Risk & Opportunities Officer Max Supplier Charge Rate: Market rate Clearance required: BPSS Duration: 6 months Location: Hinkley Point C - Bridgwater, Somerset Hours: Full time on site/possibility to work 1 day a week from home IR35 Status: Mandated PAYE only We are heading up a recruitment drive on behalf of a leading IT consultancy that require a Risk & Opportunities Officer to join their team on a major nuclear project that is based at Hinckley Point. Job Description: The essential role of the Project Risk & Opportunity Officer is to ensure in the allocated project scope that risks and opportunities are identified, assessed, prioritized, treated by appropriate action plans and monitored. In order to perform this role, the Risk and Opportunities Officer relies on the project Risk and Opportunities Management Plan, which is based on procedures and associated method and tools, as well as methodologies developed within PCM Business Unit. Main Responsibilities: Organize and conduct Risk and Opportunities general reviews (interviews and working sessions with internal teams and our suppliers) Ensure the programming and animation of specific Risk and Opportunities analyses (from general reviews or requested by the project management) to be carried out Develop, update with the teams and disseminate the Risk and Opportunities registers and the associated summaries Prepare and share the synthesis of major Risks and Opportunities, action plans and decision milestones and ensure their proper execution Periodically consolidate major residual impacts on project planning and costs Contribute to the communication of Risk and Opportunities for internal and customer reporting Contribute to the feedback and continuous improvement of Risk and Opportunities tools and methods Organize, plan and conduct required Risk and Opportunities activities Read and take into account all important documents within allocated scope, such as the contract, budgets, time schedule, specifications, etc. Challenge the participants during these discussions in order to ensure robust identification, assessment of potential impacts and definition of action plans with their milestones Contribute to identify not only the Risks but also the Opportunities and optimization ideas (which can combine Risks and Opportunities depending on scenarios) Keep Risk and Opportunities register updated Prepare TOP 10/20 Risk and Opportunities synthesis to highlight the main stakes and proposed strategy response Ensure the evaluation of residual impacts with Project Manager and Cost Controllers, based on expected results of defined action plans Obtain Risk and Opportunities analysis validation by manager in charge of the corresponding scope Regularly share the progress of Risk and Opportunities analysis with the Project Risk and Opportunties Manager and contribute to monthly reporting Participate to project Risk and Opportunities team meetings and to Risk and Opportunties transverse meetings organized by PCM BU Key Skills and experiences: Proven experience (project management, audit, contract management) as a cross-functional interface with different professions (contract, planning, finance, purchasing, technical managers, project managers, etc.) in an international environment 5 years experience Able to interact with both operational teams and top management, you are pro-active, autonomous, curious and are known for your analytical and synthesis skills and your ability to challenge your partners. You are also persistent, proactive, customer-oriented and result-oriented. Qualifications Bac+5 degree in engineering or equivalent Experienced in managing complex projects in the nuclear/industrial sector Background: Nuclear or Construction would be desirable Knowledge of project management methodologies International or multicultural experience Experience in transverse management Additional information Working hours full time Working on site at Hinkley Point C, Bridgwater
27/03/2024
Project-based
Risk & Opportunities Officer Max Supplier Charge Rate: Market rate Clearance required: BPSS Duration: 6 months Location: Hinkley Point C - Bridgwater, Somerset Hours: Full time on site/possibility to work 1 day a week from home IR35 Status: Mandated PAYE only We are heading up a recruitment drive on behalf of a leading IT consultancy that require a Risk & Opportunities Officer to join their team on a major nuclear project that is based at Hinckley Point. Job Description: The essential role of the Project Risk & Opportunity Officer is to ensure in the allocated project scope that risks and opportunities are identified, assessed, prioritized, treated by appropriate action plans and monitored. In order to perform this role, the Risk and Opportunities Officer relies on the project Risk and Opportunities Management Plan, which is based on procedures and associated method and tools, as well as methodologies developed within PCM Business Unit. Main Responsibilities: Organize and conduct Risk and Opportunities general reviews (interviews and working sessions with internal teams and our suppliers) Ensure the programming and animation of specific Risk and Opportunities analyses (from general reviews or requested by the project management) to be carried out Develop, update with the teams and disseminate the Risk and Opportunities registers and the associated summaries Prepare and share the synthesis of major Risks and Opportunities, action plans and decision milestones and ensure their proper execution Periodically consolidate major residual impacts on project planning and costs Contribute to the communication of Risk and Opportunities for internal and customer reporting Contribute to the feedback and continuous improvement of Risk and Opportunities tools and methods Organize, plan and conduct required Risk and Opportunities activities Read and take into account all important documents within allocated scope, such as the contract, budgets, time schedule, specifications, etc. Challenge the participants during these discussions in order to ensure robust identification, assessment of potential impacts and definition of action plans with their milestones Contribute to identify not only the Risks but also the Opportunities and optimization ideas (which can combine Risks and Opportunities depending on scenarios) Keep Risk and Opportunities register updated Prepare TOP 10/20 Risk and Opportunities synthesis to highlight the main stakes and proposed strategy response Ensure the evaluation of residual impacts with Project Manager and Cost Controllers, based on expected results of defined action plans Obtain Risk and Opportunities analysis validation by manager in charge of the corresponding scope Regularly share the progress of Risk and Opportunities analysis with the Project Risk and Opportunties Manager and contribute to monthly reporting Participate to project Risk and Opportunities team meetings and to Risk and Opportunties transverse meetings organized by PCM BU Key Skills and experiences: Proven experience (project management, audit, contract management) as a cross-functional interface with different professions (contract, planning, finance, purchasing, technical managers, project managers, etc.) in an international environment 5 years experience Able to interact with both operational teams and top management, you are pro-active, autonomous, curious and are known for your analytical and synthesis skills and your ability to challenge your partners. You are also persistent, proactive, customer-oriented and result-oriented. Qualifications Bac+5 degree in engineering or equivalent Experienced in managing complex projects in the nuclear/industrial sector Background: Nuclear or Construction would be desirable Knowledge of project management methodologies International or multicultural experience Experience in transverse management Additional information Working hours full time Working on site at Hinkley Point C, Bridgwater
Infor M3 Support Analyst required for a role with a client based in Dublin. -Hybrid Working Model (3 days onsite) My client is open to hiring a contractor or on a permanent contract basis. This is an excellent opportunity for a suitable candidate to support the move from Traditional to Modern technologies and broaden their skills by implementing and supporting markets leading technologies. Key Areas of Responsibility: Own incidents and carry out investigations to support the root cause analysis Work with M3 Application team to monitor the queue for defects Liaise with support management providing feedback and updates on issues and customer escalations Administer and maintain Infor M3 system and Life Cycle Manager Administer and maintain Infor OS and the ION Grid On-call rotation cover for production down incidents Provide operations and project support for the M3 on-premises and cloud environments for M3 issues reported by the production and project users Work with Application support to maintain on-premises and cloud environments by upgrading to the latest version of the M3 products Work with Application support of project activities by installing/upgrading M3 products and third parties on the test environments Key Requirements: 2-3 years' experience of ERP M3 13.x software technical support Bachelor's degree or higher education in Computer Science or related areas Experience with REST, SQL, IIS Knowledge of the following Infor M3 areas - Sales, Manufacturing, Finance, System administration, Supply Chain management, Operations Experience with OpenText StreamServe Design Center, Control Center Familiar with Cloud Computing and Distributed Systems Familiar with Agile and Scrum/Kanban methodologies and practices Knowledge in software development processes, models, life cycles, and methodologies. Skilled in Microsoft Azure cloud services design, deployment, management, security, and audit Familiar with Active Directory and/or Azure Active Directory Working experience of Microsoft Operating systems, Win10, Server 2012/16/19 Experience supporting a 24 x 7 critical ERP environment. Preferred: Experience in Infor OS, ION Desk and ION Grid Administration, ION Workflow and other IOS integrated products Experienced in any of the extension applications such as Graphical Lot Tracker, Demand Planner, Inventory Planning Workbench, Scheduling WorkBench, Warehouse Mobility
27/03/2024
Infor M3 Support Analyst required for a role with a client based in Dublin. -Hybrid Working Model (3 days onsite) My client is open to hiring a contractor or on a permanent contract basis. This is an excellent opportunity for a suitable candidate to support the move from Traditional to Modern technologies and broaden their skills by implementing and supporting markets leading technologies. Key Areas of Responsibility: Own incidents and carry out investigations to support the root cause analysis Work with M3 Application team to monitor the queue for defects Liaise with support management providing feedback and updates on issues and customer escalations Administer and maintain Infor M3 system and Life Cycle Manager Administer and maintain Infor OS and the ION Grid On-call rotation cover for production down incidents Provide operations and project support for the M3 on-premises and cloud environments for M3 issues reported by the production and project users Work with Application support to maintain on-premises and cloud environments by upgrading to the latest version of the M3 products Work with Application support of project activities by installing/upgrading M3 products and third parties on the test environments Key Requirements: 2-3 years' experience of ERP M3 13.x software technical support Bachelor's degree or higher education in Computer Science or related areas Experience with REST, SQL, IIS Knowledge of the following Infor M3 areas - Sales, Manufacturing, Finance, System administration, Supply Chain management, Operations Experience with OpenText StreamServe Design Center, Control Center Familiar with Cloud Computing and Distributed Systems Familiar with Agile and Scrum/Kanban methodologies and practices Knowledge in software development processes, models, life cycles, and methodologies. Skilled in Microsoft Azure cloud services design, deployment, management, security, and audit Familiar with Active Directory and/or Azure Active Directory Working experience of Microsoft Operating systems, Win10, Server 2012/16/19 Experience supporting a 24 x 7 critical ERP environment. Preferred: Experience in Infor OS, ION Desk and ION Grid Administration, ION Workflow and other IOS integrated products Experienced in any of the extension applications such as Graphical Lot Tracker, Demand Planner, Inventory Planning Workbench, Scheduling WorkBench, Warehouse Mobility
QHSE Manager Role: QHSE Manager Type: Permanent (or Temp-to-Permanent) Location: Newbury Salary: £45,000 - £55,000 per annum (+ benefits & certification opportunities) Start: April 2024 IR35 Status (if temp): Outside IR35 QHSE Manager CPS Group UK are delighted to be working with a leading organisation to appoint a Full time QHSE Manager. This organisation has grown rapidly and as such, is now seeking a QHSE Manager to support all aspects of in-house and client-site Quality, Environment, Health & Safety requirements (including ISO Management). The organisation is open to a Full time resource, or a resource on-boarding in a temporary (daily rate) contract, with a view to moving into a Full time role. Role Requirements * Act as the representative for Quality, Environment and Health & Safety in relation to the management systems, ISO9001, ISO14001, ISO45001 and appropriate facets of ISO27001:2022- maintaining and controlling those systems and where required, other such business systems. * Assist in raising non-conformance reports and providing support to devise corrective and preventative actions. * Facilitate and manage documentation revision and generation in compliance with good documentation practices. * Mentoring the workforce in a structured manner to encourage a positive and proactive attitude to QHSE. * Support QHSE attributes at a client project 'site' level with Projects Managers and company's sub-contractors. * Act as primary lead representing the business as QHSE lead at project site works locations. * Engaging with clients and their staff on a face-to-face basis. * Providing support and assistance with matters of Health & Safety including compliance with CDM 2015 regulations. * Provide professional and pragmatic advice on Health and Safety issues. * Communication & influencing skills at all levels within the organisation & externally. * Investigate Health and Safety accidents and incidents to ascertain root cause and develop mitigation action plans to eliminate the root cause/causes. * Provide regular reports to clients and management board on Health & Safety matters relating to projects. * To be a proactive, engaging and competent team members * Assist with responses to PQQ, Bid, and tender relevant questions where/if required * Assist/undertake risk review education meetings/training sessions Required Skills & Experience * Experience of implementing, maintaining, or improving standards (eg ISO9001, ISO14001 or ISO45001, ISO 27001:2013/2022), possessing associated knowledge of each standard * ISO/other auditing experience * 3-5+ years' experience in QHSE-related roles, with a demonstrable track record of delivery and service improvement * Knowledge of data and/or communications industry (desirable) * Meticulous written and verbal communication skills. * Proficient in Microsoft Office: Outlook, Word, Excel, PowerPoint Proficient in use of Microsoft Teams/Similar Other: Microsoft Project and Notes Other * Ability to use online portal platforms ie My Compliance * Relevant QHSE qualification with ideally either: o NEBOSH Certificate and/or QHSE auditing qualification. o Tech IOSH, Cert IOSH/CMIOSH For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK or email (see below) By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes. CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found on our website
27/03/2024
QHSE Manager Role: QHSE Manager Type: Permanent (or Temp-to-Permanent) Location: Newbury Salary: £45,000 - £55,000 per annum (+ benefits & certification opportunities) Start: April 2024 IR35 Status (if temp): Outside IR35 QHSE Manager CPS Group UK are delighted to be working with a leading organisation to appoint a Full time QHSE Manager. This organisation has grown rapidly and as such, is now seeking a QHSE Manager to support all aspects of in-house and client-site Quality, Environment, Health & Safety requirements (including ISO Management). The organisation is open to a Full time resource, or a resource on-boarding in a temporary (daily rate) contract, with a view to moving into a Full time role. Role Requirements * Act as the representative for Quality, Environment and Health & Safety in relation to the management systems, ISO9001, ISO14001, ISO45001 and appropriate facets of ISO27001:2022- maintaining and controlling those systems and where required, other such business systems. * Assist in raising non-conformance reports and providing support to devise corrective and preventative actions. * Facilitate and manage documentation revision and generation in compliance with good documentation practices. * Mentoring the workforce in a structured manner to encourage a positive and proactive attitude to QHSE. * Support QHSE attributes at a client project 'site' level with Projects Managers and company's sub-contractors. * Act as primary lead representing the business as QHSE lead at project site works locations. * Engaging with clients and their staff on a face-to-face basis. * Providing support and assistance with matters of Health & Safety including compliance with CDM 2015 regulations. * Provide professional and pragmatic advice on Health and Safety issues. * Communication & influencing skills at all levels within the organisation & externally. * Investigate Health and Safety accidents and incidents to ascertain root cause and develop mitigation action plans to eliminate the root cause/causes. * Provide regular reports to clients and management board on Health & Safety matters relating to projects. * To be a proactive, engaging and competent team members * Assist with responses to PQQ, Bid, and tender relevant questions where/if required * Assist/undertake risk review education meetings/training sessions Required Skills & Experience * Experience of implementing, maintaining, or improving standards (eg ISO9001, ISO14001 or ISO45001, ISO 27001:2013/2022), possessing associated knowledge of each standard * ISO/other auditing experience * 3-5+ years' experience in QHSE-related roles, with a demonstrable track record of delivery and service improvement * Knowledge of data and/or communications industry (desirable) * Meticulous written and verbal communication skills. * Proficient in Microsoft Office: Outlook, Word, Excel, PowerPoint Proficient in use of Microsoft Teams/Similar Other: Microsoft Project and Notes Other * Ability to use online portal platforms ie My Compliance * Relevant QHSE qualification with ideally either: o NEBOSH Certificate and/or QHSE auditing qualification. o Tech IOSH, Cert IOSH/CMIOSH For more information or immediate consideration for this opportunity, please contact Charlie Grant at CPS Group UK or email (see below) By applying to this advert you are giving CPS Group (UK) Ltd authority to hold and process your data for this specific role and any other roles we may deem suitable to you over time. We will not pass your data to any third party without your verbal or written permission to do so. All incoming and outgoing calls are recorded for training and compliance purposes. CPS Group (UK) Ltd is acting as an Employment Agency in relation to this vacancy. Our new privacy policy can be found on our website
Job Title: Risk & Opportunities Officer Clearance required: BPSS Duration: 6 months Location: Hinkley -work 1 day a week from home Inside IR35 Job Description: The essential role of the Project Risk & Opportunity Officer is to ensure in the allocated project scope that risks and opportunities are identified, assessed, prioritized, treated by appropriate action plans and monitored. In order to perform this role, the Risk and Opportunities Officer relies on the project Risk and Opportunities Management Plan, which is based on procedures and associated method and tools, as well as methodologies developed within PCM Business Unit. Main Responsibilities: Organize and conduct Risk and Opportunities general reviews (interviews and working sessions with internal teams and our suppliers) Ensure the programming and animation of specific Risk and Opportunities analyses (from general reviews or requested by the project management) to be carried out Develop, update with the teams and disseminate the Risk and Opportunities registers and the associated summaries Prepare and share the synthesis of major Risks and Opportunities, action plans and decision milestones and ensure their proper execution Periodically consolidate major residual impacts on project planning and costs Contribute to the communication of Risk and Opportunities for internal and customer reporting Contribute to the feedback and continuous improvement of Risk and Opportunities tools and methods Organize, plan and conduct required Risk and Opportunities activities Read and take into account all important documents within allocated scope, such as the contract, budgets, time schedule, specifications, etc. Challenge the participants during these discussions in order to ensure robust identification, assessment of potential impacts and definition of action plans with their milestones Contribute to identify not only the Risks but also the Opportunities and optimization ideas (which can combine Risks and Opportunities depending on scenarios) Keep Risk and Opportunities register updated Prepare TOP 10/20 Risk and Opportunities synthesis to highlight the main stakes and proposed strategy response Ensure the evaluation of residual impacts with Project Manager and Cost Controllers, based on expected results of defined action plans Obtain Risk and Opportunities analysis validation by manager in charge of the corresponding scope Regularly share the progress of Risk and Opportunities analysis with the Project Risk and Opportunties Manager and contribute to monthly reporting Participate to project Risk and Opportunities team meetings and to Risk and Opportunties transverse meetings organized by PCM BU Key Skills and experiences : Proven experience (project management, audit, contract management) as a cross-functional interface with different professions (contract, planning, finance, purchasing, technical managers, project managers, etc.) in an international environment 5 years experience Able to interact with both operational teams and top management, you are pro-active, autonomous, curious and are known for your analytical and synthesis skills and your ability to challenge your partners. You are also persistent, proactive, customer-oriented and result-oriented. Qualifications Client+5 degree in engineering or equivalent Experienced in managing complex projects in the nuclear/industrial sector Background: Nuclear or Construction would be desirable Knowledge of project management methodologies International or multicultural experience Experience in transverse management Additional information Working hours full time Working on site at Hinkley Point C, Bridgwater
27/03/2024
Project-based
Job Title: Risk & Opportunities Officer Clearance required: BPSS Duration: 6 months Location: Hinkley -work 1 day a week from home Inside IR35 Job Description: The essential role of the Project Risk & Opportunity Officer is to ensure in the allocated project scope that risks and opportunities are identified, assessed, prioritized, treated by appropriate action plans and monitored. In order to perform this role, the Risk and Opportunities Officer relies on the project Risk and Opportunities Management Plan, which is based on procedures and associated method and tools, as well as methodologies developed within PCM Business Unit. Main Responsibilities: Organize and conduct Risk and Opportunities general reviews (interviews and working sessions with internal teams and our suppliers) Ensure the programming and animation of specific Risk and Opportunities analyses (from general reviews or requested by the project management) to be carried out Develop, update with the teams and disseminate the Risk and Opportunities registers and the associated summaries Prepare and share the synthesis of major Risks and Opportunities, action plans and decision milestones and ensure their proper execution Periodically consolidate major residual impacts on project planning and costs Contribute to the communication of Risk and Opportunities for internal and customer reporting Contribute to the feedback and continuous improvement of Risk and Opportunities tools and methods Organize, plan and conduct required Risk and Opportunities activities Read and take into account all important documents within allocated scope, such as the contract, budgets, time schedule, specifications, etc. Challenge the participants during these discussions in order to ensure robust identification, assessment of potential impacts and definition of action plans with their milestones Contribute to identify not only the Risks but also the Opportunities and optimization ideas (which can combine Risks and Opportunities depending on scenarios) Keep Risk and Opportunities register updated Prepare TOP 10/20 Risk and Opportunities synthesis to highlight the main stakes and proposed strategy response Ensure the evaluation of residual impacts with Project Manager and Cost Controllers, based on expected results of defined action plans Obtain Risk and Opportunities analysis validation by manager in charge of the corresponding scope Regularly share the progress of Risk and Opportunities analysis with the Project Risk and Opportunties Manager and contribute to monthly reporting Participate to project Risk and Opportunities team meetings and to Risk and Opportunties transverse meetings organized by PCM BU Key Skills and experiences : Proven experience (project management, audit, contract management) as a cross-functional interface with different professions (contract, planning, finance, purchasing, technical managers, project managers, etc.) in an international environment 5 years experience Able to interact with both operational teams and top management, you are pro-active, autonomous, curious and are known for your analytical and synthesis skills and your ability to challenge your partners. You are also persistent, proactive, customer-oriented and result-oriented. Qualifications Client+5 degree in engineering or equivalent Experienced in managing complex projects in the nuclear/industrial sector Background: Nuclear or Construction would be desirable Knowledge of project management methodologies International or multicultural experience Experience in transverse management Additional information Working hours full time Working on site at Hinkley Point C, Bridgwater
IT Risk and Governance Manager - IT Audit - PCI - SWIFT - BCP Contract: Permanent, full time, 35 hours per week Location: Kings Hill-based (Kent) with hybrid working (Average of 2 days per week in the Kings Hill office) Would you like to join a dynamic team and make a significant impact on the key areas of IT risk and governance as we progress our cloud adoption journey? We're looking for a talented IT Risk and Governance Manager to join our IT Team. What you'll do As our IT Risk and Governance Manager you too will play an integral part in what we do. As our IT Risk and Governance Manager you will: - Report to CISO on all matters related to IT risks and governance. - Collaborate with IT managers to identify, assess, and mitigate IT risks. - Facilitate IT audits to ensure compliance with internal and external requirements. - Own and manage program of IT assessments and compliance requirements. - Collaborate with internal stakeholders to align IT risk and governance with business objectives and risk appetite. - Improve maturity of the function, including the management of IT risk and governance policies, procedures, administration and reporting for IT and Exec stakeholders. Who you'll be This role is for you if you have experience of working in IT with a governance, risk or compliance role or have relevant transferable skills and are keen to make a difference to society. We are looking for: - Proven experience in IT risk management and governance. - Working knowledge of IT risk management and compliance frameworks. - Excellent communication and interpersonal skills. - Ability to work collaboratively with internal and external stakeholders. - Strong organizational, administration and project management skills. IT Audit and Assessment Management: Collaborate with relevant stakeholders to create, own and maintain a forward plan for various audit, risk and governance activities, including internal audits, external audits, IT assessments, DR and IT BCP tests and policy review schedules. Co-ordinate and facilitate the execution of IT audits and assessments, including but not limited to PCI DSS, SWIFT, and Cyber Insurance. Measure and report adherence to IT risk management policies and procedures, making recommendations for improvements where necessary, to ensure compliance with relevant industry standards, regulations, and best practices. IT Risk Management: Own and maintain the IT risk register, risk acceptances, risk assessments and associated risk artifacts, ensuring they are kept updated, all identified risks have owners, are appropriately assessed, categorised with an agreed and documented treatment plan. Collaborate across IT and group Governance teams to identify, register and document emerging risks, and status of planned remediation for existing risks, for escalation and management reporting. BCP Documentation: Maintain and update the IT Business Continuity Plan (BCP) documents, ensuring they reflect current business processes and IT systems. Ensure IT staff are aware and prepared for BCP through, communication, documentation and testing exercises. IT Governance Reporting and MI: Work closely with IT senior management to ensure all IT risk, governance and assurance reporting artifacts are up-to-date, accurate and available for IT governance and organisational executive stakeholder meetings. IT Departmental Process Owner: Take ownership of specific IT departmental policies and processes, such as Fire Evacuation procedures, Recruitment processes, Data Protection Impact Assessments (DPIA), Records of Processing Activities (ROPA), External Data Transfers, Disaster Recovery (DR) call tree, and IT departmental DR processes. Manage and enhance these processes to ensure efficiency and compliance.
27/03/2024
Full time
IT Risk and Governance Manager - IT Audit - PCI - SWIFT - BCP Contract: Permanent, full time, 35 hours per week Location: Kings Hill-based (Kent) with hybrid working (Average of 2 days per week in the Kings Hill office) Would you like to join a dynamic team and make a significant impact on the key areas of IT risk and governance as we progress our cloud adoption journey? We're looking for a talented IT Risk and Governance Manager to join our IT Team. What you'll do As our IT Risk and Governance Manager you too will play an integral part in what we do. As our IT Risk and Governance Manager you will: - Report to CISO on all matters related to IT risks and governance. - Collaborate with IT managers to identify, assess, and mitigate IT risks. - Facilitate IT audits to ensure compliance with internal and external requirements. - Own and manage program of IT assessments and compliance requirements. - Collaborate with internal stakeholders to align IT risk and governance with business objectives and risk appetite. - Improve maturity of the function, including the management of IT risk and governance policies, procedures, administration and reporting for IT and Exec stakeholders. Who you'll be This role is for you if you have experience of working in IT with a governance, risk or compliance role or have relevant transferable skills and are keen to make a difference to society. We are looking for: - Proven experience in IT risk management and governance. - Working knowledge of IT risk management and compliance frameworks. - Excellent communication and interpersonal skills. - Ability to work collaboratively with internal and external stakeholders. - Strong organizational, administration and project management skills. IT Audit and Assessment Management: Collaborate with relevant stakeholders to create, own and maintain a forward plan for various audit, risk and governance activities, including internal audits, external audits, IT assessments, DR and IT BCP tests and policy review schedules. Co-ordinate and facilitate the execution of IT audits and assessments, including but not limited to PCI DSS, SWIFT, and Cyber Insurance. Measure and report adherence to IT risk management policies and procedures, making recommendations for improvements where necessary, to ensure compliance with relevant industry standards, regulations, and best practices. IT Risk Management: Own and maintain the IT risk register, risk acceptances, risk assessments and associated risk artifacts, ensuring they are kept updated, all identified risks have owners, are appropriately assessed, categorised with an agreed and documented treatment plan. Collaborate across IT and group Governance teams to identify, register and document emerging risks, and status of planned remediation for existing risks, for escalation and management reporting. BCP Documentation: Maintain and update the IT Business Continuity Plan (BCP) documents, ensuring they reflect current business processes and IT systems. Ensure IT staff are aware and prepared for BCP through, communication, documentation and testing exercises. IT Governance Reporting and MI: Work closely with IT senior management to ensure all IT risk, governance and assurance reporting artifacts are up-to-date, accurate and available for IT governance and organisational executive stakeholder meetings. IT Departmental Process Owner: Take ownership of specific IT departmental policies and processes, such as Fire Evacuation procedures, Recruitment processes, Data Protection Impact Assessments (DPIA), Records of Processing Activities (ROPA), External Data Transfers, Disaster Recovery (DR) call tree, and IT departmental DR processes. Manage and enhance these processes to ensure efficiency and compliance.
Compliance Manager - EdTech Schools shape young minds and build foundations for the future. Yet the education sector faces immense pressures. Overworked teachers, endless administrative tasks, and the constant need to do more with less. As Compliance Manager for this EdTech company, you'll play a crucial part in alleviating these pressures for schools. You'll help develop tools that free teachers and school staff to focus on what truly matters - fostering a learning environment that achieves great outcomes for all students. About the Job: Working alongside ex-teachers and EdTech engineers, you'll be part of a team that truly cares about improving education standards for everyone. As the first person to step into this role, you'll have total ownership and the full backing of senior leadership. You'll be given full autonomy to build the compliance framework from scratch. This includes creating and implementing policies/procedures, leading audits (ISO27001, ISO9001, PCI-DSS, Cyber Essentials Plus), and developing company-wide standards. Collaborating across product and engineering teams - you'll ensure the platform and product security is robust, and staff are suitably trained. You'll also handle due diligence for seamless integration as the company moves into an exciting new phase. About You: You're an experienced compliance professional with deep expertise in relevant frameworks. With excellent leadership, analytical, decision-making, and communication abilities, you thrive in fast-paced environments and can prioritise effectively. In particular, you'll need: Proven track record in compliance or infosec management roles In-depth mastery of ISO27001, ISO9001, PCI-DSS, Cyber Essentials Plus Prior experience with compliance tooling like SecureFrame is a plus In return, you'll get: 32 days of annual holiday (25 days leave + 7 company-wide days off) Enhanced parental leave - 20 weeks full pay for maternity/adoption, 6 weeks paternity A dedicated wellbeing team championing mindfulness, training, mental health, and more Flexible working arrangements tailored to you Social events, celebrations, community-building, and dog-friendly offices Professional development budget for training courses, memberships, financial coaching, and more Paid time to volunteer with charities of your choice Above all, your work will positively impact students and educators across the nation - paving the way to a better future for all. If you're ready to transform education for good, apply now. Everyone will get a response.
27/03/2024
Full time
Compliance Manager - EdTech Schools shape young minds and build foundations for the future. Yet the education sector faces immense pressures. Overworked teachers, endless administrative tasks, and the constant need to do more with less. As Compliance Manager for this EdTech company, you'll play a crucial part in alleviating these pressures for schools. You'll help develop tools that free teachers and school staff to focus on what truly matters - fostering a learning environment that achieves great outcomes for all students. About the Job: Working alongside ex-teachers and EdTech engineers, you'll be part of a team that truly cares about improving education standards for everyone. As the first person to step into this role, you'll have total ownership and the full backing of senior leadership. You'll be given full autonomy to build the compliance framework from scratch. This includes creating and implementing policies/procedures, leading audits (ISO27001, ISO9001, PCI-DSS, Cyber Essentials Plus), and developing company-wide standards. Collaborating across product and engineering teams - you'll ensure the platform and product security is robust, and staff are suitably trained. You'll also handle due diligence for seamless integration as the company moves into an exciting new phase. About You: You're an experienced compliance professional with deep expertise in relevant frameworks. With excellent leadership, analytical, decision-making, and communication abilities, you thrive in fast-paced environments and can prioritise effectively. In particular, you'll need: Proven track record in compliance or infosec management roles In-depth mastery of ISO27001, ISO9001, PCI-DSS, Cyber Essentials Plus Prior experience with compliance tooling like SecureFrame is a plus In return, you'll get: 32 days of annual holiday (25 days leave + 7 company-wide days off) Enhanced parental leave - 20 weeks full pay for maternity/adoption, 6 weeks paternity A dedicated wellbeing team championing mindfulness, training, mental health, and more Flexible working arrangements tailored to you Social events, celebrations, community-building, and dog-friendly offices Professional development budget for training courses, memberships, financial coaching, and more Paid time to volunteer with charities of your choice Above all, your work will positively impact students and educators across the nation - paving the way to a better future for all. If you're ready to transform education for good, apply now. Everyone will get a response.
*We are unable to sponsor as this is a permanent Full time role* *Hybrid 3 days onsite 2 days remote* A prestigious company is looking for an IT Security GRC Specialist. This specialist will be the SME for information security GRC and will perform key risk management functions within the security governance department. They will do 3rd party vendor risk management and internal risk management. Experience with frameworks ISO 27001, NIST, SOC, SIG is required. Responsibilities: Management of process improvement, control maturity, and communication of risk throughout assigned GRC service activities. Level II responsibilities include incorporating ISO 27001 principles for continuous improvement throughout all services and support activities. Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. This service also provides contract review for security requirements. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cybersecurity and risk requirements. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Exception management, processing and tracking requests for exception to security controls. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Ensures security awareness training is aligned, defined, and executed. Evaluation of cyber training/education courses and methods based on instructional needs. Administration of the GRC technology platforms. Qualifications Bachelor's degree or five (5) years of work experience in IT Security is required. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required. Technical writing experience is required. Experience with instructional content educational writing strongly preferred. Strong knowledge of risk management principles and practices are required. Strong knowledge of security administration and role-based security controls are required. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Interview, gather, and understand content from subject-matter experts. Maintain accurate records and manage client security and risk requests. Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm's security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline, and procedure documents. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
26/03/2024
Full time
*We are unable to sponsor as this is a permanent Full time role* *Hybrid 3 days onsite 2 days remote* A prestigious company is looking for an IT Security GRC Specialist. This specialist will be the SME for information security GRC and will perform key risk management functions within the security governance department. They will do 3rd party vendor risk management and internal risk management. Experience with frameworks ISO 27001, NIST, SOC, SIG is required. Responsibilities: Management of process improvement, control maturity, and communication of risk throughout assigned GRC service activities. Level II responsibilities include incorporating ISO 27001 principles for continuous improvement throughout all services and support activities. Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. This service also provides contract review for security requirements. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cybersecurity and risk requirements. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Exception management, processing and tracking requests for exception to security controls. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Ensures security awareness training is aligned, defined, and executed. Evaluation of cyber training/education courses and methods based on instructional needs. Administration of the GRC technology platforms. Qualifications Bachelor's degree or five (5) years of work experience in IT Security is required. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required. Technical writing experience is required. Experience with instructional content educational writing strongly preferred. Strong knowledge of risk management principles and practices are required. Strong knowledge of security administration and role-based security controls are required. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Interview, gather, and understand content from subject-matter experts. Maintain accurate records and manage client security and risk requests. Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm's security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline, and procedure documents. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
*We are unable to sponsor as this is a permanent Full time role* *Hybrid 3 days onsite 2 days remote* A prestigious company is looking for an IT Security GRC Specialist. This specialist will be the SME for information security GRC and will perform key risk management functions within the security governance department. They will do 3rd party vendor risk management and internal risk management. Experience with frameworks ISO 27001, NIST, SOC, SIG is required. Responsibilities: Management of process improvement, control maturity, and communication of risk throughout assigned GRC service activities. Level II responsibilities include incorporating ISO 27001 principles for continuous improvement throughout all services and support activities. Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. This service also provides contract review for security requirements. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cybersecurity and risk requirements. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Exception management, processing and tracking requests for exception to security controls. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Ensures security awareness training is aligned, defined, and executed. Evaluation of cyber training/education courses and methods based on instructional needs. Administration of the GRC technology platforms. Qualifications Bachelor's degree or five (5) years of work experience in IT Security is required. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required. Technical writing experience is required. Experience with instructional content educational writing strongly preferred. Strong knowledge of risk management principles and practices are required. Strong knowledge of security administration and role-based security controls are required. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Interview, gather, and understand content from subject-matter experts. Maintain accurate records and manage client security and risk requests. Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm's security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline, and procedure documents. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
26/03/2024
Full time
*We are unable to sponsor as this is a permanent Full time role* *Hybrid 3 days onsite 2 days remote* A prestigious company is looking for an IT Security GRC Specialist. This specialist will be the SME for information security GRC and will perform key risk management functions within the security governance department. They will do 3rd party vendor risk management and internal risk management. Experience with frameworks ISO 27001, NIST, SOC, SIG is required. Responsibilities: Management of process improvement, control maturity, and communication of risk throughout assigned GRC service activities. Level II responsibilities include incorporating ISO 27001 principles for continuous improvement throughout all services and support activities. Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. This service also provides contract review for security requirements. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cybersecurity and risk requirements. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Exception management, processing and tracking requests for exception to security controls. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Ensures security awareness training is aligned, defined, and executed. Evaluation of cyber training/education courses and methods based on instructional needs. Administration of the GRC technology platforms. Qualifications Bachelor's degree or five (5) years of work experience in IT Security is required. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required. Technical writing experience is required. Experience with instructional content educational writing strongly preferred. Strong knowledge of risk management principles and practices are required. Strong knowledge of security administration and role-based security controls are required. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Interview, gather, and understand content from subject-matter experts. Maintain accurate records and manage client security and risk requests. Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm's security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline, and procedure documents. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
IT Infrastructure and Security Manager - £45,000 to £55,000 + bonus - hybrid working Newbury/Berkshire based organisation are seeking an experienced IT Infrastructure & Security Manager to join their team. In this role, you will be responsible for overseeing the design, implementation, and maintenance of the IT infrastructure while ensuring the security and integrity of systems. Responsibilities: Develop and implement IT infrastructure strategies, policies, and procedures to support the company's goals and objectives. Manage and maintain the company's network infrastructure, including Servers, Routers, Switches, Firewalls, and other hardware. Monitor network performance and security, identifying and addressing any issues or vulnerabilities in a timely manner. Implement and maintain security measures, including Firewalls, intrusion detection systems, antivirus software, and encryption protocols. Conduct regular security audits and risk assessments to identify potential threats and weaknesses in the IT infrastructure. Develop and implement disaster recovery and business continuity plans to ensure the availability of critical systems and data in the event of a disruption. Stay informed about the latest developments and best practices in IT infrastructure and security, making recommendations for improvements as needed. Manage a team of 2 IT professionals, providing leadership, guidance, and support to ensure the successful operation of the IT department. Qualifications & Experience Experience in IT infrastructure management and security. Strong technical skills, including experience with networking, operating systems, virtualization, and cloud computing. Intune & Group Policy, M365, Windows Server, VMWare, Active Directory. Cyber security frameworks, MS Defender Antivirus and Azure scanning for cyber security Proficiency in security concepts and technologies, such as Firewalls, intrusion detection/prevention systems, encryption, and authentication protocols. Experience with ITIL or other IT service management frameworks. Excellent leadership and communication skills, with the ability to effectively manage a team and collaborate with stakeholders at all levels of the organization. For more information please contact (see below)
26/03/2024
Full time
IT Infrastructure and Security Manager - £45,000 to £55,000 + bonus - hybrid working Newbury/Berkshire based organisation are seeking an experienced IT Infrastructure & Security Manager to join their team. In this role, you will be responsible for overseeing the design, implementation, and maintenance of the IT infrastructure while ensuring the security and integrity of systems. Responsibilities: Develop and implement IT infrastructure strategies, policies, and procedures to support the company's goals and objectives. Manage and maintain the company's network infrastructure, including Servers, Routers, Switches, Firewalls, and other hardware. Monitor network performance and security, identifying and addressing any issues or vulnerabilities in a timely manner. Implement and maintain security measures, including Firewalls, intrusion detection systems, antivirus software, and encryption protocols. Conduct regular security audits and risk assessments to identify potential threats and weaknesses in the IT infrastructure. Develop and implement disaster recovery and business continuity plans to ensure the availability of critical systems and data in the event of a disruption. Stay informed about the latest developments and best practices in IT infrastructure and security, making recommendations for improvements as needed. Manage a team of 2 IT professionals, providing leadership, guidance, and support to ensure the successful operation of the IT department. Qualifications & Experience Experience in IT infrastructure management and security. Strong technical skills, including experience with networking, operating systems, virtualization, and cloud computing. Intune & Group Policy, M365, Windows Server, VMWare, Active Directory. Cyber security frameworks, MS Defender Antivirus and Azure scanning for cyber security Proficiency in security concepts and technologies, such as Firewalls, intrusion detection/prevention systems, encryption, and authentication protocols. Experience with ITIL or other IT service management frameworks. Excellent leadership and communication skills, with the ability to effectively manage a team and collaborate with stakeholders at all levels of the organization. For more information please contact (see below)
IT Risk Officer - Hybrid - 4 days a month onsite Our esteemed client, a global IT services provider, is currently recruiting for the position of an IT Risk Officer. The organisation plays key role in driving digitalization in the financial services industry, overseeing end-to-end IT solutions with a workforce of over 13,000 in more than 22 countries. Role Overview: The Risk Officer, reporting to the Regional IT Risk & Compliance Manager, is a Full time position that demands dedicated risk management, offering a collaborative environment to build your network and advance your career. Key Responsibilities: General: Provide support on governance issues, including risk and regulatory requirements. Maintain effective relationships within the organization and with Business representatives. Support and efficiently manage audit-related activities. Review and improve documented IT processes from a risk & compliance perspective. Risk: Execute proactive risk management life cycles, ensuring full compliance with risk policies. Assist in regular reviews of IT Risk assessments. Manage periodic reporting requirements to the direct report and relevant stakeholders. Ensure successful accomplishment of annual focus topics. Support the preparation and running of the local risk committee. Collaborate across the organization to embed a proactive risk culture. Your Skills: Multi-year professional experience in IT risk management or safeguarding functions. Good understanding of operational, IT, project, third-party, and business risk. Knowledge of the local service landscape and supplier relationships. Basic knowledge of local regulatory environment and standards. Strong communication and conflict management skills. Advanced skills in MS Office, knowledge of Service Now. Understanding of regulatory requirements. Strong stakeholder management and influencing skills. Qualifications: Educated to degree level or equivalent. Risk-related certifications (eg, CRISC) preferred but not mandatory. Your Benefits: Hybrid work model promoting in-person collaboration and remote working. Competitive compensation and benefits package, including a company bonus scheme, pension, employee shares program, and multiple employee discounts. Lifelong learning opportunities for career development and international mobility. Flexible working, health, and wellbeing offers, including healthcare and parental leave benefits. If you're ready to contribute to a safer environment while advancing your career, our client invites you to explore this exciting opportunity. Apply now and become a part of their innovative and empowering global IT services team. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
26/03/2024
Full time
IT Risk Officer - Hybrid - 4 days a month onsite Our esteemed client, a global IT services provider, is currently recruiting for the position of an IT Risk Officer. The organisation plays key role in driving digitalization in the financial services industry, overseeing end-to-end IT solutions with a workforce of over 13,000 in more than 22 countries. Role Overview: The Risk Officer, reporting to the Regional IT Risk & Compliance Manager, is a Full time position that demands dedicated risk management, offering a collaborative environment to build your network and advance your career. Key Responsibilities: General: Provide support on governance issues, including risk and regulatory requirements. Maintain effective relationships within the organization and with Business representatives. Support and efficiently manage audit-related activities. Review and improve documented IT processes from a risk & compliance perspective. Risk: Execute proactive risk management life cycles, ensuring full compliance with risk policies. Assist in regular reviews of IT Risk assessments. Manage periodic reporting requirements to the direct report and relevant stakeholders. Ensure successful accomplishment of annual focus topics. Support the preparation and running of the local risk committee. Collaborate across the organization to embed a proactive risk culture. Your Skills: Multi-year professional experience in IT risk management or safeguarding functions. Good understanding of operational, IT, project, third-party, and business risk. Knowledge of the local service landscape and supplier relationships. Basic knowledge of local regulatory environment and standards. Strong communication and conflict management skills. Advanced skills in MS Office, knowledge of Service Now. Understanding of regulatory requirements. Strong stakeholder management and influencing skills. Qualifications: Educated to degree level or equivalent. Risk-related certifications (eg, CRISC) preferred but not mandatory. Your Benefits: Hybrid work model promoting in-person collaboration and remote working. Competitive compensation and benefits package, including a company bonus scheme, pension, employee shares program, and multiple employee discounts. Lifelong learning opportunities for career development and international mobility. Flexible working, health, and wellbeing offers, including healthcare and parental leave benefits. If you're ready to contribute to a safer environment while advancing your career, our client invites you to explore this exciting opportunity. Apply now and become a part of their innovative and empowering global IT services team. Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
IT Asset Management Consultant - Hybrid working One of our biggest customers is looking for an experienced IT Asset Management Consultant. The IT Asset Management position will be responsible for identifying opportunities to reduce cost and risks associated with software licensing and will ensure compliance with vendor contracts and policies. The successful candidate will also use their excellent stakeholder management skills to build relationships across IT and beyond. Here are some of the main skills and experience required to be successful in the IT Asset Management consultant opportunity: Excellent analytical, problem-solving, and decision-making skills Detailed understanding of how IT systems work in an insurance or financial services environment Demonstrable experience working with ServiceNow Asset Manager or equivalent Asset Management tool Ability to work under pressure and handle multiple tasks and deadlines Ability to adapt to changing business needs and priorities Here are some of the main responsibilities of the IT Asset Management Consultant: Collaborate with various departments to ensure accurate asset tracking, financial reporting, and optimization of asset utilization Develop and implement IT asset management policies, procedures, and processes that align with Ageas goals and strategies Monitor and report on the inventory, location, status, and ownership of IT assets throughout their life cycle Plan and coordinate the acquisition, deployment, maintenance, and disposal of IT assets Ensure that IT assets are compliant with relevant laws, regulations, standards, and policies, and conduct regular audits and reviews Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
26/03/2024
Full time
IT Asset Management Consultant - Hybrid working One of our biggest customers is looking for an experienced IT Asset Management Consultant. The IT Asset Management position will be responsible for identifying opportunities to reduce cost and risks associated with software licensing and will ensure compliance with vendor contracts and policies. The successful candidate will also use their excellent stakeholder management skills to build relationships across IT and beyond. Here are some of the main skills and experience required to be successful in the IT Asset Management consultant opportunity: Excellent analytical, problem-solving, and decision-making skills Detailed understanding of how IT systems work in an insurance or financial services environment Demonstrable experience working with ServiceNow Asset Manager or equivalent Asset Management tool Ability to work under pressure and handle multiple tasks and deadlines Ability to adapt to changing business needs and priorities Here are some of the main responsibilities of the IT Asset Management Consultant: Collaborate with various departments to ensure accurate asset tracking, financial reporting, and optimization of asset utilization Develop and implement IT asset management policies, procedures, and processes that align with Ageas goals and strategies Monitor and report on the inventory, location, status, and ownership of IT assets throughout their life cycle Plan and coordinate the acquisition, deployment, maintenance, and disposal of IT assets Ensure that IT assets are compliant with relevant laws, regulations, standards, and policies, and conduct regular audits and reviews Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted. Proactive Appointments Limited operates as an employment agency and employment business and is an equal opportunities organisation We take our obligations to protect your personal data very seriously. Any information provided to us will be processed as detailed in our Privacy Notice, a copy of which can be found on our website
Risk and Opportunities Officer Work location: Hinkley Point C - Bridgwater, Somerset Hours: Full time on site/possibility to work 1 day a week from home Reporting to: Framatome - HPC Site Project Control Manager The role: The essential role of the Project Risk & Opportunity Officer is to ensure in the allocated project scope that risks and opportunities are identified, assessed, prioritized, treated by appropriate action plans and monitored. In order to perform this role, the Risk and Opportunities Officer relies on the project Risk and Opportunities Management Plan, which is based on Framatome procedures and associated method and tools, as well as methodologies developed within PCM Business Unit. Main Responsibilities: Organize and conduct Risk and Opportunities general reviews (interviews and working sessions with internal teams and our suppliers) Ensure the programming and animation of specific Risk and Opportunities analyses (from general reviews or requested by the project management) to be carried out Develop, update with the teams and disseminate the Risk and Opportunities registers and the associated summaries Prepare and share the synthesis of major Risks and Opportunities, action plans and decision milestones and ensure their proper execution Periodically consolidate major residual impacts on project planning and costs Contribute to the communication of Risk and Opportunities for internal and customer reporting Contribute to the feedback and continuous improvement of Risk and Opportunities tools and methods Organize, plan and conduct required Risk and Opportunities activities Read and take into account all important documents within allocated scope, such as the contract, budgets, time schedule, specifications, etc. Challenge the participants during these discussions in order to ensure robust identification, assessment of potential impacts and definition of action plans with their milestones Contribute to identify not only the Risks but also the Opportunities and optimization ideas (which can combine Risks and Opportunities depending on scenarios) Keep Risk and Opportunities register updated Prepare TOP 10/20 Risk and Opportunities synthesis to highlight the main stakes and proposed strategy response Ensure the evaluation of residual impacts with Project Manager and Cost Controllers, based on expected results of defined action plans Obtain Risk and Opportunities analysis validation by manager in charge of the corresponding scope Regularly share the progress of Risk and Opportunities analysis with the Project Risk and Opportunties Manager and contribute to monthly reporting Participate to project Risk and Opportunities team meetings and to Risk and Opportunties transverse meetings organized by PCM BU Key Skills and experiences: Proven experience (project management, audit, contract management) as a cross-functional interface with different professions (contract, planning, finance, purchasing, technical managers, project managers, etc.) in an international environment 5 years experience Able to interact with both operational teams and top management, you are pro-active, autonomous, curious and are known for your analytical and synthesis skills and your ability to challenge your partners. You are also persistent, proactive, customer-oriented and result-oriented. Qualifications Bac+5 degree in engineering or equivalent Experienced in managing complex projects in the nuclear/industrial sector Background: Nuclear or Construction would be desirable Knowledge of project management methodologies International or multicultural experience Experience in transverse management Additional information Working hours full time Working on site at Hinkley Point C, Bridgwater
26/03/2024
Project-based
Risk and Opportunities Officer Work location: Hinkley Point C - Bridgwater, Somerset Hours: Full time on site/possibility to work 1 day a week from home Reporting to: Framatome - HPC Site Project Control Manager The role: The essential role of the Project Risk & Opportunity Officer is to ensure in the allocated project scope that risks and opportunities are identified, assessed, prioritized, treated by appropriate action plans and monitored. In order to perform this role, the Risk and Opportunities Officer relies on the project Risk and Opportunities Management Plan, which is based on Framatome procedures and associated method and tools, as well as methodologies developed within PCM Business Unit. Main Responsibilities: Organize and conduct Risk and Opportunities general reviews (interviews and working sessions with internal teams and our suppliers) Ensure the programming and animation of specific Risk and Opportunities analyses (from general reviews or requested by the project management) to be carried out Develop, update with the teams and disseminate the Risk and Opportunities registers and the associated summaries Prepare and share the synthesis of major Risks and Opportunities, action plans and decision milestones and ensure their proper execution Periodically consolidate major residual impacts on project planning and costs Contribute to the communication of Risk and Opportunities for internal and customer reporting Contribute to the feedback and continuous improvement of Risk and Opportunities tools and methods Organize, plan and conduct required Risk and Opportunities activities Read and take into account all important documents within allocated scope, such as the contract, budgets, time schedule, specifications, etc. Challenge the participants during these discussions in order to ensure robust identification, assessment of potential impacts and definition of action plans with their milestones Contribute to identify not only the Risks but also the Opportunities and optimization ideas (which can combine Risks and Opportunities depending on scenarios) Keep Risk and Opportunities register updated Prepare TOP 10/20 Risk and Opportunities synthesis to highlight the main stakes and proposed strategy response Ensure the evaluation of residual impacts with Project Manager and Cost Controllers, based on expected results of defined action plans Obtain Risk and Opportunities analysis validation by manager in charge of the corresponding scope Regularly share the progress of Risk and Opportunities analysis with the Project Risk and Opportunties Manager and contribute to monthly reporting Participate to project Risk and Opportunities team meetings and to Risk and Opportunties transverse meetings organized by PCM BU Key Skills and experiences: Proven experience (project management, audit, contract management) as a cross-functional interface with different professions (contract, planning, finance, purchasing, technical managers, project managers, etc.) in an international environment 5 years experience Able to interact with both operational teams and top management, you are pro-active, autonomous, curious and are known for your analytical and synthesis skills and your ability to challenge your partners. You are also persistent, proactive, customer-oriented and result-oriented. Qualifications Bac+5 degree in engineering or equivalent Experienced in managing complex projects in the nuclear/industrial sector Background: Nuclear or Construction would be desirable Knowledge of project management methodologies International or multicultural experience Experience in transverse management Additional information Working hours full time Working on site at Hinkley Point C, Bridgwater
IT Asset Team Leader - Stafford/remote - circa £55k plus package I have an exciting opportunity to join a well-established organisation as an IT Asset Team Leader ensuring all assets are accounted for and any vulnerabilities found on these systems are dealt with. As the IT Asset Team Leader you will be managing two teams, will be hands-on and responsible for working with requesters, stakeholders, project managers and all the engineering teams involved within the delivery pipeline for IT Infrastructure builds. Ensuring that requests and requirements are fully maintained, understood, correctly processed, and prioritised through each team and managed correctly within the system. Skills and experience Proven experience with all aspects of IT infrastructure delivery, project coordination and IT asset management, with Service Asset Lifecycle knowledge. Knowledge of physical and virtual infrastructure within data centre and end-user technology environments, along with Windows and Linux operating systems. Ability to manage and coordinate the delivery of multiple streams of work, from simple requests to multi-scale environment buildouts and vulnerability tracking. Strong communication skills supported by a high level of energy and persuasion, with the ability to interact with all levels of the organisation in a professional, diplomatic, and tactful manner. Presenting project status to other teams and participating in cross-functional meetings and working teams. Experience in team management, with strong time management and planning skills. Thorough understanding of IT delivery management practices and principles, with experience delivering IT projects. Project audit and reporting experience to help ensure compliance with processes and status reporting. Ability to work in a fast-paced environment on multiple projects with independent deadlines and deliverables with a strong attention to detail. Main Responsibilities Ensuring the teams are correctly and efficiently coordinating the planning and tracking of each request to meet the requested dates, whilst keeping the requestor up to date with progress, delays, or any problems. Interacting with the necessary infrastructure teams to ensure work is actioned promptly and that task updates are applied with sufficient detail to provide visibility. Highlighting and escalating delays or problems as required to prevent data slippage and ensuring any delays are communicated with the requesters. Working directly with our project, infrastructure, and development teams to understand work stacks, priorities, and upcoming projects and that we are delivering the requests as planned. Facilitating meetings with requesters to ensure the requirements and timescales are fully understood and any prerequisites are in place and planned. Following up on all requests that are held up or delayed, agreeing on review schedules with the requestors and technical owners to facilitate progress. Building and maintaining relationships with all team leaders and managers involved within the processes, whilst ensuring reviews are regularly carried out to monitor the delivery pipeline. Leading and participating in continual service improvement projects for internal and customer-related systems and platforms. IT Asset Team Leader - Stafford/remote - circa £55k plus package
26/03/2024
Full time
IT Asset Team Leader - Stafford/remote - circa £55k plus package I have an exciting opportunity to join a well-established organisation as an IT Asset Team Leader ensuring all assets are accounted for and any vulnerabilities found on these systems are dealt with. As the IT Asset Team Leader you will be managing two teams, will be hands-on and responsible for working with requesters, stakeholders, project managers and all the engineering teams involved within the delivery pipeline for IT Infrastructure builds. Ensuring that requests and requirements are fully maintained, understood, correctly processed, and prioritised through each team and managed correctly within the system. Skills and experience Proven experience with all aspects of IT infrastructure delivery, project coordination and IT asset management, with Service Asset Lifecycle knowledge. Knowledge of physical and virtual infrastructure within data centre and end-user technology environments, along with Windows and Linux operating systems. Ability to manage and coordinate the delivery of multiple streams of work, from simple requests to multi-scale environment buildouts and vulnerability tracking. Strong communication skills supported by a high level of energy and persuasion, with the ability to interact with all levels of the organisation in a professional, diplomatic, and tactful manner. Presenting project status to other teams and participating in cross-functional meetings and working teams. Experience in team management, with strong time management and planning skills. Thorough understanding of IT delivery management practices and principles, with experience delivering IT projects. Project audit and reporting experience to help ensure compliance with processes and status reporting. Ability to work in a fast-paced environment on multiple projects with independent deadlines and deliverables with a strong attention to detail. Main Responsibilities Ensuring the teams are correctly and efficiently coordinating the planning and tracking of each request to meet the requested dates, whilst keeping the requestor up to date with progress, delays, or any problems. Interacting with the necessary infrastructure teams to ensure work is actioned promptly and that task updates are applied with sufficient detail to provide visibility. Highlighting and escalating delays or problems as required to prevent data slippage and ensuring any delays are communicated with the requesters. Working directly with our project, infrastructure, and development teams to understand work stacks, priorities, and upcoming projects and that we are delivering the requests as planned. Facilitating meetings with requesters to ensure the requirements and timescales are fully understood and any prerequisites are in place and planned. Following up on all requests that are held up or delayed, agreeing on review schedules with the requestors and technical owners to facilitate progress. Building and maintaining relationships with all team leaders and managers involved within the processes, whilst ensuring reviews are regularly carried out to monitor the delivery pipeline. Leading and participating in continual service improvement projects for internal and customer-related systems and platforms. IT Asset Team Leader - Stafford/remote - circa £55k plus package
IT Asset Team Leader - Stafford/remote - circa £55k plus package I have an exciting opportunity to join a well-established organisation as an IT Asset Team Leader ensuring all assets are accounted for and any vulnerabilities found on these systems are dealt with. As the IT Asset Team Leader you will be managing two teams, will be hands-on and responsible for working with requesters, stakeholders, project managers and all the engineering teams involved within the delivery pipeline for IT Infrastructure builds. Ensuring that requests and requirements are fully maintained, understood, correctly processed, and prioritised through each team and managed correctly within the system. Skills and experience Proven experience with all aspects of IT infrastructure delivery, project coordination and IT asset management, with Service Asset Lifecycle knowledge. Knowledge of physical and virtual infrastructure within data centre and end-user technology environments, along with Windows and Linux operating systems. Ability to manage and coordinate the delivery of multiple streams of work, from simple requests to multi-scale environment buildouts and vulnerability tracking. Strong communication skills supported by a high level of energy and persuasion, with the ability to interact with all levels of the organisation in a professional, diplomatic, and tactful manner. Presenting project status to other teams and participating in cross-functional meetings and working teams. Experience in team management, with strong time management and planning skills. Thorough understanding of IT delivery management practices and principles, with experience delivering IT projects. Project audit and reporting experience to help ensure compliance with processes and status reporting. Ability to work in a fast-paced environment on multiple projects with independent deadlines and deliverables with a strong attention to detail. Main Responsibilities Ensuring the teams are correctly and efficiently coordinating the planning and tracking of each request to meet the requested dates, whilst keeping the requestor up to date with progress, delays, or any problems. Interacting with the necessary infrastructure teams to ensure work is actioned promptly and that task updates are applied with sufficient detail to provide visibility. Highlighting and escalating delays or problems as required to prevent data slippage and ensuring any delays are communicated with the requesters. Working directly with our project, infrastructure, and development teams to understand work stacks, priorities, and upcoming projects and that we are delivering the requests as planned. Facilitating meetings with requesters to ensure the requirements and timescales are fully understood and any prerequisites are in place and planned. Following up on all requests that are held up or delayed, agreeing on review schedules with the requestors and technical owners to facilitate progress. Building and maintaining relationships with all team leaders and managers involved within the processes, whilst ensuring reviews are regularly carried out to monitor the delivery pipeline. Leading and participating in continual service improvement projects for internal and customer-related systems and platforms. IT Asset Team Leader - Stafford/remote - circa £55k plus package
26/03/2024
Full time
IT Asset Team Leader - Stafford/remote - circa £55k plus package I have an exciting opportunity to join a well-established organisation as an IT Asset Team Leader ensuring all assets are accounted for and any vulnerabilities found on these systems are dealt with. As the IT Asset Team Leader you will be managing two teams, will be hands-on and responsible for working with requesters, stakeholders, project managers and all the engineering teams involved within the delivery pipeline for IT Infrastructure builds. Ensuring that requests and requirements are fully maintained, understood, correctly processed, and prioritised through each team and managed correctly within the system. Skills and experience Proven experience with all aspects of IT infrastructure delivery, project coordination and IT asset management, with Service Asset Lifecycle knowledge. Knowledge of physical and virtual infrastructure within data centre and end-user technology environments, along with Windows and Linux operating systems. Ability to manage and coordinate the delivery of multiple streams of work, from simple requests to multi-scale environment buildouts and vulnerability tracking. Strong communication skills supported by a high level of energy and persuasion, with the ability to interact with all levels of the organisation in a professional, diplomatic, and tactful manner. Presenting project status to other teams and participating in cross-functional meetings and working teams. Experience in team management, with strong time management and planning skills. Thorough understanding of IT delivery management practices and principles, with experience delivering IT projects. Project audit and reporting experience to help ensure compliance with processes and status reporting. Ability to work in a fast-paced environment on multiple projects with independent deadlines and deliverables with a strong attention to detail. Main Responsibilities Ensuring the teams are correctly and efficiently coordinating the planning and tracking of each request to meet the requested dates, whilst keeping the requestor up to date with progress, delays, or any problems. Interacting with the necessary infrastructure teams to ensure work is actioned promptly and that task updates are applied with sufficient detail to provide visibility. Highlighting and escalating delays or problems as required to prevent data slippage and ensuring any delays are communicated with the requesters. Working directly with our project, infrastructure, and development teams to understand work stacks, priorities, and upcoming projects and that we are delivering the requests as planned. Facilitating meetings with requesters to ensure the requirements and timescales are fully understood and any prerequisites are in place and planned. Following up on all requests that are held up or delayed, agreeing on review schedules with the requestors and technical owners to facilitate progress. Building and maintaining relationships with all team leaders and managers involved within the processes, whilst ensuring reviews are regularly carried out to monitor the delivery pipeline. Leading and participating in continual service improvement projects for internal and customer-related systems and platforms. IT Asset Team Leader - Stafford/remote - circa £55k plus package
Leading education body working on a national scale to deliver better outcomes for young people are seeking an Information Compliance Manager to join their Compliance Team . Working in collaborative and fast paced environment, your role will be to own the smooth day to day operations of the ISO 27001 certified compliance programme. This is a hybrid role where you will be required to a attend the London office one or two days per month. SKILLS REQUIRED: You must be degree educated, or equivalent, with a previous background working within information compliance/governance or data protection. You must have a passion for data and keeping data safe. You will have exceptional organisational skills and a can-do, proactive approach to work, proven ability to work on your own initiative. You must have good communication skills, both verbal and written Proven ability to develop and maintain positive working relationships Preference will be given to candidates with: Previous experience of working with an ISO 27001 certified information security management system and be familiar with the evidence keeping, monitoring, and auditing required to maintain this. Experience of working with an ISMS (Information Security Management System) Experience using a GRC platform or other information compliance-specific governance tools A background working with vulnerable data subjects. RESPONSIBILITIES: Managing record of Processing Activities (ROPA) and working with departmental colleagues to ensure this remains current. Reviewing ROPA entries to identify high risk personal data processing activities requiring Data Protection Impact Assessment (DPIA) Conducting information assurance audits and producing high quality reporting Identifying non-conformance and elevated risk issues for escalation Contributing significantly to the success of the Data Ethics Group in engaging stakeholders to support a positive data culture Advising colleagues on compliance with policies and processes Proactively identifying opportunities for improvement and working to operationalise agreed changes to procedures. Salary £42,000 - £48,000, dependent on experience, plus Private Healthcare, flexible working arrangements, Pension + lots more benefits. This is a fantastic opportunity to join a mission driven firm who are focused on transforming young people's lives. If you feel this could be the role for you then please send your CV for the attention of Alison Calder.
26/03/2024
Full time
Leading education body working on a national scale to deliver better outcomes for young people are seeking an Information Compliance Manager to join their Compliance Team . Working in collaborative and fast paced environment, your role will be to own the smooth day to day operations of the ISO 27001 certified compliance programme. This is a hybrid role where you will be required to a attend the London office one or two days per month. SKILLS REQUIRED: You must be degree educated, or equivalent, with a previous background working within information compliance/governance or data protection. You must have a passion for data and keeping data safe. You will have exceptional organisational skills and a can-do, proactive approach to work, proven ability to work on your own initiative. You must have good communication skills, both verbal and written Proven ability to develop and maintain positive working relationships Preference will be given to candidates with: Previous experience of working with an ISO 27001 certified information security management system and be familiar with the evidence keeping, monitoring, and auditing required to maintain this. Experience of working with an ISMS (Information Security Management System) Experience using a GRC platform or other information compliance-specific governance tools A background working with vulnerable data subjects. RESPONSIBILITIES: Managing record of Processing Activities (ROPA) and working with departmental colleagues to ensure this remains current. Reviewing ROPA entries to identify high risk personal data processing activities requiring Data Protection Impact Assessment (DPIA) Conducting information assurance audits and producing high quality reporting Identifying non-conformance and elevated risk issues for escalation Contributing significantly to the success of the Data Ethics Group in engaging stakeholders to support a positive data culture Advising colleagues on compliance with policies and processes Proactively identifying opportunities for improvement and working to operationalise agreed changes to procedures. Salary £42,000 - £48,000, dependent on experience, plus Private Healthcare, flexible working arrangements, Pension + lots more benefits. This is a fantastic opportunity to join a mission driven firm who are focused on transforming young people's lives. If you feel this could be the role for you then please send your CV for the attention of Alison Calder.
An exciting opportunity has arisen with my client a leading multinational defence organisation, they are currently seeking a Security Assurance Manager to join them on a permanent basis in Portsmouth. The role is offered on a hybrid working basis, with 2 days a week in the office. Due to the nature of our clients work, the role will require the successful applicant to hold security clearance to a minimum SC level or be will and able to undergo the Vetting process to achieve this. This appointment also holds a UK EYES ONLY classification level, therefore, applicants must hold a sole British Nationality (no current dual nationalities) due to the access to highly secure systems and data. The Cyber Security Assurance Team is a key business capability that will ensure cyber assurance expertise are developed appropriately across the IM&T function and wider business unit. The role will provide functional leadership for the Cyber Security Assurance team and will be responsible for overseeing and ensuring compliance of the business unit's information technology, systems, and data. This will involve developing, implementing, and managing cyber security policies, procedures, audits and controls to safeguard the business unit's assets. What you'll be doing: Be Responsible for building and managing the cyber assurance function within the client's Maritime Services business unit. Plan, Manage and Deliver cyber assurance services to the business, covering CPE (Customer Premises Equipment) and cloud based systems Identification of risk and appropriate mitigation requirements, development & analysis of secure solutions (covering technical/physical/procedural/personnel controls) and assessment of compliance with internal and external standards and regulations Manage the delivery of documentation to demonstrate compliance to internal and external stakeholders Manage and conduct the assessment and provision of control effectiveness in managing information security risk Act as a subject matter expert regarding assurance activities for the wider business unit Your skills and experiences: Essential: Experienced Assurance Business manager Educated to degree level, or equivalent experience, preferably in a related discipline (ICT/Computing, Information assurance and/or risk management Desirable: Knowledge of the defence industry Broad experience in risk management and the application of risk management methodologies Wide ranging knowledge of application, infrastructure and security technologies and in-depth knowledge of implementing them in a secure configuration within CPE & Cloud environments To apply please send a copy of your CV in the first instance. Synergize Consulting is committed to equality and diversity in our workplace. Synergize Consulting provides equal employment opportunity to all employees and applicants without regard to an individual's protected status, including race/ethnic origin, colour, nationality, national origin, ancestry, sex/gender, gender identity/expression, gender reassignment, sexual orientation, marriage/civil partnership, pregnancy/maternity, religion or belief, age, disability, or any other protected status or characteristic.
26/03/2024
Full time
An exciting opportunity has arisen with my client a leading multinational defence organisation, they are currently seeking a Security Assurance Manager to join them on a permanent basis in Portsmouth. The role is offered on a hybrid working basis, with 2 days a week in the office. Due to the nature of our clients work, the role will require the successful applicant to hold security clearance to a minimum SC level or be will and able to undergo the Vetting process to achieve this. This appointment also holds a UK EYES ONLY classification level, therefore, applicants must hold a sole British Nationality (no current dual nationalities) due to the access to highly secure systems and data. The Cyber Security Assurance Team is a key business capability that will ensure cyber assurance expertise are developed appropriately across the IM&T function and wider business unit. The role will provide functional leadership for the Cyber Security Assurance team and will be responsible for overseeing and ensuring compliance of the business unit's information technology, systems, and data. This will involve developing, implementing, and managing cyber security policies, procedures, audits and controls to safeguard the business unit's assets. What you'll be doing: Be Responsible for building and managing the cyber assurance function within the client's Maritime Services business unit. Plan, Manage and Deliver cyber assurance services to the business, covering CPE (Customer Premises Equipment) and cloud based systems Identification of risk and appropriate mitigation requirements, development & analysis of secure solutions (covering technical/physical/procedural/personnel controls) and assessment of compliance with internal and external standards and regulations Manage the delivery of documentation to demonstrate compliance to internal and external stakeholders Manage and conduct the assessment and provision of control effectiveness in managing information security risk Act as a subject matter expert regarding assurance activities for the wider business unit Your skills and experiences: Essential: Experienced Assurance Business manager Educated to degree level, or equivalent experience, preferably in a related discipline (ICT/Computing, Information assurance and/or risk management Desirable: Knowledge of the defence industry Broad experience in risk management and the application of risk management methodologies Wide ranging knowledge of application, infrastructure and security technologies and in-depth knowledge of implementing them in a secure configuration within CPE & Cloud environments To apply please send a copy of your CV in the first instance. Synergize Consulting is committed to equality and diversity in our workplace. Synergize Consulting provides equal employment opportunity to all employees and applicants without regard to an individual's protected status, including race/ethnic origin, colour, nationality, national origin, ancestry, sex/gender, gender identity/expression, gender reassignment, sexual orientation, marriage/civil partnership, pregnancy/maternity, religion or belief, age, disability, or any other protected status or characteristic.
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
22/03/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
Request Technology - Craig Johnson
Chicago, Illinois
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
22/03/2024
Full time
*We are unable to sponsor for this permanent Full time role* *Position is bonus eligible* Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical/non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life cycle management of client responses, Policy & Standards life cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management. Responsibilities: Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed. Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation. Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements. Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives. Serve as a subject matter expert for Information Security consulting to technical/non-technical management and staff. Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle. Manage the exception request process and consult as needed. Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs. Management and support of the GRC technology platforms. Conduct evaluations of an IT program or its individual components to determine compliance with published standards. Qualifications: Bachelor's degree or five (5) years of work experience in IT Security is required. Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred. Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required Prior IT Security experience in the legal industry experience is preferred. Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred. Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred. Three or more years of experience managing timelines and being self-directed preferred. Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred. Client focus, including tact and diplomacy is required. Interview, gather, and understand content from subject-matter experts Maintain accurate records and manage client security and risk requests Ability to perform as primary Security Subject Matter Expert (SME). Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation. Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls. Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents. Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users. Communicates succinctly and effectively Strong organization and problem-solving skills required Strong project and time management skills required Strong reading comprehension skills required Strong analytical ability with excellent written and verbal communication skills required Strong PC skills with Microsoft (ie Word, Excel, PowerPoint) required Ability to work independently and as a group member is required SharePoint administration is preferred for team Intranet site management Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options. Strong knowledge of risk management principles and practices. Strong knowledge of security administration and role-based security controls. Strong knowledge and use of GRC platforms. Knowledge of host and network-based anti-malware technologies. Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote. Knowledge of client and server Firewalling technologies and capabilities. Knowledge of security event management (SIEM), event correlation and analysis technologies. Knowledge of data encryption technologies. Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities. Knowledge of web filtering and email SPAM prevention techniques. Knowledge of vulnerability assessment and forensic investigations tools. Knowledge of mobile device security and Mobile Device Management solutions. Knowledge of Privileged Access Management technologies. Preferred Skills: Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
Position Title: Salesforce Integration Developer Are you ready to unleash your full potential? We're looking for individuals who are passionate about technology to contribute to our mission of becoming the leading payments company worldwide. About the Team: The Salesforce team in North America serves Sales & Service users within the Payments division of our company. The team comprises product managers, architects, technical leads, and software engineers responsible for developing and deploying Salesforce applications, as well as integrating other applications in the ecosystem, such as Oracle CPQ, DocuSign, and Apttus. Key Responsibilities: Analyze requirements and translate them into technical solutions Develop a solid technical architecture and system design Break down complex technical designs into manageable elements Oversee work assigned to offshore technical resources Design, build, and test applications, ensuring high-quality delivery Collaborate with product managers and users to define system requirements Participate in software design meetings and provide technical insights Prepare technical specifications and documentation for installations and maintenance Deliver presentations to technical and business stakeholders Essential: 5+ years of Salesforce Lightning experience 5+ years of REST/SOAP webservice development experience 5 + years of Salesforce Apex development experience Qualifications: Strong understanding of end-to-end systems development life cycles, preferably using SAFe Agile methodology Minimum 5 years of experience in Salesforce development with PD-I certification (PD-2 preferred) Proficiency in Lightning (LWC/Aura), Flows, Process Builder & Workflows Experience with SOAP/REST API integrations, SOQL queries, Apex Class, Triggers, and JavaScript Familiarity with field-level security, profiles, sharing rules, and audit trails Experience with Managed and Unmanaged Packages Knowledge of Streaming API, Change Data Capture, or Platform Events is a plus Familiarity with GITHUB and integration with Oracle CPQ, Apttus CPQ, or DocuSign is desirable Understanding of software industry standards (ISO, CMM, Six Sigma) and financial regulations is advantageous Excellent communication skills, both verbal and written, with the ability to engage with various audiences Strong analytical, problem-solving, and time management skills Positive attitude, strong work ethic, and responsiveness to internal and external stakeholders What We Offer: Competitive salary and benefits package Opportunities for career development and growth Exposure to challenging and relevant issues in the payment industry Time to engage in charitable activities and contribute to the community If you're ready to take on this exciting opportunity, apply now and join our clients dynamic team!
22/03/2024
Full time
Position Title: Salesforce Integration Developer Are you ready to unleash your full potential? We're looking for individuals who are passionate about technology to contribute to our mission of becoming the leading payments company worldwide. About the Team: The Salesforce team in North America serves Sales & Service users within the Payments division of our company. The team comprises product managers, architects, technical leads, and software engineers responsible for developing and deploying Salesforce applications, as well as integrating other applications in the ecosystem, such as Oracle CPQ, DocuSign, and Apttus. Key Responsibilities: Analyze requirements and translate them into technical solutions Develop a solid technical architecture and system design Break down complex technical designs into manageable elements Oversee work assigned to offshore technical resources Design, build, and test applications, ensuring high-quality delivery Collaborate with product managers and users to define system requirements Participate in software design meetings and provide technical insights Prepare technical specifications and documentation for installations and maintenance Deliver presentations to technical and business stakeholders Essential: 5+ years of Salesforce Lightning experience 5+ years of REST/SOAP webservice development experience 5 + years of Salesforce Apex development experience Qualifications: Strong understanding of end-to-end systems development life cycles, preferably using SAFe Agile methodology Minimum 5 years of experience in Salesforce development with PD-I certification (PD-2 preferred) Proficiency in Lightning (LWC/Aura), Flows, Process Builder & Workflows Experience with SOAP/REST API integrations, SOQL queries, Apex Class, Triggers, and JavaScript Familiarity with field-level security, profiles, sharing rules, and audit trails Experience with Managed and Unmanaged Packages Knowledge of Streaming API, Change Data Capture, or Platform Events is a plus Familiarity with GITHUB and integration with Oracle CPQ, Apttus CPQ, or DocuSign is desirable Understanding of software industry standards (ISO, CMM, Six Sigma) and financial regulations is advantageous Excellent communication skills, both verbal and written, with the ability to engage with various audiences Strong analytical, problem-solving, and time management skills Positive attitude, strong work ethic, and responsiveness to internal and external stakeholders What We Offer: Competitive salary and benefits package Opportunities for career development and growth Exposure to challenging and relevant issues in the payment industry Time to engage in charitable activities and contribute to the community If you're ready to take on this exciting opportunity, apply now and join our clients dynamic team!
We are currently looking on behalf of one of our important clients for a ICT Security Engineer (German Speaking). This role is permanent position based in Zürich Canton & comes with good home office allowance. Your Role: Support & advise system & application managers in the areas of ICT security & compliance with specifications & guidelines. Set up, operate & continuously further develop an Information Security Management System (ISMS). Manage & successfully complete Cross-ICT or topic-specific projects. Support the further development & maintenance of ICT security architecture, standards & guidelines. Carry out security audits to check the ISMS specifications for applications & systems. Support the ISMS & risk manager in maintaining ICT & cyber risk management. Your Skills: At least 3 years of professional experience in ICT Security Engineering. A sound knowledge of ISMS (ISO 27001/02), IT Architecture & IT Technologies. Accustomed to Risk Management & Implementing & Reviewing Security Requirements. Skilled & experienced in Managing Projects. Any experience in Aviation Systems is considered a strong plus. Your Profile: Completed University Degree in the area of Computer Science, ideally with focus on cyber/information security. Preferably Certified in the area of cyber/information security. Highly self-driven & quality aware. Methodical, structured & both solution & goal-oriented. Fluent in English & very good German language skills (to at least B2 Level) are mandatory requirements.
21/03/2024
Full time
We are currently looking on behalf of one of our important clients for a ICT Security Engineer (German Speaking). This role is permanent position based in Zürich Canton & comes with good home office allowance. Your Role: Support & advise system & application managers in the areas of ICT security & compliance with specifications & guidelines. Set up, operate & continuously further develop an Information Security Management System (ISMS). Manage & successfully complete Cross-ICT or topic-specific projects. Support the further development & maintenance of ICT security architecture, standards & guidelines. Carry out security audits to check the ISMS specifications for applications & systems. Support the ISMS & risk manager in maintaining ICT & cyber risk management. Your Skills: At least 3 years of professional experience in ICT Security Engineering. A sound knowledge of ISMS (ISO 27001/02), IT Architecture & IT Technologies. Accustomed to Risk Management & Implementing & Reviewing Security Requirements. Skilled & experienced in Managing Projects. Any experience in Aviation Systems is considered a strong plus. Your Profile: Completed University Degree in the area of Computer Science, ideally with focus on cyber/information security. Preferably Certified in the area of cyber/information security. Highly self-driven & quality aware. Methodical, structured & both solution & goal-oriented. Fluent in English & very good German language skills (to at least B2 Level) are mandatory requirements.