-stakeholder environments What's on Offer Salary of £75,000 plus a comprehensive benefits package Opportunity to work on high-impact, mission-critical projects Exposure to cutting-edge secure technologies Collaborative, expert-led environment Ongoing professional development and career progression Important Information Due to the nature of the work, candidates must hold UKSV clearance or be eligible to obtain it. If you're an experienced Solutions Architect looking to apply your expertise in a highly secure, purpose-driven environment, we'd love to hear from you. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
01/04/2026
Full time
Solutions Architect - Defence & National Security Location: Stoke (Onsite - 5 days per week) Salary: £75,000 + benefits Clearance: UKSV clearance required (must be eligible) About the Role Sanderson Government & Defence is supporting a leading organisation delivering secure, mission-critical solutions into the Defence and National Security sectors. We're looking for an experienced Solutions Architect to design and deliver innovative, secure collaboration solutions tailored to highly sensitive environments. This is a key role working at the forefront of secure technology, helping clients tackle complex challenges across defence and intelligence domains. What You'll Be Doing Client Engagement & Consultation Work closely with clients and internal stakeholders to understand business needs, technical challenges, and security requirements Translate requirements into clear technical specifications and solution designs Lead workshops, presentations, and technical demonstrations Act as a trusted advisor on secure collaboration technologies and emerging threats Solution Design & Architecture Design end-to-end solutions aligned with security standards and best practices Produce architecture diagrams, technical documentation, and implementation plans Support RFI/RFP responses with detailed technical proposals Technology Evaluation Assess and select appropriate technologies, platforms, and tools Evaluate security, compliance, scalability, and interoperability Provide clear recommendations with supporting rationale Delivery & Implementation Work with engineering, project teams, and vendors to ensure successful delivery Provide technical oversight throughout the project lifecycle Support issue resolution and ensure solutions meet client expectations Innovation & Leadership Stay up to date with industry trends, emerging technologies, and security developments Drive continuous improvement and innovation across solutions Contribute to thought leadership and best practices Mentor and support junior team members Key Skills & Experience Proven experience as a Solutions Architect within Defence, National Security, or secure environments Strong understanding of secure collaboration technologies (messaging, file sharing, video, IA) Experience with enterprise architecture frameworks (e.g. TOGAF) Strong cloud knowledge (AWS, Azure, or GCP) Experience across networking, virtualisation, and cybersecurity tools Excellent communication skills with the ability to engage both technical and non-technical stakeholders Strong analytical and problem-solving capabilities Desirable Relevant certifications (CISSP, TOGAF, CCSP, ITILv4) Experience responding to RFIs/RFPs Background in complex, multi-stakeholder environments What's on Offer Salary of £75,000 plus a comprehensive benefits package Opportunity to work on high-impact, mission-critical projects Exposure to cutting-edge secure technologies Collaborative, expert-led environment Ongoing professional development and career progression Important Information Due to the nature of the work, candidates must hold UKSV clearance or be eligible to obtain it. If you're an experienced Solutions Architect looking to apply your expertise in a highly secure, purpose-driven environment, we'd love to hear from you. Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason , please let us know when you apply or talk to the recruiters directly so we can support you.
Head of Cyber Security Permanent £88,000-£97,000 London (Hybrid - 2 days onsite) 30 days holiday + 8% pension + other benefits A leading regulatory organisation is seeking an experienced Head of Cyber Security to provide strategic leadership and direction across its cyber and information security function.This is a senior, cross-functional leadership role responsible for shaping and delivering a comprehensive cyber security strategy, ensuring organisational resilience against evolving cyber threats while enabling secure digital innovation. The Role You will lead the development and implementation of a forward-thinking cyber security strategy, ensuring systems, data, and services are protected through robust controls, governance, and risk management practices.Working closely with senior stakeholders, you will act as the organisation's subject matter expert on cyber security, providing clear, actionable advice on risks, threats, and mitigation strategies. Key Responsibilities Define and deliver the organisation-wide cyber security strategy and roadmap Establish and evolve the cyber security operating model, including team structure Develop and implement security policies, standards, and best practices Provide expert advice to senior leadership on cyber risk and resilience Lead cyber risk identification, assessment, and mitigation activities Oversee security architecture to ensure alignment with wider technology strategy Drive continuous improvement through security assessments, testing, and reporting Ensure effective incident detection, response, and recovery capabilities Lead vulnerability management and remediation across all technology environments Oversee third-party security testing, including penetration testing and phishing simulations Promote a strong cyber security culture through training and awareness initiatives Monitor and report on threat intelligence trends and emerging risks About You You will be a strategic and influential cyber security leader with a strong track record of operating at senior level within complex organisations. Key Skills & Experience Proven experience developing and delivering cyber security strategies Strong understanding of security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical risks to non-technical stakeholders Experience influencing senior leadership and driving organisation-wide change Desirable Professional certifications such as CISSP, CISM, or CISO Experience within regulated or public sector environments Leadership & Behaviours Strong decision-making in high-risk, high-impact environments Ability to lead with purpose and set strategic direction Excellent communication and stakeholder engagement skills Focus on delivering measurable outcomes and organisational resilience Additional Information Hybrid working: 2 days per week in London 30 days annual leave 8% pension contribution + other benefits Participation in an on-call rota may be required Morgan Hunt is a multi-award-winning recruitment business for interim, contract and temporary recruitment and acts as an Employment Agency in relation to permanent vacancies. Morgan Hunt is an equal opportunities employer. Job suitability is assessed on merit in accordance with the individual's skills, qualifications and abilities to perform the relevant duties required in a particular role.
01/04/2026
Full time
Head of Cyber Security Permanent £88,000-£97,000 London (Hybrid - 2 days onsite) 30 days holiday + 8% pension + other benefits A leading regulatory organisation is seeking an experienced Head of Cyber Security to provide strategic leadership and direction across its cyber and information security function.This is a senior, cross-functional leadership role responsible for shaping and delivering a comprehensive cyber security strategy, ensuring organisational resilience against evolving cyber threats while enabling secure digital innovation. The Role You will lead the development and implementation of a forward-thinking cyber security strategy, ensuring systems, data, and services are protected through robust controls, governance, and risk management practices.Working closely with senior stakeholders, you will act as the organisation's subject matter expert on cyber security, providing clear, actionable advice on risks, threats, and mitigation strategies. Key Responsibilities Define and deliver the organisation-wide cyber security strategy and roadmap Establish and evolve the cyber security operating model, including team structure Develop and implement security policies, standards, and best practices Provide expert advice to senior leadership on cyber risk and resilience Lead cyber risk identification, assessment, and mitigation activities Oversee security architecture to ensure alignment with wider technology strategy Drive continuous improvement through security assessments, testing, and reporting Ensure effective incident detection, response, and recovery capabilities Lead vulnerability management and remediation across all technology environments Oversee third-party security testing, including penetration testing and phishing simulations Promote a strong cyber security culture through training and awareness initiatives Monitor and report on threat intelligence trends and emerging risks About You You will be a strategic and influential cyber security leader with a strong track record of operating at senior level within complex organisations. Key Skills & Experience Proven experience developing and delivering cyber security strategies Strong understanding of security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical risks to non-technical stakeholders Experience influencing senior leadership and driving organisation-wide change Desirable Professional certifications such as CISSP, CISM, or CISO Experience within regulated or public sector environments Leadership & Behaviours Strong decision-making in high-risk, high-impact environments Ability to lead with purpose and set strategic direction Excellent communication and stakeholder engagement skills Focus on delivering measurable outcomes and organisational resilience Additional Information Hybrid working: 2 days per week in London 30 days annual leave 8% pension contribution + other benefits Participation in an on-call rota may be required Morgan Hunt is a multi-award-winning recruitment business for interim, contract and temporary recruitment and acts as an Employment Agency in relation to permanent vacancies. Morgan Hunt is an equal opportunities employer. Job suitability is assessed on merit in accordance with the individual's skills, qualifications and abilities to perform the relevant duties required in a particular role.
Cyber Security Manager Manchester - 2-3 days per week in the office £70,000 - £75,000 per annum Our client is seeking an experienced and forward thinking Cyber Security Manager to guide and strengthen their Cyber Security function. This position plays a key role in protecting their systems, data and customers, making sure the organisation stays ahead of new and evolving cyber threats. Sitting within the Governance, Risk, Compliance, Security and Internal IT division, you will take on a pivotal leadership role, driving the development and execution of their cyber security strategy. You will collaborate closely with Product, Engineering and Technology teams to ensure security is embedded throughout the organisation, while leading and nurturing a high performing security team. Key Responsibilities: Take ownership of shaping and delivering the organisation's overall cyber security strategy Monitor and manage cyber risks, emerging threats and potential vulnerabilities across the company Lead activities such as security testing, threat modelling and vulnerability reviews Build, maintain and regularly update incident response and disaster recovery plans Work closely with teams across the business to ensure security is built into products, projects and processes Promote a strong security culture by driving awareness initiatives and training programmes Provide leadership, guidance and development for the cyber security team Skills Knowledge & Expertise Proven leadership experience in cyber security within a regulated environment Experience working with Artificial Intelligence Strong technical knowledge of security tools (e.g. CrowdStrike, Sentinel, Purview, iBoss) Solid understanding of security frameworks (ISO 27001, PCI DSS, SOC 2) Experience in risk assessment, incident management and vulnerability testing Excellent communication skills across technical and non-technical audiences Strong analytical mindset with attention to detail Benefits: 25 days' holiday plus public holidays increasing with length of service. Birthday off work. 2 paid volunteer days a year Holiday Purchase scheme We operate a Salary Exchange pension scheme which you will be auto-enrolled into from day one of employment. £240 yearly Wellbeing Allowance Enhanced maternity, paternity, and adoption leave Cycle to work scheme Health cash plan Free breakfast & lunch when in the Manchester office Discounted Parking in Manchester Access to training - both internal and external Dog friendly office
01/04/2026
Full time
Cyber Security Manager Manchester - 2-3 days per week in the office £70,000 - £75,000 per annum Our client is seeking an experienced and forward thinking Cyber Security Manager to guide and strengthen their Cyber Security function. This position plays a key role in protecting their systems, data and customers, making sure the organisation stays ahead of new and evolving cyber threats. Sitting within the Governance, Risk, Compliance, Security and Internal IT division, you will take on a pivotal leadership role, driving the development and execution of their cyber security strategy. You will collaborate closely with Product, Engineering and Technology teams to ensure security is embedded throughout the organisation, while leading and nurturing a high performing security team. Key Responsibilities: Take ownership of shaping and delivering the organisation's overall cyber security strategy Monitor and manage cyber risks, emerging threats and potential vulnerabilities across the company Lead activities such as security testing, threat modelling and vulnerability reviews Build, maintain and regularly update incident response and disaster recovery plans Work closely with teams across the business to ensure security is built into products, projects and processes Promote a strong security culture by driving awareness initiatives and training programmes Provide leadership, guidance and development for the cyber security team Skills Knowledge & Expertise Proven leadership experience in cyber security within a regulated environment Experience working with Artificial Intelligence Strong technical knowledge of security tools (e.g. CrowdStrike, Sentinel, Purview, iBoss) Solid understanding of security frameworks (ISO 27001, PCI DSS, SOC 2) Experience in risk assessment, incident management and vulnerability testing Excellent communication skills across technical and non-technical audiences Strong analytical mindset with attention to detail Benefits: 25 days' holiday plus public holidays increasing with length of service. Birthday off work. 2 paid volunteer days a year Holiday Purchase scheme We operate a Salary Exchange pension scheme which you will be auto-enrolled into from day one of employment. £240 yearly Wellbeing Allowance Enhanced maternity, paternity, and adoption leave Cycle to work scheme Health cash plan Free breakfast & lunch when in the Manchester office Discounted Parking in Manchester Access to training - both internal and external Dog friendly office
Job title: Cyber Incident Response Consultant (Contractor) Contract: Six Months (possibility of extension) Location: Basingstoke (X3 days onsite; X2 working remote) Role Overview We are seeking an experienced Cyber Incident Response Consultant to support our cybersecurity function on a contract basis. The consultant will be responsible for collaborating with organisation stakeholders in developing, updating, and enhancing a comprehensive set of tactical and operational cyber incident response documents, including the Incident Response Plan, Communication Plan, Incident Response Playbooks, and Containment & Eradication procedures. This engagement is focused on delivering high-quality, actionable documentation and strengthening the organisation's overall incident response capability. The consultant will work closely with internal stakeholders to ensure alignment with business operations, technology, and regulatory requirements. IR Technical Capability Maturity Assessment Evaluate and report on the organisation's technical capabilities and maturity against IR Detection & Analysis, Containment, Eradication, & Recovery domains using industry maturity model. Develop & Maintain Incident Response Documentation Produce and refine the organisation's Incident Response Plan (IRP). Build clear and consistent internal and external incident communication workflows. Develop detailed incident response playbooks, such as ransomware, business email compromise (BEC), data breach, insider threat, malware outbreak, DDoS attack, cloud service compromise. (Final scenarios to be agreed during discovery.) Strengthen Organisational Incident Preparedness Conduct discovery sessions with technical and non-technical stakeholders. Review existing security processes, tools, and architecture to ensure documentation reflects current environments. Support tabletop exercise planning and incorporate lessons learned into documentation. Provide expert guidance and recommendations to improve cyber readiness. Build Containment & Eradication Frameworks Develop clear, structured containment strategies for different incident types. Create eradication and recovery guidance aligned with operational capabilities. Ensure all procedures support legal, compliance, and evidence-preservation requirements. Align with Standards & Regulatory Expectations Ensure all documentation aligns with CIS Controls. Ensure materials support relevant legal and regulatory expectations as appropriate for the organisation. Collaborate Across the Business Work closely with SOC staff, IT teams, legal, risk, compliance, communications, and senior leadership. Convert technical details and threat intelligence into clear, actionable steps appropriate for operational use. Required Experience & Skills Proven experience (typically 5+ years) in incident response, SOC operations, cybersecurity consulting, or GRC. Demonstrated ability to produce high-quality IR documentation and playbooks for medium-to-large organisations. Deep understanding of modern threat actors, attack methodologies, and incident response lifecycle. Experience across cloud (Azure, AWS) and on-premise enterprise environments. Exceptional written communication skills and ability to deliver polished, structured documentation. Ability to work independently, meet deadlines, and drive deliverables with minimal supervision. Preferred Qualifications and Experience GCIH, GCFA, CISSP, or equivalent security certifications. Experience working within regulated sectors (financial services, healthcare, government, critical infrastructure). Prior participation in or leadership of real-world cyber incident response activities. Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture. Why This Engagement Matters The Cyber Incident Response Preparation Consultant plays a crucial role in elevating the organisation's cyber maturity and readiness. Through the development of robust documentation and playbooks, the consultant will help ensure the organisation can respond rapidly, effectively, and consistently to modern cyber threats.
31/03/2026
Contractor
Job title: Cyber Incident Response Consultant (Contractor) Contract: Six Months (possibility of extension) Location: Basingstoke (X3 days onsite; X2 working remote) Role Overview We are seeking an experienced Cyber Incident Response Consultant to support our cybersecurity function on a contract basis. The consultant will be responsible for collaborating with organisation stakeholders in developing, updating, and enhancing a comprehensive set of tactical and operational cyber incident response documents, including the Incident Response Plan, Communication Plan, Incident Response Playbooks, and Containment & Eradication procedures. This engagement is focused on delivering high-quality, actionable documentation and strengthening the organisation's overall incident response capability. The consultant will work closely with internal stakeholders to ensure alignment with business operations, technology, and regulatory requirements. IR Technical Capability Maturity Assessment Evaluate and report on the organisation's technical capabilities and maturity against IR Detection & Analysis, Containment, Eradication, & Recovery domains using industry maturity model. Develop & Maintain Incident Response Documentation Produce and refine the organisation's Incident Response Plan (IRP). Build clear and consistent internal and external incident communication workflows. Develop detailed incident response playbooks, such as ransomware, business email compromise (BEC), data breach, insider threat, malware outbreak, DDoS attack, cloud service compromise. (Final scenarios to be agreed during discovery.) Strengthen Organisational Incident Preparedness Conduct discovery sessions with technical and non-technical stakeholders. Review existing security processes, tools, and architecture to ensure documentation reflects current environments. Support tabletop exercise planning and incorporate lessons learned into documentation. Provide expert guidance and recommendations to improve cyber readiness. Build Containment & Eradication Frameworks Develop clear, structured containment strategies for different incident types. Create eradication and recovery guidance aligned with operational capabilities. Ensure all procedures support legal, compliance, and evidence-preservation requirements. Align with Standards & Regulatory Expectations Ensure all documentation aligns with CIS Controls. Ensure materials support relevant legal and regulatory expectations as appropriate for the organisation. Collaborate Across the Business Work closely with SOC staff, IT teams, legal, risk, compliance, communications, and senior leadership. Convert technical details and threat intelligence into clear, actionable steps appropriate for operational use. Required Experience & Skills Proven experience (typically 5+ years) in incident response, SOC operations, cybersecurity consulting, or GRC. Demonstrated ability to produce high-quality IR documentation and playbooks for medium-to-large organisations. Deep understanding of modern threat actors, attack methodologies, and incident response lifecycle. Experience across cloud (Azure, AWS) and on-premise enterprise environments. Exceptional written communication skills and ability to deliver polished, structured documentation. Ability to work independently, meet deadlines, and drive deliverables with minimal supervision. Preferred Qualifications and Experience GCIH, GCFA, CISSP, or equivalent security certifications. Experience working within regulated sectors (financial services, healthcare, government, critical infrastructure). Prior participation in or leadership of real-world cyber incident response activities. Familiarity with identity governance, EDR platforms, SIEM tooling, and cloud security architecture. Why This Engagement Matters The Cyber Incident Response Preparation Consultant plays a crucial role in elevating the organisation's cyber maturity and readiness. Through the development of robust documentation and playbooks, the consultant will help ensure the organisation can respond rapidly, effectively, and consistently to modern cyber threats.
Job title: Solutions Architect Location: Cheltenham Salary: £69,611 to £77,801, comprising a basic salary of £66,581 and a concessionary payment of £3,030. The exact salary offered within this range will depend on your skills and experience. An additional Skills Payment is available once your skills level is confirmed, £3,822 for Level 1 or £8,190 for Level 2. Flexible working: We offer a range of working patterns, including full-time, part-time, and compressed hours, with flexible start and finish times to support a work-life balance. While most of our work is carried out on-site due to its sensitive nature, occasional home working may be possible depending on business needs. Find out more about flexible working on our website. GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners, MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ, you ll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork. As a Solutions Architect, you ll help deliver technology solutions that support GCHQ s mission, drawing on your experience to lead design work, manage a team, and make strategic architectural decisions. The nature of our work requires advanced, innovative technology, offering you the chance to apply your skills to unique and meaningful challenges. Working across a range of complex projects, you ll shape solution designs, produce clear documentation and models, and ensure alignment with established architectural standards. You ll work closely with stakeholders, balancing technical, business, cost, and risk considerations to deliver scalable and resilient solutions. Day-to-day, you ll collaborate with delivery teams, engineers, and business colleagues to clarify requirements, adapt designs and guide their implementation. You ll produce and maintain artefacts, provide clarity and direction, and mentor less-senior colleagues. Occasional travel across the UK will also be required so you can work closely with colleagues from all areas of the organisation. To apply, you ll bring experience in solutions architecture, including leading the design of end-to-end digital or technology solutions. You ll have familiarity with frameworks such as TOGAF, NIST, and ITIL, along with experience managing or line-managing a team. You ll be skilled at producing artefacts that guide delivery teams and at explaining design decisions clearly to both technical and non-technical audiences. Effective stakeholder management, collaboration and negotiation skills will also help you align differing user needs with organisational priorities. Adaptability, time management, critical thinking, and creative problem-solving will support you in delivering well-rounded solutions to complex challenges. When you join us, you ll have a full induction to GCHQ so you can understand who we are and what we do. Once in your role, you ll receive formal and on-the-job training, along with all the support you need to thrive. We re committed to continuous professional development and to providing the space for you to grow, innovate and experiment. Typically, around 20% of your time is dedicated to developing yourself and supporting others. We know development looks different for everyone, so we ll tailor our support to your learning style, whether that s through books, courses, conferences or stretch assignments. We ll cover the cost of professional qualifications and give you the time and support to achieve them. From day one, you ll have access to mentors and subject-matter experts, and we ll work with you to build a structured development plan aligned with your goals. At GCHQ, diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds. You can find out more about our culture, working environment and diversity on our website. To find out more and apply, please visit our website. To be eligible to apply, you must be a British Citizen. If you hold dual nationality, of which one component is British, you will still be considered. Candidates must normally have been resident in the UK for seven out of the last ten years. This is particularly important if you were born outside the UK. We welcome applications from candidates of all ages, and there is no upper age limit. You can apply at 17; if successful, you will not be offered a start date prior to your 18th birthday. Full eligibility details can be found on our website. Solutions Architect, Enterprise Architect, Solution Architect, Solution Designer, Solutions Designer, Solutions Engineer, Solutions Technical Architect.
31/03/2026
Full time
Job title: Solutions Architect Location: Cheltenham Salary: £69,611 to £77,801, comprising a basic salary of £66,581 and a concessionary payment of £3,030. The exact salary offered within this range will depend on your skills and experience. An additional Skills Payment is available once your skills level is confirmed, £3,822 for Level 1 or £8,190 for Level 2. Flexible working: We offer a range of working patterns, including full-time, part-time, and compressed hours, with flexible start and finish times to support a work-life balance. While most of our work is carried out on-site due to its sensitive nature, occasional home working may be possible depending on business needs. Find out more about flexible working on our website. GCHQ is an intelligence, cyber and security agency with a mission to keep the UK safe. We use cutting-edge technology, ingenuity and partnerships to identify, analyse and disrupt threats. Working with our intelligence partners, MI5 and MI6, we protect the UK from terrorism, cyber-attacks and espionage. At GCHQ, you ll do varied and fascinating work in a supportive and inclusive environment that puts the emphasis on teamwork. As a Solutions Architect, you ll help deliver technology solutions that support GCHQ s mission, drawing on your experience to lead design work, manage a team, and make strategic architectural decisions. The nature of our work requires advanced, innovative technology, offering you the chance to apply your skills to unique and meaningful challenges. Working across a range of complex projects, you ll shape solution designs, produce clear documentation and models, and ensure alignment with established architectural standards. You ll work closely with stakeholders, balancing technical, business, cost, and risk considerations to deliver scalable and resilient solutions. Day-to-day, you ll collaborate with delivery teams, engineers, and business colleagues to clarify requirements, adapt designs and guide their implementation. You ll produce and maintain artefacts, provide clarity and direction, and mentor less-senior colleagues. Occasional travel across the UK will also be required so you can work closely with colleagues from all areas of the organisation. To apply, you ll bring experience in solutions architecture, including leading the design of end-to-end digital or technology solutions. You ll have familiarity with frameworks such as TOGAF, NIST, and ITIL, along with experience managing or line-managing a team. You ll be skilled at producing artefacts that guide delivery teams and at explaining design decisions clearly to both technical and non-technical audiences. Effective stakeholder management, collaboration and negotiation skills will also help you align differing user needs with organisational priorities. Adaptability, time management, critical thinking, and creative problem-solving will support you in delivering well-rounded solutions to complex challenges. When you join us, you ll have a full induction to GCHQ so you can understand who we are and what we do. Once in your role, you ll receive formal and on-the-job training, along with all the support you need to thrive. We re committed to continuous professional development and to providing the space for you to grow, innovate and experiment. Typically, around 20% of your time is dedicated to developing yourself and supporting others. We know development looks different for everyone, so we ll tailor our support to your learning style, whether that s through books, courses, conferences or stretch assignments. We ll cover the cost of professional qualifications and give you the time and support to achieve them. From day one, you ll have access to mentors and subject-matter experts, and we ll work with you to build a structured development plan aligned with your goals. At GCHQ, diversity and inclusion are critical to our mission. To protect the UK, we need a truly diverse workforce that reflects the society we serve. This includes diversity in every sense of the word: those with different backgrounds, ages, ethnicities, gender identities, sexual orientations, ways of thinking and those with disabilities or neurodivergent conditions. We therefore welcome and encourage applications from everyone, including those from groups that are under-represented in our workforce such as women, those from an ethnic minority background, people with disabilities and those from low socio-economic backgrounds. You can find out more about our culture, working environment and diversity on our website. To find out more and apply, please visit our website. To be eligible to apply, you must be a British Citizen. If you hold dual nationality, of which one component is British, you will still be considered. Candidates must normally have been resident in the UK for seven out of the last ten years. This is particularly important if you were born outside the UK. We welcome applications from candidates of all ages, and there is no upper age limit. You can apply at 17; if successful, you will not be offered a start date prior to your 18th birthday. Full eligibility details can be found on our website. Solutions Architect, Enterprise Architect, Solution Architect, Solution Designer, Solutions Designer, Solutions Engineer, Solutions Technical Architect.
Global GRC Manager Contract - Birmingham- Hybrid - 2/3 days a week onsite 550 - 650 Inside IR35 We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with the organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance stakeholders to maintain a strong security posture enterprise-wide. Essential Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Demonstrable Senior stakeholder management up to C-suite Experience working in immature security environments 'Great to have' experience: Experience working in a Retail, Food & Beverage or similar environment Experience working at a Global / International level If this role sound of interest, then please apply today!
31/03/2026
Contractor
Global GRC Manager Contract - Birmingham- Hybrid - 2/3 days a week onsite 550 - 650 Inside IR35 We are seeking an experienced GRC professional to lead governance, risk management, and compliance initiatives within a highly complex, international organisation. This role requires strong leadership to drive adoption of security policies and motivate teams to align with the organisation's mission, vision, and values while achieving local business goals. The Global GRC Manager oversees the development and maintenance of security governance, risk management, and compliance frameworks across all regions. This role ensures alignment with cyber security strategy and regulatory standards, working closely with leadership, technology teams, and compliance stakeholders to maintain a strong security posture enterprise-wide. Essential Experience required: Significant experience in information and cyber security governance, risk, and compliance roles, in a global context Deep knowledge of cyber security operations, incident response, threat intelligence, and vulnerability management In-depth knowledge of regulatory requirements, security frameworks and industry standards (e.g., ISO 27001, NIST, ITIL). Demonstrable Senior stakeholder management up to C-suite Experience working in immature security environments 'Great to have' experience: Experience working in a Retail, Food & Beverage or similar environment Experience working at a Global / International level If this role sound of interest, then please apply today!
The Role Role Summary As the strategic architect of the Group s security services, the Head of Security Services shapes and delivers a unified vision for cyber security across a global, federated enterprise and 85+ businesses grouped into 10 divisions. Reporting into the Group Chief Information Security Officer (CISO), this leader is responsible for overseeing day-to-day operational cyber security capabilities, ensuring robust, efficient, and coordinated first and second line security operations that protect the Group s people, systems, and data from cyber-attacks. By setting the direction for security services, championing the adoption of centralised capabilities, and driving continuous innovation, this role ensures that the security operations are robust, adaptive, and future-ready. With oversight of daily technical security functions and a relentless focus on operational excellence, the Head of Security Services builds and empowers high-performing teams to deliver 24/7 threat detection, rapid incident response, and proactive risk management. This includes ownership of security controls, security testing, tech assurance and vulnerability and threat management, and incident response across the organisation. Collaboration is at the heart of this position. By working across the GCS Leadership Team, with business and technology stakeholders, and with industry experts to align strategy, share intelligence, and drive a single, cohesive approach to security services, this leader ensures the Group not only meets but sets the benchmark for security services in a dynamic digital world. Role Responsibilities/Accountabilities Key Responsibilities: Strategic Leadership & Vision • Establish a costed strategic vision for security services across the Group s global, federated enterprise. • Evangelist for adoption of central services and drives alignment to a single security services vision. • Define, maintain, and regularly review the security services service catalogue and SLAs, clearly articulating what good looks like. • Integrates AI and modernises security operations using latest technologies. • Ensure security operations support organisational resilience and disaster recovery objectives. • Collaborate across verticals with the GCS Leadership Team. Operations & Service Delivery • Oversee daily operations of technical security functions, working collaboratively with the SOCs to provide 24/7 visibility and threat detection ensuring services are resilient, risk-aware, and aligned with business needs. • Regularly review and modernise SOC processes, technologies, and talent. • Partner with MSSPs and build solid vendor relationships to deliver the security strategy. • Define and collect metrics/KPIs, regularly reporting to leadership on SOC events/incidents and overall effectiveness. • Review metrics at a group level and adjust services strategy accordingly. • Management of the security technology stack and continuous improvement of services. Incident Response & Threat Management • Serve as incident commander (including on-call), leading cyber incident response activities. • Lead on cyber incident response activities and contributing to incident management activities by advising on incident identification, assessment, classification, escalation, investigation, mitigation, monitoring and reporting to help ensure cyber incidents are managed in a timely and effectively manner to limit impact. • Drive the development of threat management, threat modelling and identification of new threat vectors by keeping up to date with industry activity and methodology, to help ensure key assets are protected. • Lead threat hunts to proactively discover potential compromises. • Lead and coordinate red teaming, penetration testing, and exercising to assess and enhance the quality of services delivered by SOCs. • Red/purple teaming to ensure standard of services testing quality of services delivered by various SOCs. • Exercise incident response capabilities. Threat Intelligence & Tech Assurance and Vulnerability Management • Drive the development of threat management, threat modelling, and identification of new threat vectors. • Maintain up-to-date awareness of cyber threat intelligence and emerging attack vectors, always evaluating the materiality of the threat. • Liaise with industry experts and update strategy in line with the threat landscape. • Lead a threat-led, risk-based vulnerability management programme, ensuring timely remediation in collaboration with IT. • Own insider threat and data loss prevention (DLP) initiatives. • Lead the emergency patching vulnerability management programme ensuring threat-led and risk-based prioritisation, along with collaboration with IT for timely remediation. • Own and manage key security controls ensuring they are deployed, tuned, and monitored effectively across cloud and on-premise assets, along with managing the vendors that are responsible for supporting the Group. Team Leadership & Performance • Lead a high-performing team of cyber and project professionals, driving strategy, innovation, and continuous improvement across protection capabilities including SOC, Security Engineering, Technical Assurance and Vulnerability Management. • Manage team performance and cost base, making informed financial decisions and supporting portfolio-level investment planning. • Provide technical leadership and act as a subject matter expert on information security best practices. Collaboration & Stakeholder Engagement • Collaborate across the GCS Leadership Team and with cross-functional stakeholders. • Work with Head of Manufacturing / OT security to align security operations elements in manufacturing. • Collaborate with cross-functional stakeholders to assess and mitigate risk, while maintaining a forward-looking roadmap for cyber capabilities. Experience, Knowledge, Skills & Attributes Essential • A certification such as CISSP CISM, GIAC, or equivalent. University Degree qualified in an engineering discipline ideally with Cyber Security Engineering, Computer Science, Information Technology, or Computer and Electronics engineering. • Prior experience of building security teams and a global delivery operations support model. • Demonstrable experience of building and running a technical assurance function. • Demonstrable knowledge of industry standards such as NIST and ISO27001. Knowledge of relevant regulations such as GDPR, NIS2, and EU AI. • Exceptional analytical and decision-making abilities during BAU and incidents. • Experience in leading cybersecurity incidents, implementing response procedures, and driving continuous improvements, and optimising security tools and technologies to enhance operational efficiency. • Hands-on experience in threat detection and prevention, including expertise in SIEM, EDR, firewall management, or similar security technologies. • Ability to build relationships and engage with all levels of management, communicating complex technical issues to a range of audiences. • Experience of managing service level agreements, commercial engagements, and supporting procurement with contract negotiations. • Demonstrable experience in designing, enhancing, and implementing security processes and policies. • Strong project management and leadership skills with the ability to prioritise both operational and project demands. Desirable • Experience of operating within federated environments or within an IT Service Management Provider / Consultancy • Experience managing external supplier relationships to secure the best value and service
31/03/2026
Full time
The Role Role Summary As the strategic architect of the Group s security services, the Head of Security Services shapes and delivers a unified vision for cyber security across a global, federated enterprise and 85+ businesses grouped into 10 divisions. Reporting into the Group Chief Information Security Officer (CISO), this leader is responsible for overseeing day-to-day operational cyber security capabilities, ensuring robust, efficient, and coordinated first and second line security operations that protect the Group s people, systems, and data from cyber-attacks. By setting the direction for security services, championing the adoption of centralised capabilities, and driving continuous innovation, this role ensures that the security operations are robust, adaptive, and future-ready. With oversight of daily technical security functions and a relentless focus on operational excellence, the Head of Security Services builds and empowers high-performing teams to deliver 24/7 threat detection, rapid incident response, and proactive risk management. This includes ownership of security controls, security testing, tech assurance and vulnerability and threat management, and incident response across the organisation. Collaboration is at the heart of this position. By working across the GCS Leadership Team, with business and technology stakeholders, and with industry experts to align strategy, share intelligence, and drive a single, cohesive approach to security services, this leader ensures the Group not only meets but sets the benchmark for security services in a dynamic digital world. Role Responsibilities/Accountabilities Key Responsibilities: Strategic Leadership & Vision • Establish a costed strategic vision for security services across the Group s global, federated enterprise. • Evangelist for adoption of central services and drives alignment to a single security services vision. • Define, maintain, and regularly review the security services service catalogue and SLAs, clearly articulating what good looks like. • Integrates AI and modernises security operations using latest technologies. • Ensure security operations support organisational resilience and disaster recovery objectives. • Collaborate across verticals with the GCS Leadership Team. Operations & Service Delivery • Oversee daily operations of technical security functions, working collaboratively with the SOCs to provide 24/7 visibility and threat detection ensuring services are resilient, risk-aware, and aligned with business needs. • Regularly review and modernise SOC processes, technologies, and talent. • Partner with MSSPs and build solid vendor relationships to deliver the security strategy. • Define and collect metrics/KPIs, regularly reporting to leadership on SOC events/incidents and overall effectiveness. • Review metrics at a group level and adjust services strategy accordingly. • Management of the security technology stack and continuous improvement of services. Incident Response & Threat Management • Serve as incident commander (including on-call), leading cyber incident response activities. • Lead on cyber incident response activities and contributing to incident management activities by advising on incident identification, assessment, classification, escalation, investigation, mitigation, monitoring and reporting to help ensure cyber incidents are managed in a timely and effectively manner to limit impact. • Drive the development of threat management, threat modelling and identification of new threat vectors by keeping up to date with industry activity and methodology, to help ensure key assets are protected. • Lead threat hunts to proactively discover potential compromises. • Lead and coordinate red teaming, penetration testing, and exercising to assess and enhance the quality of services delivered by SOCs. • Red/purple teaming to ensure standard of services testing quality of services delivered by various SOCs. • Exercise incident response capabilities. Threat Intelligence & Tech Assurance and Vulnerability Management • Drive the development of threat management, threat modelling, and identification of new threat vectors. • Maintain up-to-date awareness of cyber threat intelligence and emerging attack vectors, always evaluating the materiality of the threat. • Liaise with industry experts and update strategy in line with the threat landscape. • Lead a threat-led, risk-based vulnerability management programme, ensuring timely remediation in collaboration with IT. • Own insider threat and data loss prevention (DLP) initiatives. • Lead the emergency patching vulnerability management programme ensuring threat-led and risk-based prioritisation, along with collaboration with IT for timely remediation. • Own and manage key security controls ensuring they are deployed, tuned, and monitored effectively across cloud and on-premise assets, along with managing the vendors that are responsible for supporting the Group. Team Leadership & Performance • Lead a high-performing team of cyber and project professionals, driving strategy, innovation, and continuous improvement across protection capabilities including SOC, Security Engineering, Technical Assurance and Vulnerability Management. • Manage team performance and cost base, making informed financial decisions and supporting portfolio-level investment planning. • Provide technical leadership and act as a subject matter expert on information security best practices. Collaboration & Stakeholder Engagement • Collaborate across the GCS Leadership Team and with cross-functional stakeholders. • Work with Head of Manufacturing / OT security to align security operations elements in manufacturing. • Collaborate with cross-functional stakeholders to assess and mitigate risk, while maintaining a forward-looking roadmap for cyber capabilities. Experience, Knowledge, Skills & Attributes Essential • A certification such as CISSP CISM, GIAC, or equivalent. University Degree qualified in an engineering discipline ideally with Cyber Security Engineering, Computer Science, Information Technology, or Computer and Electronics engineering. • Prior experience of building security teams and a global delivery operations support model. • Demonstrable experience of building and running a technical assurance function. • Demonstrable knowledge of industry standards such as NIST and ISO27001. Knowledge of relevant regulations such as GDPR, NIS2, and EU AI. • Exceptional analytical and decision-making abilities during BAU and incidents. • Experience in leading cybersecurity incidents, implementing response procedures, and driving continuous improvements, and optimising security tools and technologies to enhance operational efficiency. • Hands-on experience in threat detection and prevention, including expertise in SIEM, EDR, firewall management, or similar security technologies. • Ability to build relationships and engage with all levels of management, communicating complex technical issues to a range of audiences. • Experience of managing service level agreements, commercial engagements, and supporting procurement with contract negotiations. • Demonstrable experience in designing, enhancing, and implementing security processes and policies. • Strong project management and leadership skills with the ability to prioritise both operational and project demands. Desirable • Experience of operating within federated environments or within an IT Service Management Provider / Consultancy • Experience managing external supplier relationships to secure the best value and service
ServiceNow IRM or SecOps Technical Consultants - Remote Salary: 50,000 - 90,000 (depending on experience) We're working with a growing, well-backed ServiceNow specialist that's investing heavily in its Risk and Security capability, and they're looking to bring in strong IRM and SecOps talent to support a healthy pipeline of projects across the UK. This isn't just another delivery role; you'll be front and centre with clients, helping them shape and implement robust, scalable solutions across IRM (Risk, Policy & Compliance, Vendor Risk, Audit) and SecOps (SIR, VR, Threat Intelligence, etc). You'll be trusted to lead conversations, challenge thinking where needed, and deliver solutions that actually land and add value, not just tick boxes. It's a great opportunity if you want more ownership, more variety, and the chance to work on genuinely interesting programmes across regulated and security-conscious environments. You'll be joining a team that knows the platform inside out, but still gives you the space to bring ideas and do things properly. The role is predominantly remote with occasional client site visits when needed. UK Security Clearance (or eligibility) is important given the nature of the work. On offer is a strong package with salaries up to 90k depending on platform and module experience/specialism, alongside a solid benefits package including pension, private healthcare, and generous annual leave. What you'll be doing You'll be working closely with clients to understand their risk and security challenges, leading workshops, shaping requirements, and delivering end-to-end ServiceNow IRM and/or SecOps solutions. From initial design through to build and implementation, you'll play a key role in ensuring solutions are scalable, user-friendly, and aligned to best practice. You'll also contribute to continuous improvement across projects, helping clients get more from their platform over time. What we're looking for Experience delivering ServiceNow projects in a client-facing capacity Strong exposure to IRM (Risk Management, Policy & Compliance, Vendor Risk, Audit) and/or SecOps Solid understanding of ServiceNow best practice and platform capabilities ServiceNow certifications (CSA and/or CIS preferred) Comfortable running workshops and engaging with stakeholders at all levels Strong technical capability - configuration, customisation, and solution design If you're at the point where you want more impact, more autonomy, and better projects to get stuck into, this is well worth a conversation. Looking to move quickly on this so send your CV in for immediate consideration. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
31/03/2026
Full time
ServiceNow IRM or SecOps Technical Consultants - Remote Salary: 50,000 - 90,000 (depending on experience) We're working with a growing, well-backed ServiceNow specialist that's investing heavily in its Risk and Security capability, and they're looking to bring in strong IRM and SecOps talent to support a healthy pipeline of projects across the UK. This isn't just another delivery role; you'll be front and centre with clients, helping them shape and implement robust, scalable solutions across IRM (Risk, Policy & Compliance, Vendor Risk, Audit) and SecOps (SIR, VR, Threat Intelligence, etc). You'll be trusted to lead conversations, challenge thinking where needed, and deliver solutions that actually land and add value, not just tick boxes. It's a great opportunity if you want more ownership, more variety, and the chance to work on genuinely interesting programmes across regulated and security-conscious environments. You'll be joining a team that knows the platform inside out, but still gives you the space to bring ideas and do things properly. The role is predominantly remote with occasional client site visits when needed. UK Security Clearance (or eligibility) is important given the nature of the work. On offer is a strong package with salaries up to 90k depending on platform and module experience/specialism, alongside a solid benefits package including pension, private healthcare, and generous annual leave. What you'll be doing You'll be working closely with clients to understand their risk and security challenges, leading workshops, shaping requirements, and delivering end-to-end ServiceNow IRM and/or SecOps solutions. From initial design through to build and implementation, you'll play a key role in ensuring solutions are scalable, user-friendly, and aligned to best practice. You'll also contribute to continuous improvement across projects, helping clients get more from their platform over time. What we're looking for Experience delivering ServiceNow projects in a client-facing capacity Strong exposure to IRM (Risk Management, Policy & Compliance, Vendor Risk, Audit) and/or SecOps Solid understanding of ServiceNow best practice and platform capabilities ServiceNow certifications (CSA and/or CIS preferred) Comfortable running workshops and engaging with stakeholders at all levels Strong technical capability - configuration, customisation, and solution design If you're at the point where you want more impact, more autonomy, and better projects to get stuck into, this is well worth a conversation. Looking to move quickly on this so send your CV in for immediate consideration. Modis International Ltd acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers in the UK. Modis Europe Ltd provide a variety of international solutions that connect clients to the best talent in the world. For all positions based in Switzerland, Modis Europe Ltd works with its licensed Swiss partner Accurity GmbH to ensure that candidate applications are handled in accordance with Swiss law. Both Modis International Ltd and Modis Europe Ltd are Equal Opportunities Employers. By applying for this role your details will be submitted to Modis International Ltd and/ or Modis Europe Ltd. Our Candidate Privacy Information Statement which explains how we will use your information is available on the Modis website.
