About the opportunity Start your career in IT without the jargon. Netcom Training s fully-funded Digital Support course (Level 3) is the fastest way to launch a career in IT Support and Cloud Services. If you enjoy solving technical problems and want to move beyond resetting passwords, this course is for you. You will gain hands-on skills in Network Infrastructure, Cloud Computing (IaaS, PaaS, SaaS), and Cyber Security - the exact skills employers in Manchester are hiring for right now. Whether you aim to become a Digital Support Technician, IT Helpdesk Engineer, or Junior Data Analyst, this course offers a portfolio-based assessment with no exams. We judge you on your practical ability to do the job, not how well you take a test. Complete the training and secure a guaranteed interview to kickstart your career Course Details Start Dates: 09/03 Duration: 16 weeks Schedule: Mon-Thurs 6-9pm Format: Online, practical workshops Qualification: NCFE Accredited Level 3 Certificate (includes UCAS points) What you ll learn You will develop a robust technical skillset across six job-ready modules: IT Support: Manage helpdesk tickets, resolve technical issues, and configure operating systems. Network & Cloud: Configure network devices and explore cloud computing models like IaaS and SaaS. Digital Security: Learn to protect data using risk management, SIEM tools, and vulnerability assessments. Data Management: Source, cleanse, and analyse data to present actionable insights. Digital Transformation: Explore Agile project management and how to support digital change. Sector Skills: Understand IT policies, legislation, and industry structure. Career Pathway Successful participants are guaranteed an interview with our network of partners. Potential Roles: IT Support Technician Cloud Support Assistant Junior Network Engineer Service Desk Analyst Eligibility This is a government-funded opportunity. To apply, you must: Live in Greater Manchester (GMCA region). Be aged 19 or over. Have lived in the UK/EU for a minimum of 3 years. Earn below the gross annual wage cap. Prerequisites: Basic IT skills are required. Cost This is a fully-funded course with no fees complete the training, build your portfolio, and secure your guaranteed interview. provided you meet the learner obligations outlined in our employablility terms and conditions, which can be found on our website.
01/04/2026
Full time
About the opportunity Start your career in IT without the jargon. Netcom Training s fully-funded Digital Support course (Level 3) is the fastest way to launch a career in IT Support and Cloud Services. If you enjoy solving technical problems and want to move beyond resetting passwords, this course is for you. You will gain hands-on skills in Network Infrastructure, Cloud Computing (IaaS, PaaS, SaaS), and Cyber Security - the exact skills employers in Manchester are hiring for right now. Whether you aim to become a Digital Support Technician, IT Helpdesk Engineer, or Junior Data Analyst, this course offers a portfolio-based assessment with no exams. We judge you on your practical ability to do the job, not how well you take a test. Complete the training and secure a guaranteed interview to kickstart your career Course Details Start Dates: 09/03 Duration: 16 weeks Schedule: Mon-Thurs 6-9pm Format: Online, practical workshops Qualification: NCFE Accredited Level 3 Certificate (includes UCAS points) What you ll learn You will develop a robust technical skillset across six job-ready modules: IT Support: Manage helpdesk tickets, resolve technical issues, and configure operating systems. Network & Cloud: Configure network devices and explore cloud computing models like IaaS and SaaS. Digital Security: Learn to protect data using risk management, SIEM tools, and vulnerability assessments. Data Management: Source, cleanse, and analyse data to present actionable insights. Digital Transformation: Explore Agile project management and how to support digital change. Sector Skills: Understand IT policies, legislation, and industry structure. Career Pathway Successful participants are guaranteed an interview with our network of partners. Potential Roles: IT Support Technician Cloud Support Assistant Junior Network Engineer Service Desk Analyst Eligibility This is a government-funded opportunity. To apply, you must: Live in Greater Manchester (GMCA region). Be aged 19 or over. Have lived in the UK/EU for a minimum of 3 years. Earn below the gross annual wage cap. Prerequisites: Basic IT skills are required. Cost This is a fully-funded course with no fees complete the training, build your portfolio, and secure your guaranteed interview. provided you meet the learner obligations outlined in our employablility terms and conditions, which can be found on our website.
Applications Operations Analyst - LondonPermanent Hybrid Working Competitive Salary An international law firm is seeking an experienced Applications Operations Analyst to join its London office. This is a fantastic opportunity to play a key role in maintaining and improving the performance, security, and reliability of enterprise applications across a dynamic and fast-paced professional services environment. Reporting to the Manager of Applications Operations, the successful candidate will be responsible for day-to-day system support, patching, monitoring, and troubleshooting, while also contributing to process improvement, documentation, and integration stability. The role involves close collaboration with infrastructure, security, and business teams to ensure seamless application performance and user experience. Key Responsibilities: Perform system maintenance, patching, and upgrades in line with change management procedures Monitor application health and performance, proactively resolving issues Manage user access controls and support security audits Respond to incidents and service requests within SLA targets Support application deployments, integrations, and configuration changes Maintain documentation, runbooks, and support knowledge base articles Identify opportunities for automation and process optimisation Track and report on KPIs, system uptime, and user engagement metrics Collaborate with cross-functional teams to support scalability and performance tuning Ideal Candidate Profile: 3+ years of experience in enterprise application support or IT operations Strong troubleshooting and analytical skills Familiarity with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patching, and vulnerability remediation Exposure to ITIL practices and professional services environments Experience with documentation tools and scripting (e.g., PowerShell, Python) Relevant certifications (e.g., ITIL Foundation) preferred It offers the chance to work within a collaborative team and contribute to the ongoing improvement of critical business systems. To express interest or learn more, please get in touch directly. Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply. Ryder Reid Legal is a recruitment specialist. For over thirty years we've been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies.
01/04/2026
Full time
Applications Operations Analyst - LondonPermanent Hybrid Working Competitive Salary An international law firm is seeking an experienced Applications Operations Analyst to join its London office. This is a fantastic opportunity to play a key role in maintaining and improving the performance, security, and reliability of enterprise applications across a dynamic and fast-paced professional services environment. Reporting to the Manager of Applications Operations, the successful candidate will be responsible for day-to-day system support, patching, monitoring, and troubleshooting, while also contributing to process improvement, documentation, and integration stability. The role involves close collaboration with infrastructure, security, and business teams to ensure seamless application performance and user experience. Key Responsibilities: Perform system maintenance, patching, and upgrades in line with change management procedures Monitor application health and performance, proactively resolving issues Manage user access controls and support security audits Respond to incidents and service requests within SLA targets Support application deployments, integrations, and configuration changes Maintain documentation, runbooks, and support knowledge base articles Identify opportunities for automation and process optimisation Track and report on KPIs, system uptime, and user engagement metrics Collaborate with cross-functional teams to support scalability and performance tuning Ideal Candidate Profile: 3+ years of experience in enterprise application support or IT operations Strong troubleshooting and analytical skills Familiarity with ITSM platforms (e.g., ServiceNow) and monitoring tools Understanding of access management, patching, and vulnerability remediation Exposure to ITIL practices and professional services environments Experience with documentation tools and scripting (e.g., PowerShell, Python) Relevant certifications (e.g., ITIL Foundation) preferred It offers the chance to work within a collaborative team and contribute to the ongoing improvement of critical business systems. To express interest or learn more, please get in touch directly. Due to the high volume of applications, we are not able to respond to all enquiries. If you have not received a response within 72 hours, please assume you have not been shortlisted at this stage, however thank you for taking the time to apply. Ryder Reid Legal is a recruitment specialist. For over thirty years we've been connecting legal talent with many of the leading law firms in London and internationally. Follow our LinkedIn page for the latest vacancies.
SOC Analyst Position Description At CGI, we deliver secure, high-impact technology solutions that help our clients operate with confidence in an evolving threat landscape. As a Senior SOC Analyst, you will play a critical role in protecting vital services within a joint Microsoft and CGI security team supporting the ASH programme. Working in a collaborative, high-trust environment, you will take ownership of security monitoring, incident response, and continuous service improvement while helping strengthen cyber resilience for a critical client. This role offers the opportunity to apply your expertise, contribute innovative thinking to evolving threats, and work alongside experienced specialists who support your professional growth while delivering meaningful outcomes for complex, mission-critical environments. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. This is an on-site role based in Chippenham, operating on a 24/7 shift rotation. There may be opportunities for future on-call shifts, which would include an additional salary uplift. We welcome applicants who already hold Security Clearance, particularly those willing to progress to higher levels of clearance. Your future duties and responsibilities In this role, you will play a key part in safeguarding critical services by performing advanced security monitoring, investigation, and incident response activities within a joint Microsoft and CGI Security Operations Centre. You will take ownership of analysing alerts, responding to threats, and strengthening detection capabilities while contributing to the continuous improvement of SOC processes, tooling, and automation. Working within a collaborative delivery team, you will help ensure services meet strict operational and security standards. You will support the transition of security capabilities into live service environments, apply creative problem-solving to emerging threats, and work closely with colleagues and client stakeholders to maintain resilient and secure operations. Key responsibilities Monitor & Respond - Investigate and resolve security alerts and incidents across the SOC environment Analyse & Protect - Conduct threat analysis and security monitoring using SIEM/SOAR platforms Develop & Improve - Contribute to detection rule development and SOC tooling enhancements Automate & Optimise - Support automation and configuration improvements within the SOC Test & Assure - Assist with security testing, assurance activities, and vulnerability management Collaborate & Deliver - Work closely with CGI, Microsoft, and client teams to maintain secure service delivery Support & Transition - Help transition security capabilities from project delivery into operational service Required qualifications to be successful in this role To succeed in this role, you should bring experience in SOC environments with strong analytical and investigative skills, along with a solid understanding of security monitoring, incident response, and secure service delivery. You will be comfortable working in regulated environments and motivated to continuously improve detection capabilities and operational resilience. Essential qualifications You should have hands-on experience working within a Security Operations Centre (SOC) Strong experience in security monitoring, alert investigation, and incident response Proven experience working with SIEM and/or SOAR platforms including log analysis and event monitoring Experience with Microsoft server technologies and Azure environments Familiarity with vulnerability management tools and security testing practices Understanding of information assurance principles and secure operational processes Experience working in secure, defence, or highly regulated environments Strong analytical, troubleshooting, and problem-solving skills Ability to collaborate effectively within client and consultancy delivery teams Experience with Huntsman platform or willingness to learn emerging technologies such as MASH (desirable) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
01/04/2026
Full time
SOC Analyst Position Description At CGI, we deliver secure, high-impact technology solutions that help our clients operate with confidence in an evolving threat landscape. As a Senior SOC Analyst, you will play a critical role in protecting vital services within a joint Microsoft and CGI security team supporting the ASH programme. Working in a collaborative, high-trust environment, you will take ownership of security monitoring, incident response, and continuous service improvement while helping strengthen cyber resilience for a critical client. This role offers the opportunity to apply your expertise, contribute innovative thinking to evolving threats, and work alongside experienced specialists who support your professional growth while delivering meaningful outcomes for complex, mission-critical environments. CGI was recognised in the Sunday Times Best Places to Work List 2025 and has been named a UK 'Best Employer' by the Financial Times. We offer a competitive salary, excellent pension, private healthcare, plus a share scheme (3.5% + 3.5% matching) which makes you a CGI Partner not just an employee. We are committed to inclusivity, building a genuinely diverse community of tech talent and inspiring everyone to pursue careers in our sector, including our Armed Forces, and are proud to hold a Gold Award in recognition of our support of the Armed Forces Corporate Covenant. Join us and you'll be part of an open, friendly community of experts. We'll train and support you in taking your career wherever you want it to go. This is an on-site role based in Chippenham, operating on a 24/7 shift rotation. There may be opportunities for future on-call shifts, which would include an additional salary uplift. We welcome applicants who already hold Security Clearance, particularly those willing to progress to higher levels of clearance. Your future duties and responsibilities In this role, you will play a key part in safeguarding critical services by performing advanced security monitoring, investigation, and incident response activities within a joint Microsoft and CGI Security Operations Centre. You will take ownership of analysing alerts, responding to threats, and strengthening detection capabilities while contributing to the continuous improvement of SOC processes, tooling, and automation. Working within a collaborative delivery team, you will help ensure services meet strict operational and security standards. You will support the transition of security capabilities into live service environments, apply creative problem-solving to emerging threats, and work closely with colleagues and client stakeholders to maintain resilient and secure operations. Key responsibilities Monitor & Respond - Investigate and resolve security alerts and incidents across the SOC environment Analyse & Protect - Conduct threat analysis and security monitoring using SIEM/SOAR platforms Develop & Improve - Contribute to detection rule development and SOC tooling enhancements Automate & Optimise - Support automation and configuration improvements within the SOC Test & Assure - Assist with security testing, assurance activities, and vulnerability management Collaborate & Deliver - Work closely with CGI, Microsoft, and client teams to maintain secure service delivery Support & Transition - Help transition security capabilities from project delivery into operational service Required qualifications to be successful in this role To succeed in this role, you should bring experience in SOC environments with strong analytical and investigative skills, along with a solid understanding of security monitoring, incident response, and secure service delivery. You will be comfortable working in regulated environments and motivated to continuously improve detection capabilities and operational resilience. Essential qualifications You should have hands-on experience working within a Security Operations Centre (SOC) Strong experience in security monitoring, alert investigation, and incident response Proven experience working with SIEM and/or SOAR platforms including log analysis and event monitoring Experience with Microsoft server technologies and Azure environments Familiarity with vulnerability management tools and security testing practices Understanding of information assurance principles and secure operational processes Experience working in secure, defence, or highly regulated environments Strong analytical, troubleshooting, and problem-solving skills Ability to collaborate effectively within client and consultancy delivery teams Experience with Huntsman platform or willingness to learn emerging technologies such as MASH (desirable) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Penetration Tester Position Description CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities An opportunity for an experienced penetration testers has become available due to growth, joining the CGI Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Experience of the assessment of bespoke applications, cloud technologies and mobile applications (on diverse mobile platforms) would be of an advantage. You would join our established team of penetration testers with the possibility of progressing to team leader or principal tester positions. You would be able to work flexibly, undertaking work at home and at client sites across the UK. Required qualifications to be successful in this role - CHECK Team Leader (CTL) - CHECK Team Member (CTM) - CREST Certified Simulated Attack Specialist (CCSAS) - CREST Certified Tester (CCT). Sometimes known as CREST Certified Infrastructure Tester (CCT Inf) or CREST Certified Web Application Tester (CCT App) - Cyber Scheme Team Leader (CSTL) - TigerScheme Qualified Security Team Leader (QSTL) - Crest Registered Tester (CRT) - Cyber Scheme Team Member (CSTM) - TigerScheme Qualified Security Team Member (QSTM) - CREST Practitioner Security Analyst (CPSA) - Offensive Security Certified Professional (OSCP) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
01/04/2026
Full time
Penetration Tester Position Description CGI Cyber Security Team in the UK is one of the largest Cyber consultancies in the UK with around 300 members. The UK Cyber team works across a variety of domains including: Government, Defence, Critical Infrastructure, Healthcare, Utilities, Banking and Financial Services and Many more. At CGI you will get the opportunity to work across a number of domains and work in all areas of Cyber Security allowing you to grow and develop your career. We offer full 360-degree services to our clients from initial consulting on a range of areas including Risk Assessments, Vulnerability Management, Accreditations (ISO27001, GDPR), GRC (Governance, Risk, Compliance), Security Architecture Design and Build (technical and Non-technical), Incident Response, Protective Monitoring Services, Penetration Testing and much more. We take clients through a journey to improve their overall security posture and maturity to ensure they feel reassured in the Security control, measures and systems we have put in place in line with their requirements. At CGI training and development is very important not only do we give you training to keep you up to date with the latest trends within an ever-changing landscape, but we also combine that training with your career ambitions, so we support you in taking your career anywhere you want it to go. Our roles are only available if you hold or fulfil the criteria to obtain a UK Security Clearance. Your future duties and responsibilities An opportunity for an experienced penetration testers has become available due to growth, joining the CGI Cyber Security business unit, one of the largest groups of cyber security specialists in the UK. CGI has a long established reputation in this area, undertaking rigorous testing for a variety of commercial and public sector clients for over 30 years. Experience of the assessment of bespoke applications, cloud technologies and mobile applications (on diverse mobile platforms) would be of an advantage. You would join our established team of penetration testers with the possibility of progressing to team leader or principal tester positions. You would be able to work flexibly, undertaking work at home and at client sites across the UK. Required qualifications to be successful in this role - CHECK Team Leader (CTL) - CHECK Team Member (CTM) - CREST Certified Simulated Attack Specialist (CCSAS) - CREST Certified Tester (CCT). Sometimes known as CREST Certified Infrastructure Tester (CCT Inf) or CREST Certified Web Application Tester (CCT App) - Cyber Scheme Team Leader (CSTL) - TigerScheme Qualified Security Team Leader (QSTL) - Crest Registered Tester (CRT) - Cyber Scheme Team Member (CSTM) - TigerScheme Qualified Security Team Member (QSTM) - CREST Practitioner Security Analyst (CPSA) - Offensive Security Certified Professional (OSCP) Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll reach your full potential because You are invited to be an owner from day 1 as we work together to bring our Dream to life. That's why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company's strategy and direction. Your work creates value. You'll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You'll shape your career by joining a company built to grow and last. You'll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team-one of the largest IT and business consulting services firms in the world.
Senior Cyber Security Engineer Reading/Hybrid (one day per week in the office) Salary: £65,000-£75,000 We are working with a leading UK pensions and insurance consulting and administration business. A FTSE 250 company, our client works with over 1,400 pension schemes, administers over one million member accounts, and supports insurance companies in the life and bulk annuities sector. ABOUT THE ROLE You will join an expanding cyber security team working alongside internal engineers, security operations analysts, and an external 24/7 SOC. Reporting to the Cyber Security Engineering Manager, you will carry out daily security engineering tasks and lead security hardening projects to protect our client's IT infrastructure, networks, and data. RESPONSIBILITIES Provide expert technical security guidance covering IT assets, change control, security testing, secure systems design, and security controls Own and develop the vulnerability management programme, with a focus on application security testing, web application Firewalls, and securing development pipelines Mentor and provide security direction to other team members Carry out security engineering tasks to agreed SLAs/KPIs using ITIL best practice Develop understanding of threats, risks, and evolving attack vectors facing the business Represent the security team as subject matter expert in meetings and projects Support the operations team with security incident investigation in complex cross-technology environments Assist with security training and awareness campaigns, market reviews, supplier assessments, and client security questionnaires ESSENTIAL REQUIREMENTS Right to work in the UK Strong experience in web application security, vulnerability management, penetration testing, and hardening IT systems Experience with cloud hosting, cloud migration, application testing, and working with developers to improve security Solid knowledge of security products including WAFs, SIEM, AV, email/web gateways, Firewalls, load balancers, ACLs, TCP/IP, routing, and switching Familiarity with OWASP, SASE, zero-trust, and risk-based vulnerability management Background in infrastructure and networks Working towards or holding CISSP, SANS GCIA, CompTIA Security+, CCNA/CCNP or equivalent Excellent written and verbal communication skills, including network diagramming Willingness to travel to other sites as required DESIRABLE Computer Science degree or equivalent experience Knowledge of ISO27001, Cyber Essentials, and AAF control frameworks BENEFITS Competitive salary, discretionary annual bonus, 25 days holiday (with buy/sell option), flexible bank holidays, matched pension contributions, healthcare cash plan, flexible benefits scheme, life assurance (4x salary), retail discounts, Employee Assistance Programme, digital GP service, paid volunteering day, and staff referral scheme. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
01/04/2026
Full time
Senior Cyber Security Engineer Reading/Hybrid (one day per week in the office) Salary: £65,000-£75,000 We are working with a leading UK pensions and insurance consulting and administration business. A FTSE 250 company, our client works with over 1,400 pension schemes, administers over one million member accounts, and supports insurance companies in the life and bulk annuities sector. ABOUT THE ROLE You will join an expanding cyber security team working alongside internal engineers, security operations analysts, and an external 24/7 SOC. Reporting to the Cyber Security Engineering Manager, you will carry out daily security engineering tasks and lead security hardening projects to protect our client's IT infrastructure, networks, and data. RESPONSIBILITIES Provide expert technical security guidance covering IT assets, change control, security testing, secure systems design, and security controls Own and develop the vulnerability management programme, with a focus on application security testing, web application Firewalls, and securing development pipelines Mentor and provide security direction to other team members Carry out security engineering tasks to agreed SLAs/KPIs using ITIL best practice Develop understanding of threats, risks, and evolving attack vectors facing the business Represent the security team as subject matter expert in meetings and projects Support the operations team with security incident investigation in complex cross-technology environments Assist with security training and awareness campaigns, market reviews, supplier assessments, and client security questionnaires ESSENTIAL REQUIREMENTS Right to work in the UK Strong experience in web application security, vulnerability management, penetration testing, and hardening IT systems Experience with cloud hosting, cloud migration, application testing, and working with developers to improve security Solid knowledge of security products including WAFs, SIEM, AV, email/web gateways, Firewalls, load balancers, ACLs, TCP/IP, routing, and switching Familiarity with OWASP, SASE, zero-trust, and risk-based vulnerability management Background in infrastructure and networks Working towards or holding CISSP, SANS GCIA, CompTIA Security+, CCNA/CCNP or equivalent Excellent written and verbal communication skills, including network diagramming Willingness to travel to other sites as required DESIRABLE Computer Science degree or equivalent experience Knowledge of ISO27001, Cyber Essentials, and AAF control frameworks BENEFITS Competitive salary, discretionary annual bonus, 25 days holiday (with buy/sell option), flexible bank holidays, matched pension contributions, healthcare cash plan, flexible benefits scheme, life assurance (4x salary), retail discounts, Employee Assistance Programme, digital GP service, paid volunteering day, and staff referral scheme. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Information Security Analyst - Staffordshire Cyber Analyst to join the Information Security Team. Someone who can take those outputs from projects / tools and drive improvements. Looking for an experienced, proactive Security Analyst to ensure the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working with other departments to ensure security systems are secure, fit for purpose and protected to an optimal level. You will be responsible for driving the security scrutiny, culture, awareness, and adoption across the business. Security Toolsets and a Technical Mindset, you re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements Experienced in a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security systems. Analyse and interpret outputs to identify security weaknesses and recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties This is working for an excellent client who offer progression and development. This is an office-based role in Staffordshire and you will join a small, dedicated security team.
01/04/2026
Full time
Information Security Analyst - Staffordshire Cyber Analyst to join the Information Security Team. Someone who can take those outputs from projects / tools and drive improvements. Looking for an experienced, proactive Security Analyst to ensure the correct level of security integrity to protect systems, information, personal data and people from cyber-attacks and unauthorised access. Working with other departments to ensure security systems are secure, fit for purpose and protected to an optimal level. You will be responsible for driving the security scrutiny, culture, awareness, and adoption across the business. Security Toolsets and a Technical Mindset, you re not expected or required to be an expert in all areas but expected to have a solid understanding and grounding in security principals to adapt to the varied requirements Experienced in a wide variety of security software, systems, services and toolsets such as E-mail Security, EDR, NAC, IT/OT Segmentation, 365 etc along with an understanding of malware prevention, emerging threats, attacks and vulnerability management Understanding of Information Security best practice for elements including workstations, servers, cloud, networking, architecture, common protocols, and application security Can confidently perform security audits, both internal and external (e.g., third party and supplier assurance) and ensure recommendations are followed for continuous improvement Strong Incident Response Management skills including threat and vulnerability analysis Understanding of security frameworks such as NIST, and Cyber Essentials As the analyst you will work with the security manager and engineer the day-to-day running and monitoring of Information Security systems. Analyse and interpret outputs to identify security weaknesses and recommend continuous improvements and be involved in - Respond to Security Incidents, reports and alerts ensuring prompt containment and recovery. Plan and oversee regular security penetration testing against new and existing services to identify weaknesses and formulate plans and processes to minimise current and future risk Conduct regular security risk reviews and manage security remediation activity, internally on new IT/Business projects and with third parties This is working for an excellent client who offer progression and development. This is an office-based role in Staffordshire and you will join a small, dedicated security team.
About the role This is a fantastic opportunity to join Southern Water's Cyber Risk & Assurance team, the organisation's second line of defence within the wider Cyber Security function. As a Cyber Risk & Assurance Analyst, you'll play a central role in helping the business understand, manage and reduce cyber risk across critical operations. You'll be responsible for developing and improving cyber risk insights in your area of specialism, driving process and tooling enhancements, and supporting stakeholders across Technology, Legal and the wider business. This is a role for someone who enjoys tackling complex problems, breaking them down into actionable solutions, and collaborating with a wide range of experts. You'll also act as a trusted advisor helping colleagues understand cyber threats, risks and controls, and supporting the wider team in embedding strong cyber risk management practices across Southern Water. What you will be responsible for: You will conduct complex cyber risk assessments, strengthen key controls, deliver clear risk insights, and drive improvements across cyber domains - all while building collaborative relationships across Technology, Security, Legal and the business. Key Responsibilities Maintain an up-to-date understanding of the cyber threat landscape, relevant regulations (including NIS1/NIS2 and GDPR), and emerging risks. Lead, plan and perform complex cyber risk assessments aligned to industry-recognised frameworks, testing the design and effectiveness of cyber controls. Produce high-quality risk assessment reports with clear, actionable conclusions that support timely risk-based decision-making. Identify and deliver improvements across domains such as identity & access management, application security, endpoint security, and network security. Work closely with stakeholders across Security, Technology, Legal, Internal Audit and the wider business to assess control gaps, prioritise remediation actions and track progress to completion. Build strong working relationships across teams to influence, support and strengthen cyber risk management practices. Drive process improvements and enhancements across the Cyber Risk & Assurance function. Additional requirements specific to the role Will work closely with both technical teams and non-technical stakeholders, requiring an ability to communicate complex concepts clearly. Must be comfortable operating in an environment with regulatory, operational and cyber security obligations. Occasional engagement with internal or external audit teams may be required. What you'll bring to the role: Essential Degree-level education or equivalent experience. Strong knowledge of cyber security and information security control best practice. Proven experience in cyber security, risk management or security assessment (10+ years, or advanced degree with 8+ years). In-depth understanding of key frameworks such as NIST (800-37, 800-30, 800-53), ISO 27001/27005, SOC 2, PCI or MITRE ATT&CK. Solid understanding of cloud models, application security, vulnerability and patch management. Experience in regulated and/or unionised environments. Excellent communication skills with the ability to simplify complex findings for senior management. Strong attention to detail and a proactive, positive, innovative mindset. Desirable GRC or security certifications (e.g., CISSP, CISM, CRISC, CISA, GCFE, GSEC, CCSP). Experience with cyber risk modelling (e.g., CyberCube, RMS, Cyence). Hands-on experience with frameworks such as ISO 27001, NIST CSF, NCSC CAF or CIS Controls. Understanding of ICS/OT environments. Southern Water is at the forefront of transforming Britain's water industry, investing significantly to enhance resilience, sustainability, and service excellence. With £7.8bn planned investment for 2025-30, this is an unparalleled opportunity to join a business committed to delivering a generational shift in the way water services are managed. You will be joining at a time of significant change, working alongside a highly skilled leadership team with a clear vision for the future. We offer an environment where senior professionals can make a meaningful impact, influence major strategic decisions, and drive long-term value creation . At Southern Water, we believe diverse perspectives drive innovation. If you're passionate about making a positive impact and think you can bring value to our team, we'd love to hear from you-even if you don't tick every box. Your unique skills and experiences could be exactly what we need. Our Commitment to Diversity We welcome applicants from all backgrounds, identities, and experiences. We do not discriminate based on race, ethnicity, gender, sexual orientation, age, disability, religion, or any other protected characteristic. If you need reasonable adjustments during the recruitment process, please let us know. Additional information: In line with Southern Water's security requirements, successful candidates will be required to provide evidence of their identity, eligibility to work in the UK, criminal record check (DBS) and verification of their employment and/or education history for the past three years. Appointment to this role is subject to the successful completion of all preemployment checks, including security vetting. Please note that if a candidate does not meet the required security standards or fails to pass the vetting process, Southern Water reserves the right to withdraw the offer of employment. Some positions may also require higher levels of security vetting, which may involve providing additional documentation.
01/04/2026
Full time
About the role This is a fantastic opportunity to join Southern Water's Cyber Risk & Assurance team, the organisation's second line of defence within the wider Cyber Security function. As a Cyber Risk & Assurance Analyst, you'll play a central role in helping the business understand, manage and reduce cyber risk across critical operations. You'll be responsible for developing and improving cyber risk insights in your area of specialism, driving process and tooling enhancements, and supporting stakeholders across Technology, Legal and the wider business. This is a role for someone who enjoys tackling complex problems, breaking them down into actionable solutions, and collaborating with a wide range of experts. You'll also act as a trusted advisor helping colleagues understand cyber threats, risks and controls, and supporting the wider team in embedding strong cyber risk management practices across Southern Water. What you will be responsible for: You will conduct complex cyber risk assessments, strengthen key controls, deliver clear risk insights, and drive improvements across cyber domains - all while building collaborative relationships across Technology, Security, Legal and the business. Key Responsibilities Maintain an up-to-date understanding of the cyber threat landscape, relevant regulations (including NIS1/NIS2 and GDPR), and emerging risks. Lead, plan and perform complex cyber risk assessments aligned to industry-recognised frameworks, testing the design and effectiveness of cyber controls. Produce high-quality risk assessment reports with clear, actionable conclusions that support timely risk-based decision-making. Identify and deliver improvements across domains such as identity & access management, application security, endpoint security, and network security. Work closely with stakeholders across Security, Technology, Legal, Internal Audit and the wider business to assess control gaps, prioritise remediation actions and track progress to completion. Build strong working relationships across teams to influence, support and strengthen cyber risk management practices. Drive process improvements and enhancements across the Cyber Risk & Assurance function. Additional requirements specific to the role Will work closely with both technical teams and non-technical stakeholders, requiring an ability to communicate complex concepts clearly. Must be comfortable operating in an environment with regulatory, operational and cyber security obligations. Occasional engagement with internal or external audit teams may be required. What you'll bring to the role: Essential Degree-level education or equivalent experience. Strong knowledge of cyber security and information security control best practice. Proven experience in cyber security, risk management or security assessment (10+ years, or advanced degree with 8+ years). In-depth understanding of key frameworks such as NIST (800-37, 800-30, 800-53), ISO 27001/27005, SOC 2, PCI or MITRE ATT&CK. Solid understanding of cloud models, application security, vulnerability and patch management. Experience in regulated and/or unionised environments. Excellent communication skills with the ability to simplify complex findings for senior management. Strong attention to detail and a proactive, positive, innovative mindset. Desirable GRC or security certifications (e.g., CISSP, CISM, CRISC, CISA, GCFE, GSEC, CCSP). Experience with cyber risk modelling (e.g., CyberCube, RMS, Cyence). Hands-on experience with frameworks such as ISO 27001, NIST CSF, NCSC CAF or CIS Controls. Understanding of ICS/OT environments. Southern Water is at the forefront of transforming Britain's water industry, investing significantly to enhance resilience, sustainability, and service excellence. With £7.8bn planned investment for 2025-30, this is an unparalleled opportunity to join a business committed to delivering a generational shift in the way water services are managed. You will be joining at a time of significant change, working alongside a highly skilled leadership team with a clear vision for the future. We offer an environment where senior professionals can make a meaningful impact, influence major strategic decisions, and drive long-term value creation . At Southern Water, we believe diverse perspectives drive innovation. If you're passionate about making a positive impact and think you can bring value to our team, we'd love to hear from you-even if you don't tick every box. Your unique skills and experiences could be exactly what we need. Our Commitment to Diversity We welcome applicants from all backgrounds, identities, and experiences. We do not discriminate based on race, ethnicity, gender, sexual orientation, age, disability, religion, or any other protected characteristic. If you need reasonable adjustments during the recruitment process, please let us know. Additional information: In line with Southern Water's security requirements, successful candidates will be required to provide evidence of their identity, eligibility to work in the UK, criminal record check (DBS) and verification of their employment and/or education history for the past three years. Appointment to this role is subject to the successful completion of all preemployment checks, including security vetting. Please note that if a candidate does not meet the required security standards or fails to pass the vetting process, Southern Water reserves the right to withdraw the offer of employment. Some positions may also require higher levels of security vetting, which may involve providing additional documentation.
The Information Security Analyst will play a critical role in safeguarding the organisation's systems and data, ensuring compliance with security policies and regulations. Based in Hatfield, this role is ideal for individuals passionate about the life science industry and technology. Client Details The hiring company is a medium-sized organisation operating within the life science industry, with a focus on innovation and excellence in its field. The company is known for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security / Technology project Lead / execute phishing campaign Conduct vulnerability assessments and implement measures to mitigate potential risks. Involve in global security operations process, analysis and escalate security alerts / tickets from global SOC team Maintain and update security policies, standards, and procedures in alignment with industry regulations. Collaborate with cross-functional teams to ensure secure system designs and implementations. Provide training and support to staff to enhance security awareness across the organisation. Profile Practical experience and understanding of ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem-solving skills. Hold at least one security related professional certification is desirable Job Offer 24 days of holiday leave Performance-based bonus of up to 10%. Pension scheme with contributions up to 10%. Private medical insurance, life assurance, dental cover Finance support on professional certifications / memberships
01/04/2026
Full time
The Information Security Analyst will play a critical role in safeguarding the organisation's systems and data, ensuring compliance with security policies and regulations. Based in Hatfield, this role is ideal for individuals passionate about the life science industry and technology. Client Details The hiring company is a medium-sized organisation operating within the life science industry, with a focus on innovation and excellence in its field. The company is known for its commitment to leveraging technology to drive forward its mission. Description Implement and maintain ISMS aligning with ISO27001 Ensure security controls are in-place based on ISO27001 and NIST As the regional security representative in the global Security / Technology project Lead / execute phishing campaign Conduct vulnerability assessments and implement measures to mitigate potential risks. Involve in global security operations process, analysis and escalate security alerts / tickets from global SOC team Maintain and update security policies, standards, and procedures in alignment with industry regulations. Collaborate with cross-functional teams to ensure secure system designs and implementations. Provide training and support to staff to enhance security awareness across the organisation. Profile Practical experience and understanding of ISO27001 Familiar with NIST and GDPR is preferred Solid experience in threat, risk and vulnerabilities management process Experience with security tools such as SIEM, intrusion detection systems, and endpoint protection. Strong analytical and problem-solving skills. Hold at least one security related professional certification is desirable Job Offer 24 days of holiday leave Performance-based bonus of up to 10%. Pension scheme with contributions up to 10%. Private medical insurance, life assurance, dental cover Finance support on professional certifications / memberships
SOC Analyst (Level 2) Location: Aylesbury (Hybrid) Salary: Up to £45,000 (depending on experience) CTA are working with a Cyber Security company who are for a SOC Analyst (L2) to join their growing Security Operations Centre. This role is ideal for a junior analyst looking to build hands-on experience in monitoring, triaging, and responding to security incidents in a fast-paced, shift-based environment. Key Responsibilities Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. Threat Detection & Analysis: Develop and refine detection rules and use cases to improve threat visibility. Threat Hunting: Proactively hunt for advanced threats and indicators of compromise across the environment. Vulnerability Management: Identify, assess, and prioritise vulnerabilities and recommend remediation actions. Security Reporting: Produce detailed reports on incidents, trends, and overall security posture. Process Improvement & Automation: Enhance SOC processes, playbooks, and automation capabilities. Skills & Experience Strong experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat detection methodologies Networking protocols (TCP/IP, DNS, HTTP/S) Experience analysing logs from multiple sources (endpoints, network, cloud) Ability to independently investigate and resolve security incidents Scripting or automation experience (e.g., Python, PowerShell) is a plus Strong communication and stakeholder management skills What You'll Be Doing Acting as an escalation point for Level 1 analysts Working closely with customers and internal teams on incident investigations Tuning detection rules and improving alert quality Staying up to date with emerging threats, vulnerabilities, and attack techniques Supporting and mentoring junior analysts Requirements UK Citizenship (required due to the nature of the role) If you are looking for a progressive move with an established Cyber company, please do send your application through for consideration.
01/04/2026
Full time
SOC Analyst (Level 2) Location: Aylesbury (Hybrid) Salary: Up to £45,000 (depending on experience) CTA are working with a Cyber Security company who are for a SOC Analyst (L2) to join their growing Security Operations Centre. This role is ideal for a junior analyst looking to build hands-on experience in monitoring, triaging, and responding to security incidents in a fast-paced, shift-based environment. Key Responsibilities Advanced Security Monitoring: Analyse SIEM alerts, logs, and security events to identify and respond to complex threats. Incident Response: Lead investigations, perform deep analysis, determine impact, and coordinate response activities. Threat Detection & Analysis: Develop and refine detection rules and use cases to improve threat visibility. Threat Hunting: Proactively hunt for advanced threats and indicators of compromise across the environment. Vulnerability Management: Identify, assess, and prioritise vulnerabilities and recommend remediation actions. Security Reporting: Produce detailed reports on incidents, trends, and overall security posture. Process Improvement & Automation: Enhance SOC processes, playbooks, and automation capabilities. Skills & Experience Strong experience with SIEM platforms (e.g., Microsoft Sentinel, Sumo Logic) Hands-on experience with EDR/XDR tools (e.g., CrowdStrike, Microsoft Defender) Solid understanding of: Incident response lifecycle Threat detection methodologies Networking protocols (TCP/IP, DNS, HTTP/S) Experience analysing logs from multiple sources (endpoints, network, cloud) Ability to independently investigate and resolve security incidents Scripting or automation experience (e.g., Python, PowerShell) is a plus Strong communication and stakeholder management skills What You'll Be Doing Acting as an escalation point for Level 1 analysts Working closely with customers and internal teams on incident investigations Tuning detection rules and improving alert quality Staying up to date with emerging threats, vulnerabilities, and attack techniques Supporting and mentoring junior analysts Requirements UK Citizenship (required due to the nature of the role) If you are looking for a progressive move with an established Cyber company, please do send your application through for consideration.
Job Title - Senior Data Manager Location - Manchester, UK Type - Contract Job Description: About the role The Trips Data Governance team manages data for all aspects of trips, excluding stays, enabling teams to understand and improve business performance and customer experience. They are currently seeking an experienced Data Manager to join their impactful Data Governance team to support the critical SAP Rise migration program. About the SAP Rise program: The programme is a key business modernisation initiative to migrate the current Booking Transport (BTL) SAP instance to a standardised cloud-based ERP system. The programme will introduce an interim architecture between the current platform and the SAP S/4 RISE ecosystem to test processes, data quality and governance, data contracts, and new capabilities, while supporting the transition to the North Star architecture where data flows directly from a modernised enterprise order platform. Role Overview: In this role, a Senior Data Manager combines technical knowledge, business insight, and expert communication to provide critical information about data systems. This position focuses on supporting business needs with high-quality data through monitoring, issue detection, impact quantification, end-to-end data corrections, standardization, and architectural optimization. A key aspect of the role is to advocate for a Data Quality mindset across the organization. You will report to a Senior Manager and collaborate with other Data Managers on strategic objectives for data quality, governance, metadata management and regulatory compliance. This is a hands-on role where you will work closely with Business Analysts, Data Engineers, Data Scientists, and Insights Analysts to build deliverables required for the SAP Rise program. Roles & Responsibilities As a Senior Data Manager I (Level G), your required competencies include: Independence in: AI & Ethics: Independent in ethical data handling, responsible AI, compliance, knowledge & prompt engineering, and AI application in Data Management. Change & Project Mgt.: Independent in change management, planning, monitoring & delivery, stakeholder management, and DQ implementation. Critical Thinking: Independent in decision making, and DQ - investigate & resolve. Data & Info. Management: Independent in MDM integrations, MDM policies, document & content lifecycle, document & content classification, data risk identification, data risk decision, data risk mitigation, metadata management, and data lifecycle management. Effective Communication: Independent in communication basics, cross-cultural relationships, and tailored messaging & motivational communication. Privacy & Security: Independent in high-pressure communication, regulatory knowledge, vulnerability & mitigation, and compliance-by-design. Software & Analytics: Independent in coding, visualisation, and Data Mgt. Adoption. Stewardship: Independent in identification & training. Strategy & Policy: Independent in data management strategy, policies, standards & playbooks, and maturity model & assessment. Solution Design: Independent in solution requirements. Expertise Critical Thinking: Expertise in root cause analysis. Data & Info. Management: Expertise in MDM requirements. Software & Analytics: Expertise in analysis (both listed entries), Data Mgt. Integration, and DQ Dimensions & Rules. Solution Design: Expertise in solution monitoring & iteration. Stewardship: Expertise in advocacy & support. Randstad Technologies is acting as an Employment Business in relation to this vacancy.
01/04/2026
Contractor
Job Title - Senior Data Manager Location - Manchester, UK Type - Contract Job Description: About the role The Trips Data Governance team manages data for all aspects of trips, excluding stays, enabling teams to understand and improve business performance and customer experience. They are currently seeking an experienced Data Manager to join their impactful Data Governance team to support the critical SAP Rise migration program. About the SAP Rise program: The programme is a key business modernisation initiative to migrate the current Booking Transport (BTL) SAP instance to a standardised cloud-based ERP system. The programme will introduce an interim architecture between the current platform and the SAP S/4 RISE ecosystem to test processes, data quality and governance, data contracts, and new capabilities, while supporting the transition to the North Star architecture where data flows directly from a modernised enterprise order platform. Role Overview: In this role, a Senior Data Manager combines technical knowledge, business insight, and expert communication to provide critical information about data systems. This position focuses on supporting business needs with high-quality data through monitoring, issue detection, impact quantification, end-to-end data corrections, standardization, and architectural optimization. A key aspect of the role is to advocate for a Data Quality mindset across the organization. You will report to a Senior Manager and collaborate with other Data Managers on strategic objectives for data quality, governance, metadata management and regulatory compliance. This is a hands-on role where you will work closely with Business Analysts, Data Engineers, Data Scientists, and Insights Analysts to build deliverables required for the SAP Rise program. Roles & Responsibilities As a Senior Data Manager I (Level G), your required competencies include: Independence in: AI & Ethics: Independent in ethical data handling, responsible AI, compliance, knowledge & prompt engineering, and AI application in Data Management. Change & Project Mgt.: Independent in change management, planning, monitoring & delivery, stakeholder management, and DQ implementation. Critical Thinking: Independent in decision making, and DQ - investigate & resolve. Data & Info. Management: Independent in MDM integrations, MDM policies, document & content lifecycle, document & content classification, data risk identification, data risk decision, data risk mitigation, metadata management, and data lifecycle management. Effective Communication: Independent in communication basics, cross-cultural relationships, and tailored messaging & motivational communication. Privacy & Security: Independent in high-pressure communication, regulatory knowledge, vulnerability & mitigation, and compliance-by-design. Software & Analytics: Independent in coding, visualisation, and Data Mgt. Adoption. Stewardship: Independent in identification & training. Strategy & Policy: Independent in data management strategy, policies, standards & playbooks, and maturity model & assessment. Solution Design: Independent in solution requirements. Expertise Critical Thinking: Expertise in root cause analysis. Data & Info. Management: Expertise in MDM requirements. Software & Analytics: Expertise in analysis (both listed entries), Data Mgt. Integration, and DQ Dimensions & Rules. Solution Design: Expertise in solution monitoring & iteration. Stewardship: Expertise in advocacy & support. Randstad Technologies is acting as an Employment Business in relation to this vacancy.
The Information Security Officer will support the safeguarding of the organisation's information assets by identifying risks, monitoring security controls, and ensuring best-practice governance. The role also contributes to incident response, third-party oversight, and ongoing security improvements. It is a hybrid role. You can choose to work in either one of the offices: Manchester, Cardiff, London. Client Details The client is a rapid growing finance service provider, with a strong focus on data protection, operational resilience, and continuous improvement in cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Work closely with SOC team and infrastructure team for remediation plan Assist with regulatory and audit obligations by preparing documentation and ensuring compliance with legal standards. Maintain and update security policies, standards, and procedures to reflect organisational needs and current threats. Deliver security awareness initiatives and training to promote secure behaviours across the organisation. Perform due-diligence reviews of third-party suppliers and support ongoing monitoring of external security risks. Profile Experience in information security, risk assessment within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability to explain technical security matters to non-technical stakeholders. Highly organised, proactive, and capable of managing multiple priorities with attention to detail. Relevant qualifications (CISM is highly preferred) or certifications (e.g., CISMP, Security+, CISM, CISSP, SC-200, AZ-500) Job Offer Hybrid role: 60% in Manchester, Cardiff or London office 25 days holiday plus birthday off Pension Scheme (8% matched) Life Assurance Private Medical Insurance Gym Memberships Retails discounts
01/04/2026
Full time
The Information Security Officer will support the safeguarding of the organisation's information assets by identifying risks, monitoring security controls, and ensuring best-practice governance. The role also contributes to incident response, third-party oversight, and ongoing security improvements. It is a hybrid role. You can choose to work in either one of the offices: Manchester, Cardiff, London. Client Details The client is a rapid growing finance service provider, with a strong focus on data protection, operational resilience, and continuous improvement in cybersecurity. They offer a supportive environment with investment in modern tools, frameworks, and professional development. Description Conduct and support information security risk assessments, vulnerability reviews, and the maintenance of the risk register. Work closely with SOC team and infrastructure team for remediation plan Assist with regulatory and audit obligations by preparing documentation and ensuring compliance with legal standards. Maintain and update security policies, standards, and procedures to reflect organisational needs and current threats. Deliver security awareness initiatives and training to promote secure behaviours across the organisation. Perform due-diligence reviews of third-party suppliers and support ongoing monitoring of external security risks. Profile Experience in information security, risk assessment within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such as ISO 27001, NIST, or Cyber Essentials. Strong communication skills, with the ability to explain technical security matters to non-technical stakeholders. Highly organised, proactive, and capable of managing multiple priorities with attention to detail. Relevant qualifications (CISM is highly preferred) or certifications (e.g., CISMP, Security+, CISM, CISSP, SC-200, AZ-500) Job Offer Hybrid role: 60% in Manchester, Cardiff or London office 25 days holiday plus birthday off Pension Scheme (8% matched) Life Assurance Private Medical Insurance Gym Memberships Retails discounts
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
01/04/2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
01/04/2026
Full time
We are partnering an Energy Data provider who are looking for a hands-on Cyber Security Analyst to join their internal IT & Security team during a pivotal period of change. A true 4-day working week My client operates Monday to Thursday, working week, with Fridays off. Extensive Microsoft Purview experience is required for this role. Responsibilities Own and run our vulnerability and patch management processes Investigate and respond to security incidents (malware, phishing, unauthorised access, etc.) Conduct vulnerability assessments and support remediation efforts Help implement and enforce security policies, standards, and procedures Partner with IT colleagues and business units to ensure secure configurations Support audits, risk assessments, and compliance initiatives (ISO 27001, GDPR, NIST) Act as a key escalation point for security investigations Maximise the effectiveness of Microsoft Defender, Intune, and Purview Promote cyber awareness and best practice across the organisation Collaborate with the Information Security Manager and Compliance Team on GRC activity Stay ahead of emerging threats, vulnerabilities, and industry trends Identify opportunities to improve security tooling, processes, and controls Skills & Experience Needed Microsoft 365 Defender/Security Portal (endpoint and identity protection) Microsoft Purview (data governance and compliance, including Compliance Portal) Proven hands-on experience remediating vulnerabilities and applying patches in a live environment A strong understanding of cybersecurity principles and threat landscapes Experience with endpoint, network, and identity security within Microsoft ecosystems. Strong troubleshooting and analytical skills Effective communication and collaboration across technical and non-technical teams Relevant certifications (eg, Security+, CySA+, SC-200, SSCP) are beneficial Familiarity with Power Platform and Power BI is advantageous A minimum of three years of relevant experience in similar positions. If you're looking to join a forward-thinking organisation, play a key role in strengthening its security infrastructure, and enjoy a better work-life balance with a 4-day work week, please email your CV. Etech Partners needs to collect and use your personal information when you apply for a role. We understand that you care about your privacy, and we take that seriously. Our Privacy Notice describes our policies and practices regarding collection and use of your personal data. By applying for this job you accept the Privacy Policy.
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
01/04/2026
Full time
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
01/04/2026
Full time
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
Patching Analyst Location: Warwickshire - Hybrid/Remote working options available (Candidates must be UK based) Duration: Min 6 months Rate: (Apply online only) Per Day - Inside IR35 via Umbrella Our leading financial services client is undergoing an exciting digital transformation, and to strengthen their security posture, they're launching a dedicated Patch Management service and implementing Ivanti as their enterprise tool to manage OS and third-party vulnerabilities across the IT estate. This role is to support the Patch Coordination Manager is setting up the service, utilising the new enterprise tool (Ivanti), creating processes and other governance. Deliverables: Deliverable 1: To support setting up patching service Deliverable 2: Negotiating patching schedules with internal and external stakeholders Deliverable 3: Managing ongoing patching Experience required: Experience with enterprise patching or vulnerability management tools Understanding of enterprise IT environments and patching concepts High level of attention to detail and accuracy Experience producing reports and writing data queries Strong analytical skills with the ability to identify trends and risks Experience working with application or service owners Ability to communicate technical information clearly and professionally Awareness of IT service management principles (e.g. ITIL) Experience supporting audit, risk, or security assurance activities Strong stakeholder management If your profile demonstrates strong and recent experience in the above areas - please submit your application to Jackie Dean at TXP for consideration. TXP takes great pride in representing socially responsible clients who not only prioritise diversity and inclusion but also actively combat social inequality. Together, we have the power to make a profound impact on fostering a more equitable and inclusive society. By working with us, you become part of a movement dedicated to promoting a diverse and inclusive workforce.
31/03/2026
Contractor
Patching Analyst Location: Warwickshire - Hybrid/Remote working options available (Candidates must be UK based) Duration: Min 6 months Rate: (Apply online only) Per Day - Inside IR35 via Umbrella Our leading financial services client is undergoing an exciting digital transformation, and to strengthen their security posture, they're launching a dedicated Patch Management service and implementing Ivanti as their enterprise tool to manage OS and third-party vulnerabilities across the IT estate. This role is to support the Patch Coordination Manager is setting up the service, utilising the new enterprise tool (Ivanti), creating processes and other governance. Deliverables: Deliverable 1: To support setting up patching service Deliverable 2: Negotiating patching schedules with internal and external stakeholders Deliverable 3: Managing ongoing patching Experience required: Experience with enterprise patching or vulnerability management tools Understanding of enterprise IT environments and patching concepts High level of attention to detail and accuracy Experience producing reports and writing data queries Strong analytical skills with the ability to identify trends and risks Experience working with application or service owners Ability to communicate technical information clearly and professionally Awareness of IT service management principles (e.g. ITIL) Experience supporting audit, risk, or security assurance activities Strong stakeholder management If your profile demonstrates strong and recent experience in the above areas - please submit your application to Jackie Dean at TXP for consideration. TXP takes great pride in representing socially responsible clients who not only prioritise diversity and inclusion but also actively combat social inequality. Together, we have the power to make a profound impact on fostering a more equitable and inclusive society. By working with us, you become part of a movement dedicated to promoting a diverse and inclusive workforce.
Senior Security & Technology Consultants Location: Warton, UK (On-Site - 5 Days per Week) Clearance Required: Valid MOD DV (Mandatory) Engagement Type: Contract (Inside IR35) Day Rate: 500 - 900 per day (dependent on role and experience) Overview We are seeking experienced Security & Technology Professionals to support critical programmes in a secure defence environment. These roles span architecture, assurance, operations, and technical delivery disciplines and require individuals who can operate effectively within highly regulated, mission-critical settings. All positions are based full-time on-site in Warton (5 days per week) and require candidates to hold a current and valid MOD DV clearance at the time of application. Scope of Opportunities We are hiring across multiple security and technology disciplines, including: Security Architects Security Assurers Information Security Consultants SOC Analysts OT Architects Cross Domain SMEs IT Administrators Service Managers Product Security Managers Penetration Testing Specialists Technical Project / Programme Managers Key Responsibilities (Role Dependent) Security Architecture & Design Define and review secure architectures across enterprise IT and OT environments. Act as technical authority for secure system design and implementation. Lead threat modelling, risk assessments, and security design reviews. Ensure compliance with defence security standards and secure-by-design principles. Security Assurance & Governance Deliver independent security assurance across programmes. Support accreditation activities and compliance reviews. Develop and maintain security documentation, standards, and risk registers. Security Operations & SOC Monitor, analyse, and respond to security events and incidents. Strengthen detection, response, and resilience capabilities. Support vulnerability management and remediation activities. OT & Cross Domain Security Provide expertise in Operational Technology environments. Design and assure secure cross-domain solutions and data transfer mechanisms. Evaluate network segregation and high-assurance controls. Penetration Testing & Vulnerability Management Conduct or oversee penetration testing engagements. Assess vulnerabilities and validate remediation strategies. Support red/blue team activities where required. Service & Product Security Embed security into live service management processes. Act as Product Security lead across development lifecycles. Integrate DevSecOps controls and secure SDLC practices. Technical Delivery & Programme Support Manage security-focused technical workstreams. Provide governance reporting to senior stakeholders. Translate technical risks into business impact and mitigation plans. Essential Requirements Valid and transferable MOD DV clearance (mandatory). Availability to work on-site in Warton, 5 days per week. Strong background in one or more of the listed security disciplines. Experience working in secure, defence, or highly regulated environments. Relevant certifications (e.g., CISSP, CISM, TOGAF, CREST, cloud certifications).
31/03/2026
Contractor
Senior Security & Technology Consultants Location: Warton, UK (On-Site - 5 Days per Week) Clearance Required: Valid MOD DV (Mandatory) Engagement Type: Contract (Inside IR35) Day Rate: 500 - 900 per day (dependent on role and experience) Overview We are seeking experienced Security & Technology Professionals to support critical programmes in a secure defence environment. These roles span architecture, assurance, operations, and technical delivery disciplines and require individuals who can operate effectively within highly regulated, mission-critical settings. All positions are based full-time on-site in Warton (5 days per week) and require candidates to hold a current and valid MOD DV clearance at the time of application. Scope of Opportunities We are hiring across multiple security and technology disciplines, including: Security Architects Security Assurers Information Security Consultants SOC Analysts OT Architects Cross Domain SMEs IT Administrators Service Managers Product Security Managers Penetration Testing Specialists Technical Project / Programme Managers Key Responsibilities (Role Dependent) Security Architecture & Design Define and review secure architectures across enterprise IT and OT environments. Act as technical authority for secure system design and implementation. Lead threat modelling, risk assessments, and security design reviews. Ensure compliance with defence security standards and secure-by-design principles. Security Assurance & Governance Deliver independent security assurance across programmes. Support accreditation activities and compliance reviews. Develop and maintain security documentation, standards, and risk registers. Security Operations & SOC Monitor, analyse, and respond to security events and incidents. Strengthen detection, response, and resilience capabilities. Support vulnerability management and remediation activities. OT & Cross Domain Security Provide expertise in Operational Technology environments. Design and assure secure cross-domain solutions and data transfer mechanisms. Evaluate network segregation and high-assurance controls. Penetration Testing & Vulnerability Management Conduct or oversee penetration testing engagements. Assess vulnerabilities and validate remediation strategies. Support red/blue team activities where required. Service & Product Security Embed security into live service management processes. Act as Product Security lead across development lifecycles. Integrate DevSecOps controls and secure SDLC practices. Technical Delivery & Programme Support Manage security-focused technical workstreams. Provide governance reporting to senior stakeholders. Translate technical risks into business impact and mitigation plans. Essential Requirements Valid and transferable MOD DV clearance (mandatory). Availability to work on-site in Warton, 5 days per week. Strong background in one or more of the listed security disciplines. Experience working in secure, defence, or highly regulated environments. Relevant certifications (e.g., CISSP, CISM, TOGAF, CREST, cloud certifications).
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
31/03/2026
Full time
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
31/03/2026
Full time
I am looking for a remote working Application Security Analyst for an exciting and growing technology focused business based in the UK. Please also note, although the role is offered as remote, you MUST be based in the UK to be considered for the position. Working as an Application Security Analyst you will help ensure the security and integrity of our client's applications and software solutions across both cloud and on-premises environments. This really is a fantastic opportunity to join a business that is operating at the forefront of innovation in the technology sector. In this role, you will work closely with software engineering and product development teams to embed secure development practices to their processes, to assess vulnerabilities, and strengthen their application security posture. The role will involve: Managing and optimising SCA, SAST, and DAST tooling to ensure effective scanning and remediation. Supporting engineering teams with triage, vulnerability management, and secure coding best practices. Ensuring adherence to the Secure Software Development Lifecycle ( SSDLC ). Supporting risk assessments and contributing to risk management processes. Conducting regular security assessments and reporting findings. Collaborating with cross-functional teams to meet security requirements. Maintaining and developing security documentation and standards. Staying current with emerging threats, technologies, and regulations. Contributing to the Security Programmes through advice and training. Developing reports to track security progress and highlight gaps. About You You will have strong technical skills, a passion for security, and the ability to communicate confidently with both technical and non-technical stakeholders. We are looking for someone who has the following experience and knowledgebase: - In-depth knowledge of web application security ( OWASP Top 10 ) and experience with SCA, SAST, and DAST tools. A degree in Computer Science, Information Security, or a related discipline ( STEM preferred ) or demonstrable experience. Experience in software development, QA, or software testing. Experience in Application Security and Vulnerability Management. Understanding of risk-based vulnerability management and prioritisation. Strong understanding of security protocols, cryptography, and authentication. Proficiency in programming or scripting ( any of the following, C#, Python, Java, JS frameworks or similar ). Experience with open-source and enterprise security tools. Excellent problem-solving and analytical skills. A broad interest across the security domain. About Us Our client is a nationally recognised business who deliver award-winning software solutions to a wide range of customers in diverse market sectors. Our client is immensely proud to be an equal opportunities employer, and they celebrate diversity and are committed to creating an inclusive environment for all employees. Collaboration is at the heart of what they do, and they take pride in coming together to achieve remarkable things. The role comes with a wide-range of benefits to support your well-being and career growth, including: Very Competitive Salary. Generous Holiday Allowance: 25 days' holiday plus bank holidays, with the option of adding up to 5 days additional unpaid leave days per year. Annual Lifestyle Allowance. Excellent Pension Scheme. Private Health Insurance. Group Income Protection Scheme. Charitable Fundraising. Cycle to Work and Gym Flex Schemes. Internal Coaching and Mentoring. Training and Career Progression. Family-Friendly Policies. Free Parking (if and when onsite). Please note, to be considered for this role you MUST have the Right to Work in the UK long-term without Company Sponsorship. Please note that due to a high level of applications, we can only respond to applicants whose skills and qualifications are suitable for this position. No terminology in this advert is intended to discriminate against any of the protected characteristics that fall under the Equality Act 2010. Bowerford Associates Ltd is acting as an Employment Agency in relation to this vacancy.
DGH Recruitment Ltd
Newcastle Upon Tyne, Tyne And Wear
Cyber Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require a Cyber Security Analyst to join the firm in Newcastle. The scope of the Information Security function includes all strategic security planning and control oversight to ensure effective risk mitigation takes place within the firm. The team operates a number of security solutions directly, such as anti-malware solutions, Internet security proxy servers, and the vulnerability scanning platforms. Key Responsibilities: Review, action, and escalate, any unusual event behaviour identified. Assist with development and maintenance of the Firm-wide security infrastructure configuration, policies and procedures, identifying improvements to procedures, and reporting on incidents. Actively promote security governance in support of the Information Security policies, to ensure appropriate measures are taken to secure the Firm's confidentiality and integrity. Encourage cooperative working with all business functions to achieve shared goals, ensuring skills transfer and technical security awareness within the teams. This includes writing process documents and conducting training. Key Skills and Experience: At least 5 years' experience working within Information Security infrastructure or vocation to move from another technical discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption. Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly desirable. Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM) Technical bachelor's degree or equivalent IT / Information Security experience (required) Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred). Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred) Cyber Security Analyst In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. DGH Recruitment Limited acts as both an Employment Agency and Employment Business
31/03/2026
Full time
Cyber Security Analyst DGH Recruitment are currently recruiting on behalf of a leading client in the professional services industry who require a Cyber Security Analyst to join the firm in Newcastle. The scope of the Information Security function includes all strategic security planning and control oversight to ensure effective risk mitigation takes place within the firm. The team operates a number of security solutions directly, such as anti-malware solutions, Internet security proxy servers, and the vulnerability scanning platforms. Key Responsibilities: Review, action, and escalate, any unusual event behaviour identified. Assist with development and maintenance of the Firm-wide security infrastructure configuration, policies and procedures, identifying improvements to procedures, and reporting on incidents. Actively promote security governance in support of the Information Security policies, to ensure appropriate measures are taken to secure the Firm's confidentiality and integrity. Encourage cooperative working with all business functions to achieve shared goals, ensuring skills transfer and technical security awareness within the teams. This includes writing process documents and conducting training. Key Skills and Experience: At least 5 years' experience working within Information Security infrastructure or vocation to move from another technical discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including EDR, vulnerability management tools, DLP solutions, and removable media encryption. Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly desirable. Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM) Technical bachelor's degree or equivalent IT / Information Security experience (required) Security-related certification e.g. CompTIA Security+, GSEC, CISSP, CISA, CCSP (preferred). Good understanding of security frameworks such as ISO 27001, NIST, Mitre (preferred) Cyber Security Analyst In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is advertised based upon DGH Recruitment Limited having first sought approval of its client to find candidates for this position. DGH Recruitment Limited acts as both an Employment Agency and Employment Business
