Graduate Operational Technology (OT) Cyber Security Analyst / Engineer 3 days a week onsite (London or Leicester or Sunderland or Crewe or Derby or Luton) Permanent role with excellent salary + company benefits This person will receive all the training and paid qualifications to move into an Operational Technology Compliance Manager role. We're looking for an ambitious engineering graduate with at least 1 years' experience of working with Operational Technology (OT) who is keen to build a long-term career in cybersecurity for critical infrastructure. Reporting into the Head of Information Security GRC and Group CISO this role sits within the Group Information Security team and offers a unique opportunity to work at the intersection of engineering systems and cybersecurity. You will help ensure that operational technologies across this large global organisation are designed, deployed and maintained securely, supporting the protection of critical transport systems. You will receive structured training, mentoring and financial support to achieve industry-recognised cybersecurity certifications, while gaining hands-on experience working with engineers, technology teams and security specialists across the organisation. This role is ideal for someone who has worked with rail operational systems or similar and wants to transition into the rapidly growing field of Operational Technology security. What You'll Be Doing Working alongside experienced cybersecurity and engineering specialists, you will: Support the implementation of the Operational Technology security strategy across engineering and operational teams. Assist in applying recognised cyber security frameworks such as National Institute of Standards and Technology Cyber Security Framework and IEC 62443 to operational environments. Work with engineering teams to understand how operational systems such as Supervisory Control and Data Acquisition, Programmable Logic Controller, and rail technologies like European Train Control System are designed and operated. Support the review of engineering designs to help ensure security considerations are included throughout the system lifecycle. Assist with vulnerability scanning, security assessments and assurance activities relating to operational technology systems. Work with the Security Operations Centre to help monitor and respond to security risks affecting operational environments. Help develop training materials and guidance for engineering teams on secure system design and operational practices. Contribute to security improvement plans following risk assessments or security testing. Training and Development As part of this role you will receive: Structured training in Operational Technology cybersecurity Mentoring from experienced cybersecurity and engineering professionals Financial support and study time for professional certifications such as: Certified Information Systems Security Professional Certified Information Security Manager ISO/IEC 27001 Lead Auditor Exposure to large-scale operational systems and real-world cybersecurity challenges Opportunities to grow into specialist OT security or cybersecurity leadership roles What We're Looking For Essential Degree in Engineering, Electrical Engineering, Electronic Engineering, Systems Engineering, or a related discipline Some practical experience of Operational Technology environments, such as industrial control systems, automation, or rail systems Understanding of technologies such as PLCs, SCADA, or industrial networks Interest in cybersecurity and protecting critical infrastructure Strong analytical and problem-solving skills Good communication skills and ability to work with both engineering and technology teams Desirable Experience through internships, placements or projects involving operational technology systems Exposure to rail or transport engineering environments Basic awareness of cybersecurity concepts Interest in pursuing professional cybersecurity certifications This role provides an exceptional opportunity to build a career in one of the fastest-growing areas of cybersecurity: Operational Technology security. You will gain experience protecting systems that support real-world infrastructure and transport operations, while receiving the training and professional support needed to develop into a specialist OT cybersecurity professional so if you're interested in this role please send your CV asap.
03/04/2026
Full time
Graduate Operational Technology (OT) Cyber Security Analyst / Engineer 3 days a week onsite (London or Leicester or Sunderland or Crewe or Derby or Luton) Permanent role with excellent salary + company benefits This person will receive all the training and paid qualifications to move into an Operational Technology Compliance Manager role. We're looking for an ambitious engineering graduate with at least 1 years' experience of working with Operational Technology (OT) who is keen to build a long-term career in cybersecurity for critical infrastructure. Reporting into the Head of Information Security GRC and Group CISO this role sits within the Group Information Security team and offers a unique opportunity to work at the intersection of engineering systems and cybersecurity. You will help ensure that operational technologies across this large global organisation are designed, deployed and maintained securely, supporting the protection of critical transport systems. You will receive structured training, mentoring and financial support to achieve industry-recognised cybersecurity certifications, while gaining hands-on experience working with engineers, technology teams and security specialists across the organisation. This role is ideal for someone who has worked with rail operational systems or similar and wants to transition into the rapidly growing field of Operational Technology security. What You'll Be Doing Working alongside experienced cybersecurity and engineering specialists, you will: Support the implementation of the Operational Technology security strategy across engineering and operational teams. Assist in applying recognised cyber security frameworks such as National Institute of Standards and Technology Cyber Security Framework and IEC 62443 to operational environments. Work with engineering teams to understand how operational systems such as Supervisory Control and Data Acquisition, Programmable Logic Controller, and rail technologies like European Train Control System are designed and operated. Support the review of engineering designs to help ensure security considerations are included throughout the system lifecycle. Assist with vulnerability scanning, security assessments and assurance activities relating to operational technology systems. Work with the Security Operations Centre to help monitor and respond to security risks affecting operational environments. Help develop training materials and guidance for engineering teams on secure system design and operational practices. Contribute to security improvement plans following risk assessments or security testing. Training and Development As part of this role you will receive: Structured training in Operational Technology cybersecurity Mentoring from experienced cybersecurity and engineering professionals Financial support and study time for professional certifications such as: Certified Information Systems Security Professional Certified Information Security Manager ISO/IEC 27001 Lead Auditor Exposure to large-scale operational systems and real-world cybersecurity challenges Opportunities to grow into specialist OT security or cybersecurity leadership roles What We're Looking For Essential Degree in Engineering, Electrical Engineering, Electronic Engineering, Systems Engineering, or a related discipline Some practical experience of Operational Technology environments, such as industrial control systems, automation, or rail systems Understanding of technologies such as PLCs, SCADA, or industrial networks Interest in cybersecurity and protecting critical infrastructure Strong analytical and problem-solving skills Good communication skills and ability to work with both engineering and technology teams Desirable Experience through internships, placements or projects involving operational technology systems Exposure to rail or transport engineering environments Basic awareness of cybersecurity concepts Interest in pursuing professional cybersecurity certifications This role provides an exceptional opportunity to build a career in one of the fastest-growing areas of cybersecurity: Operational Technology security. You will gain experience protecting systems that support real-world infrastructure and transport operations, while receiving the training and professional support needed to develop into a specialist OT cybersecurity professional so if you're interested in this role please send your CV asap.
Infrastructure Analyst - Endpoint Patching & Vulnerability - 12 Months FTC: Endpoint Platforms, SCCM/MECM, Intune, MS O365, MS Defender, Meraki Systems, Apple Business Manager. 12 Month Fixed Term Contract | Birmingham, West Midlands (Hybrid) | £50,000 - £55,000 per annum Join an award - winning business to play a critical role in protecting & strengthening their digital estate. This is a rare opportunity for an experienced Infrastructure Analyst to take ownership of endpoint patching, vulnerability remediation and compliance across a large, complex Windows environment. Working hand-in-hand with Information Security, you'll make a real, measurable impact from day one. What you'll be doing: Partner with Information Security to understand vulnerability findings, agree priorities and deliver timely remediation. Coordinate, test and deploy Windows OS and application patches in line with change and release processes. Manage enterprise Endpoint platforms including SCCM/MECM, Intune, Meraki Systems Manager, Apple Business Manager, Microsoft 365 and Microsoft Defender. Support Endpoint-related projects including Windows upgrades and security tooling improvements. Maintain patching schedules, deployment rings and maintenance windows to minimise business disruption. Monitor patching outcomes, resolve failures and drive compliance across the estate. Produce clear compliance, remediation and audit-ready reporting for technical and non-technical stakeholders. Create and maintain high-quality documentation, runbooks and knowledge articles. Provide technical consultancy to projects and third-party partners. What you'll bring: Strong experience managing Windows endpoint platforms and life cycle management. Hands-on expertise with SCCM/MECM, Microsoft Intune and endpoint update policies. Good working knowledge of Meraki Systems Manager and mobile platforms (iOS/Android). Deep understanding of OS and third-party patch management and vulnerability remediation. Ability to work to risk-based priorities (severity, CVSS and remediation SLAs). Strong PowerShell skills to automate and optimise endpoint operations. Proven troubleshooting skills for complex patching and compliance issues. Experience working within a structured ITIL/change-managed environment. What you'll receive: £50,000 - £55,000 per annum (12-month Fixed Term Contract). 35-hour working week with flexibility to support work-life balance. Hybrid Working 26 days annual leave plus bank holidays. Generous Pension Private medical cover, dental plan, cycle-to-work and wellbeing schemes. Call Experis IT
02/04/2026
Infrastructure Analyst - Endpoint Patching & Vulnerability - 12 Months FTC: Endpoint Platforms, SCCM/MECM, Intune, MS O365, MS Defender, Meraki Systems, Apple Business Manager. 12 Month Fixed Term Contract | Birmingham, West Midlands (Hybrid) | £50,000 - £55,000 per annum Join an award - winning business to play a critical role in protecting & strengthening their digital estate. This is a rare opportunity for an experienced Infrastructure Analyst to take ownership of endpoint patching, vulnerability remediation and compliance across a large, complex Windows environment. Working hand-in-hand with Information Security, you'll make a real, measurable impact from day one. What you'll be doing: Partner with Information Security to understand vulnerability findings, agree priorities and deliver timely remediation. Coordinate, test and deploy Windows OS and application patches in line with change and release processes. Manage enterprise Endpoint platforms including SCCM/MECM, Intune, Meraki Systems Manager, Apple Business Manager, Microsoft 365 and Microsoft Defender. Support Endpoint-related projects including Windows upgrades and security tooling improvements. Maintain patching schedules, deployment rings and maintenance windows to minimise business disruption. Monitor patching outcomes, resolve failures and drive compliance across the estate. Produce clear compliance, remediation and audit-ready reporting for technical and non-technical stakeholders. Create and maintain high-quality documentation, runbooks and knowledge articles. Provide technical consultancy to projects and third-party partners. What you'll bring: Strong experience managing Windows endpoint platforms and life cycle management. Hands-on expertise with SCCM/MECM, Microsoft Intune and endpoint update policies. Good working knowledge of Meraki Systems Manager and mobile platforms (iOS/Android). Deep understanding of OS and third-party patch management and vulnerability remediation. Ability to work to risk-based priorities (severity, CVSS and remediation SLAs). Strong PowerShell skills to automate and optimise endpoint operations. Proven troubleshooting skills for complex patching and compliance issues. Experience working within a structured ITIL/change-managed environment. What you'll receive: £50,000 - £55,000 per annum (12-month Fixed Term Contract). 35-hour working week with flexibility to support work-life balance. Hybrid Working 26 days annual leave plus bank holidays. Generous Pension Private medical cover, dental plan, cycle-to-work and wellbeing schemes. Call Experis IT
This role has a starting salary of £70,975 per annum, for working 36 hours per week. We are excited to be recruiting a Chief Information Security Officer to join our fantastic team based at Woodhatch Place in Reigate. We offer a hybrid working model with a minimum of two office days per week. Our Offer to You 26 days' holiday, rising to 28 days after 2 years' service and 31 days after 5 years' service (prorated for part time staff) Option to buy up to 10 days of additional annual leave A generous local government salary related pension Up to 5 days of carer's leave and 2 paid volunteering days per year Paternity, adoption and dependents leave An Employee Assistance Programme (EAP) to support health and wellbeing Learning and development hub where you can access a wealth of resources Wellbeing and lifestyle discounts including gym, travel, and shoppingA chance to make a real difference to the lives of our residents. About the Role In this senior leadership role, you will own and drive cyber security strategy, governance and operational resilience across Surrey County Council's complex hybrid environment. Your typical week will include: Leading cyber risk management, governance forums and assurance activity across IT&D, ensuring risks are identified, assessed and clearly reported to senior stakeholders. Overseeing incident preparedness and live response, including coordination with suppliers, IT operations and information governance. Providing expert direction on security technologies, control effectiveness, logging/monitoring, and vulnerability management priorities. Setting clear security expectations and driving cultural change across service owners, technical teams and leadership groups. Developing and maintaining cyber policies, standards and evidence based reporting. This is a hands-on leadership role where strategic thinking and operational decision-making are equally important. You will hold line management responsibility for the cyber security function, including analysts or virtual team members through matrix management, and provide leadership and direction across IT&D and supplier teams. Within your first 12-18 months, you will be expected to lead or significantly contribute to: Delivery of a refreshed cyber security strategy and multi year improvement roadmap Establishment of strengthened cyber governance, including improved reporting, risk tracking and decision making structures Implementation of a formal cyber exercising programme (tabletop and technical) across IT&D, information governance and key suppliers Measurable improvements in vulnerability management, logging/monitoring coverage and supplier assurance Significant uplift in incident response maturity, including documentation of playbooks, interfaces and recovery expectations. This role is central to strengthening the resilience of essential public services. You will directly shape the council's ability to manage and reduce cyber risk, influence technology and service design decisions, and embed a cyber aware culture across one of the UK's largest local government environments. With a dedicated investment programme to drive security improvements, you will have a significant opportunity to transform how the organisation protects its people, data and systems. Your Application In order to be considered for shortlisting, your application will clearly evidence the following skills and align with our behaviours: Significant senior cyber security leadership experience in a complex organisation Strong capability to operate strategically and hands on, delivering measurable security improvements Deep understanding of cyber risk management, governance and assurance frameworks Proven experience leading cyber incidents, including response coordination and exercising Excellent communication and stakeholder influence skills across technical and non technical groups Familiarity with NCSC aligned approaches and/or frameworks such as NIST CSF Relevant professional qualifications such as CISSP or CISM To apply, we request that you submit a CV and you will be asked the following 4 questions: What steps would you take in your first few months to understand our cyber risks and priorities? Can you describe a complex cyber incident you have led, including how you coordinated the response and what improvements were implemented afterwards? How do you balance strategic cyber security planning with hands on delivery to ensure both long term resilience and quick, tactical gains? Which cyber security governance or risk management frameworks (e.g., NCSC CAF, NIST CSF) have you implemented, and how have they influenced decision making and assurance in your previous organisations? The job advert closes at 23:59 on 12/04/2026 with interviews planned shortly afterwards. Local Government Reorganisation (LGR) Surrey County Council is undergoing Local Government Reorganisation, moving from a two-tier system to two new unitary councils in April 2027. If you are employed by Surrey on 1st April 2027, your role will transfer with current terms and conditions to one of the new organisations, supporting local devolution and greater powers for our communities. Join our dynamic team and shape the future of local government. Make a lasting impact with innovative solutions and improved services for our community. Help us build a brighter future for our residents! Our Commitment We are a disability confident employer which means if you have shared a disability on your application form and have evidenced you meet the minimum criteria, we guarantee you an interview. Your skills and experience truly matter to us. From application to your first day, we're committed to supporting you with any adjustments you need, we value inclusion and warmly welcome you to join and help build a workplace where everyone be
02/04/2026
Full time
This role has a starting salary of £70,975 per annum, for working 36 hours per week. We are excited to be recruiting a Chief Information Security Officer to join our fantastic team based at Woodhatch Place in Reigate. We offer a hybrid working model with a minimum of two office days per week. Our Offer to You 26 days' holiday, rising to 28 days after 2 years' service and 31 days after 5 years' service (prorated for part time staff) Option to buy up to 10 days of additional annual leave A generous local government salary related pension Up to 5 days of carer's leave and 2 paid volunteering days per year Paternity, adoption and dependents leave An Employee Assistance Programme (EAP) to support health and wellbeing Learning and development hub where you can access a wealth of resources Wellbeing and lifestyle discounts including gym, travel, and shoppingA chance to make a real difference to the lives of our residents. About the Role In this senior leadership role, you will own and drive cyber security strategy, governance and operational resilience across Surrey County Council's complex hybrid environment. Your typical week will include: Leading cyber risk management, governance forums and assurance activity across IT&D, ensuring risks are identified, assessed and clearly reported to senior stakeholders. Overseeing incident preparedness and live response, including coordination with suppliers, IT operations and information governance. Providing expert direction on security technologies, control effectiveness, logging/monitoring, and vulnerability management priorities. Setting clear security expectations and driving cultural change across service owners, technical teams and leadership groups. Developing and maintaining cyber policies, standards and evidence based reporting. This is a hands-on leadership role where strategic thinking and operational decision-making are equally important. You will hold line management responsibility for the cyber security function, including analysts or virtual team members through matrix management, and provide leadership and direction across IT&D and supplier teams. Within your first 12-18 months, you will be expected to lead or significantly contribute to: Delivery of a refreshed cyber security strategy and multi year improvement roadmap Establishment of strengthened cyber governance, including improved reporting, risk tracking and decision making structures Implementation of a formal cyber exercising programme (tabletop and technical) across IT&D, information governance and key suppliers Measurable improvements in vulnerability management, logging/monitoring coverage and supplier assurance Significant uplift in incident response maturity, including documentation of playbooks, interfaces and recovery expectations. This role is central to strengthening the resilience of essential public services. You will directly shape the council's ability to manage and reduce cyber risk, influence technology and service design decisions, and embed a cyber aware culture across one of the UK's largest local government environments. With a dedicated investment programme to drive security improvements, you will have a significant opportunity to transform how the organisation protects its people, data and systems. Your Application In order to be considered for shortlisting, your application will clearly evidence the following skills and align with our behaviours: Significant senior cyber security leadership experience in a complex organisation Strong capability to operate strategically and hands on, delivering measurable security improvements Deep understanding of cyber risk management, governance and assurance frameworks Proven experience leading cyber incidents, including response coordination and exercising Excellent communication and stakeholder influence skills across technical and non technical groups Familiarity with NCSC aligned approaches and/or frameworks such as NIST CSF Relevant professional qualifications such as CISSP or CISM To apply, we request that you submit a CV and you will be asked the following 4 questions: What steps would you take in your first few months to understand our cyber risks and priorities? Can you describe a complex cyber incident you have led, including how you coordinated the response and what improvements were implemented afterwards? How do you balance strategic cyber security planning with hands on delivery to ensure both long term resilience and quick, tactical gains? Which cyber security governance or risk management frameworks (e.g., NCSC CAF, NIST CSF) have you implemented, and how have they influenced decision making and assurance in your previous organisations? The job advert closes at 23:59 on 12/04/2026 with interviews planned shortly afterwards. Local Government Reorganisation (LGR) Surrey County Council is undergoing Local Government Reorganisation, moving from a two-tier system to two new unitary councils in April 2027. If you are employed by Surrey on 1st April 2027, your role will transfer with current terms and conditions to one of the new organisations, supporting local devolution and greater powers for our communities. Join our dynamic team and shape the future of local government. Make a lasting impact with innovative solutions and improved services for our community. Help us build a brighter future for our residents! Our Commitment We are a disability confident employer which means if you have shared a disability on your application form and have evidenced you meet the minimum criteria, we guarantee you an interview. Your skills and experience truly matter to us. From application to your first day, we're committed to supporting you with any adjustments you need, we value inclusion and warmly welcome you to join and help build a workplace where everyone be
About the opportunity Are you ready to launch a career in cyber security? Netcom Training's fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you'll gain hands-on experience that prepares you for today's fast-growing cyber security and IT roles. Our learners have gone on to roles such as Cyber Security Analyst, Junior Penetration Tester, SOC Analyst, and IT Support, working with companies across tech, logistics, public services, and digital sectors. Complete the course and gain a guaranteed interview with a leading employer, helping you start your career protecting businesses, data, and digital systems. Course Details Start Date: 30/03 Duration: 14 weeks Format: Online, practical workshops Schedule: Mon-Thurs 6-9PM What you'll learn Cyber Principles: Understand core frameworks and security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills: Build the behaviours required for the modern cyber security workplace. Career Pathway Successful participants are guaranteed an interview with us or our network of UK-wide partners working with leading brands. Potential Roles: Trainee Cyber Security Analyst, SOC Analyst, Junior Information Security Officer. Starting Salaries: Typically £22,000 - £35,000 (role dependent). Eligibility This is a government-funded opportunity. To apply, you must: Live in Greater Manchester. Be aged 19 or over. Earn below the gross annual wage cap of £32,400. Not currently be undertaking other government-funded training. Right to Work: You must have lived in the UK/EU for the last 3 years and have the right to work in the UK (Student/Graduate visas are not eligible). Cost This is a fully-funded course with no fees - complete the training, gain essential cyber security skills.
02/04/2026
Full time
About the opportunity Are you ready to launch a career in cyber security? Netcom Training's fully-funded Cyber Security course (NCFE Certificate in Cyber Security Practices, Level 3) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you'll gain hands-on experience that prepares you for today's fast-growing cyber security and IT roles. Our learners have gone on to roles such as Cyber Security Analyst, Junior Penetration Tester, SOC Analyst, and IT Support, working with companies across tech, logistics, public services, and digital sectors. Complete the course and gain a guaranteed interview with a leading employer, helping you start your career protecting businesses, data, and digital systems. Course Details Start Date: 30/03 Duration: 14 weeks Format: Online, practical workshops Schedule: Mon-Thurs 6-9PM What you'll learn Cyber Principles: Understand core frameworks and security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills: Build the behaviours required for the modern cyber security workplace. Career Pathway Successful participants are guaranteed an interview with us or our network of UK-wide partners working with leading brands. Potential Roles: Trainee Cyber Security Analyst, SOC Analyst, Junior Information Security Officer. Starting Salaries: Typically £22,000 - £35,000 (role dependent). Eligibility This is a government-funded opportunity. To apply, you must: Live in Greater Manchester. Be aged 19 or over. Earn below the gross annual wage cap of £32,400. Not currently be undertaking other government-funded training. Right to Work: You must have lived in the UK/EU for the last 3 years and have the right to work in the UK (Student/Graduate visas are not eligible). Cost This is a fully-funded course with no fees - complete the training, gain essential cyber security skills.
Applications Operations Analyst - LondonPermanent Hybrid Working Competitive Salary An international law firm is seeking an experienced Applications Operations Analyst to join its London office. This is a fantastic opportunity to play a key role in maintaining and improving the performance, security, and reliability of enterprise applications across a dynamic and fast-paced professional services environment. Reporting to the Manager of Applications Operations, the successful candidate will be responsible for day-to-day system support, patching, monitoring, and troubleshooting, while also contributing to process improvement, documentation, and integration stability. The role involves close collaboration with infrastructure, security, and business teams to ensure seamless application performance and user experience. Key Responsibilities: Perform system maintenance, patching, and upgrades in line with change management procedures Monitor application health and performance, proactively resolving issues Manage user access controls and support security audits Respond to incidents and service requests within SLA targets Support application deployments, integrations, and configuration changes Maintain documentation, runbooks, and support knowledge base articles Identify opportunities for automation and process optimisation Track and report on KPIs, system uptime, and user engagement metrics Collaborate with cross-functional teams to support scalability and performance tuning Ideal Candidate Profile: 3+ years of experience in enterprise application support or IT operations Strong troubleshooting and analytical skills Familiarity with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patching, and vulnerability remediation Exposure to ITIL practices and professional services environments Experience with documentation tools and scripting (e.g., PowerShell, Python) Relevant certifications (e.g., ITIL Foundation) preferred It offers the chance to work within a collaborative team and contribute to the ongoing improvement of critical business systems. To express interest or learn more, please get in touch directly. Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply. Ryder Reid Legal is a recruitment specialist. For over thirty years we've been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies.
01/04/2026
Full time
Applications Operations Analyst - LondonPermanent Hybrid Working Competitive Salary An international law firm is seeking an experienced Applications Operations Analyst to join its London office. This is a fantastic opportunity to play a key role in maintaining and improving the performance, security, and reliability of enterprise applications across a dynamic and fast-paced professional services environment. Reporting to the Manager of Applications Operations, the successful candidate will be responsible for day-to-day system support, patching, monitoring, and troubleshooting, while also contributing to process improvement, documentation, and integration stability. The role involves close collaboration with infrastructure, security, and business teams to ensure seamless application performance and user experience. Key Responsibilities: Perform system maintenance, patching, and upgrades in line with change management procedures Monitor application health and performance, proactively resolving issues Manage user access controls and support security audits Respond to incidents and service requests within SLA targets Support application deployments, integrations, and configuration changes Maintain documentation, runbooks, and support knowledge base articles Identify opportunities for automation and process optimisation Track and report on KPIs, system uptime, and user engagement metrics Collaborate with cross-functional teams to support scalability and performance tuning Ideal Candidate Profile: 3+ years of experience in enterprise application support or IT operations Strong troubleshooting and analytical skills Familiarity with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patching, and vulnerability remediation Exposure to ITIL practices and professional services environments Experience with documentation tools and scripting (e.g., PowerShell, Python) Relevant certifications (e.g., ITIL Foundation) preferred It offers the chance to work within a collaborative team and contribute to the ongoing improvement of critical business systems. To express interest or learn more, please get in touch directly. Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply. Ryder Reid Legal is a recruitment specialist. For over thirty years we've been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies.
Information Security Analyst - Staffordshire Cyber Analyst to join the Information Security Team. Someone who can take those outputs from projects / tools and drive improvements. Looking for an experienced, proactive Security Analyst to ensure the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working with other departments to ensure security systems are secure, fit for purpose and protected to an optimal level. You will be responsible for driving the security scrutiny, culture, awareness, and adoption across the business. Security Toolsets and a Technical Mindset, you re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements Experienced in a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security systems. Analyse and interpret outputs to identify security weaknesses and recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties This is working for an excellent client who offer progression and development. This is an office-based role in Staffordshire and you will join a small, dedicated security team.
01/04/2026
Full time
Information Security Analyst - Staffordshire Cyber Analyst to join the Information Security Team. Someone who can take those outputs from projects / tools and drive improvements. Looking for an experienced, proactive Security Analyst to ensure the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working with other departments to ensure security systems are secure, fit for purpose and protected to an optimal level. You will be responsible for driving the security scrutiny, culture, awareness, and adoption across the business. Security Toolsets and a Technical Mindset, you re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements Experienced in a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security systems. Analyse and interpret outputs to identify security weaknesses and recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties This is working for an excellent client who offer progression and development. This is an office-based role in Staffordshire and you will join a small, dedicated security team.
About the role This is a fantastic opportunity to join Southern Water's Cyber Risk & Assurance team, the organisation's second line of defence within the wider Cyber Security function. As a Cyber Risk & Assurance Analyst, you'll play a central role in helping the business understand, manage and reduce cyber risk across critical operations. You'll be responsible for developing and improving cyber risk insights in your area of specialism, driving process and tooling enhancements, and supporting stakeholders across Technology, Legal and the wider business. This is a role for someone who enjoys tackling complex problems, breaking them down into actionable solutions, and collaborating with a wide range of experts. You'll also act as a trusted advisor helping colleagues understand cyber threats, risks and controls, and supporting the wider team in embedding strong cyber risk management practices across Southern Water. What you will be responsible for: You will conduct complex cyber risk assessments, strengthen key controls, deliver clear risk insights, and drive improvements across cyber domains - all while building collaborative relationships across Technology, Security, Legal and the business. Key Responsibilities Maintain an up-to-date understanding of the cyber threat landscape, relevant regulations (including NIS1/NIS2 and GDPR), and emerging risks. Lead, plan and perform complex cyber risk assessments aligned to industry-recognised frameworks, testing the design and effectiveness of cyber controls. Produce high-quality risk assessment reports with clear, actionable conclusions that support timely risk-based decision-making. Identify and deliver improvements across domains such as identity & access management, application security, endpoint security, and network security. Work closely with stakeholders across Security, Technology, Legal, Internal Audit and the wider business to assess control gaps, prioritise remediation actions and track progress to completion. Build strong working relationships across teams to influence, support and strengthen cyber risk management practices. Drive process improvements and enhancements across the Cyber Risk & Assurance function. Additional requirements specific to the role Will work closely with both technical teams and non-technical stakeholders, requiring an ability to communicate complex concepts clearly. Must be comfortable operating in an environment with regulatory, operational and cyber security obligations. Occasional engagement with internal or external audit teams may be required. What you'll bring to the role: Essential Degree-level education or equivalent experience. Strong knowledge of cyber security and information security control best practice. Proven experience in cyber security, risk management or security assessment (10+ years, or advanced degree with 8+ years). In-depth understanding of key frameworks such as NIST (800-37, 800-30, 800-53), ISO 27001/27005, SOC 2, PCI or MITRE ATT&CK. Solid understanding of cloud models, application security, vulnerability and patch management. Experience in regulated and/or unionised environments. Excellent communication skills with the ability to simplify complex findings for senior management. Strong attention to detail and a proactive, positive, innovative mindset. Desirable GRC or security certifications (e.g., CISSP, CISM, CRISC, CISA, GCFE, GSEC, CCSP). Experience with cyber risk modelling (e.g., CyberCube, RMS, Cyence). Hands-on experience with frameworks such as ISO 27001, NIST CSF, NCSC CAF or CIS Controls. Understanding of ICS/OT environments. Southern Water is at the forefront of transforming Britain's water industry, investing significantly to enhance resilience, sustainability, and service excellence. With £7.8bn planned investment for 2025-30, this is an unparalleled opportunity to join a business committed to delivering a generational shift in the way water services are managed. You will be joining at a time of significant change, working alongside a highly skilled leadership team with a clear vision for the future. We offer an environment where senior professionals can make a meaningful impact, influence major strategic decisions, and drive long-term value creation . At Southern Water, we believe diverse perspectives drive innovation. If you're passionate about making a positive impact and think you can bring value to our team, we'd love to hear from you-even if you don't tick every box. Your unique skills and experiences could be exactly what we need. Our Commitment to Diversity We welcome applicants from all backgrounds, identities, and experiences. We do not discriminate based on race, ethnicity, gender, sexual orientation, age, disability, religion, or any other protected characteristic. If you need reasonable adjustments during the recruitment process, please let us know. Additional information: In line with Southern Water's security requirements, successful candidates will be required to provide evidence of their identity, eligibility to work in the UK, criminal record check (DBS) and verification of their employment and/or education history for the past three years. Appointment to this role is subject to the successful completion of all preemployment checks, including security vetting. Please note that if a candidate does not meet the required security standards or fails to pass the vetting process, Southern Water reserves the right to withdraw the offer of employment. Some positions may also require higher levels of security vetting, which may involve providing additional documentation.
01/04/2026
Full time
About the role This is a fantastic opportunity to join Southern Water's Cyber Risk & Assurance team, the organisation's second line of defence within the wider Cyber Security function. As a Cyber Risk & Assurance Analyst, you'll play a central role in helping the business understand, manage and reduce cyber risk across critical operations. You'll be responsible for developing and improving cyber risk insights in your area of specialism, driving process and tooling enhancements, and supporting stakeholders across Technology, Legal and the wider business. This is a role for someone who enjoys tackling complex problems, breaking them down into actionable solutions, and collaborating with a wide range of experts. You'll also act as a trusted advisor helping colleagues understand cyber threats, risks and controls, and supporting the wider team in embedding strong cyber risk management practices across Southern Water. What you will be responsible for: You will conduct complex cyber risk assessments, strengthen key controls, deliver clear risk insights, and drive improvements across cyber domains - all while building collaborative relationships across Technology, Security, Legal and the business. Key Responsibilities Maintain an up-to-date understanding of the cyber threat landscape, relevant regulations (including NIS1/NIS2 and GDPR), and emerging risks. Lead, plan and perform complex cyber risk assessments aligned to industry-recognised frameworks, testing the design and effectiveness of cyber controls. Produce high-quality risk assessment reports with clear, actionable conclusions that support timely risk-based decision-making. Identify and deliver improvements across domains such as identity & access management, application security, endpoint security, and network security. Work closely with stakeholders across Security, Technology, Legal, Internal Audit and the wider business to assess control gaps, prioritise remediation actions and track progress to completion. Build strong working relationships across teams to influence, support and strengthen cyber risk management practices. Drive process improvements and enhancements across the Cyber Risk & Assurance function. Additional requirements specific to the role Will work closely with both technical teams and non-technical stakeholders, requiring an ability to communicate complex concepts clearly. Must be comfortable operating in an environment with regulatory, operational and cyber security obligations. Occasional engagement with internal or external audit teams may be required. What you'll bring to the role: Essential Degree-level education or equivalent experience. Strong knowledge of cyber security and information security control best practice. Proven experience in cyber security, risk management or security assessment (10+ years, or advanced degree with 8+ years). In-depth understanding of key frameworks such as NIST (800-37, 800-30, 800-53), ISO 27001/27005, SOC 2, PCI or MITRE ATT&CK. Solid understanding of cloud models, application security, vulnerability and patch management. Experience in regulated and/or unionised environments. Excellent communication skills with the ability to simplify complex findings for senior management. Strong attention to detail and a proactive, positive, innovative mindset. Desirable GRC or security certifications (e.g., CISSP, CISM, CRISC, CISA, GCFE, GSEC, CCSP). Experience with cyber risk modelling (e.g., CyberCube, RMS, Cyence). Hands-on experience with frameworks such as ISO 27001, NIST CSF, NCSC CAF or CIS Controls. Understanding of ICS/OT environments. Southern Water is at the forefront of transforming Britain's water industry, investing significantly to enhance resilience, sustainability, and service excellence. With £7.8bn planned investment for 2025-30, this is an unparalleled opportunity to join a business committed to delivering a generational shift in the way water services are managed. You will be joining at a time of significant change, working alongside a highly skilled leadership team with a clear vision for the future. We offer an environment where senior professionals can make a meaningful impact, influence major strategic decisions, and drive long-term value creation . At Southern Water, we believe diverse perspectives drive innovation. If you're passionate about making a positive impact and think you can bring value to our team, we'd love to hear from you-even if you don't tick every box. Your unique skills and experiences could be exactly what we need. Our Commitment to Diversity We welcome applicants from all backgrounds, identities, and experiences. We do not discriminate based on race, ethnicity, gender, sexual orientation, age, disability, religion, or any other protected characteristic. If you need reasonable adjustments during the recruitment process, please let us know. Additional information: In line with Southern Water's security requirements, successful candidates will be required to provide evidence of their identity, eligibility to work in the UK, criminal record check (DBS) and verification of their employment and/or education history for the past three years. Appointment to this role is subject to the successful completion of all preemployment checks, including security vetting. Please note that if a candidate does not meet the required security standards or fails to pass the vetting process, Southern Water reserves the right to withdraw the offer of employment. Some positions may also require higher levels of security vetting, which may involve providing additional documentation.
The Information Security Analyst will play a critical role in safeguarding the organisation's systems and data, ensuring compliance with security policies and regulations. Based in Hatfield, this role is ideal for individuals passionate about the life science industry and technology. Client Details The hiring company is a medium-sized organisation operating within the life science industry, with a focus on innovation and excellence in its field. The company is known for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security / Technology project Lead / execute phishing campaign Conduct vulnerability assessments and implement measures to mitigate potential risks. Involve in global security operations process, analysis and escalate security alerts / tickets from global SOC team Maintain and update security policies, standards, and procedures in alignment with industry regulations. Collaborate with cross-functional teams to ensure secure system designs and implementations. Provide training and support to staff to enhance security awareness across the organisation. Profile Practical experience and understanding of ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem-solving skills. Hold at least one security related professional certification is desirable Job Offer 24 days of holiday leave Performance-based bonus of up to 10%. Pension scheme with contributions up to 10%. Private medical insurance, life assurance, dental cover Finance support on professional certifications / memberships
01/04/2026
Full time
The Information Security Analyst will play a critical role in safeguarding the organisation's systems and data, ensuring compliance with security policies and regulations. Based in Hatfield, this role is ideal for individuals passionate about the life science industry and technology. Client Details The hiring company is a medium-sized organisation operating within the life science industry, with a focus on innovation and excellence in its field. The company is known for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security / Technology project Lead / execute phishing campaign Conduct vulnerability assessments and implement measures to mitigate potential risks. Involve in global security operations process, analysis and escalate security alerts / tickets from global SOC team Maintain and update security policies, standards, and procedures in alignment with industry regulations. Collaborate with cross-functional teams to ensure secure system designs and implementations. Provide training and support to staff to enhance security awareness across the organisation. Profile Practical experience and understanding of ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem-solving skills. Hold at least one security related professional certification is desirable Job Offer 24 days of holiday leave Performance-based bonus of up to 10%. Pension scheme with contributions up to 10%. Private medical insurance, life assurance, dental cover Finance support on professional certifications / memberships
SOC Analyst (Level 2) Location: Aylesbury (Hybrid) Salary: Up to £45,000 (depending on experience) CTA are working with a Cyber Security company who are for a SOC Analyst (L2) to join their growing Security Operations Centre. This role is ideal for a junior analyst looking to build hands-on experience in monitoring, triaging, and responding to security incidents in a fast-paced, shift-based environment. Key Responsibilities Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. Threat Detection & Analysis: Develop and refine detection rules and use cases to improve threat visibility. Threat Hunting: Proactively hunt for advanced threats and indicators of compromise across the environment. Vulnerability Management: Identify, assess, and prioritise vulnerabilities and recommend remediation actions. Security Reporting: Produce detailed reports on incidents, trends, and overall security posture. Process Improvement & Automation: Enhance SOC processes, playbooks, and automation capabilities. Skills & Experience Strong experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat detection methodologies Networking protocols (TCP/IP, DNS, HTTP/S) Experience analysing logs from multiple sources (endpoints, network, cloud) Ability to independently investigate and resolve security incidents Scripting or automation experience (e.g., Python, PowerShell) is a plus Strong communication and stakeholder management skills What You'll Be Doing Acting as an escalation point for Level 1 analysts Working closely with customers and internal teams on incident investigations Tuning detection rules and improving alert quality Staying up to date with emerging threats, vulnerabilities, and attack techniques Supporting and mentoring junior analysts Requirements UK Citizenship (required due to the nature of the role) If you are looking for a progressive move with an established Cyber company, please do send your application through for consideration.
01/04/2026
Full time
SOC Analyst (Level 2) Location: Aylesbury (Hybrid) Salary: Up to £45,000 (depending on experience) CTA are working with a Cyber Security company who are for a SOC Analyst (L2) to join their growing Security Operations Centre. This role is ideal for a junior analyst looking to build hands-on experience in monitoring, triaging, and responding to security incidents in a fast-paced, shift-based environment. Key Responsibilities Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. Threat Detection & Analysis: Develop and refine detection rules and use cases to improve threat visibility. Threat Hunting: Proactively hunt for advanced threats and indicators of compromise across the environment. Vulnerability Management: Identify, assess, and prioritise vulnerabilities and recommend remediation actions. Security Reporting: Produce detailed reports on incidents, trends, and overall security posture. Process Improvement & Automation: Enhance SOC processes, playbooks, and automation capabilities. Skills & Experience Strong experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat detection methodologies Networking protocols (TCP/IP, DNS, HTTP/S) Experience analysing logs from multiple sources (endpoints, network, cloud) Ability to independently investigate and resolve security incidents Scripting or automation experience (e.g., Python, PowerShell) is a plus Strong communication and stakeholder management skills What You'll Be Doing Acting as an escalation point for Level 1 analysts Working closely with customers and internal teams on incident investigations Tuning detection rules and improving alert quality Staying up to date with emerging threats, vulnerabilities, and attack techniques Supporting and mentoring junior analysts Requirements UK Citizenship (required due to the nature of the role) If you are looking for a progressive move with an established Cyber company, please do send your application through for consideration.
SOC Analyst (Level 1) Location: Aylesbury (Hybrid) Salary: Up to £25,000-£30,000 + shift allowance Shift Pattern: 24/7 rotating shifts (including nights and weekends) CTA are working with a Cyber Security company who are for a SOC Analyst (Level 1) to join their growing Security Operations Centre. This role is ideal for a junior analyst looking to build hands-on experience in monitoring, triaging, and responding to security incidents in a fast-paced, shift-based environment. Key Responsibilities Security Monitoring: Monitor SIEM dashboards, alerts, and log data to identify suspicious or malicious activity. Alert Triage: Perform initial investigation and prioritisation of security alerts, escalating where necessary. Incident Response (L1): Assist in incident investigation, gather relevant evidence, and support escalation to senior analysts or IR teams. Threat Detection: Support detection of threats using established rules and playbooks. Basic Threat Hunting: Assist with proactive searches for anomalies under guidance from senior analysts. Vulnerability Awareness: Identify and report potential vulnerabilities or misconfigurations. Reporting: Document incidents, actions taken, and findings clearly for internal teams and customers. Continuous Improvement: Contribute to improving SOC processes, playbooks, and detection rules. Skills & Experience Exposure to SIEM tools (e.g., Sumo Logic, Microsoft Sentinel) Familiarity with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Basic understanding of: Security operations Incident response lifecycle Networking fundamentals (TCP/IP, DNS, etc.) Strong analytical and problem-solving skills Good communication skills (written and verbal) Ability and willingness to work 24/7 shift patterns (including nights/weekends) What You'll Be Doing Working closely with senior analysts and wider security teams Supporting customers with security monitoring and incident triage Participating in a shift-based rota to ensure continuous SOC coverage Keeping up to date with emerging cyber threats and trends Learning industry tools and best practices through structured training Growth Opportunity Join a newly formed SOC team with a clear training and development pathway , offering progression into SOC Analyst Level 2 and beyond. Requirements UK Citizenship (required due to the nature of the role) If you are looking for a progressive move with an established Cyber company, please do send your application through for consideration.
01/04/2026
Full time
SOC Analyst (Level 1) Location: Aylesbury (Hybrid) Salary: Up to £25,000-£30,000 + shift allowance Shift Pattern: 24/7 rotating shifts (including nights and weekends) CTA are working with a Cyber Security company who are for a SOC Analyst (Level 1) to join their growing Security Operations Centre. This role is ideal for a junior analyst looking to build hands-on experience in monitoring, triaging, and responding to security incidents in a fast-paced, shift-based environment. Key Responsibilities Security Monitoring: Monitor SIEM dashboards, alerts, and log data to identify suspicious or malicious activity. Alert Triage: Perform initial investigation and prioritisation of security alerts, escalating where necessary. Incident Response (L1): Assist in incident investigation, gather relevant evidence, and support escalation to senior analysts or IR teams. Threat Detection: Support detection of threats using established rules and playbooks. Basic Threat Hunting: Assist with proactive searches for anomalies under guidance from senior analysts. Vulnerability Awareness: Identify and report potential vulnerabilities or misconfigurations. Reporting: Document incidents, actions taken, and findings clearly for internal teams and customers. Continuous Improvement: Contribute to improving SOC processes, playbooks, and detection rules. Skills & Experience Exposure to SIEM tools (e.g., Sumo Logic, Microsoft Sentinel) Familiarity with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Basic understanding of: Security operations Incident response lifecycle Networking fundamentals (TCP/IP, DNS, etc.) Strong analytical and problem-solving skills Good communication skills (written and verbal) Ability and willingness to work 24/7 shift patterns (including nights/weekends) What You'll Be Doing Working closely with senior analysts and wider security teams Supporting customers with security monitoring and incident triage Participating in a shift-based rota to ensure continuous SOC coverage Keeping up to date with emerging cyber threats and trends Learning industry tools and best practices through structured training Growth Opportunity Join a newly formed SOC team with a clear training and development pathway , offering progression into SOC Analyst Level 2 and beyond. Requirements UK Citizenship (required due to the nature of the role) If you are looking for a progressive move with an established Cyber company, please do send your application through for consideration.
Job Title - Senior Data Manager Location - Manchester, UK Type - Contract Job Description: About the role The Trips Data Governance team manages data for all aspects of trips, excluding stays, enabling teams to understand and improve business performance and customer experience. They are currently seeking an experienced Data Manager to join their impactful Data Governance team to support the critical SAP Rise migration program. About the SAP Rise program: The programme is a key business modernisation initiative to migrate the current Booking Transport (BTL) SAP instance to a standardised cloud-based ERP system. The programme will introduce an interim architecture between the current platform and the SAP S/4 RISE ecosystem to test processes, data quality and governance, data contracts, and new capabilities, while supporting the transition to the North Star architecture where data flows directly from a modernised enterprise order platform. Role Overview: In this role, a Senior Data Manager combines technical knowledge, business insight, and expert communication to provide critical information about data systems. This position focuses on supporting business needs with high-quality data through monitoring, issue detection, impact quantification, end-to-end data corrections, standardization, and architectural optimization. A key aspect of the role is to advocate for a Data Quality mindset across the organization. You will report to a Senior Manager and collaborate with other Data Managers on strategic objectives for data quality, governance, metadata management and regulatory compliance. This is a hands-on role where you will work closely with Business Analysts, Data Engineers, Data Scientists, and Insights Analysts to build deliverables required for the SAP Rise program. Roles & Responsibilities As a Senior Data Manager I (Level G), your required competencies include: Independence in: AI & Ethics: Independent in ethical data handling, responsible AI, compliance, knowledge & prompt engineering, and AI application in Data Management. Change & Project Mgt.: Independent in change management, planning, monitoring & delivery, stakeholder management, and DQ implementation. Critical Thinking: Independent in decision making, and DQ - investigate & resolve. Data & Info. Management: Independent in MDM integrations, MDM policies, document & content lifecycle, document & content classification, data risk identification, data risk decision, data risk mitigation, metadata management, and data lifecycle management. Effective Communication: Independent in communication basics, cross-cultural relationships, and tailored messaging & motivational communication. Privacy & Security: Independent in high-pressure communication, regulatory knowledge, vulnerability & mitigation, and compliance-by-design. Software & Analytics: Independent in coding, visualisation, and Data Mgt. Adoption. Stewardship: Independent in identification & training. Strategy & Policy: Independent in data management strategy, policies, standards & playbooks, and maturity model & assessment. Solution Design: Independent in solution requirements. Expertise Critical Thinking: Expertise in root cause analysis. Data & Info. Management: Expertise in MDM requirements. Software & Analytics: Expertise in analysis (both listed entries), Data Mgt. Integration, and DQ Dimensions & Rules. Solution Design: Expertise in solution monitoring & iteration. Stewardship: Expertise in advocacy & support. Randstad Technologies is acting as an Employment Business in relation to this vacancy.
01/04/2026
Contractor
Job Title - Senior Data Manager Location - Manchester, UK Type - Contract Job Description: About the role The Trips Data Governance team manages data for all aspects of trips, excluding stays, enabling teams to understand and improve business performance and customer experience. They are currently seeking an experienced Data Manager to join their impactful Data Governance team to support the critical SAP Rise migration program. About the SAP Rise program: The programme is a key business modernisation initiative to migrate the current Booking Transport (BTL) SAP instance to a standardised cloud-based ERP system. The programme will introduce an interim architecture between the current platform and the SAP S/4 RISE ecosystem to test processes, data quality and governance, data contracts, and new capabilities, while supporting the transition to the North Star architecture where data flows directly from a modernised enterprise order platform. Role Overview: In this role, a Senior Data Manager combines technical knowledge, business insight, and expert communication to provide critical information about data systems. This position focuses on supporting business needs with high-quality data through monitoring, issue detection, impact quantification, end-to-end data corrections, standardization, and architectural optimization. A key aspect of the role is to advocate for a Data Quality mindset across the organization. You will report to a Senior Manager and collaborate with other Data Managers on strategic objectives for data quality, governance, metadata management and regulatory compliance. This is a hands-on role where you will work closely with Business Analysts, Data Engineers, Data Scientists, and Insights Analysts to build deliverables required for the SAP Rise program. Roles & Responsibilities As a Senior Data Manager I (Level G), your required competencies include: Independence in: AI & Ethics: Independent in ethical data handling, responsible AI, compliance, knowledge & prompt engineering, and AI application in Data Management. Change & Project Mgt.: Independent in change management, planning, monitoring & delivery, stakeholder management, and DQ implementation. Critical Thinking: Independent in decision making, and DQ - investigate & resolve. Data & Info. Management: Independent in MDM integrations, MDM policies, document & content lifecycle, document & content classification, data risk identification, data risk decision, data risk mitigation, metadata management, and data lifecycle management. Effective Communication: Independent in communication basics, cross-cultural relationships, and tailored messaging & motivational communication. Privacy & Security: Independent in high-pressure communication, regulatory knowledge, vulnerability & mitigation, and compliance-by-design. Software & Analytics: Independent in coding, visualisation, and Data Mgt. Adoption. Stewardship: Independent in identification & training. Strategy & Policy: Independent in data management strategy, policies, standards & playbooks, and maturity model & assessment. Solution Design: Independent in solution requirements. Expertise Critical Thinking: Expertise in root cause analysis. Data & Info. Management: Expertise in MDM requirements. Software & Analytics: Expertise in analysis (both listed entries), Data Mgt. Integration, and DQ Dimensions & Rules. Solution Design: Expertise in solution monitoring & iteration. Stewardship: Expertise in advocacy & support. Randstad Technologies is acting as an Employment Business in relation to this vacancy.
The Information Security Officer will support the safeguarding of the organisation's information assets by identifying risks, monitoring security controls, and ensuring best-practice governance. The role also contributes to incident response, third-party oversight, and ongoing security improvements. It is a hybrid role. You can choose to work in either one of the offices: Manchester, Cardiff, London. Client Details The client is a rapid growing finance service provider, with a strong focus on data protection, operational resilience, and continuous improvement in cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Work closely with SOC team and infrastructure team for remediation plan Assist with regulatory and audit obligations by preparing documentation and ensuring compliance with legal standards. Maintain and update security policies, standards, and procedures to reflect organisational needs and current threats. Deliver security awareness initiatives and training to promote secure behaviours across the organisation. Perform due-diligence reviews of third-party suppliers and support ongoing monitoring of external security risks. Profile Experience in information security, risk assessment within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability to explain technical security matters to non-technical stakeholders. Highly organised, proactive, and capable of managing multiple priorities with attention to detail. Relevant qualifications (CISM is highly preferred) or certifications (e.g., CISMP, Security+, CISM, CISSP, SC-200, AZ-500) Job Offer Hybrid role: 60% in Manchester, Cardiff or London office 25 days holiday plus birthday off Pension Scheme (8% matched) Life Assurance Private Medical Insurance Gym Memberships Retails discounts
01/04/2026
Full time
The Information Security Officer will support the safeguarding of the organisation's information assets by identifying risks, monitoring security controls, and ensuring best-practice governance. The role also contributes to incident response, third-party oversight, and ongoing security improvements. It is a hybrid role. You can choose to work in either one of the offices: Manchester, Cardiff, London. Client Details The client is a rapid growing finance service provider, with a strong focus on data protection, operational resilience, and continuous improvement in cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Work closely with SOC team and infrastructure team for remediation plan Assist with regulatory and audit obligations by preparing documentation and ensuring compliance with legal standards. Maintain and update security policies, standards, and procedures to reflect organisational needs and current threats. Deliver security awareness initiatives and training to promote secure behaviours across the organisation. Perform due-diligence reviews of third-party suppliers and support ongoing monitoring of external security risks. Profile Experience in information security, risk assessment within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability to explain technical security matters to non-technical stakeholders. Highly organised, proactive, and capable of managing multiple priorities with attention to detail. Relevant qualifications (CISM is highly preferred) or certifications (e.g., CISMP, Security+, CISM, CISSP, SC-200, AZ-500) Job Offer Hybrid role: 60% in Manchester, Cardiff or London office 25 days holiday plus birthday off Pension Scheme (8% matched) Life Assurance Private Medical Insurance Gym Memberships Retails discounts
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
01/04/2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
01/04/2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
01/04/2026
Full time
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
31/03/2026
Full time
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
31/03/2026
Full time
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
DGH Recruitment Ltd
Newcastle Upon Tyne, Tyne And Wear
Cyber Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require a Cyber Security Analyst to join the firm in Newcastle. The scope of the Information Security function includes all strategic security planning and control oversight to ensure effective risk mitigation takes place within the firm. The team operates a number of security solutions directly, such as anti-malware solutions, Internet security proxy servers, and the vulnerability scanning platforms. Key Responsibilities: Review, action, and escalate, any unusual event behaviour identified. Assist with development and maintenance of the Firm-wide security infrastructure configuration, policies and procedures, identifying improvements to procedures, and reporting on incidents. Actively promote security governance in support of the Information Security policies, to ensure appropriate measures are taken to secure the Firm's confidentiality and integrity. Encourage cooperative working with all business functions to achieve shared goals, ensuring skills transfer and technical security awareness within the teams. This includes writing process documents and conducting training. Key Skills and Experience: At least 5 years' experience working within Information Security infrastructure or vocation to move from another technical discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption. Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly desirable. Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM) Technical bachelor's degree or equivalent IT / Information Security experience (required) Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred). Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred) Cyber Security Analyst In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. DGH Recruitment Limited acts as both an Employment Agency and Employment Business
31/03/2026
Full time
Cyber Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require a Cyber Security Analyst to join the firm in Newcastle. The scope of the Information Security function includes all strategic security planning and control oversight to ensure effective risk mitigation takes place within the firm. The team operates a number of security solutions directly, such as anti-malware solutions, Internet security proxy servers, and the vulnerability scanning platforms. Key Responsibilities: Review, action, and escalate, any unusual event behaviour identified. Assist with development and maintenance of the Firm-wide security infrastructure configuration, policies and procedures, identifying improvements to procedures, and reporting on incidents. Actively promote security governance in support of the Information Security policies, to ensure appropriate measures are taken to secure the Firm's confidentiality and integrity. Encourage cooperative working with all business functions to achieve shared goals, ensuring skills transfer and technical security awareness within the teams. This includes writing process documents and conducting training. Key Skills and Experience: At least 5 years' experience working within Information Security infrastructure or vocation to move from another technical discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption. Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly desirable. Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM) Technical bachelor's degree or equivalent IT / Information Security experience (required) Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred). Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred) Cyber Security Analyst In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. DGH Recruitment Limited acts as both an Employment Agency and Employment Business
Role Title: Cyber Risk Analyst Location: Knutsford 3 days on site Duration: 30/10/2026 Rate 404 MUST BE PAYE THROUGH UMBRELLA Role Description: "Role Overview: The Cyber Risk Analysts will work under the guidance of the Lead Consultant to execute the detailed risk assessments and analysis of End-of-Life technologies. In this role, you will collect and analyze data on EOL systems, evaluate cyber risks using the defined methodology, and support the implementation of remediation plans. Key Responsibilities: Perform Risk Assessments: Conduct in-depth cyber risk assessments for identified EOL systems and technologies, following the methodology and framework established by the project. Gather necessary information on assets (software, hardware, applications that are end-of-life or end-of-support) and assess the potential cyber threats, vulnerabilities, and business impacts associated with each5. Document findings meticulously, ensuring each risk item is well-described (likelihood, impact, severity) in the risk register. Required Skills & Competencies: Analytical Skills: Strong analytical and problem-solving skills are essential. The analyst must be able to assess complex IT systems and identify risk factors, interpret vulnerability data, and quantitatively rate risks. Attention to detail is critical for reviewing large lists of EOL assets and ensuring nothing is missed. Cybersecurity Knowledge: Good understanding of foundational cybersecurity principles (confidentiality, integrity, availability) and how outdated technologies can pose threats. Familiarity with common vulnerabilities and exploits affecting older systems (legacy OS, unsupported software) is beneficial. Knowledge of cyber risk frameworks and standards (such as NIST, ISO27001) and basic concepts of risk assessment is expectedxxiv. Qualifications & Certifications: Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. Equivalent experience in cyber risk or IT security roles can be considered in lieu of a formal degree. Certifications: Relevant industry certifications are not mandatory but highly valued. Certifications demonstrating knowledge of security and risk principles (e.g., CompTIA Security+, Certified Ethical Hacker (CEH), or GIAC/GSEC) would be a plus. Certifications specifically in risk management or governance (such as CRISC, Certified Information Systems Auditor (CISA), or ISO 27001 Lead Auditor/Implementer) are also advantageous for this role, as they indicate a grasp of risk and control assessment practices. Experience: Years of Experience: Approximately 3-5+ years of experience in cybersecurity or IT risk roles. This could include experience as a Cyber Risk Analyst, IT Risk Analyst, Security Analyst, Vulnerability Management Specialist, or GRC (Governance, Risk & Compliance) Analyst. Candidates with slightly more or less experience will be considered based on skill fit, but a baseline understanding from a few years in the field is expected. Risk Assessment Background: Hands-on experience conducting risk assessments or security assessments is required. For example, experience in identifying and assessing risks for IT systems, writing risk or control reports, or supporting risk treatment projects. Familiarity with creating or maintaining risk registers and tracking mitigation actions is important (e.g., experience ensuring "risks and remediation plans are regularly addressed" in previous rolesxxvii). Industry-Specific Experience (Desirable): Experience in the financial services sector or other highly-regulated industries is a plus.
31/03/2026
Contractor
Role Title: Cyber Risk Analyst Location: Knutsford 3 days on site Duration: 30/10/2026 Rate 404 MUST BE PAYE THROUGH UMBRELLA Role Description: "Role Overview: The Cyber Risk Analysts will work under the guidance of the Lead Consultant to execute the detailed risk assessments and analysis of End-of-Life technologies. In this role, you will collect and analyze data on EOL systems, evaluate cyber risks using the defined methodology, and support the implementation of remediation plans. Key Responsibilities: Perform Risk Assessments: Conduct in-depth cyber risk assessments for identified EOL systems and technologies, following the methodology and framework established by the project. Gather necessary information on assets (software, hardware, applications that are end-of-life or end-of-support) and assess the potential cyber threats, vulnerabilities, and business impacts associated with each5. Document findings meticulously, ensuring each risk item is well-described (likelihood, impact, severity) in the risk register. Required Skills & Competencies: Analytical Skills: Strong analytical and problem-solving skills are essential. The analyst must be able to assess complex IT systems and identify risk factors, interpret vulnerability data, and quantitatively rate risks. Attention to detail is critical for reviewing large lists of EOL assets and ensuring nothing is missed. Cybersecurity Knowledge: Good understanding of foundational cybersecurity principles (confidentiality, integrity, availability) and how outdated technologies can pose threats. Familiarity with common vulnerabilities and exploits affecting older systems (legacy OS, unsupported software) is beneficial. Knowledge of cyber risk frameworks and standards (such as NIST, ISO27001) and basic concepts of risk assessment is expectedxxiv. Qualifications & Certifications: Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. Equivalent experience in cyber risk or IT security roles can be considered in lieu of a formal degree. Certifications: Relevant industry certifications are not mandatory but highly valued. Certifications demonstrating knowledge of security and risk principles (e.g., CompTIA Security+, Certified Ethical Hacker (CEH), or GIAC/GSEC) would be a plus. Certifications specifically in risk management or governance (such as CRISC, Certified Information Systems Auditor (CISA), or ISO 27001 Lead Auditor/Implementer) are also advantageous for this role, as they indicate a grasp of risk and control assessment practices. Experience: Years of Experience: Approximately 3-5+ years of experience in cybersecurity or IT risk roles. This could include experience as a Cyber Risk Analyst, IT Risk Analyst, Security Analyst, Vulnerability Management Specialist, or GRC (Governance, Risk & Compliance) Analyst. Candidates with slightly more or less experience will be considered based on skill fit, but a baseline understanding from a few years in the field is expected. Risk Assessment Background: Hands-on experience conducting risk assessments or security assessments is required. For example, experience in identifying and assessing risks for IT systems, writing risk or control reports, or supporting risk treatment projects. Familiarity with creating or maintaining risk registers and tracking mitigation actions is important (e.g., experience ensuring "risks and remediation plans are regularly addressed" in previous rolesxxvii). Industry-Specific Experience (Desirable): Experience in the financial services sector or other highly-regulated industries is a plus.
Cyber Security Analyst London Entry Level - £35,000 £50,000 Looking to start your career in Cyber Security? We are recruiting Analysts, Pentesters and Ethical Hackers to join growing technical teams in London. This is an entry-level role ideal for someone who is practical, crazy about technology and eager to build a career in Cyber Security. Successful applicants will receive structured onboarding and support while working towards a permanent role within the Cyber Security sector. Cyber Security Analyst - Key Responsibilities Monitor security alerts and logs from SIEM, EDR, and other security tools. Investigate basic security incidents and escalate suspicious activity to senior analysts. Assist with vulnerability scanning and remediation tracking. Support the implementation of security controls and policies. Help maintain and review firewall, endpoint, and access control configurations. Cyber Security Analyst - What We're Looking For Essential: Basic understanding of cyber security principles and common threats. Familiarity with networking fundamentals (TCP/IP, DNS, firewalls). Strong problem-solving skills and attention to detail. Good written and verbal communication skills. Willingness to learn and develop new technical skills. Desirable: Knowledge of SIEM tools or security monitoring platforms. Experience with operating systems such as Windows or Linux. Familiarity with vulnerability scanning tools. Understanding of security frameworks or standards. Entry-level certifications No previous experience is required full support and guidance will be provided to help you succeed in your IT career. Apply now to show your interest!
31/03/2026
Full time
Cyber Security Analyst London Entry Level - £35,000 £50,000 Looking to start your career in Cyber Security? We are recruiting Analysts, Pentesters and Ethical Hackers to join growing technical teams in London. This is an entry-level role ideal for someone who is practical, crazy about technology and eager to build a career in Cyber Security. Successful applicants will receive structured onboarding and support while working towards a permanent role within the Cyber Security sector. Cyber Security Analyst - Key Responsibilities Monitor security alerts and logs from SIEM, EDR, and other security tools. Investigate basic security incidents and escalate suspicious activity to senior analysts. Assist with vulnerability scanning and remediation tracking. Support the implementation of security controls and policies. Help maintain and review firewall, endpoint, and access control configurations. Cyber Security Analyst - What We're Looking For Essential: Basic understanding of cyber security principles and common threats. Familiarity with networking fundamentals (TCP/IP, DNS, firewalls). Strong problem-solving skills and attention to detail. Good written and verbal communication skills. Willingness to learn and develop new technical skills. Desirable: Knowledge of SIEM tools or security monitoring platforms. Experience with operating systems such as Windows or Linux. Familiarity with vulnerability scanning tools. Understanding of security frameworks or standards. Entry-level certifications No previous experience is required full support and guidance will be provided to help you succeed in your IT career. Apply now to show your interest!
